$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d2e8f6f4-0d5d-43c4-8493-ca93c43a429e.roa File: d2e8f6f4-0d5d-43c4-8493-ca93c43a429e.roa (raw, json) Hash identifier: fuJwpcz0C4q2vZ3FHi2TI4Qntw8fYIlCmwh3V1bIQEQ= Subject key identifier: E5:D2:19:7E:E5:97:8C:9B:50:4C:5C:8B:35:4D:CB:4C:30:04:0C:90 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 3A4C9190AE9C92E4B9F340677158D2E49E09465B Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d2e8f6f4-0d5d-43c4-8493-ca93c43a429e.roa Signing time: Tue 21 Oct 2025 03:40:09 +0000 ROA not before: Tue 21 Oct 2025 03:40:09 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 35.71.68.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:4c:91:90:ae:9c:92:e4:b9:f3:40:67:71:58:d2:e4:9e:09:46:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 21 03:40:09 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=67c01bdca9bc257dd69f1131521627075f81bafa32efa284cd99c17753d73392, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:c9:f5:95:cf:dc:9b:52:dd:2b:08:a9:71:15: 83:cb:c4:69:a8:a6:69:0f:80:c7:28:df:bd:15:53: 90:3f:77:34:30:c0:5a:68:64:62:ba:c4:86:d8:86: c7:bd:80:dd:87:a1:cd:0b:e1:88:00:db:97:9e:1f: 07:a2:65:06:c9:be:b3:ef:ab:ee:78:9e:3e:44:db: db:d5:cf:11:cc:c6:d5:fb:48:df:22:a8:ef:20:98: cf:fc:b7:f8:7e:02:e6:22:9a:55:8c:98:54:09:b3: b7:a0:11:ae:0a:ba:ae:ff:a2:2e:68:c7:c4:54:3d: ea:75:b9:7c:5f:f6:5c:c7:dd:96:af:17:28:df:78: 03:f1:98:2f:89:66:10:cb:58:36:0b:bf:52:87:87: 6e:b4:92:40:50:5b:36:e4:51:cd:8f:a8:4c:a5:43: 37:2f:b5:97:47:47:63:a0:c4:79:94:d2:79:f6:61: 28:6d:bf:f6:58:f1:14:29:9a:ea:6a:89:a9:7d:a2: d9:5f:93:5c:71:73:e0:7f:0f:04:53:bb:09:d8:d2: 52:b9:55:6d:14:b8:c3:3a:60:e0:c0:f1:9d:47:74: a9:76:57:4f:5c:1d:6e:c6:06:d7:d4:42:65:9f:4d: 5d:a3:d1:b5:ad:03:82:25:4e:eb:80:e5:c8:1b:84: 84:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:D2:19:7E:E5:97:8C:9B:50:4C:5C:8B:35:4D:CB:4C:30:04:0C:90 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d2e8f6f4-0d5d-43c4-8493-ca93c43a429e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.71.68.0/22 Signature Algorithm: sha256WithRSAEncryption a7:ac:cc:04:86:37:1b:da:2e:8a:08:b8:28:cc:57:fa:6c:e6: ec:39:b7:47:49:43:54:ba:db:d1:73:77:94:83:d6:1b:7a:85: be:3b:3e:ec:fd:19:62:49:40:cd:f3:ed:ef:61:ab:5b:5c:ab: 99:68:91:91:a4:cc:6e:c6:5e:33:0c:ad:db:d4:a8:0f:1d:b6: 99:4e:37:a4:f0:65:b9:c8:a5:8a:51:ab:9f:95:8a:8f:af:c7: 23:50:84:73:19:73:26:a4:06:9f:c7:4c:c8:c1:63:62:82:25: f0:fd:35:c3:df:42:f3:70:6f:4f:aa:71:03:42:c3:56:ba:21: 41:80:14:f6:36:bd:a5:72:bc:4c:55:8e:17:36:40:50:1a:1a: 05:20:57:85:f0:70:a5:05:b6:18:26:26:e7:88:73:eb:16:e7: 09:3a:dd:50:20:e0:89:d5:2b:e5:f3:32:d7:74:53:54:95:ff: b4:e7:d2:e9:f0:d9:7d:02:77:4b:07:a0:6e:bf:d3:e9:9a:ed: 9f:1d:c9:0a:81:2f:e8:5a:f9:82:ba:70:7b:23:3c:e3:cb:9f: 72:49:de:ea:5a:b3:07:83:e6:9b:ae:f6:29:2e:f9:bc:d2:2c: 4d:75:81:09:1b:02:a0:ce:11:b0:a0:71:20:1b:86:62:fd:c4: de:bc:26:8a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOkyRkK6ckuS580BncVjS5J4JRlswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDIxMDM0MDA5WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A2N2MwMWJkY2E5YmMyNTdkZDY5ZjExMzE1MjE2MjcwNzVm ODFiYWZhMzJlZmEyODRjZDk5YzE3NzUzZDczMzkyMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzyfWVz9ybUt0rCKlxFYPLxGmopmkPgMco370VU5A/dzQw wFpoZGK6xIbYhse9gN2Hoc0L4YgA25eeHweiZQbJvrPvq+54nj5E29vVzxHMxtX7 SN8iqO8gmM/8t/h+AuYimlWMmFQJs7egEa4Kuq7/oi5ox8RUPep1uXxf9lzH3Zav FyjfeAPxmC+JZhDLWDYLv1KHh260kkBQWzbkUc2PqEylQzcvtZdHR2OgxHmU0nn2 YShtv/ZY8RQpmupqial9otlfk1xxc+B/DwRTuwnY0lK5VW0UuMM6YODA8Z1HdKl2 V09cHW7GBtfUQmWfTV2j0bWtA4IlTuuA5cgbhIS9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU5dIZfuWXjJtQTFyLNU3LTDAEDJAwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2QyZThmNmY0LTBkNWQtNDNjNC04NDkzLWNhOTNjNDNhNDI5ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIjR0QwDQYJKoZIhvcNAQELBQADggEBAKeszASGNxvaLooIuCjMV/ps5uw5 t0dJQ1S629Fzd5SD1ht6hb47Puz9GWJJQM3z7e9hq1tcq5lokZGkzG7GXjMMrdvU qA8dtplON6TwZbnIpYpRq5+Vio+vxyNQhHMZcyakBp/HTMjBY2KCJfD9NcPfQvNw b0+qcQNCw1a6IUGAFPY2vaVyvExVjhc2QFAaGgUgV4XwcKUFthgmJueIc+sW5wk6 3VAg4InVK+XzMtd0U1SV/7Tn0unw2X0Cd0sHoG6/0+ma7Z8dyQqBL+ha+YK6cHsj POPLn3JJ3upasweD5puu9iku+bzSLE11gQkbAqDOEbCgcSAbhmL9xN68Joo= -----END CERTIFICATE-----Generated at Wed Nov 5 03:27:28 2025 by rpki-client