$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0fb5e281-d545-4001-97fa-007bbac7fd98.roa File: 0fb5e281-d545-4001-97fa-007bbac7fd98.roa (raw, json) Hash identifier: gCDenPyC16xNt/wNXhkyLoKa8p0KY9txRzJn8aegkms= Subject key identifier: 38:95:68:80:CE:93:7F:19:A7:66:4D:49:7F:E8:51:83:F5:16:C4:DD Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 01E5B692E343D26255FFE8F3D21C0103BC9BB639 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0fb5e281-d545-4001-97fa-007bbac7fd98.roa Signing time: Tue 21 Oct 2025 12:12:31 +0000 ROA not before: Tue 21 Oct 2025 12:12:31 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 152.25.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 29 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:e5:b6:92:e3:43:d2:62:55:ff:e8:f3:d2:1c:01:03:bc:9b:b6:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 21 12:12:31 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=95976d5ea31bfe4aa04705e8d085aadbc99c460cee8cea23839871e2cad601d6, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:38:cf:2c:31:8f:f7:c9:3c:45:25:a4:c7:a5: 06:10:83:31:1a:d1:5f:f0:98:50:07:e2:8a:77:4c: cf:ed:11:1f:77:52:64:ea:c1:ef:fd:37:70:50:b3: 5c:bd:b8:3b:86:8b:3a:5e:21:a8:e5:59:4e:27:2a: 17:9a:96:92:7f:55:8f:10:2c:d8:30:76:3a:80:47: dc:9e:e9:0c:f5:3e:df:12:02:2f:71:65:2d:7c:45: bb:71:8a:89:d2:b0:19:d7:27:b1:a9:f7:9e:59:da: 34:8a:67:7b:3c:e8:a6:51:91:e0:18:1c:ae:5a:07: 79:5c:8d:95:eb:00:81:97:a8:bd:ba:d1:c8:c7:bd: 6f:eb:60:2e:29:ea:44:7a:9d:41:c7:76:71:60:c8: 59:2f:4f:e3:99:d1:2b:1e:89:6b:9d:ed:34:ca:45: 7d:a1:60:23:b8:e1:f8:de:5f:2e:01:95:cd:e9:75: 26:50:ae:8c:4c:4b:e8:74:6e:e4:fb:fa:11:fc:98: 54:5c:46:13:2f:ef:b6:19:1b:b0:a3:2a:a7:91:1d: 6c:50:f0:7c:0d:3c:36:db:19:0d:91:9d:1d:28:b5: ca:69:f2:5e:27:71:9f:36:81:91:4d:77:0f:12:9d: cc:53:1c:19:57:d8:25:30:cc:55:f4:5c:6a:f5:dc: f1:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:95:68:80:CE:93:7F:19:A7:66:4D:49:7F:E8:51:83:F5:16:C4:DD X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0fb5e281-d545-4001-97fa-007bbac7fd98.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 152.25.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3f:88:87:d1:60:97:17:b5:2f:b6:e9:95:91:45:27:2b:22:f0: 84:b7:7b:42:46:9b:fc:90:5b:32:02:91:93:d0:03:6a:41:54: 01:d3:ea:45:71:48:0d:3a:a1:21:d0:03:4c:b3:82:69:d4:f4: 8e:b4:ec:de:14:74:8d:74:51:89:98:8f:cc:cc:7a:a2:38:96: 56:60:63:05:56:d5:78:b7:2b:2b:e3:ab:7a:38:48:b7:86:08: 98:2f:09:7e:2b:b7:69:d9:76:8b:d7:e0:30:57:11:c2:7b:2d: db:b0:f3:67:66:dc:e0:d0:ec:e3:bd:76:8c:cb:75:b1:9a:15: 10:d4:c0:3a:4b:19:45:12:f2:40:f8:01:62:7c:d7:31:44:21: 8f:55:ad:6a:a7:68:d9:ea:e2:e9:61:98:9c:9e:42:86:8e:aa: 11:5c:33:40:70:3e:d5:02:72:83:25:31:1f:dd:e4:cd:f5:c8: 4b:91:cd:62:36:90:a3:0b:02:5a:09:17:ee:99:eb:78:d5:c3: b9:d4:f0:92:37:61:92:6e:d9:72:27:32:e4:19:82:91:34:d4: e1:c0:11:d6:b5:9f:6b:d5:d8:69:68:be:8e:fc:23:13:8f:fb: 7b:8d:1f:07:45:6e:9e:23:61:f1:3a:ce:6a:c1:30:26:6d:2f: 25:c3:09:38 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUAeW2kuND0mJV/+jz0hwBA7ybtjkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDIxMTIxMjMxWhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NTk3NmQ1ZWEzMWJmZTRhYTA0NzA1ZThkMDg1YWFkYmM5 OWM0NjBjZWU4Y2VhMjM4Mzk4NzFlMmNhZDYwMWQ2MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/OM8sMY/3yTxFJaTHpQYQgzEa0V/wmFAH4op3TM/tER93 UmTqwe/9N3BQs1y9uDuGizpeIajlWU4nKhealpJ/VY8QLNgwdjqAR9ye6Qz1Pt8S Ai9xZS18RbtxionSsBnXJ7Gp955Z2jSKZ3s86KZRkeAYHK5aB3lcjZXrAIGXqL26 0cjHvW/rYC4p6kR6nUHHdnFgyFkvT+OZ0SseiWud7TTKRX2hYCO44fjeXy4Blc3p dSZQroxMS+h0buT7+hH8mFRcRhMv77YZG7CjKqeRHWxQ8HwNPDbbGQ2RnR0otcpp 8l4ncZ82gZFNdw8SncxTHBlX2CUwzFX0XGr13PFTAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUOJVogM6TfxmnZk1Jf+hRg/UWxN0wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzBmYjVlMjgxLWQ1NDUtNDAwMS05N2ZhLTAwN2JiYWM3ZmQ5OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCYGTANBgkqhkiG9w0BAQsFAAOCAQEAP4iH0WCXF7UvtumVkUUnKyLwhLd7 Qkab/JBbMgKRk9ADakFUAdPqRXFIDTqhIdADTLOCadT0jrTs3hR0jXRRiZiPzMx6 ojiWVmBjBVbVeLcrK+OrejhIt4YImC8Jfiu3adl2i9fgMFcRwnst27DzZ2bc4NDs 4712jMt1sZoVENTAOksZRRLyQPgBYnzXMUQhj1Wtaqdo2eri6WGYnJ5Cho6qEVwz QHA+1QJygyUxH93kzfXIS5HNYjaQowsCWgkX7pnreNXDudTwkjdhkm7Zcicy5BmC kTTU4cAR1rWfa9XYaWi+jvwjE4/7e40fB0VuniNh8TrOasEwJm0vJcMJOA== -----END CERTIFICATE-----Generated at Tue Oct 28 10:30:58 2025 by rpki-client