$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/dfda3430-686b-4e73-b053-ee77b1ecde4a.roa File: dfda3430-686b-4e73-b053-ee77b1ecde4a.roa (raw, json) Hash identifier: riqmD7/nyiK2boSx5phSMhuMlNM3lBEBrArpHzdvsWk= Subject key identifier: 53:6B:01:5D:A2:9E:0F:04:1D:3D:75:8F:C7:42:D5:EC:02:7A:64:1D Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 5E5E41D06715D5488502D283F8346F45085FBA66 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/dfda3430-686b-4e73-b053-ee77b1ecde4a.roa Signing time: Tue 21 Oct 2025 01:31:36 +0000 ROA not before: Tue 21 Oct 2025 01:31:36 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 8987 IP address blocks: 160.1.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:5e:41:d0:67:15:d5:48:85:02:d2:83:f8:34:6f:45:08:5f:ba:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 21 01:31:36 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=baf932b14be0667564e91602682c418661f0a7ca791cec8ae51d290bcd8b9fe6, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:5f:dd:96:3e:26:4a:31:bd:9f:d8:b9:33:ad: 03:cf:56:bb:1e:fb:63:ac:74:7e:22:65:02:aa:ec: 90:98:fb:d0:c9:7f:d5:c7:a4:80:5f:3f:74:54:a1: 42:2f:2d:3b:07:e0:7e:6f:9a:dd:e5:e2:c3:9e:3a: 46:36:20:e3:65:e5:75:9e:ba:3c:36:7d:6c:60:54: f7:10:d6:d3:d7:71:ca:ba:5a:57:52:d6:0c:0b:63: 73:45:f6:4c:95:88:c3:f9:43:2f:de:30:85:bf:0c: b9:0e:b1:bf:78:6d:27:ff:c3:9d:c5:4b:a9:a7:ec: 08:51:4a:82:8d:d2:6a:74:94:49:18:68:0c:20:bb: f2:6c:7c:f6:db:4b:fc:13:78:df:7e:c0:8a:16:7d: 5f:2c:23:4a:fd:61:7a:a5:b9:2f:76:22:9e:ee:7c: 68:75:de:da:c6:70:b9:bf:2b:b4:2e:62:31:ad:b7: 63:f5:b7:5d:34:e5:2f:71:2a:84:14:f8:dc:79:31: 51:8e:0d:7f:4d:d3:33:b2:c9:e8:58:b8:88:40:34: 48:db:c6:5c:f4:62:d2:b2:26:18:69:96:c2:74:2d: 56:93:fe:e6:17:e4:02:10:eb:96:91:25:3f:9f:b6: 73:72:57:71:41:8b:6f:80:6a:c0:4e:b4:be:43:d2: ce:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:6B:01:5D:A2:9E:0F:04:1D:3D:75:8F:C7:42:D5:EC:02:7A:64:1D X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/dfda3430-686b-4e73-b053-ee77b1ecde4a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.1.0.0/16 Signature Algorithm: sha256WithRSAEncryption 93:28:83:b6:a1:f4:45:09:7b:a6:41:4a:70:86:f8:cd:0f:ad: 37:a3:af:54:49:e5:84:66:2e:ec:9c:cd:f0:b3:25:d2:91:4d: 51:7c:5d:6e:be:10:fd:ac:f3:c4:e0:76:e3:86:e7:5f:aa:db: 40:68:5b:bc:c0:39:f2:1c:9b:2e:60:89:0f:b8:14:9b:0b:44: 99:20:32:9c:ee:ad:9f:ff:46:0b:11:65:16:ba:2c:29:9b:fc: 1a:14:65:72:b9:ff:6c:4b:a6:cf:17:48:dc:d6:ef:8c:73:82: 76:1f:c6:1f:3d:69:21:da:11:54:d7:c1:75:cc:ea:9a:08:56: d4:9e:d9:81:62:b4:cf:c9:45:53:ed:02:89:aa:a9:59:85:6d: 34:1b:cd:14:be:b4:be:d5:27:aa:fa:57:c0:7d:2e:3a:ca:14: 71:39:0e:40:30:cd:36:dc:e1:2e:c9:8a:fa:ea:b9:7d:b6:ef: c8:ad:4f:b5:19:b7:3e:a6:7c:d3:48:ee:3a:6e:d4:4c:d5:fd: fd:e5:e2:1d:c1:41:16:48:07:60:d7:46:c2:f6:fd:c9:55:a9: e5:d5:c1:78:87:00:5e:b7:f5:d5:a7:82:26:4f:a6:7c:09:cb: ab:b2:a5:de:0e:9f:df:0f:c9:c1:5d:d2:c6:b6:ed:ad:9b:1b: 05:e8:ff:f2 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUXl5B0GcV1UiFAtKD+DRvRQhfumYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDIxMDEzMTM2WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BiYWY5MzJiMTRiZTA2Njc1NjRlOTE2MDI2ODJjNDE4NjYx ZjBhN2NhNzkxY2VjOGFlNTFkMjkwYmNkOGI5ZmU2MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4X92WPiZKMb2f2LkzrQPPVrse+2OsdH4iZQKq7JCY+9DJ f9XHpIBfP3RUoUIvLTsH4H5vmt3l4sOeOkY2IONl5XWeujw2fWxgVPcQ1tPXccq6 WldS1gwLY3NF9kyViMP5Qy/eMIW/DLkOsb94bSf/w53FS6mn7AhRSoKN0mp0lEkY aAwgu/JsfPbbS/wTeN9+wIoWfV8sI0r9YXqluS92Ip7ufGh13trGcLm/K7QuYjGt t2P1t1005S9xKoQU+Nx5MVGODX9N0zOyyehYuIhANEjbxlz0YtKyJhhplsJ0LVaT /uYX5AIQ65aRJT+ftnNyV3FBi2+AasBOtL5D0s6LAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUU2sBXaKeDwQdPXWPx0LV7AJ6ZB0wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2RmZGEzNDMwLTY4NmItNGU3My1iMDUzLWVlNzdiMWVjZGU0YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCgATANBgkqhkiG9w0BAQsFAAOCAQEAkyiDtqH0RQl7pkFKcIb4zQ+tN6Ov VEnlhGYu7JzN8LMl0pFNUXxdbr4Q/azzxOB244bnX6rbQGhbvMA58hybLmCJD7gU mwtEmSAynO6tn/9GCxFlFrosKZv8GhRlcrn/bEumzxdI3NbvjHOCdh/GHz1pIdoR VNfBdczqmghW1J7ZgWK0z8lFU+0CiaqpWYVtNBvNFL60vtUnqvpXwH0uOsoUcTkO QDDNNtzhLsmK+uq5fbbvyK1PtRm3PqZ800juOm7UTNX9/eXiHcFBFkgHYNdGwvb9 yVWp5dXBeIcAXrf11aeCJk+mfAnLq7Kl3g6f3w/JwV3SxrbtrZsbBej/8g== -----END CERTIFICATE-----Generated at Wed Nov 5 04:30:50 2025 by rpki-client