$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bcf80c54-6e30-4c17-851c-6a3c0676f77d.roa File: bcf80c54-6e30-4c17-851c-6a3c0676f77d.roa (raw, json) Hash identifier: zs7ZAvfNZqTvq5LCsLakJSDB7liEh/kaDlo+pds4MFU= Subject key identifier: 48:3E:C3:91:31:BD:97:40:89:9F:AD:13:05:07:DE:B8:BD:39:31:AB Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 395702E37D7FA5A4555CB39FD3867D25CC913997 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bcf80c54-6e30-4c17-851c-6a3c0676f77d.roa Signing time: Tue 21 Oct 2025 06:11:17 +0000 ROA not before: Tue 21 Oct 2025 06:11:17 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 140.145.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:57:02:e3:7d:7f:a5:a4:55:5c:b3:9f:d3:86:7d:25:cc:91:39:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 21 06:11:17 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=17aac943ffd1eaf223aa6f32ec839420c04f6340be6f55ccb542727cd74d79e2, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:92:0a:e5:ae:83:e1:56:a1:32:41:5a:01:49: 3d:e0:4b:35:c5:0a:ad:14:c4:5a:c5:fd:2b:ca:54: fe:76:08:f6:fd:b0:f5:85:ba:ea:b9:80:01:d3:37: 2a:c7:93:e6:61:43:81:ff:6d:c0:89:2f:16:2a:67: 2f:db:32:e6:8a:19:4e:20:bd:13:89:23:da:19:40: 75:61:02:41:ae:f6:16:19:26:51:8a:35:63:40:fd: 71:ed:06:fc:6b:90:a8:a9:51:59:8c:52:7d:ff:8a: cb:1e:2d:99:a5:86:dd:fb:6d:dc:b9:49:af:c4:29: 49:b1:ba:f3:c9:45:6a:d2:43:fb:59:11:bb:8e:c7: cf:15:e7:64:8b:af:c9:8d:b5:3c:1a:b6:15:ef:37: d8:3c:5d:69:f7:53:8b:8d:47:ce:fb:24:60:be:8e: 79:32:e0:b4:28:02:48:c7:76:41:ea:40:11:77:ed: 14:9e:4c:6f:8e:a1:14:c3:de:01:8b:6b:64:a9:bc: 80:03:3d:c5:14:56:7a:3f:00:01:7d:dd:21:98:f1: 5d:3b:cb:f0:8c:31:07:19:6c:26:ed:4a:91:06:65: 47:90:a2:e1:c3:41:33:80:50:a9:ec:af:1c:c9:d8: 35:6c:34:4f:b7:9a:fe:92:82:be:19:73:ba:f2:88: 8c:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:3E:C3:91:31:BD:97:40:89:9F:AD:13:05:07:DE:B8:BD:39:31:AB X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bcf80c54-6e30-4c17-851c-6a3c0676f77d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 140.145.0.0/16 Signature Algorithm: sha256WithRSAEncryption 5d:0b:d7:dc:8d:60:0c:c7:00:80:77:ce:89:03:da:b1:fc:f2: a0:51:e3:e4:24:0e:f9:04:54:41:7b:b9:76:67:c7:b4:af:b9: 63:04:24:a8:df:0c:bd:28:fb:42:0c:53:0c:56:86:0b:88:3e: 02:ec:2c:e4:bc:ab:af:14:ef:86:5e:ce:f4:0d:39:dd:af:a9: 46:e2:cf:ba:7f:37:6a:57:4b:04:19:91:3e:af:be:6f:17:f0: b7:5a:b9:d4:25:1c:b5:ac:31:fe:b6:54:92:a6:a8:2b:96:12: 6b:98:0e:38:03:7c:72:14:40:7b:ae:f1:e8:1c:47:0f:ea:9e: 2d:03:90:c4:07:b3:27:3a:1c:96:a9:fa:37:ee:89:a7:69:18: 14:89:95:de:e3:17:76:ee:15:59:ae:f3:d0:e0:f8:f3:f8:b4: c6:ac:8c:04:ef:e2:20:1a:3c:2d:c5:1d:63:5f:03:57:55:e5: 31:a9:c0:ef:4b:b3:12:66:4b:32:e2:d3:ba:4c:1d:1f:6a:f0: 7d:e2:83:32:d1:52:51:ef:fb:f3:ea:9e:42:df:25:70:62:e1: 17:2f:2c:d4:53:6e:f7:98:38:cf:e9:0a:b5:b2:c6:53:bf:29: 88:cf:5c:41:42:0d:e7:f7:90:b5:79:29:75:a4:c0:b5:1d:20: 46:24:e7:b2 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUOVcC431/paRVXLOf04Z9JcyROZcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDIxMDYxMTE3WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxN2FhYzk0M2ZmZDFlYWYyMjNhYTZmMzJlYzgzOTQyMGMw NGY2MzQwYmU2ZjU1Y2NiNTQyNzI3Y2Q3NGQ3OWUyMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2kgrlroPhVqEyQVoBST3gSzXFCq0UxFrF/SvKVP52CPb9 sPWFuuq5gAHTNyrHk+ZhQ4H/bcCJLxYqZy/bMuaKGU4gvROJI9oZQHVhAkGu9hYZ JlGKNWNA/XHtBvxrkKipUVmMUn3/isseLZmlht37bdy5Sa/EKUmxuvPJRWrSQ/tZ EbuOx88V52SLr8mNtTwathXvN9g8XWn3U4uNR877JGC+jnky4LQoAkjHdkHqQBF3 7RSeTG+OoRTD3gGLa2SpvIADPcUUVno/AAF93SGY8V07y/CMMQcZbCbtSpEGZUeQ ouHDQTOAUKnsrxzJ2DVsNE+3mv6Sgr4Zc7ryiIwxAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUSD7DkTG9l0CJn60TBQfeuL05MaswHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2JjZjgwYzU0LTZlMzAtNGMxNy04NTFjLTZhM2MwNjc2Zjc3ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCMkTANBgkqhkiG9w0BAQsFAAOCAQEAXQvX3I1gDMcAgHfOiQPasfzyoFHj 5CQO+QRUQXu5dmfHtK+5YwQkqN8MvSj7QgxTDFaGC4g+Auws5LyrrxTvhl7O9A05 3a+pRuLPun83aldLBBmRPq++bxfwt1q51CUctawx/rZUkqaoK5YSa5gOOAN8chRA e67x6BxHD+qeLQOQxAezJzoclqn6N+6Jp2kYFImV3uMXdu4VWa7z0OD48/i0xqyM BO/iIBo8LcUdY18DV1XlManA70uzEmZLMuLTukwdH2rwfeKDMtFSUe/78+qeQt8l cGLhFy8s1FNu95g4z+kKtbLGU78piM9cQUIN5/eQtXkpdaTAtR0gRiTnsg== -----END CERTIFICATE-----Generated at Wed Nov 5 01:47:08 2025 by rpki-client