$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/00096550-9146-49e8-a27a-307c65c0661e.roa File: 00096550-9146-49e8-a27a-307c65c0661e.roa (raw, json) Hash identifier: ZW8d3Kv3BuxWFWLqWYWsFpLDIt+gguXApuzE8rq+yc8= Subject key identifier: F3:2B:07:F5:14:53:D3:A0:05:68:D9:CC:55:7C:E0:E1:FF:82:D3:FB Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 0AC477B8E4C1FFF8B11939EFEF1443948481BF Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/00096550-9146-49e8-a27a-307c65c0661e.roa Signing time: Fri 10 Oct 2025 16:08:37 +0000 ROA not before: Fri 10 Oct 2025 16:08:37 +0000 ROA not after: Fri 14 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.68.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:c4:77:b8:e4:c1:ff:f8:b1:19:39:ef:ef:14:43:94:84:81:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 10 16:08:37 2025 GMT Not After : Nov 14 23:59:59 2025 GMT Subject: serialNumber=3eb0def59a3243e2dfe39f4e8c7b530b297256e48ac303d0233f7376bee2ecc9, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:3d:18:1a:86:da:f0:86:9c:c3:85:ac:e1:0b: bd:1e:62:9c:4d:55:c2:de:73:94:94:89:14:bc:4d: 81:fd:2d:bd:96:3a:b9:3d:07:36:d3:7b:da:56:62: a7:cf:4a:7d:8d:95:3f:3f:1e:64:8b:cb:ad:de:52: 77:19:a4:09:59:bf:61:10:c8:a2:3b:6c:66:a7:6a: f0:50:44:6e:3f:cb:d7:b5:1a:d7:91:fa:75:83:c3: 96:d8:25:68:e3:2c:aa:6f:09:75:67:cb:ed:29:87: 44:3f:d3:5d:84:b8:74:cb:3c:e0:19:6c:ac:7e:ef: dd:ae:ae:59:41:93:49:b3:c1:67:08:ad:25:83:d8: ca:8f:8e:bd:3f:87:9b:fe:23:d6:70:64:58:04:66: cf:b7:54:87:64:d8:47:60:34:ac:fe:4d:05:7b:07: ff:f1:40:72:89:c4:4a:6f:83:56:bc:bf:72:fd:63: e6:1a:ed:7c:24:03:da:43:46:36:8c:55:41:8b:6b: 8e:dc:3e:f6:5b:11:d5:ab:5f:3e:93:06:eb:a7:98: b5:69:1a:13:28:c1:0a:fb:9f:e4:51:45:1e:3d:76: d6:85:3f:4f:f3:e3:80:ff:bb:d3:10:1e:a5:1f:2a: 57:f9:6b:58:4b:a4:66:c4:e4:1d:2c:d0:f9:d7:40: 8c:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:2B:07:F5:14:53:D3:A0:05:68:D9:CC:55:7C:E0:E1:FF:82:D3:FB X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/00096550-9146-49e8-a27a-307c65c0661e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.68.0.0/15 Signature Algorithm: sha256WithRSAEncryption 29:16:93:a2:a3:b5:05:c4:24:f0:71:7c:b4:f1:bd:eb:d6:33: f1:00:5f:c1:b9:59:06:1a:e6:4f:78:bf:c3:fa:21:90:2a:65: de:64:90:06:8a:59:f6:d8:84:62:be:53:e8:b5:36:53:0a:12: d3:0b:0a:04:aa:0e:9d:ea:9d:b6:5f:a8:0b:3f:b8:54:e5:32: 20:bd:7b:df:12:20:2f:62:ec:0c:87:19:4c:e8:7d:48:16:db: ed:df:4b:ce:ce:b2:4b:d7:ff:c1:30:b5:03:0a:d8:59:9c:7b: 23:42:6f:f0:06:32:ec:87:53:13:00:d0:87:2c:b3:e7:5b:7a: a1:5e:47:ef:7b:6d:b6:6e:f2:c0:42:31:c7:0f:85:05:5e:54: 85:03:ac:9c:49:33:75:a0:4e:9b:a1:dc:cc:8c:61:ee:ce:31: 8d:e9:cb:67:39:37:8a:06:9f:ce:c9:e1:74:b9:c6:51:95:bd: 6c:32:b1:ff:b6:36:76:33:b5:a9:6f:92:12:ec:84:f5:60:f4: f4:27:68:ef:3f:5b:db:77:6b:1c:41:5a:96:8d:ee:37:55:9c: aa:42:64:da:84:61:e2:5e:7c:98:22:aa:7d:0e:a4:cd:dc:03: 36:5f:b4:d1:71:1b:aa:ab:b8:32:57:3a:ee:be:08:51:9d:b5: 89:fe:08:a0 -----BEGIN CERTIFICATE----- MIIF9jCCBN6gAwIBAgITCsR3uOTB//ixGTnv7xRDlISBvzANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzJkZjZmM2IzYTM0YjYzODZkMWEzMmQ4ZjRmYTMxNzhlZjMx ODg3ZDhiNDI4ZGZhYTQ3NjAeFw0yNTEwMTAxNjA4MzdaFw0yNTExMTQyMzU5NTla MHoxSTBHBgNVBAUTQDNlYjBkZWY1OWEzMjQzZTJkZmUzOWY0ZThjN2I1MzBiMjk3 MjU2ZTQ4YWMzMDNkMDIzM2Y3Mzc2YmVlMmVjYzkxLTArBgNVBAMTJDVmMjc2MDQ1 LTViOWYtNDVlZi05MjNkLWYzZmNlMjRhNjIyNTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAOQ9GBqG2vCGnMOFrOELvR5inE1Vwt5zlJSJFLxNgf0tvZY6 uT0HNtN72lZip89KfY2VPz8eZIvLrd5SdxmkCVm/YRDIojtsZqdq8FBEbj/L17Ua 15H6dYPDltglaOMsqm8JdWfL7SmHRD/TXYS4dMs84BlsrH7v3a6uWUGTSbPBZwit JYPYyo+OvT+Hm/4j1nBkWARmz7dUh2TYR2A0rP5NBXsH//FAconESm+DVry/cv1j 5hrtfCQD2kNGNoxVQYtrjtw+9lsR1atfPpMG66eYtWkaEyjBCvuf5FFFHj121oU/ T/PjgP+70xAepR8qV/lrWEukZsTkHSzQ+ddAjAECAwEAAaOCArAwggKsMB0GA1Ud DgQWBBTzKwf1FFPToAVo2cxVfODh/4LT+zAfBgNVHSMEGDAWgBQlrdNCsB63pY6t GZAmiLVLP4H0uDAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzg1MWNlZjE3LTEz MmEtNDMzNy1iN2QxLWJmMTZhNTJmZmQwMy9kZjZmM2IzYTM0YjYzODZkMWEzMmQ4 ZjRmYTMxNzhlZjMxODg3ZDhiNDI4ZGZhYTQ3Ni5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9mNzAzNjk2ZS1lNDdiLTRjMjAtYmQ5My02Zjgw OTA0ZTQyZDIvMDAwOTY1NTAtOTE0Ni00OWU4LWEyN2EtMzA3YzY1YzA2NjFlLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMt NmY4MDkwNGU0MmQyL3RqaHRHakxZOVBveGVPOHhpSDJMUW8zNnBIWS5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEw BQMDATREMA0GCSqGSIb3DQEBCwUAA4IBAQApFpOio7UFxCTwcXy08b3r1jPxAF/B uVkGGuZPeL/D+iGQKmXeZJAGiln22IRivlPotTZTChLTCwoEqg6d6p22X6gLP7hU 5TIgvXvfEiAvYuwMhxlM6H1IFtvt30vOzrJL1//BMLUDCthZnHsjQm/wBjLsh1MT ANCHLLPnW3qhXkfve222bvLAQjHHD4UFXlSFA6ycSTN1oE6bodzMjGHuzjGN6ctn OTeKBp/OyeF0ucZRlb1sMrH/tjZ2M7Wpb5IS7IT1YPT0J2jvP1vbd2scQVqWje43 VZyqQmTahGHiXnyYIqp9DqTN3AM2X7TRcRuqq7gyVzruvghRnbWJ/gig -----END CERTIFICATE-----Generated at Sat Oct 18 00:18:20 2025 by rpki-client