$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d977da5b-fb78-4494-bb71-22f73b146561.roa File: d977da5b-fb78-4494-bb71-22f73b146561.roa (raw, json) Hash identifier: OBva2W9hdSH0sNd5TEuCUI6cKPzacE8Ol6uRBbg7Y/8= Subject key identifier: 46:F3:8F:55:BA:51:2B:7F:A4:81:A1:F3:C9:C1:9E:E9:6A:6A:05:48 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 34B4865A86F5EAFB0D1BEDCFCCCB58B41E464C71 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d977da5b-fb78-4494-bb71-22f73b146561.roa Signing time: Tue 04 Nov 2025 01:30:14 +0000 ROA not before: Tue 04 Nov 2025 01:30:14 +0000 ROA not after: Tue 09 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.178.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:b4:86:5a:86:f5:ea:fb:0d:1b:ed:cf:cc:cb:58:b4:1e:46:4c:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Nov 4 01:30:14 2025 GMT Not After : Dec 9 23:59:59 2025 GMT Subject: serialNumber=2e3785f07487f2d8539d091bc6aaaf2c6826305261e9da2bfe1ec4688b56afa6, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:7a:83:8a:98:bd:d1:49:8c:48:f8:7b:a4:d0: 20:fb:a9:17:68:ca:d2:43:b6:2c:d9:25:67:08:8d: 4c:de:2f:e9:7e:17:7a:6d:6b:f4:78:31:55:e7:26: 8c:44:1a:eb:77:ff:26:53:4e:af:21:15:c6:f4:94: 16:d6:82:11:19:16:ae:8a:5e:61:37:61:24:7c:e5: 52:bb:3b:a9:ce:0e:90:15:2a:96:f6:5a:8e:8e:e7: c5:c2:8b:df:04:f5:6b:57:a0:da:df:6f:ed:bc:a8: 67:4b:5c:83:1f:bd:ee:e7:8b:27:d6:b2:5b:64:b9: 48:d0:7d:b0:93:2a:bd:58:e4:81:a4:bf:24:ae:8a: 17:10:2c:6a:1b:1b:64:a8:db:ef:4f:38:be:70:39: 9b:a2:4e:a7:6f:f4:a1:5a:2e:7c:5f:72:0a:a7:b3: 68:59:64:83:05:de:c1:b3:ec:ae:a0:69:6a:18:77: c8:bf:ef:30:af:44:48:a2:f5:da:6e:42:e1:d9:7f: 61:6d:34:a5:ed:b7:0d:7e:4b:99:60:f0:d6:7c:22: e2:64:56:57:7e:d3:00:1c:40:35:d1:af:73:b6:98: 6f:31:44:70:44:22:28:5c:08:00:74:0c:ef:35:09: 1c:85:4c:6c:5f:bc:11:62:ac:f0:10:c0:e6:30:11: 55:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:F3:8F:55:BA:51:2B:7F:A4:81:A1:F3:C9:C1:9E:E9:6A:6A:05:48 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d977da5b-fb78-4494-bb71-22f73b146561.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.178.0.0/16 Signature Algorithm: sha256WithRSAEncryption ad:31:f0:4a:2c:05:3a:42:a4:00:6d:0c:ba:81:6c:ee:6e:78: c3:38:84:48:7c:81:0c:65:df:3d:e1:16:e3:40:10:62:f6:38: c7:00:21:87:b5:ef:13:48:67:9e:af:59:8f:53:8c:78:41:ea: dd:55:64:8d:8a:f6:48:49:7b:91:f6:ad:4d:25:26:af:fa:a7: de:f5:53:02:29:7b:68:fe:87:12:a2:34:81:fc:cf:b8:b7:2e: 75:5d:79:fd:7d:41:16:fe:31:a4:16:b0:5d:5b:49:dc:62:13: 0e:71:0b:18:81:7f:d9:78:f9:5c:a6:fa:28:f4:29:ed:00:55: 4e:89:96:29:31:d3:f9:af:d5:83:38:3d:92:c4:c3:8b:81:30: fb:b2:14:53:61:73:a1:62:cf:08:d5:49:26:ed:b0:e6:be:77: 61:15:ac:2f:a3:84:e5:f1:a6:95:29:d1:fd:14:64:71:55:3c: 11:f4:73:34:a9:69:56:c5:95:ac:0d:f9:79:26:bb:14:27:8f: 18:d2:7d:0a:04:23:eb:59:2f:33:5b:8f:97:28:56:26:81:17: a0:13:e7:6d:90:e8:00:37:75:1e:ca:ba:0c:dc:88:5e:41:3d: a5:ad:52:8a:c1:d3:5e:26:9a:c7:42:d0:b9:51:ac:cc:14:79: 7d:d1:3e:c1 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUNLSGWob16vsNG+3PzMtYtB5GTHEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMTA0MDEzMDE0WhcNMjUxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AyZTM3ODVmMDc0ODdmMmQ4NTM5ZDA5MWJjNmFhYWYyYzY4 MjYzMDUyNjFlOWRhMmJmZTFlYzQ2ODhiNTZhZmE2MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCSeoOKmL3RSYxI+Huk0CD7qRdoytJDtizZJWcIjUzeL+l+ F3pta/R4MVXnJoxEGut3/yZTTq8hFcb0lBbWghEZFq6KXmE3YSR85VK7O6nODpAV Kpb2Wo6O58XCi98E9WtXoNrfb+28qGdLXIMfve7niyfWsltkuUjQfbCTKr1Y5IGk vySuihcQLGobG2So2+9POL5wOZuiTqdv9KFaLnxfcgqns2hZZIMF3sGz7K6gaWoY d8i/7zCvREii9dpuQuHZf2FtNKXttw1+S5lg8NZ8IuJkVld+0wAcQDXRr3O2mG8x RHBEIihcCAB0DO81CRyFTGxfvBFirPAQwOYwEVWPAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQURvOPVbpRK3+kgaHzycGe6WpqBUgwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2Q5NzdkYTViLWZiNzgtNDQ5NC1iYjcxLTIyZjczYjE0NjU2MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2sjANBgkqhkiG9w0BAQsFAAOCAQEArTHwSiwFOkKkAG0MuoFs7m54wziE SHyBDGXfPeEW40AQYvY4xwAhh7XvE0hnnq9Zj1OMeEHq3VVkjYr2SEl7kfatTSUm r/qn3vVTAil7aP6HEqI0gfzPuLcudV15/X1BFv4xpBawXVtJ3GITDnELGIF/2Xj5 XKb6KPQp7QBVTomWKTHT+a/Vgzg9ksTDi4Ew+7IUU2FzoWLPCNVJJu2w5r53YRWs L6OE5fGmlSnR/RRkcVU8EfRzNKlpVsWVrA35eSa7FCePGNJ9CgQj61kvM1uPlyhW JoEXoBPnbZDoADd1Hsq6DNyIXkE9pa1SisHTXiaax0LQuVGszBR5fdE+wQ== -----END CERTIFICATE-----Generated at Wed Nov 5 09:17:58 2025 by rpki-client