$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1e9255fd-5898-4bd1-acae-2a78e2883def.roa File: 1e9255fd-5898-4bd1-acae-2a78e2883def.roa (raw, json) Hash identifier: QdaeliOrYyCrXYUDn1ZNIpjP9DajgJVa/Had2sDhKes= Subject key identifier: 42:50:EF:69:55:52:75:4A:8D:84:F3:42:1C:40:08:F4:C5:E8:64:BD Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 1106A831E3C0E937A3E5B04BFD8ECE16516DC99D Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1e9255fd-5898-4bd1-acae-2a78e2883def.roa Signing time: Fri 26 Sep 2025 17:09:07 +0000 ROA not before: Fri 26 Sep 2025 17:09:07 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.94.72.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:06:a8:31:e3:c0:e9:37:a3:e5:b0:4b:fd:8e:ce:16:51:6d:c9:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 26 17:09:07 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=55e767ed57872b7a277cc194ca8c64b1f40c9dc810fdd61821627bb570cddcf8, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ca:26:0d:cf:18:de:fe:ca:fc:ae:13:e3:9d: bf:1f:c6:40:31:1d:2c:5c:aa:55:b7:69:8f:46:a3: f4:74:89:d8:00:bf:5f:dc:0f:4f:41:a9:e2:38:b3: d5:d8:0a:95:81:90:5c:74:5a:90:cf:c4:41:b3:cf: 1b:cf:d0:3f:a0:24:28:7c:c0:d3:b3:71:52:02:b5: 58:58:5e:4d:7a:36:e1:f2:14:cd:9a:00:ae:36:62: 23:3c:b5:7a:76:4e:75:71:8e:c3:c0:c4:87:ae:a0: f6:3a:01:d3:2a:53:d6:28:73:67:2a:64:4b:1e:80: c8:fe:b0:e1:58:fc:e3:48:3e:40:5d:fc:7a:a0:bd: 1b:69:65:b0:38:cb:88:c3:67:50:22:69:5e:73:ad: 4b:1c:51:a7:7e:df:f2:5e:34:d2:f4:99:3f:59:e8: 42:fb:9c:2f:f2:2d:07:37:8d:b9:08:99:8d:24:de: 28:f0:48:a9:64:29:3e:60:fb:cd:5e:83:d6:5d:0f: 51:37:d9:cf:b7:f9:37:48:85:99:22:f6:cd:a9:42: f6:95:16:9e:58:e5:3c:89:87:3a:d6:5c:77:12:d1: ed:ff:2d:91:04:f0:ae:c2:c3:d4:87:61:38:00:3c: 60:7e:e7:21:93:75:7c:e7:50:5b:08:6b:37:50:5c: 8c:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:50:EF:69:55:52:75:4A:8D:84:F3:42:1C:40:08:F4:C5:E8:64:BD X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1e9255fd-5898-4bd1-acae-2a78e2883def.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.94.72.0/22 Signature Algorithm: sha256WithRSAEncryption a2:d1:bd:a1:e5:15:cd:3d:b0:0f:6d:3d:6b:45:b8:fa:a5:36: 4f:5b:aa:4e:e3:0b:6e:9b:61:0a:89:90:36:ce:93:72:2c:64: 95:0e:7e:99:9c:13:6f:81:bb:01:a7:a2:35:d2:45:72:d2:c1: ab:af:2e:e5:e0:f5:c6:62:ca:b4:e7:b7:4b:2d:e4:e8:60:c4: 73:95:20:17:85:ad:e3:80:41:9b:9a:f2:ca:81:36:2b:51:45: e9:f4:dd:d8:17:34:3b:7e:14:8c:60:d9:a9:c5:6b:80:87:68: ae:a3:ee:79:bb:d3:cb:14:0e:c5:52:7c:0e:32:69:ea:be:7b: e1:07:ec:4c:b6:70:5d:2f:02:9d:da:87:57:d9:af:8c:09:5d: 84:6a:d7:a4:08:5b:e5:42:5d:27:15:24:2a:cb:76:6a:a7:76: 4c:75:ec:a5:05:0b:df:b0:b4:6e:0c:b7:49:8e:d6:38:c4:ef: 39:ef:0a:b5:10:21:99:3d:ef:4f:d5:2b:f3:9b:6f:1e:62:f0: 9a:8a:b7:d5:7d:fa:f8:4c:e5:a9:fa:4c:31:6a:aa:ff:fb:1c: d5:e8:bf:7c:97:bb:cc:80:47:02:de:f4:c9:8e:a3:b5:eb:69: 78:63:07:23:ee:2d:3b:fc:79:b7:f1:93:89:04:2b:15:6e:2f: 51:fb:5b:12 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEQaoMePA6Tej5bBL/Y7OFlFtyZ0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTI2MTcwOTA3WhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0A1NWU3NjdlZDU3ODcyYjdhMjc3Y2MxOTRjYThjNjRiMWY0 MGM5ZGM4MTBmZGQ2MTgyMTYyN2JiNTcwY2RkY2Y4MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8yiYNzxje/sr8rhPjnb8fxkAxHSxcqlW3aY9Go/R0idgA v1/cD09BqeI4s9XYCpWBkFx0WpDPxEGzzxvP0D+gJCh8wNOzcVICtVhYXk16NuHy FM2aAK42YiM8tXp2TnVxjsPAxIeuoPY6AdMqU9Yoc2cqZEsegMj+sOFY/ONIPkBd /HqgvRtpZbA4y4jDZ1AiaV5zrUscUad+3/JeNNL0mT9Z6EL7nC/yLQc3jbkImY0k 3ijwSKlkKT5g+81eg9ZdD1E32c+3+TdIhZki9s2pQvaVFp5Y5TyJhzrWXHcS0e3/ LZEE8K7Cw9SHYTgAPGB+5yGTdXznUFsIazdQXIzpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQlDvaVVSdUqNhPNCHEAI9MXoZL0wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzFlOTI1NWZkLTU4OTgtNGJkMS1hY2FlLTJhNzhlMjg4M2RlZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAI0XkgwDQYJKoZIhvcNAQELBQADggEBAKLRvaHlFc09sA9tPWtFuPqlNk9b qk7jC26bYQqJkDbOk3IsZJUOfpmcE2+BuwGnojXSRXLSwauvLuXg9cZiyrTnt0st 5OhgxHOVIBeFreOAQZua8sqBNitRRen03dgXNDt+FIxg2anFa4CHaK6j7nm708sU DsVSfA4yaeq+e+EH7Ey2cF0vAp3ah1fZr4wJXYRq16QIW+VCXScVJCrLdmqndkx1 7KUFC9+wtG4Mt0mO1jjE7znvCrUQIZk970/VK/Obbx5i8JqKt9V9+vhM5an6TDFq qv/7HNXov3yXu8yARwLe9MmOo7XraXhjByPuLTv8ebfxk4kEKxVuL1H7WxI= -----END CERTIFICATE-----Generated at Sat Oct 18 02:41:55 2025 by rpki-client