$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/dc9a7302-bfee-427f-8a43-13714b479bcb.roa File: dc9a7302-bfee-427f-8a43-13714b479bcb.roa (raw, json) Hash identifier: hVVDrM5cRMO5ZRFhal9rN22W07ymxvmJ/1/7jyg0gXw= Subject key identifier: F8:E0:9A:48:FC:50:73:34:C5:58:11:29:61:58:9D:E5:78:EF:D5:A7 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 0FD76F745720C0A0BF8025442346832BF065E89E Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/dc9a7302-bfee-427f-8a43-13714b479bcb.roa Signing time: Tue 04 Nov 2025 01:00:06 +0000 ROA not before: Tue 04 Nov 2025 01:00:06 +0000 ROA not after: Tue 09 Dec 2025 23:59:59 +0000 asID: 14618 IP address blocks: 34.224.0.0/12 maxlen: 12 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:d7:6f:74:57:20:c0:a0:bf:80:25:44:23:46:83:2b:f0:65:e8:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Nov 4 01:00:06 2025 GMT Not After : Dec 9 23:59:59 2025 GMT Subject: serialNumber=ac6e582e4ac759cea3ce22e64b47d172ca9143263454fdbd2413c40184c147bb, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:1f:8d:fb:24:78:44:d8:85:bd:a8:a8:24:bd: 0b:01:3e:60:57:8b:d4:8e:4b:18:57:fe:75:60:63: 8c:1e:1f:90:da:a7:5d:ae:68:9a:21:1b:09:de:16: 57:ce:98:dc:c8:e1:eb:17:05:fa:99:f7:d5:8e:7a: 98:db:3a:7e:90:6c:1b:0c:aa:cc:51:23:6c:be:98: 21:ed:f2:77:17:d4:5a:1c:ae:bd:f7:54:0a:0d:70: 13:00:4a:bd:93:c2:70:26:1e:7a:35:ee:da:d9:69: c5:93:30:8b:5a:19:ed:9d:08:26:dd:05:31:1d:70: 70:c7:9a:b6:62:5a:fa:bd:ce:88:db:0d:8e:32:b7: b1:b7:0d:c4:d1:77:fc:36:20:0b:28:4c:1d:7d:02: fe:e2:0e:b3:9c:57:5b:d4:08:bf:bf:5e:a5:1f:a7: 4c:e5:0a:ee:df:e9:c7:5e:9d:de:da:88:73:f9:55: 0b:37:31:df:f0:9b:70:9e:c3:c4:68:e4:ee:e8:bd: d9:11:d1:c5:0e:19:56:87:24:63:20:10:23:df:36: c5:9e:19:b3:63:39:77:1d:cf:18:40:33:1e:5a:63: d8:f5:e9:70:3e:d1:ae:b2:d4:ab:90:01:85:8e:73: 3e:29:35:73:37:73:c5:62:3a:cc:81:43:33:dc:12: c6:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:E0:9A:48:FC:50:73:34:C5:58:11:29:61:58:9D:E5:78:EF:D5:A7 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/dc9a7302-bfee-427f-8a43-13714b479bcb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 34.224.0.0/12 Signature Algorithm: sha256WithRSAEncryption 52:12:23:87:ac:9a:4b:70:46:bd:dc:16:1a:de:01:c9:a6:c3: a8:be:9b:82:63:13:65:a0:5b:da:9a:95:ca:b1:81:6d:b1:5f: 6e:32:02:6a:a6:4c:fa:fe:ef:42:3a:37:2e:54:2b:60:04:e7: 14:f0:fa:18:c1:93:ea:e0:6e:ac:ef:4c:08:d8:8b:b6:98:f6: 6f:9e:e4:c8:04:d6:0d:f4:92:8f:d9:b4:db:93:ff:3d:dc:d6: f8:1d:77:c4:64:5d:5a:15:af:c0:6c:f4:86:68:ea:3e:38:79: cb:d1:ad:2c:fc:7e:1e:c6:86:99:e8:e4:60:a7:93:fc:41:89: db:91:ab:66:bf:46:f4:2c:e3:ee:a8:96:67:47:36:61:ac:03: f2:51:5a:3f:5d:c0:96:af:b4:e9:ec:54:b0:17:ea:a7:a5:c3: 95:56:e9:09:20:91:73:02:6a:f9:58:02:61:28:6c:e4:5e:31: e1:d2:c8:35:8e:9a:21:e0:fd:44:e7:68:b6:d0:26:20:d4:e8: 22:32:5e:8b:f0:ec:61:2b:06:c4:54:fa:0e:3a:11:d5:59:11: 47:94:ac:59:32:9a:66:1e:12:81:a2:1b:0b:66:20:9a:f3:35: b4:df:98:79:17:4e:69:34:ac:3f:26:56:f3:d8:f7:88:98:b7: 6f:d3:22:b9 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUD9dvdFcgwKC/gCVEI0aDK/Bl6J4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMTA0MDEwMDA2WhcNMjUxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYzZlNTgyZTRhYzc1OWNlYTNjZTIyZTY0YjQ3ZDE3MmNh OTE0MzI2MzQ1NGZkYmQyNDEzYzQwMTg0YzE0N2JiMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkH437JHhE2IW9qKgkvQsBPmBXi9SOSxhX/nVgY4weH5Da p12uaJohGwneFlfOmNzI4esXBfqZ99WOepjbOn6QbBsMqsxRI2y+mCHt8ncX1Foc rr33VAoNcBMASr2TwnAmHno17trZacWTMItaGe2dCCbdBTEdcHDHmrZiWvq9zojb DY4yt7G3DcTRd/w2IAsoTB19Av7iDrOcV1vUCL+/XqUfp0zlCu7f6cdend7aiHP5 VQs3Md/wm3Cew8Ro5O7ovdkR0cUOGVaHJGMgECPfNsWeGbNjOXcdzxhAMx5aY9j1 6XA+0a6y1KuQAYWOcz4pNXM3c8ViOsyBQzPcEsZLAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU+OCaSPxQczTFWBEpYVid5Xjv1acwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2RjOWE3MzAyLWJmZWUtNDI3Zi04YTQzLTEzNzE0YjQ3OWJjYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwQi4DANBgkqhkiG9w0BAQsFAAOCAQEAUhIjh6yaS3BGvdwWGt4ByabDqL6b gmMTZaBb2pqVyrGBbbFfbjICaqZM+v7vQjo3LlQrYATnFPD6GMGT6uBurO9MCNiL tpj2b57kyATWDfSSj9m025P/PdzW+B13xGRdWhWvwGz0hmjqPjh5y9GtLPx+HsaG mejkYKeT/EGJ25GrZr9G9Czj7qiWZ0c2YawD8lFaP13Alq+06exUsBfqp6XDlVbp CSCRcwJq+VgCYShs5F4x4dLINY6aIeD9ROdottAmINToIjJei/DsYSsGxFT6DjoR 1VkRR5SsWTKaZh4SgaIbC2YgmvM1tN+YeRdOaTSsPyZW89j3iJi3b9MiuQ== -----END CERTIFICATE-----Generated at Wed Nov 5 01:49:49 2025 by rpki-client