$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/cee1df74-de48-4d35-b9b9-d5ede77417d1.roa File: cee1df74-de48-4d35-b9b9-d5ede77417d1.roa (raw, json) Hash identifier: 5fGS5ujJ4coMYpY+tIZVLOqmVvyKDYVEX6bQexPnrh0= Subject key identifier: 7A:B6:39:3F:D7:57:E1:43:8F:81:8B:DC:9D:39:9B:D0:57:47:BB:ED Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 3DC27AE3534A2A797D0B92EEC748C584797CEF4B Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/cee1df74-de48-4d35-b9b9-d5ede77417d1.roa Signing time: Wed 22 Oct 2025 23:25:33 +0000 ROA not before: Wed 22 Oct 2025 23:25:33 +0000 ROA not after: Wed 26 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.182.230.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:c2:7a:e3:53:4a:2a:79:7d:0b:92:ee:c7:48:c5:84:79:7c:ef:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 22 23:25:33 2025 GMT Not After : Nov 26 23:59:59 2025 GMT Subject: serialNumber=6b787d7deb368228656a92113ff5828cdb8756cbff98f05056ccc0830c5f180c, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:67:ae:60:bf:0e:54:4a:58:84:df:12:66:a2: 06:4a:61:2f:b1:ff:0b:49:57:35:29:a9:b4:90:f1: 3a:87:c3:03:b3:06:16:48:e2:42:22:77:b9:82:32: b8:0c:d8:fd:d5:9f:f1:4b:42:6f:2f:62:60:66:42: 41:6e:9b:53:d4:57:97:5c:cb:d0:e9:c5:9f:38:c6: d3:fc:76:3c:17:97:4f:42:33:be:fd:c4:7c:f4:79: 5c:41:a0:46:67:8f:1f:45:8e:74:0d:92:ae:00:c5: 5d:44:5d:7a:36:d5:c9:7a:13:82:65:ab:1a:ba:3f: 27:f1:b2:79:44:9b:96:f7:5b:d8:c3:f7:1e:76:b9: 3b:c6:ef:ca:72:2f:b7:83:ae:0d:8d:00:45:d1:90: 01:64:12:3f:e0:75:64:26:8d:33:92:e4:9b:71:cd: 41:2a:fa:42:c2:eb:79:94:c4:6b:87:2a:38:53:13: 2e:04:db:e5:f8:db:c7:5a:61:ee:12:03:f6:21:a2: 22:7a:4e:90:12:67:56:65:44:bb:49:05:0e:cc:18: 51:85:7e:fb:08:bd:79:ec:95:98:6e:29:30:67:ab: 7b:09:31:07:43:74:71:ab:1b:51:d7:c9:dc:55:de: 9f:54:d7:68:b0:47:e5:af:e9:2f:fc:d3:ac:bd:5e: a7:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:B6:39:3F:D7:57:E1:43:8F:81:8B:DC:9D:39:9B:D0:57:47:BB:ED X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/cee1df74-de48-4d35-b9b9-d5ede77417d1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.182.230.0/23 Signature Algorithm: sha256WithRSAEncryption 27:44:fc:12:f2:b4:df:27:5e:96:4d:ae:38:9b:6f:86:5f:9d: 59:46:cb:9d:f3:94:6f:22:2b:1f:a4:04:ed:51:c1:40:9d:50: 9a:54:63:e8:d4:48:c5:f6:5b:35:d2:2d:ea:4d:b7:2f:af:41: 9b:5d:6b:6f:5c:10:24:34:6d:c5:dd:cf:33:29:12:54:e8:e2: 39:95:16:8f:17:e1:8b:ed:c5:bb:7d:04:71:5b:4f:84:ea:88: 85:0a:f2:74:06:f9:82:83:af:b9:4c:16:75:08:1a:6d:6c:ae: 98:7c:c5:46:96:bc:97:5a:f0:29:45:c8:5d:74:f5:ac:49:cd: 82:d3:a1:94:06:df:1c:a6:c1:f7:bf:e5:d6:a7:f5:05:fb:81: 59:f6:dd:d3:03:4f:27:15:f1:3a:92:35:6d:0d:cc:00:e7:aa: 7c:4f:42:b6:69:44:78:55:50:52:db:29:3c:19:71:fd:08:50: af:9d:ba:a9:89:a6:31:0c:d7:97:88:ed:c3:d7:d8:2a:1e:7c: dc:76:74:99:b1:11:73:47:f1:fc:db:19:a5:67:53:f7:13:46: 33:8f:8d:ca:1e:86:8c:e0:ce:c7:ac:30:a5:28:21:86:d3:72: 74:a4:c6:8f:bf:22:eb:0e:d6:96:0a:24:3d:e4:d5:0d:65:95: e1:be:d5:a9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPcJ641NKKnl9C5Lux0jFhHl870swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDIyMjMyNTMzWhcNMjUxMTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A2Yjc4N2Q3ZGViMzY4MjI4NjU2YTkyMTEzZmY1ODI4Y2Ri ODc1NmNiZmY5OGYwNTA1NmNjYzA4MzBjNWYxODBjMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDOZ65gvw5USliE3xJmogZKYS+x/wtJVzUpqbSQ8TqHwwOz BhZI4kIid7mCMrgM2P3Vn/FLQm8vYmBmQkFum1PUV5dcy9DpxZ84xtP8djwXl09C M779xHz0eVxBoEZnjx9FjnQNkq4AxV1EXXo21cl6E4Jlqxq6PyfxsnlEm5b3W9jD 9x52uTvG78pyL7eDrg2NAEXRkAFkEj/gdWQmjTOS5JtxzUEq+kLC63mUxGuHKjhT Ey4E2+X428daYe4SA/YhoiJ6TpASZ1ZlRLtJBQ7MGFGFfvsIvXnslZhuKTBnq3sJ MQdDdHGrG1HXydxV3p9U12iwR+Wv6S/806y9XqddAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUerY5P9dX4UOPgYvcnTmb0FdHu+0wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2NlZTFkZjc0LWRlNDgtNGQzNS1iOWI5LWQ1ZWRlNzc0MTdkMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAE2tuYwDQYJKoZIhvcNAQELBQADggEBACdE/BLytN8nXpZNrjibb4ZfnVlG y53zlG8iKx+kBO1RwUCdUJpUY+jUSMX2WzXSLepNty+vQZtda29cECQ0bcXdzzMp ElTo4jmVFo8X4Yvtxbt9BHFbT4TqiIUK8nQG+YKDr7lMFnUIGm1srph8xUaWvJda 8ClFyF109axJzYLToZQG3xymwfe/5dan9QX7gVn23dMDTycV8TqSNW0NzADnqnxP QrZpRHhVUFLbKTwZcf0IUK+duqmJpjEM15eI7cPX2CoefNx2dJmxEXNH8fzbGaVn U/cTRjOPjcoehozgzsesMKUoIYbTcnSkxo+/IusO1pYKJD3k1Q1lleG+1ak= -----END CERTIFICATE-----Generated at Wed Nov 5 01:53:08 2025 by rpki-client