$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4bef4a97-1074-4b0f-9cc1-8a979831e114.roa File: 4bef4a97-1074-4b0f-9cc1-8a979831e114.roa (raw, json) Hash identifier: W9J9TCRlFyWB1UNuSZCMrgVjPN+L4JsgV/nW3XIDpGg= Subject key identifier: ED:96:67:1D:08:85:8D:43:9A:6D:4B:09:67:EF:F0:78:42:CF:3B:13 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 775F347328F813F5EFC8387488C324BD11124898 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4bef4a97-1074-4b0f-9cc1-8a979831e114.roa Signing time: Fri 19 Sep 2025 00:53:39 +0000 ROA not before: Fri 19 Sep 2025 00:53:39 +0000 ROA not after: Fri 24 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.124.148.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Sep 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:5f:34:73:28:f8:13:f5:ef:c8:38:74:88:c3:24:bd:11:12:48:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 19 00:53:39 2025 GMT Not After : Oct 24 23:59:59 2025 GMT Subject: serialNumber=2f8401784703125b2253c462c4885d7e2abac79930e0bfa1ccd2b44519a75e5a, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:91:15:f1:3b:8a:6d:9d:1d:0e:fb:c1:b2:93: 1a:cd:87:74:b9:56:ba:41:71:bf:21:1f:ca:62:21: cc:a0:3d:6a:f5:33:05:bb:40:5d:8a:63:cd:70:15: fe:06:ef:7f:53:d9:bc:5f:e9:7d:bd:52:f2:e0:22: e3:5d:48:8d:c5:b0:b9:ee:db:14:e2:8c:df:e0:ad: c7:21:80:92:bc:61:50:bc:e3:cf:92:95:1a:c6:39: 73:04:dd:55:0c:e2:6f:d8:97:4b:46:c6:7a:a8:10: d9:10:0c:b4:a7:eb:43:db:6d:6d:61:f7:e9:92:a4: cc:12:be:cf:04:01:be:ef:af:ec:f1:8b:0a:ff:5e: a5:89:2a:f1:21:54:59:00:61:4b:88:87:ac:1e:e0: 41:56:ce:1a:a4:af:ea:f5:70:09:fa:b0:35:cd:53: 21:8e:c7:7c:da:17:96:83:89:e9:4d:60:6f:02:14: db:da:7e:f0:6e:b6:3f:ad:b9:69:4a:95:7f:eb:a2: 12:50:c2:a9:4d:cc:78:34:94:05:cd:8b:64:91:d7: 39:04:f0:6d:1c:b0:c2:32:bc:66:6f:c1:f8:2d:e8: 73:16:52:a7:3d:fc:00:fa:26:08:69:39:47:89:44: 85:65:2f:84:38:5c:d0:12:1e:a4:29:80:4b:6d:c9: 52:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:96:67:1D:08:85:8D:43:9A:6D:4B:09:67:EF:F0:78:42:CF:3B:13 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4bef4a97-1074-4b0f-9cc1-8a979831e114.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.124.148.0/24 Signature Algorithm: sha256WithRSAEncryption 15:77:a2:19:21:e6:c2:40:0f:59:dd:9f:f0:66:f0:4b:2b:29: 82:1a:39:c5:5b:92:26:97:3d:76:6f:be:13:82:c5:08:8b:e7: 8c:21:7c:1f:72:d2:a2:f6:a6:78:1b:d1:fc:33:4e:ea:37:0f: 4a:fc:80:57:26:19:a6:83:09:4e:3d:d8:73:bc:d4:07:54:72: 3c:5b:81:85:94:f8:50:18:7f:b3:da:35:c9:3e:d7:99:b6:e0: 61:1b:27:85:84:0c:7f:4c:2d:03:5f:d1:32:44:3e:86:80:8c: 41:a4:1a:0c:cd:20:cd:8a:b5:d3:03:3d:f1:75:f3:7a:16:a7: 30:99:8a:84:3a:9e:b2:c9:7c:3f:92:50:a4:08:0d:68:4e:3e: d5:78:db:38:8a:f7:3c:c1:a2:1a:a3:3f:21:fa:40:12:2b:09: a6:4f:85:f6:ed:13:f4:b8:8d:f6:74:da:c4:76:b4:bb:4f:90: 40:e4:b2:c5:82:32:04:36:75:d1:1c:2f:08:bc:3a:20:48:dc: 48:8b:de:e8:64:d8:dc:b2:67:24:27:55:41:9e:c4:7f:26:04: 83:5d:e2:c1:bd:e0:b6:51:b3:96:10:9c:85:c8:f8:e9:93:f2: 7a:8f:f2:e9:24:75:da:2a:7d:20:8c:78:f3:97:0d:fe:47:c7: 0f:72:3f:09 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUd180cyj4E/XvyDh0iMMkvRESSJgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTE5MDA1MzM5WhcNMjUxMDI0MjM1OTU5 WjB6MUkwRwYDVQQFE0AyZjg0MDE3ODQ3MDMxMjViMjI1M2M0NjJjNDg4NWQ3ZTJh YmFjNzk5MzBlMGJmYTFjY2QyYjQ0NTE5YTc1ZTVhMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDhkRXxO4ptnR0O+8GykxrNh3S5VrpBcb8hH8piIcygPWr1 MwW7QF2KY81wFf4G739T2bxf6X29UvLgIuNdSI3FsLnu2xTijN/grcchgJK8YVC8 48+SlRrGOXME3VUM4m/Yl0tGxnqoENkQDLSn60PbbW1h9+mSpMwSvs8EAb7vr+zx iwr/XqWJKvEhVFkAYUuIh6we4EFWzhqkr+r1cAn6sDXNUyGOx3zaF5aDielNYG8C FNvafvButj+tuWlKlX/rohJQwqlNzHg0lAXNi2SR1zkE8G0csMIyvGZvwfgt6HMW Uqc9/AD6JghpOUeJRIVlL4Q4XNASHqQpgEttyVIHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU7ZZnHQiFjUOabUsJZ+/weELPOxMwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzRiZWY0YTk3LTEwNzQtNGIwZi05Y2MxLThhOTc5ODMxZTExNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA0fJQwDQYJKoZIhvcNAQELBQADggEBABV3ohkh5sJAD1ndn/Bm8EsrKYIa OcVbkiaXPXZvvhOCxQiL54whfB9y0qL2pngb0fwzTuo3D0r8gFcmGaaDCU492HO8 1AdUcjxbgYWU+FAYf7PaNck+15m24GEbJ4WEDH9MLQNf0TJEPoaAjEGkGgzNIM2K tdMDPfF183oWpzCZioQ6nrLJfD+SUKQIDWhOPtV42ziK9zzBohqjPyH6QBIrCaZP hfbtE/S4jfZ02sR2tLtPkEDkssWCMgQ2ddEcLwi8OiBI3EiL3uhk2NyyZyQnVUGe xH8mBINd4sG94LZRs5YQnIXI+OmT8nqP8ukkddoqfSCMePOXDf5Hxw9yPwk= -----END CERTIFICATE-----Generated at Fri Sep 19 04:35:42 2025 by rpki-client