$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a0e2a2b7-9f23-4ebe-aefd-803cc1a98db6.roa File: a0e2a2b7-9f23-4ebe-aefd-803cc1a98db6.roa (raw, json) Hash identifier: ibewy3qTD9IjHi4gKJVwOkgQVLwEq26nPQ1sJB/A5W8= Subject key identifier: 65:D0:97:8B:C2:EB:03:01:A3:24:7F:4A:25:80:24:53:D6:94:48:1C Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 2A8E1AB3CAD228E7C6DC820D9E4BCF7C43D2C78F Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a0e2a2b7-9f23-4ebe-aefd-803cc1a98db6.roa Signing time: Tue 04 Nov 2025 02:41:34 +0000 ROA not before: Tue 04 Nov 2025 02:41:34 +0000 ROA not after: Tue 09 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.179.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:8e:1a:b3:ca:d2:28:e7:c6:dc:82:0d:9e:4b:cf:7c:43:d2:c7:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Nov 4 02:41:34 2025 GMT Not After : Dec 9 23:59:59 2025 GMT Subject: serialNumber=cbc2acd1df99a11d01a6ba4890ebc5077ec100e6f97c279262def114aa7754c0, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:c8:d8:28:eb:a4:62:54:b3:e5:f3:87:5c:74: 05:53:57:c2:91:c6:0f:43:03:11:88:02:a0:e7:9e: 87:d8:b2:12:c2:e9:f5:fe:eb:39:48:17:ee:a6:d1: d6:6c:8c:a6:eb:19:f4:ae:38:5b:75:ec:19:ce:92: b9:46:3c:a2:ef:8b:15:e8:7a:50:4e:db:48:b9:47: d7:69:e6:37:76:2e:93:80:47:64:06:4f:08:ff:9b: 62:bf:47:f7:e1:08:f8:96:64:35:e8:34:1b:e3:c5: 70:f4:88:80:76:8a:4d:a6:53:a0:eb:69:29:fb:98: 98:5e:01:e1:b6:f0:5d:f4:3d:ab:43:b9:80:6c:ce: 83:70:db:8e:43:a7:e3:33:74:71:25:09:47:8c:0f: e8:33:19:2a:06:38:58:47:b1:e7:fe:a1:bd:b4:84: a8:d0:c9:81:a3:65:72:70:f0:a7:c8:2b:fe:2a:cf: 2b:79:5b:80:c9:05:e5:84:0d:bd:1f:8e:46:bd:68: 61:79:f8:df:2e:cc:0a:67:75:9b:7c:39:ac:05:93: 20:3e:e7:b0:ea:fb:8e:f0:3e:52:2c:08:e1:d9:62: 8e:29:18:27:cb:92:27:8c:95:8a:e7:06:5b:45:a4: a5:26:25:3b:5c:97:04:fe:ba:4d:59:7e:f0:16:37: 2a:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:D0:97:8B:C2:EB:03:01:A3:24:7F:4A:25:80:24:53:D6:94:48:1C X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a0e2a2b7-9f23-4ebe-aefd-803cc1a98db6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.179.0.0/17 Signature Algorithm: sha256WithRSAEncryption 60:e4:4a:b1:6d:42:fc:fd:17:b3:3e:88:fa:8b:42:6f:22:6a: 3a:d8:aa:fd:e8:f4:3f:ef:3c:9f:1a:1c:23:8a:b5:eb:b1:d6: c6:c5:7d:78:fa:94:8e:c2:91:9e:f3:00:00:b2:00:72:f7:24: 64:0c:ad:ae:27:92:bd:f2:f6:76:5d:8b:b1:79:69:aa:7d:78: 72:c5:09:36:65:e2:0e:27:d4:8e:69:39:3f:9e:7e:28:71:62: 17:a6:84:e1:d0:d9:31:18:65:c0:da:78:a8:52:22:d9:7a:0f: 90:71:72:b5:cf:be:cf:12:bf:cf:25:76:ac:6a:ef:72:b6:df: 67:fc:43:fc:c2:35:7c:fb:6c:a0:56:90:2d:17:fc:7d:fe:dc: a0:3e:80:40:19:37:db:6f:83:14:53:9e:a6:03:db:cd:2b:89: 11:c3:2f:50:ba:35:65:35:ab:3b:49:ec:26:bb:76:13:2d:7b: a3:95:2d:74:18:3a:de:c9:24:6a:38:c7:47:1e:81:60:74:bb: 4b:30:02:c5:1f:2a:24:99:f8:09:21:4f:4b:f2:63:55:8b:c0: 33:a9:9f:c2:8e:54:6c:85:d3:26:3c:ab:ed:f8:7f:99:8d:cf: a0:94:80:c9:67:96:6f:05:7e:4c:63:87:56:43:7e:42:dc:cf: 1d:b3:1c:87 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKo4as8rSKOfG3IINnkvPfEPSx48wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMTA0MDI0MTM0WhcNMjUxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BjYmMyYWNkMWRmOTlhMTFkMDFhNmJhNDg5MGViYzUwNzdl YzEwMGU2Zjk3YzI3OTI2MmRlZjExNGFhNzc1NGMwMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCJyNgo66RiVLPl84dcdAVTV8KRxg9DAxGIAqDnnofYshLC 6fX+6zlIF+6m0dZsjKbrGfSuOFt17BnOkrlGPKLvixXoelBO20i5R9dp5jd2LpOA R2QGTwj/m2K/R/fhCPiWZDXoNBvjxXD0iIB2ik2mU6DraSn7mJheAeG28F30PatD uYBszoNw245Dp+MzdHElCUeMD+gzGSoGOFhHsef+ob20hKjQyYGjZXJw8KfIK/4q zyt5W4DJBeWEDb0fjka9aGF5+N8uzApndZt8OawFkyA+57Dq+47wPlIsCOHZYo4p GCfLkieMlYrnBltFpKUmJTtclwT+uk1ZfvAWNyrVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUZdCXi8LrAwGjJH9KJYAkU9aUSBwwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2EwZTJhMmI3LTlmMjMtNGViZS1hZWZkLTgwM2NjMWE5OGRiNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAc2swAwDQYJKoZIhvcNAQELBQADggEBAGDkSrFtQvz9F7M+iPqLQm8iajrY qv3o9D/vPJ8aHCOKteux1sbFfXj6lI7CkZ7zAACyAHL3JGQMra4nkr3y9nZdi7F5 aap9eHLFCTZl4g4n1I5pOT+efihxYhemhOHQ2TEYZcDaeKhSItl6D5BxcrXPvs8S v88ldqxq73K232f8Q/zCNXz7bKBWkC0X/H3+3KA+gEAZN9tvgxRTnqYD280riRHD L1C6NWU1qztJ7Ca7dhMte6OVLXQYOt7JJGo4x0cegWB0u0swAsUfKiSZ+AkhT0vy Y1WLwDOpn8KOVGyF0yY8q+34f5mNz6CUgMlnlm8Ffkxjh1ZDfkLczx2zHIc= -----END CERTIFICATE-----Generated at Wed Nov 5 01:47:02 2025 by rpki-client