$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9b297106-5adb-42a3-be39-8d4eb4ec1873.roa File: 9b297106-5adb-42a3-be39-8d4eb4ec1873.roa (raw, json) Hash identifier: yEQlBMrjZZa1l/SeROtQr+jKphUDQpwf6EACkZA9VwA= Subject key identifier: E5:6B:6C:FC:71:95:45:DA:2F:1B:EE:5E:CC:32:98:27:5D:A4:D5:EA Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 07C3A9E6FF02903C88C4865B6E36D866B3F1A388 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9b297106-5adb-42a3-be39-8d4eb4ec1873.roa Signing time: Tue 21 Oct 2025 03:41:16 +0000 ROA not before: Tue 21 Oct 2025 03:41:16 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 54.88.0.0/14 maxlen: 14 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:c3:a9:e6:ff:02:90:3c:88:c4:86:5b:6e:36:d8:66:b3:f1:a3:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 21 03:41:16 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=6726f0f52b574b6426cd1c7d24dbb2a3d558525c923b927b5b14eb6167afd1ab, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:06:44:47:5a:55:21:b4:36:92:2c:4b:13:c4: 97:f1:0d:60:ed:d9:ca:fb:2a:f5:5c:47:c6:fb:25: a6:bd:7a:6b:4a:f3:94:70:30:5d:98:cc:04:98:58: 80:80:21:8b:9a:5d:6a:9c:58:2e:68:e7:d7:2f:d0: d0:1b:fe:c1:34:fe:33:2e:83:ef:54:37:62:c0:d7: 86:78:47:03:56:42:1e:71:91:09:ba:4f:68:bd:b0: 0f:68:97:c9:5f:4f:38:e2:25:3b:81:d4:f2:ed:d3: 3a:94:46:de:9d:2c:8a:f4:32:4d:cf:2f:c9:50:4c: 59:3e:02:61:3a:f2:72:db:bd:09:df:f3:c0:c0:ae: a2:13:d6:83:08:9d:7b:84:99:0e:5f:1a:e1:21:1b: 83:4f:2a:9b:2b:a6:01:62:67:e9:d7:45:86:4e:17: 8c:88:f5:3e:8f:ea:97:8c:e7:08:3f:1a:2c:75:26: 59:c6:5a:51:83:0b:76:0a:fe:c7:77:16:39:73:5b: 0c:8a:25:75:59:ad:a8:ff:45:0f:bc:c8:75:f5:f1: c4:62:b7:5e:5e:12:03:62:8d:e0:28:60:18:c1:66: c0:2d:53:e1:4e:7b:d9:32:f4:b7:dc:e3:37:02:32: 69:34:85:35:b6:4c:1c:de:8e:b6:43:a3:34:3a:1d: cf:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:6B:6C:FC:71:95:45:DA:2F:1B:EE:5E:CC:32:98:27:5D:A4:D5:EA X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9b297106-5adb-42a3-be39-8d4eb4ec1873.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.88.0.0/14 Signature Algorithm: sha256WithRSAEncryption 9f:9b:3c:fb:98:6c:5a:7d:75:ff:4c:2d:d4:0a:43:cd:d7:e3: 5a:41:f8:1d:28:e9:ba:a6:8f:9d:d0:bd:d4:3e:79:de:ca:5a: 2f:b2:9e:79:17:61:7d:51:25:09:c3:8d:fa:ca:7b:3a:7b:52: 5c:72:07:69:29:93:e8:ef:44:3a:ad:dc:ef:78:5b:f8:0a:51: 0c:fb:0d:4e:6d:7f:fb:3c:25:ad:f3:a1:a5:d0:22:7a:70:39: fd:de:02:db:90:6b:6a:59:5d:15:0a:79:d2:cc:e5:27:bf:f7: cc:ea:49:c4:04:c0:98:5f:b9:85:1a:0e:bf:c8:b8:25:cf:99: 26:e0:75:77:97:e6:43:92:f4:6d:f4:c0:f4:50:84:99:d5:50: c8:05:10:5c:f0:7e:7b:9a:62:38:8b:a3:d1:a9:d6:0f:d9:49: fc:b0:7f:67:47:dc:2e:14:0e:e7:ec:1d:ac:00:0b:64:15:9b: 28:50:6c:5e:2f:6e:04:ee:c4:64:c2:5e:27:79:62:23:7d:59: 92:30:89:d1:46:83:2a:92:a6:44:70:7f:92:e5:b8:9e:e0:d7: 1f:ff:ea:f7:ca:42:44:69:07:5c:92:65:e6:a9:37:ed:55:67: 95:9a:62:e4:9a:85:2d:d3:a1:04:9b:09:25:68:72:ae:8b:3c: 76:08:f8:08 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUB8Op5v8CkDyIxIZbbjbYZrPxo4gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDIxMDM0MTE2WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A2NzI2ZjBmNTJiNTc0YjY0MjZjZDFjN2QyNGRiYjJhM2Q1 NTg1MjVjOTIzYjkyN2I1YjE0ZWI2MTY3YWZkMWFiMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDXBkRHWlUhtDaSLEsTxJfxDWDt2cr7KvVcR8b7Jaa9emtK 85RwMF2YzASYWICAIYuaXWqcWC5o59cv0NAb/sE0/jMug+9UN2LA14Z4RwNWQh5x kQm6T2i9sA9ol8lfTzjiJTuB1PLt0zqURt6dLIr0Mk3PL8lQTFk+AmE68nLbvQnf 88DArqIT1oMInXuEmQ5fGuEhG4NPKpsrpgFiZ+nXRYZOF4yI9T6P6peM5wg/Gix1 JlnGWlGDC3YK/sd3FjlzWwyKJXVZraj/RQ+8yHX18cRit15eEgNijeAoYBjBZsAt U+FOe9ky9Lfc4zcCMmk0hTW2TBzejrZDozQ6Hc/jAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU5Wts/HGVRdovG+5ezDKYJ12k1eowHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzliMjk3MTA2LTVhZGItNDJhMy1iZTM5LThkNGViNGVjMTg3My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwI2WDANBgkqhkiG9w0BAQsFAAOCAQEAn5s8+5hsWn11/0wt1ApDzdfjWkH4 HSjpuqaPndC91D553spaL7KeeRdhfVElCcON+sp7OntSXHIHaSmT6O9EOq3c73hb +ApRDPsNTm1/+zwlrfOhpdAienA5/d4C25BralldFQp50szlJ7/3zOpJxATAmF+5 hRoOv8i4Jc+ZJuB1d5fmQ5L0bfTA9FCEmdVQyAUQXPB+e5piOIuj0anWD9lJ/LB/ Z0fcLhQO5+wdrAALZBWbKFBsXi9uBO7EZMJeJ3liI31ZkjCJ0UaDKpKmRHB/kuW4 nuDXH//q98pCRGkHXJJl5qk37VVnlZpi5JqFLdOhBJsJJWhyros8dgj4CA== -----END CERTIFICATE-----Generated at Wed Nov 5 01:56:16 2025 by rpki-client