$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d28f05a3-dcbb-4637-9ae9-72ab43653d82.roa File: d28f05a3-dcbb-4637-9ae9-72ab43653d82.roa (raw, json) Hash identifier: vWCMf1RORtnuoWTgMkktrD0JV4/IhQ/bFECF1kU+5AY= Subject key identifier: CB:46:05:A6:46:12:5B:43:46:DE:F3:3A:6D:37:E2:95:C6:9F:E4:54 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 06C5BE7DEF6B08F906C12AEBE47E0A76C83C0D0B Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d28f05a3-dcbb-4637-9ae9-72ab43653d82.roa Signing time: Tue 21 Oct 2025 08:11:27 +0000 ROA not before: Tue 21 Oct 2025 08:11:27 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.174.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:c5:be:7d:ef:6b:08:f9:06:c1:2a:eb:e4:7e:0a:76:c8:3c:0d:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 21 08:11:27 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=690e520df0e8cdcf1406aaef0e03bc8dcc5348aac02cb775ee5db0e41c1d75d8, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:b6:37:14:4e:74:81:93:6e:a5:1d:73:d4:cb: 07:17:e1:d9:8c:78:9a:44:6d:4c:5d:1d:11:ad:51: 80:0f:4e:45:83:e2:23:65:67:75:87:9e:44:81:09: 3a:3a:5c:48:c3:3b:da:42:6e:ab:a9:6a:4b:08:50: 6a:35:f1:b4:37:ae:6e:41:43:2b:4d:c3:5b:b5:9b: 7d:8c:07:f0:58:f6:a2:d3:0d:a3:14:2f:b2:7c:d6: b5:e1:9b:3a:8a:10:56:de:30:8c:ab:ef:9e:f7:80: 89:06:89:7f:97:9f:93:15:49:68:b2:e9:50:69:0b: 81:57:1f:e1:de:bf:92:72:df:ef:29:96:f1:c3:71: 51:13:3b:ae:dd:05:43:af:d8:ae:a7:a8:99:3a:75: 09:ed:71:21:bb:3d:3d:cd:85:f0:ac:57:68:a7:bb: 47:6c:73:af:b1:3e:55:89:63:c7:47:8a:69:1d:69: 18:d0:e0:da:5d:39:b0:31:9c:65:b3:4f:ca:0b:9a: ec:53:d2:54:a3:db:c3:5f:b9:ee:68:3d:1b:55:08: e0:2b:c3:eb:c3:4b:b6:b2:81:cb:8c:f2:38:8d:68: a4:46:b7:05:49:4c:b8:5a:ba:17:f5:8d:0c:e3:bb: 8f:a5:64:92:fe:0d:9c:00:0e:5f:f3:21:2f:83:88: 0b:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:46:05:A6:46:12:5B:43:46:DE:F3:3A:6D:37:E2:95:C6:9F:E4:54 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d28f05a3-dcbb-4637-9ae9-72ab43653d82.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.174.0.0/16 Signature Algorithm: sha256WithRSAEncryption 2d:02:7f:60:1c:65:a7:a6:d3:ec:50:ab:ec:db:73:74:73:d2: a3:86:a7:92:3d:60:1f:3f:e7:23:0a:0c:18:e5:3a:33:9b:9e: 84:2c:cd:81:4b:4e:fb:1b:39:97:f5:38:b7:78:2e:9b:91:0d: e3:2c:0f:29:43:bd:c1:5b:96:8c:ec:e5:0d:a8:72:46:5d:0c: 1f:a4:06:4e:96:39:7c:24:d1:0e:21:8f:d8:61:20:28:26:d7: 25:78:a3:3e:37:fe:fa:3c:24:33:f6:96:4e:5f:e5:9d:da:44: 94:be:98:6c:15:a9:ce:d8:e5:04:51:f7:71:1c:10:8b:5f:7e: e2:74:a2:97:35:ca:c9:db:b3:ef:54:e2:5b:33:18:bd:2d:86: fa:91:d1:fb:d7:07:7e:ba:a8:0a:fc:6a:48:02:bc:13:41:38: 82:2c:c3:c8:e2:93:ab:2e:0c:2b:a0:38:0b:9e:d1:f3:90:15: 71:72:ae:a6:18:cd:74:03:cb:3e:ff:6f:7e:c9:18:3e:47:bf: 54:86:b2:7f:07:cc:62:94:18:58:88:dc:7b:fc:7c:86:55:20: b7:cf:27:69:23:87:14:1b:6e:19:03:f1:9a:a6:2c:11:8d:16: 60:32:2e:b9:3f:3e:f8:09:06:1f:dc:fa:7f:cd:f8:24:2e:a7: 52:8a:cf:00 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUBsW+fe9rCPkGwSrr5H4Kdsg8DQswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDIxMDgxMTI3WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A2OTBlNTIwZGYwZThjZGNmMTQwNmFhZWYwZTAzYmM4ZGNj NTM0OGFhYzAyY2I3NzVlZTVkYjBlNDFjMWQ3NWQ4MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDWtjcUTnSBk26lHXPUywcX4dmMeJpEbUxdHRGtUYAPTkWD 4iNlZ3WHnkSBCTo6XEjDO9pCbqupaksIUGo18bQ3rm5BQytNw1u1m32MB/BY9qLT DaMUL7J81rXhmzqKEFbeMIyr7573gIkGiX+Xn5MVSWiy6VBpC4FXH+Hev5Jy3+8p lvHDcVETO67dBUOv2K6nqJk6dQntcSG7PT3NhfCsV2inu0dsc6+xPlWJY8dHimkd aRjQ4NpdObAxnGWzT8oLmuxT0lSj28Nfue5oPRtVCOArw+vDS7aygcuM8jiNaKRG twVJTLhauhf1jQzju4+lZJL+DZwADl/zIS+DiAvJAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUy0YFpkYSW0NG3vM6bTfilcaf5FQwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2QyOGYwNWEzLWRjYmItNDYzNy05YWU5LTcyYWI0MzY1M2Q4Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAPrjANBgkqhkiG9w0BAQsFAAOCAQEALQJ/YBxlp6bT7FCr7NtzdHPSo4an kj1gHz/nIwoMGOU6M5uehCzNgUtO+xs5l/U4t3gum5EN4ywPKUO9wVuWjOzlDahy Rl0MH6QGTpY5fCTRDiGP2GEgKCbXJXijPjf++jwkM/aWTl/lndpElL6YbBWpztjl BFH3cRwQi19+4nSilzXKyduz71TiWzMYvS2G+pHR+9cHfrqoCvxqSAK8E0E4gizD yOKTqy4MK6A4C57R85AVcXKuphjNdAPLPv9vfskYPke/VIayfwfMYpQYWIjce/x8 hlUgt88naSOHFBtuGQPxmqYsEY0WYDIuuT8++AkGH9z6f834JC6nUorPAA== -----END CERTIFICATE-----Generated at Wed Nov 5 03:34:21 2025 by rpki-client