$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/e6dd6883-672d-45b0-8a2c-34ac40b1083f.roa File: e6dd6883-672d-45b0-8a2c-34ac40b1083f.roa (raw, json) Hash identifier: dE358JCnYoilmrwhtwaJtLqeMtiDSWNE0sRGPPota7k= Subject key identifier: B4:A6:02:7A:31:5A:AB:62:98:AB:11:99:3A:0E:15:BB:EA:0B:01:AA Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 4BE3DF2490C770ED0C62CF65C3E5EE494EB64404 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/e6dd6883-672d-45b0-8a2c-34ac40b1083f.roa Signing time: Tue 21 Oct 2025 10:32:51 +0000 ROA not before: Tue 21 Oct 2025 10:32:51 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.240.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:e3:df:24:90:c7:70:ed:0c:62:cf:65:c3:e5:ee:49:4e:b6:44:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 21 10:32:51 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=edb6515f2ef80c49d2c5a43709191c156d44cec2c7bf2563759cce73408084c4, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:b1:23:00:ea:ef:5e:66:2d:8a:8f:30:2e:38: 16:2b:d0:1e:8a:f2:3f:f2:2b:5c:b7:25:b3:01:12: 3e:7f:7e:89:25:8f:99:42:ed:67:f7:06:22:9b:40: 24:eb:26:d1:ba:88:26:99:54:27:14:4c:06:0c:f8: d7:58:78:18:2e:5c:3f:12:9d:03:33:0d:90:09:a4: 8a:9a:82:64:e5:c1:23:8a:e8:4d:f9:ff:34:0c:70: 44:79:12:35:2a:ee:b5:dd:e1:1b:60:ea:bd:85:eb: 55:35:3a:a7:92:ec:30:76:c9:07:52:09:86:c4:ab: 69:66:38:1e:6f:6a:ba:88:e6:c1:fc:67:27:19:eb: 1f:90:8f:e1:84:6c:7f:53:32:7a:2e:0f:97:7a:33: b5:42:59:e8:fb:cf:f1:59:73:d9:e0:f2:65:d0:70: 7c:18:15:e3:23:52:17:7b:3f:58:1e:d0:fe:af:ff: 34:db:df:f6:d7:1b:76:91:97:33:64:5f:55:84:e7: 8f:96:35:75:48:fa:e8:a9:f8:86:41:3c:75:db:13: 3d:db:87:f8:2a:11:0f:f4:72:02:5f:09:d3:5e:eb: ff:64:75:0b:28:3a:28:5f:65:07:c0:c9:5f:5e:87: 9f:8b:78:65:12:42:64:b0:76:ee:d3:f1:ea:39:1f: e1:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:A6:02:7A:31:5A:AB:62:98:AB:11:99:3A:0E:15:BB:EA:0B:01:AA X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/e6dd6883-672d-45b0-8a2c-34ac40b1083f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.240.192.0/18 Signature Algorithm: sha256WithRSAEncryption 83:d5:ac:9c:8e:ec:bb:73:fe:a8:80:2b:5a:ef:d7:6b:70:41: 01:e7:e2:4a:0e:c2:cd:48:6a:a7:31:ee:46:3c:e9:c3:44:98: b6:3d:d6:42:e8:b5:1a:b1:12:6d:54:37:61:24:f8:6e:f4:21: 97:92:9f:8e:42:1e:b5:bb:fd:3d:9a:0c:dd:47:be:fb:f6:e7: b1:5e:36:fc:88:7e:cb:8f:a1:82:67:a9:b1:38:05:06:71:27: f3:89:54:af:f5:31:26:6c:a7:3f:ff:d0:4d:66:f5:29:e7:23: 2b:09:5e:6a:13:63:78:fb:05:72:d0:dc:f7:ed:c9:8a:7e:ed: 13:a4:6d:f4:7d:01:a2:ed:ac:91:61:41:ed:d1:22:3b:cb:bf: 05:d0:91:64:75:5c:41:86:5a:d1:10:ae:01:e0:a4:4d:83:5a: 14:4b:b2:48:51:fb:78:9f:3d:3b:cd:1f:42:33:91:43:b6:2f: 0a:68:4c:b7:80:51:d4:72:26:99:cd:6f:11:a4:31:39:ff:99: e9:2e:f1:0c:2e:64:d0:1c:69:b7:27:92:4f:98:05:7c:64:df: da:70:8a:09:f0:f7:61:30:78:7e:05:0c:dc:00:c9:b9:f6:84: 4c:df:b6:37:ae:54:04:a6:c0:3d:f7:b4:19:28:6c:e5:42:66: e5:85:5b:6b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUS+PfJJDHcO0MYs9lw+XuSU62RAQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDIxMTAzMjUxWhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BlZGI2NTE1ZjJlZjgwYzQ5ZDJjNWE0MzcwOTE5MWMxNTZk NDRjZWMyYzdiZjI1NjM3NTljY2U3MzQwODA4NGM0MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmsSMA6u9eZi2KjzAuOBYr0B6K8j/yK1y3JbMBEj5/fokl j5lC7Wf3BiKbQCTrJtG6iCaZVCcUTAYM+NdYeBguXD8SnQMzDZAJpIqagmTlwSOK 6E35/zQMcER5EjUq7rXd4Rtg6r2F61U1OqeS7DB2yQdSCYbEq2lmOB5varqI5sH8 ZycZ6x+Qj+GEbH9TMnouD5d6M7VCWej7z/FZc9ng8mXQcHwYFeMjUhd7P1ge0P6v /zTb3/bXG3aRlzNkX1WE54+WNXVI+uip+IZBPHXbEz3bh/gqEQ/0cgJfCdNe6/9k dQsoOihfZQfAyV9eh5+LeGUSQmSwdu7T8eo5H+HxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUtKYCejFaq2KYqxGZOg4Vu+oLAaowHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2U2ZGQ2ODgzLTY3MmQtNDViMC04YTJjLTM0YWM0MGIxMDgzZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAY28MAwDQYJKoZIhvcNAQELBQADggEBAIPVrJyO7Ltz/qiAK1rv12twQQHn 4koOws1Iaqcx7kY86cNEmLY91kLotRqxEm1UN2Ek+G70IZeSn45CHrW7/T2aDN1H vvv257FeNvyIfsuPoYJnqbE4BQZxJ/OJVK/1MSZspz//0E1m9SnnIysJXmoTY3j7 BXLQ3PftyYp+7ROkbfR9AaLtrJFhQe3RIjvLvwXQkWR1XEGGWtEQrgHgpE2DWhRL skhR+3ifPTvNH0IzkUO2LwpoTLeAUdRyJpnNbxGkMTn/meku8QwuZNAcabcnkk+Y BXxk39pwignw92EweH4FDNwAybn2hEzftjeuVASmwD33tBkobOVCZuWFW2s= -----END CERTIFICATE-----Generated at Wed Nov 5 01:47:06 2025 by rpki-client