$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/09841762-a46f-48b0-b1d1-c33dc1aada32.roa File: 09841762-a46f-48b0-b1d1-c33dc1aada32.roa (raw, json) Hash identifier: ohscLGQTi/05w7P5iFvrAPByeXpIMv7I+nrcwnChCDc= Subject key identifier: 5A:06:BF:1F:7C:8D:08:D3:05:69:54:B4:30:06:57:33:C2:42:FB:05 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 6D6946351D5F7D81617E3365C62B487C9B38945D Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/09841762-a46f-48b0-b1d1-c33dc1aada32.roa Signing time: Fri 17 Oct 2025 22:00:10 +0000 ROA not before: Fri 17 Oct 2025 22:00:10 +0000 ROA not after: Fri 21 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.202.4.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:69:46:35:1d:5f:7d:81:61:7e:33:65:c6:2b:48:7c:9b:38:94:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 17 22:00:10 2025 GMT Not After : Nov 21 23:59:59 2025 GMT Subject: serialNumber=0b7e64983aa94cd0fe86b6dff3ea1363f5bd94bae87fbdb291058a96c3a1e9b0, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:6a:29:46:7d:b1:7c:45:a9:52:e5:9c:e2:c5: ec:fa:c3:83:78:dc:f5:c6:bb:a7:51:b9:7e:8e:31: a7:93:00:fe:5a:be:ac:91:b7:f8:35:10:0b:c1:a2: ac:ab:e4:a5:9d:dd:7d:4b:1e:04:e2:8e:2e:b4:ba: 36:76:48:4d:6b:e0:21:7b:9d:22:e0:cf:ff:bc:11: f2:08:eb:99:80:05:b9:07:54:ec:d5:ef:33:f3:e9: eb:19:2b:0a:50:55:d4:e7:38:65:e6:38:43:a4:6a: 40:dc:ec:12:ce:c7:3b:f9:72:3e:b4:1f:7a:17:17: 0a:26:c6:58:a7:57:26:de:30:69:76:89:35:69:3e: cd:0e:86:7f:6b:64:24:c5:22:eb:d7:ae:5a:f9:21: 6c:12:96:a9:30:1e:c9:6b:54:df:f2:21:16:c6:85: 10:ee:96:cc:b2:02:37:8f:74:fc:a0:4c:e2:82:a1: 17:76:80:5c:43:d0:e6:ea:fb:d4:11:e9:da:79:51: a6:70:8b:37:28:02:0f:45:ff:88:4b:e3:2c:3a:dd: 87:e8:24:53:f0:d9:3a:24:73:e4:08:c8:37:d4:19: 8b:e7:61:65:30:6b:23:a2:41:31:47:74:a6:7b:b5: 7d:aa:98:bd:1e:a5:89:0c:16:15:84:75:da:72:83: 6e:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:06:BF:1F:7C:8D:08:D3:05:69:54:B4:30:06:57:33:C2:42:FB:05 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/09841762-a46f-48b0-b1d1-c33dc1aada32.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.202.4.0/22 Signature Algorithm: sha256WithRSAEncryption 30:ec:ff:f3:79:74:45:e1:75:51:33:1a:09:79:b0:4f:f1:83: 6f:7d:00:58:a5:46:dd:11:30:73:16:bb:e4:a6:2f:70:aa:1e: 62:4f:be:3a:54:1a:b2:48:1f:ba:04:da:79:7d:12:12:dc:ba: 02:d2:42:dc:7c:8c:8d:08:5f:45:7d:6f:91:bd:14:52:dc:2f: 67:b6:0a:dd:aa:80:2b:b8:7a:10:f0:92:49:65:ab:bd:88:e5: f3:b2:d0:11:e0:50:d9:7f:80:84:d7:67:14:1b:f3:06:98:66: 27:21:74:ae:fc:e1:3e:2f:9b:21:ef:26:99:3f:44:08:72:27: 47:a0:6d:37:1a:3d:37:ff:70:b5:8e:21:51:38:ea:8f:fe:33: d9:d3:3b:9d:fc:34:44:30:4d:e1:a6:78:c2:ca:ba:0e:60:6b: ec:b6:df:65:0d:3c:aa:18:a9:2c:bf:9b:ac:57:b4:22:df:bd: e8:4d:8c:4d:48:b9:9a:3c:33:a3:da:19:7c:4b:b0:e2:5b:84: b2:f3:ed:4a:ac:fe:48:4a:12:4d:c9:d8:50:91:6b:c0:7a:f4: 0d:f7:c5:db:ec:30:8f:86:fc:76:b2:4e:dc:98:c9:5d:a4:3a: 5c:0d:02:90:75:09:4c:73:12:7e:b7:e8:02:bb:82:a6:a0:3d: ac:96:45:5f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbWlGNR1ffYFhfjNlxitIfJs4lF0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE3MjIwMDEwWhcNMjUxMTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0AwYjdlNjQ5ODNhYTk0Y2QwZmU4NmI2ZGZmM2VhMTM2M2Y1 YmQ5NGJhZTg3ZmJkYjI5MTA1OGE5NmMzYTFlOWIwMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuailGfbF8RalS5Zzixez6w4N43PXGu6dRuX6OMaeTAP5a vqyRt/g1EAvBoqyr5KWd3X1LHgTiji60ujZ2SE1r4CF7nSLgz/+8EfII65mABbkH VOzV7zPz6esZKwpQVdTnOGXmOEOkakDc7BLOxzv5cj60H3oXFwomxlinVybeMGl2 iTVpPs0Ohn9rZCTFIuvXrlr5IWwSlqkwHslrVN/yIRbGhRDulsyyAjePdPygTOKC oRd2gFxD0Obq+9QR6dp5UaZwizcoAg9F/4hL4yw63YfoJFPw2Tokc+QIyDfUGYvn YWUwayOiQTFHdKZ7tX2qmL0epYkMFhWEddpyg27PAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUWga/H3yNCNMFaVS0MAZXM8JC+wUwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzA5ODQxNzYyLWE0NmYtNDhiMC1iMWQxLWMzM2RjMWFhZGEzMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAI2ygQwDQYJKoZIhvcNAQELBQADggEBADDs//N5dEXhdVEzGgl5sE/xg299 AFilRt0RMHMWu+SmL3CqHmJPvjpUGrJIH7oE2nl9EhLcugLSQtx8jI0IX0V9b5G9 FFLcL2e2Ct2qgCu4ehDwkkllq72I5fOy0BHgUNl/gITXZxQb8waYZichdK784T4v myHvJpk/RAhyJ0egbTcaPTf/cLWOIVE46o/+M9nTO538NEQwTeGmeMLKug5ga+y2 32UNPKoYqSy/m6xXtCLfvehNjE1IuZo8M6PaGXxLsOJbhLLz7Uqs/khKEk3J2FCR a8B69A33xdvsMI+G/HayTtyYyV2kOlwNApB1CUxzEn636AK7gqagPayWRV8= -----END CERTIFICATE-----Generated at Sat Oct 18 00:18:13 2025 by rpki-client