$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9d97dca0-2fcf-4033-8e1b-a6043d88a7af.roa File: 9d97dca0-2fcf-4033-8e1b-a6043d88a7af.roa (raw, json) Hash identifier: fkl0lhNY7fuhBp4lnjA8R/lIuOfQEXHKj/zB8/7ib3E= Subject key identifier: AA:55:D1:4E:B1:F1:62:6C:35:CB:D0:E7:9A:82:C3:8A:F1:54:8F:FD Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 62405F829F456F4AEE6EAA4DC9B30567A6E47200 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9d97dca0-2fcf-4033-8e1b-a6043d88a7af.roa Signing time: Tue 21 Oct 2025 07:22:41 +0000 ROA not before: Tue 21 Oct 2025 07:22:41 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.240.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:40:5f:82:9f:45:6f:4a:ee:6e:aa:4d:c9:b3:05:67:a6:e4:72:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 21 07:22:41 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=136b92901c1514f9f61e5d85f4a9bdf3d78aaa875579fb01c019ad24e6ae1dfa, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:c1:77:22:02:ee:56:d5:24:7e:25:3e:f2:21: 8f:e6:21:48:8c:56:59:cf:89:c1:3d:af:7c:50:b2: 4b:f4:39:07:f8:8e:fb:f1:71:12:2a:25:ed:38:0b: 37:e5:0e:e6:d0:62:d7:7f:d1:81:09:fa:f1:76:aa: 75:40:9e:cb:c9:d6:75:fa:33:96:e7:18:2b:9e:b3: 8e:47:1a:5b:bc:4b:4a:32:6f:03:c4:6f:81:77:3c: f4:33:48:5e:10:39:d4:01:69:bd:2f:bc:48:c6:7c: 98:56:12:35:b4:36:08:b5:bb:58:37:ab:a1:78:64: 23:bf:55:b4:84:31:ba:cd:25:a7:e4:6a:ff:49:b7: 11:e3:90:b1:07:3e:ae:71:fd:c3:08:a5:6c:c8:ce: 5d:f0:11:3f:72:dc:ef:fe:7b:30:cc:07:02:53:96: d6:cb:52:b8:c9:1b:96:aa:f6:e0:c8:72:93:ad:d7: 31:6b:44:8c:d4:fc:d0:ee:6e:24:d2:9e:e4:7c:0a: d5:bc:56:3c:da:e4:67:e5:98:f8:84:40:45:dd:ea: 4a:af:f7:3c:bc:35:dc:8a:02:6b:77:0f:e9:25:3a: 38:fd:4b:ba:13:86:3b:a0:1c:03:96:34:54:1a:bc: a4:b8:2a:4a:54:e9:2f:62:a7:d1:91:f1:5c:72:ac: ce:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:55:D1:4E:B1:F1:62:6C:35:CB:D0:E7:9A:82:C3:8A:F1:54:8F:FD X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9d97dca0-2fcf-4033-8e1b-a6043d88a7af.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.240.56.0/24 Signature Algorithm: sha256WithRSAEncryption 97:d3:47:90:b9:4c:85:02:dd:84:02:08:5e:48:6c:f9:e4:eb: 2f:c4:e5:2f:f5:c9:c0:3b:bd:12:84:b0:0e:51:fe:fd:80:96: 57:96:f3:1b:8a:cb:f2:11:24:ad:a7:9f:18:19:80:18:48:95: 91:b7:dd:bb:01:46:89:68:ba:79:e1:77:91:37:09:13:89:6d: 3b:75:f7:9c:69:88:bd:a9:97:6f:5a:aa:d5:a5:1a:17:f4:0e: f8:e7:5a:c6:f1:e6:c3:60:57:20:d5:6d:28:49:2b:fc:be:2f: e8:81:8e:bd:ca:67:e4:4b:87:32:78:85:a0:ed:a9:b9:88:25: 98:ef:f4:03:d9:1c:15:a5:c2:16:e3:40:7c:d0:b6:5b:64:45: 2b:e5:31:bf:02:4b:95:14:0b:31:61:72:a4:b5:0a:cd:c0:0f: a5:06:02:a4:78:a4:3d:8e:33:f1:15:40:18:69:bf:cd:81:2b: fc:1f:f5:80:a3:e6:76:5d:4e:55:fc:37:f8:b8:07:f1:3c:df: 5a:3c:2a:43:4a:73:b4:1b:04:02:61:0c:5e:5f:9b:7c:f8:be: 27:57:bb:99:62:00:c0:98:a4:ad:2a:46:be:f5:53:f3:16:7f: 10:76:f4:d2:49:46:cd:15:5f:c2:36:69:b1:52:92:40:4d:87: 63:a4:01:32 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYkBfgp9Fb0rubqpNybMFZ6bkcgAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDIxMDcyMjQxWhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMzZiOTI5MDFjMTUxNGY5ZjYxZTVkODVmNGE5YmRmM2Q3 OGFhYTg3NTU3OWZiMDFjMDE5YWQyNGU2YWUxZGZhMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIwXciAu5W1SR+JT7yIY/mIUiMVlnPicE9r3xQskv0OQf4 jvvxcRIqJe04CzflDubQYtd/0YEJ+vF2qnVAnsvJ1nX6M5bnGCues45HGlu8S0oy bwPEb4F3PPQzSF4QOdQBab0vvEjGfJhWEjW0Ngi1u1g3q6F4ZCO/VbSEMbrNJafk av9JtxHjkLEHPq5x/cMIpWzIzl3wET9y3O/+ezDMBwJTltbLUrjJG5aq9uDIcpOt 1zFrRIzU/NDubiTSnuR8CtW8Vjza5GflmPiEQEXd6kqv9zy8NdyKAmt3D+klOjj9 S7oThjugHAOWNFQavKS4KkpU6S9ip9GR8VxyrM6rAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUqlXRTrHxYmw1y9DnmoLDivFUj/0wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzlkOTdkY2EwLTJmY2YtNDAzMy04ZTFiLWE2MDQzZDg4YTdhZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA28DgwDQYJKoZIhvcNAQELBQADggEBAJfTR5C5TIUC3YQCCF5IbPnk6y/E 5S/1ycA7vRKEsA5R/v2AlleW8xuKy/IRJK2nnxgZgBhIlZG33bsBRolounnhd5E3 CROJbTt195xpiL2pl29aqtWlGhf0DvjnWsbx5sNgVyDVbShJK/y+L+iBjr3KZ+RL hzJ4haDtqbmIJZjv9APZHBWlwhbjQHzQtltkRSvlMb8CS5UUCzFhcqS1Cs3AD6UG AqR4pD2OM/EVQBhpv82BK/wf9YCj5nZdTlX8N/i4B/E831o8KkNKc7QbBAJhDF5f m3z4vidXu5liAMCYpK0qRr71U/MWfxB29NJJRs0VX8I2abFSkkBNh2OkATI= -----END CERTIFICATE-----Generated at Wed Nov 5 01:47:18 2025 by rpki-client