$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/07f3f9f9-6ab0-46bd-bc5f-9dfb2f8b8bd0.roa File: 07f3f9f9-6ab0-46bd-bc5f-9dfb2f8b8bd0.roa (raw, json) Hash identifier: sr9k/3Ly9ohKkxDGGlsTjabUzVqa2qpNWqmhiF/lB1I= Subject key identifier: AA:3E:12:44:E0:C2:BB:5F:29:4B:CA:52:24:58:C9:7A:E1:F1:4D:A4 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 406AA4DBB7D9D2B640336CE88AD8F6E9433EA466 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/07f3f9f9-6ab0-46bd-bc5f-9dfb2f8b8bd0.roa Signing time: Fri 26 Sep 2025 17:09:13 +0000 ROA not before: Fri 26 Sep 2025 17:09:13 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.94.0.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:6a:a4:db:b7:d9:d2:b6:40:33:6c:e8:8a:d8:f6:e9:43:3e:a4:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 26 17:09:13 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=452980041944090c44522ff6e7e41ece8f06a5d460bd57ffe975a2e5944b4d68, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:9b:17:49:1d:32:08:b3:e0:f2:af:69:27:03: 0b:78:0b:da:e0:f2:2a:23:dd:63:93:e5:f7:a0:19: 95:f9:4a:77:7f:a0:0a:45:0f:bf:41:94:58:cc:e1: 51:dc:04:50:c8:a2:7d:d9:4f:eb:00:b5:fa:d2:b4: 72:ed:d0:79:81:48:7f:c3:17:6e:a2:b6:fd:0f:7e: 41:6b:92:47:08:b3:be:69:c5:42:cc:c9:cf:eb:78: d2:22:ac:d4:4b:e7:f5:23:2a:cb:51:02:a5:2a:46: 58:8a:f5:ae:8e:fd:f0:6a:94:95:75:cc:84:72:41: 3f:06:72:07:8b:bc:c6:d2:37:86:2b:bc:b0:35:9c: e5:11:c9:81:d9:eb:d5:24:83:26:54:62:21:69:b4: e5:dc:1d:05:79:de:5a:c2:1d:48:68:d0:a2:25:a4: 65:51:ed:c9:1b:c7:dd:41:68:bf:d2:33:c2:61:ac: f4:7f:27:3b:12:32:c9:7b:b4:26:dc:5a:f0:9c:18: 04:f3:f9:3c:85:58:d6:f1:d9:45:33:35:c7:c8:66: 8a:25:55:01:87:f1:58:20:3a:b9:9e:04:70:5c:f1: a4:cb:72:ab:8d:f5:f5:ac:7a:09:9c:7e:d2:12:15: 67:d7:ca:a4:90:fb:23:88:6a:10:81:db:29:c8:84: 22:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:3E:12:44:E0:C2:BB:5F:29:4B:CA:52:24:58:C9:7A:E1:F1:4D:A4 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/07f3f9f9-6ab0-46bd-bc5f-9dfb2f8b8bd0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.94.0.0/22 Signature Algorithm: sha256WithRSAEncryption 01:3e:4d:1f:55:56:f2:36:3d:3c:1d:19:a0:b5:d2:9f:e8:6c: 9d:b1:e1:02:ba:0b:fb:3d:96:7f:db:25:20:19:35:16:01:aa: dc:18:3f:e7:4d:56:16:23:cb:ae:88:b3:e5:2f:25:14:ba:31: 26:5a:ee:a6:98:9a:a5:ad:05:0c:e5:35:0c:a7:08:30:80:88: 1a:c8:9d:36:d8:48:8c:6a:48:9f:43:40:5b:84:7b:14:5b:a4: cc:b7:5d:81:7f:4c:3b:9a:23:ab:fd:bc:a4:1d:68:67:23:9a: 69:30:a8:05:c1:3f:07:ed:e3:94:44:c9:6f:59:af:3b:b1:39: 3c:d2:6d:5a:78:68:d3:a8:40:78:7b:51:5b:a8:b1:fa:49:bb: 49:0b:42:fb:3d:d4:c3:40:fd:1b:4c:b7:94:41:90:95:d4:4a: ee:41:70:fd:a7:e0:25:71:a1:37:f7:1f:94:a5:6a:14:ca:65: 33:cc:15:52:0e:f2:eb:7d:cf:22:d4:15:a2:24:8c:9a:38:78: a6:15:aa:b2:8b:9d:1b:d0:10:58:25:3f:e5:d5:9a:24:e2:e4: b5:85:1c:8d:5a:3e:61:fe:80:fc:0d:d6:39:2a:8b:a5:54:d1: c4:74:e2:65:c4:f8:dc:ce:d3:07:f2:f2:35:1d:a0:69:89:35: c3:8d:d2:c4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQGqk27fZ0rZAM2zoitj26UM+pGYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTI2MTcwOTEzWhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0A0NTI5ODAwNDE5NDQwOTBjNDQ1MjJmZjZlN2U0MWVjZThm MDZhNWQ0NjBiZDU3ZmZlOTc1YTJlNTk0NGI0ZDY4MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCYmxdJHTIIs+Dyr2knAwt4C9rg8ioj3WOT5fegGZX5Snd/ oApFD79BlFjM4VHcBFDIon3ZT+sAtfrStHLt0HmBSH/DF26itv0PfkFrkkcIs75p xULMyc/reNIirNRL5/UjKstRAqUqRliK9a6O/fBqlJV1zIRyQT8GcgeLvMbSN4Yr vLA1nOURyYHZ69UkgyZUYiFptOXcHQV53lrCHUho0KIlpGVR7ckbx91BaL/SM8Jh rPR/JzsSMsl7tCbcWvCcGATz+TyFWNbx2UUzNcfIZoolVQGH8VggOrmeBHBc8aTL cquN9fWsegmcftISFWfXyqSQ+yOIahCB2ynIhCI5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUqj4SRODCu18pS8pSJFjJeuHxTaQwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzA3ZjNmOWY5LTZhYjAtNDZiZC1iYzVmLTlkZmIyZjhiOGJkMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAI0XgAwDQYJKoZIhvcNAQELBQADggEBAAE+TR9VVvI2PTwdGaC10p/obJ2x 4QK6C/s9ln/bJSAZNRYBqtwYP+dNVhYjy66Is+UvJRS6MSZa7qaYmqWtBQzlNQyn CDCAiBrInTbYSIxqSJ9DQFuEexRbpMy3XYF/TDuaI6v9vKQdaGcjmmkwqAXBPwft 45REyW9ZrzuxOTzSbVp4aNOoQHh7UVuosfpJu0kLQvs91MNA/RtMt5RBkJXUSu5B cP2n4CVxoTf3H5SlahTKZTPMFVIO8ut9zyLUFaIkjJo4eKYVqrKLnRvQEFglP+XV miTi5LWFHI1aPmH+gPwN1jkqi6VU0cR04mXE+NzO0wfy8jUdoGmJNcON0sQ= -----END CERTIFICATE-----Generated at Sat Oct 18 00:18:37 2025 by rpki-client