$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/94342818-992c-4f42-87b9-1174a55dacce.roa File: 94342818-992c-4f42-87b9-1174a55dacce.roa (raw, json) Hash identifier: C+O1OIabZvzVg6D0M6/eqJh06uiu0trlAqU7d6dB2uw= Subject key identifier: E5:AC:F0:7C:27:17:8C:08:2A:E5:8C:57:30:6F:F4:D4:CD:53:F3:94 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 69F1EB3C82F6CB7FED34D26840AC5EA4ABD564FC Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/94342818-992c-4f42-87b9-1174a55dacce.roa Signing time: Tue 21 Oct 2025 08:12:45 +0000 ROA not before: Tue 21 Oct 2025 08:12:45 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.67.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:f1:eb:3c:82:f6:cb:7f:ed:34:d2:68:40:ac:5e:a4:ab:d5:64:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 21 08:12:45 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=9309295eea3c938dbcd717f4b7716ca33f0fce6c2688caa19767d2b3785e48f8, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:77:b0:f2:f9:b9:0a:f4:31:ea:4f:70:6f:8a: 65:4b:b9:f8:82:19:d1:f4:1d:7b:55:48:1f:df:ae: 9f:c8:21:2b:68:ba:ba:e9:cc:96:1d:fa:b0:07:fa: 87:3a:2e:f2:d3:68:dc:7f:c6:52:60:d4:19:34:78: fd:ea:2b:44:e6:f8:c0:f9:89:61:c1:6f:8b:63:dc: d5:81:2f:6a:72:58:1d:ba:3a:6e:05:fe:2f:ea:7f: c6:2d:0c:48:50:7b:ee:84:7f:52:20:9f:e6:54:d1: 82:70:8f:a7:4b:f9:7e:87:96:42:da:a7:eb:9b:cd: 65:2e:75:03:f5:95:6e:65:73:7c:d9:79:5d:88:38: c8:f7:5e:6f:5b:f6:e1:d7:b0:00:10:64:84:72:94: 29:af:dc:e9:56:2c:9d:b1:57:83:98:00:4b:06:f6: 1a:9c:5c:13:24:48:93:51:06:18:3d:3a:ba:c6:f4: 5d:21:cd:fb:12:66:7e:62:4f:e3:0e:71:13:a1:69: 5e:50:50:4f:cd:7b:9d:60:66:d1:fb:45:72:6f:0e: 05:f3:bf:24:38:ce:c7:00:1a:e7:b9:ec:96:d0:c8: 4d:54:43:c0:57:a5:79:f0:35:25:95:0d:95:e7:5c: 74:fe:c9:81:9c:05:1e:2b:47:13:19:b1:6b:7c:29: d6:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:AC:F0:7C:27:17:8C:08:2A:E5:8C:57:30:6F:F4:D4:CD:53:F3:94 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/94342818-992c-4f42-87b9-1174a55dacce.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.67.0.0/17 Signature Algorithm: sha256WithRSAEncryption a9:41:30:7a:77:94:91:b2:99:2d:b2:e4:56:18:10:cd:f0:50: c9:55:1d:a1:d2:4a:92:44:d9:56:4d:62:a1:08:ca:c4:80:e7: 43:73:4a:df:f4:2c:ab:e4:62:f8:11:93:33:ff:e8:18:ae:99: 67:23:55:a8:c5:33:6e:39:bc:61:af:e4:fb:08:45:a0:f2:5a: ad:06:5a:e4:9e:9a:35:4d:27:ad:48:3e:d8:17:44:12:33:d8: 0c:ba:cb:f0:cb:aa:d2:a7:5e:42:b5:fd:1b:64:88:58:66:cf: 94:06:3d:a4:40:b2:47:59:d4:70:89:3e:12:8b:5a:f1:78:b4: 7a:ad:e7:c7:4d:e1:17:8a:3d:16:18:95:98:6c:d0:11:d3:b8: d1:2e:1f:c8:8b:49:2c:eb:f9:cc:60:f5:a0:96:46:51:bf:37: 68:d7:a4:78:46:24:91:a7:7d:0b:33:83:b2:c8:18:c8:76:25: 29:b3:e8:fe:c3:d9:4d:ad:a1:73:54:93:43:93:53:e3:30:d6: f7:2e:df:f4:c1:fe:91:cc:30:55:f3:47:a9:8f:b9:93:7c:a8: 31:d0:3f:21:b2:1c:40:01:ea:7e:7e:1e:46:27:5d:44:d6:f3: b4:58:85:9c:41:92:12:2f:57:23:9e:c7:ef:ce:01:50:1f:d4: 39:52:99:90 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUafHrPIL2y3/tNNJoQKxepKvVZPwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDIxMDgxMjQ1WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A5MzA5Mjk1ZWVhM2M5MzhkYmNkNzE3ZjRiNzcxNmNhMzNm MGZjZTZjMjY4OGNhYTE5NzY3ZDJiMzc4NWU0OGY4MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDNd7Dy+bkK9DHqT3BvimVLufiCGdH0HXtVSB/frp/IISto urrpzJYd+rAH+oc6LvLTaNx/xlJg1Bk0eP3qK0Tm+MD5iWHBb4tj3NWBL2pyWB26 Om4F/i/qf8YtDEhQe+6Ef1Ign+ZU0YJwj6dL+X6HlkLap+ubzWUudQP1lW5lc3zZ eV2IOMj3Xm9b9uHXsAAQZIRylCmv3OlWLJ2xV4OYAEsG9hqcXBMkSJNRBhg9OrrG 9F0hzfsSZn5iT+MOcROhaV5QUE/Ne51gZtH7RXJvDgXzvyQ4zscAGue57JbQyE1U Q8BXpXnwNSWVDZXnXHT+yYGcBR4rRxMZsWt8Kdb3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU5azwfCcXjAgq5YxXMG/01M1T85QwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzk0MzQyODE4LTk5MmMtNGY0Mi04N2I5LTExNzRhNTVkYWNjZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAc2QwAwDQYJKoZIhvcNAQELBQADggEBAKlBMHp3lJGymS2y5FYYEM3wUMlV HaHSSpJE2VZNYqEIysSA50NzSt/0LKvkYvgRkzP/6BiumWcjVajFM245vGGv5PsI RaDyWq0GWuSemjVNJ61IPtgXRBIz2Ay6y/DLqtKnXkK1/RtkiFhmz5QGPaRAskdZ 1HCJPhKLWvF4tHqt58dN4ReKPRYYlZhs0BHTuNEuH8iLSSzr+cxg9aCWRlG/N2jX pHhGJJGnfQszg7LIGMh2JSmz6P7D2U2toXNUk0OTU+Mw1vcu3/TB/pHMMFXzR6mP uZN8qDHQPyGyHEAB6n5+HkYnXUTW87RYhZxBkhIvVyOex+/OAVAf1DlSmZA= -----END CERTIFICATE-----Generated at Wed Nov 5 01:55:30 2025 by rpki-client