$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1f07aaa7-8942-4579-a485-c14de17e54cd.roa File: 1f07aaa7-8942-4579-a485-c14de17e54cd.roa (raw, json) Hash identifier: dnEBBVbFgN3qYgax5YUtQ52n0Ba8UOQjyXBzBZA8x3k= Subject key identifier: A5:C0:33:41:68:CB:C3:8C:27:FA:66:CA:8B:9E:D9:A3:3B:F1:5A:02 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 4876EA01FF1E25192137A06976F2AB1702EE1CFB Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1f07aaa7-8942-4579-a485-c14de17e54cd.roa Signing time: Fri 07 Nov 2025 00:11:25 +0000 ROA not before: Fri 07 Nov 2025 00:11:25 +0000 ROA not after: Fri 12 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.158.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 08 Nov 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:76:ea:01:ff:1e:25:19:21:37:a0:69:76:f2:ab:17:02:ee:1c:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Nov 7 00:11:25 2025 GMT Not After : Dec 12 23:59:59 2025 GMT Subject: serialNumber=a1a832b685e9cbfdc7b318b74f4ec461f75bf47cff02bcb379da39fee147e33d, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:f6:68:3d:25:84:0c:af:d6:9d:7e:45:1f:42: 58:02:4a:f5:41:78:c0:24:71:cd:23:e3:84:e2:0c: 89:b8:ae:0f:bd:ba:86:b0:8b:b1:fa:96:a3:24:26: a1:09:df:d2:30:39:5e:50:58:fe:8e:8b:b0:ee:4d: 8f:d9:83:f5:bb:7a:e6:81:08:1d:b9:c9:5c:cd:25: 67:38:9f:99:89:0e:99:9d:8b:ca:1e:74:fb:58:5d: aa:86:44:10:49:6e:87:08:c5:49:37:dd:34:e1:d0: 4c:ef:3d:e2:54:a8:76:c5:9b:de:f3:8e:ad:a7:1c: b9:d5:44:d4:15:c1:3a:57:f5:70:86:1c:2a:5d:6b: 7b:c5:d1:04:69:51:00:d3:b9:8a:70:45:af:db:9f: 31:40:c8:1b:8a:4b:18:94:3d:d9:f3:6a:3e:a0:30: 3d:8d:13:75:1f:90:3b:09:49:23:28:6e:33:55:da: 5b:8f:d3:d0:e6:30:59:59:e6:8d:89:b7:a2:d0:66: f3:be:0d:4e:c0:d4:60:17:cb:56:16:ee:70:2f:43: 32:ba:00:de:82:d3:e0:57:df:65:fa:ac:e0:aa:7a: a9:b2:40:ce:6e:ee:46:92:cc:8f:fa:ca:88:6e:6b: fa:85:2b:91:70:69:c1:86:7f:96:72:4e:ed:58:bb: 4b:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:C0:33:41:68:CB:C3:8C:27:FA:66:CA:8B:9E:D9:A3:3B:F1:5A:02 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1f07aaa7-8942-4579-a485-c14de17e54cd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.158.189.0/24 Signature Algorithm: sha256WithRSAEncryption 17:c5:47:d3:ac:d8:af:f6:84:7a:4b:e1:d0:46:4b:10:5d:64: 5b:84:60:e3:52:09:50:e3:2d:04:2a:0e:fb:9f:16:8d:3f:b4: 38:6a:7f:27:a3:6f:16:3e:a7:37:4c:ec:00:ca:34:a7:35:b8: 52:e1:fe:10:00:97:a8:dd:b6:7a:a3:3e:09:49:e7:bf:5e:51: 8f:9d:b5:59:78:3f:6c:56:95:90:b4:23:cb:cd:43:6b:20:94: dc:34:6e:f7:b7:19:ce:2c:5a:af:36:4c:eb:9e:6d:63:d6:5d: 48:c5:33:60:cc:5d:2e:14:5a:c7:72:e1:d4:8e:2e:c0:e3:be: 06:01:23:bc:1e:0c:1d:81:43:71:53:b6:3b:33:28:86:d5:e9: 18:46:c6:0a:f4:dd:96:53:27:ca:3a:96:fb:dd:7d:4a:93:53: b9:37:a5:e6:56:ac:ac:81:a7:23:94:ca:89:ae:e3:df:fc:ad: 54:2c:97:00:fa:97:98:64:d5:8a:7a:b5:8d:f7:25:13:a6:f2: 8c:96:f8:5f:28:63:f1:23:6c:90:05:d1:f9:f7:64:c0:90:a5: 3b:0c:b7:33:ce:ae:2b:fd:95:dd:1e:9f:63:68:dd:2c:57:de: 6a:e2:62:75:31:19:ec:9b:62:13:4b:2b:0d:75:dd:c6:3c:be: 7b:64:9d:15 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSHbqAf8eJRkhN6BpdvKrFwLuHPswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMTA3MDAxMTI1WhcNMjUxMjEyMjM1OTU5 WjB6MUkwRwYDVQQFE0BhMWE4MzJiNjg1ZTljYmZkYzdiMzE4Yjc0ZjRlYzQ2MWY3 NWJmNDdjZmYwMmJjYjM3OWRhMzlmZWUxNDdlMzNkMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZ9mg9JYQMr9adfkUfQlgCSvVBeMAkcc0j44TiDIm4rg+9 uoawi7H6lqMkJqEJ39IwOV5QWP6Oi7DuTY/Zg/W7euaBCB25yVzNJWc4n5mJDpmd i8oedPtYXaqGRBBJbocIxUk33TTh0EzvPeJUqHbFm97zjq2nHLnVRNQVwTpX9XCG HCpda3vF0QRpUQDTuYpwRa/bnzFAyBuKSxiUPdnzaj6gMD2NE3UfkDsJSSMobjNV 2luP09DmMFlZ5o2Jt6LQZvO+DU7A1GAXy1YW7nAvQzK6AN6C0+BX32X6rOCqeqmy QM5u7kaSzI/6yohua/qFK5FwacGGf5ZyTu1Yu0uzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUpcAzQWjLw4wn+mbKi57ZozvxWgIwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzFmMDdhYWE3LTg5NDItNDU3OS1hNDg1LWMxNGRlMTdlNTRjZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAPnr0wDQYJKoZIhvcNAQELBQADggEBABfFR9Os2K/2hHpL4dBGSxBdZFuE YONSCVDjLQQqDvufFo0/tDhqfyejbxY+pzdM7ADKNKc1uFLh/hAAl6jdtnqjPglJ 579eUY+dtVl4P2xWlZC0I8vNQ2sglNw0bve3Gc4sWq82TOuebWPWXUjFM2DMXS4U Wsdy4dSOLsDjvgYBI7weDB2BQ3FTtjszKIbV6RhGxgr03ZZTJ8o6lvvdfUqTU7k3 peZWrKyBpyOUyomu49/8rVQslwD6l5hk1Yp6tY33JROm8oyW+F8oY/EjbJAF0fn3 ZMCQpTsMtzPOriv9ld0en2No3SxX3mriYnUxGeybYhNLKw113cY8vntknRU= -----END CERTIFICATE-----Generated at Fri Nov 7 20:21:00 2025 by rpki-client