$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/20b88fed-c256-4744-a386-10b75a5b81c9.roa File: 20b88fed-c256-4744-a386-10b75a5b81c9.roa (raw, json) Hash identifier: 5prJtFB9OfM71N14JRunDgEJSYQkC9369/fAw88hMAQ= Subject key identifier: A6:C9:8B:E2:F8:D9:53:27:80:A7:01:C9:B2:22:B9:98:4A:8A:9D:F3 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 3377596709F4BE8BE88DFC9BBB66C125E744F03C Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/20b88fed-c256-4744-a386-10b75a5b81c9.roa Signing time: Mon 22 Sep 2025 23:42:29 +0000 ROA not before: Mon 22 Sep 2025 23:42:29 +0000 ROA not after: Mon 27 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.84.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:77:59:67:09:f4:be:8b:e8:8d:fc:9b:bb:66:c1:25:e7:44:f0:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 22 23:42:29 2025 GMT Not After : Oct 27 23:59:59 2025 GMT Subject: serialNumber=e877cd8a31ab6aacef50f71c46e97abef6c5cd2b97b43bd0ea154bc5561d0f5c, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:14:24:7d:fc:b5:84:89:cb:44:0c:30:bc:a4: 69:a4:40:cd:d6:51:27:b7:db:6c:a1:33:9e:3c:7e: f0:47:5c:16:2b:90:9a:ee:44:1d:01:94:2e:82:40: 42:7c:7b:7a:27:46:6c:2b:83:ce:57:b0:9f:3f:70: a5:68:42:6a:9a:6c:01:8c:3c:17:84:48:1e:70:30: 6b:68:3f:41:5e:46:2e:c8:f1:6c:a4:4d:ae:52:d1: 2f:33:01:70:d2:76:4a:c4:93:a2:7a:50:06:45:77: fb:c9:8a:bc:25:c5:10:e0:55:22:8c:2b:d0:80:3c: 4c:36:95:8a:c7:ce:65:ed:f8:4e:5d:2e:6a:a9:aa: a2:94:09:b9:d2:ec:0c:25:ab:fa:e8:cf:c4:82:18: e8:99:4f:ea:ec:c3:b6:f5:35:02:40:f3:63:71:f2: 9e:9d:74:5a:3e:dd:44:b8:53:7a:97:12:2c:1f:fb: 04:91:93:92:26:67:a8:9e:21:cd:40:9d:5d:69:3b: f3:37:a8:59:c8:89:6a:98:2d:8e:30:d4:2c:16:e8: b1:3c:6a:ef:00:13:70:f8:f0:b3:00:25:96:58:88: 20:74:2b:7b:66:5e:11:55:15:ac:64:d2:5b:ee:45: dc:21:5f:aa:23:92:bf:11:1d:8d:54:6c:d4:20:9e: bd:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:C9:8B:E2:F8:D9:53:27:80:A7:01:C9:B2:22:B9:98:4A:8A:9D:F3 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/20b88fed-c256-4744-a386-10b75a5b81c9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.84.131.0/24 Signature Algorithm: sha256WithRSAEncryption b4:f2:5b:45:27:d9:6c:c8:79:df:78:22:78:c3:cf:73:2d:52: 95:3d:10:68:22:3b:10:84:83:51:5e:ba:51:01:38:cf:9d:a1: 45:06:ef:71:37:d8:9f:73:42:8c:42:56:66:de:f5:47:75:ca: 29:2a:06:ac:86:d4:75:8d:f8:85:23:8a:89:45:f6:b8:9f:9f: dd:50:d6:42:f1:e0:16:c1:d3:19:d0:e7:55:e7:81:24:3a:a7: 7c:36:51:26:1e:91:83:31:60:9b:35:01:77:4c:3a:f4:55:da: b7:9b:f3:bc:b9:e7:9d:9b:21:ee:cb:4a:32:10:a7:bd:dc:1c: a7:83:81:8c:ba:49:78:4f:70:d0:14:e3:88:15:bf:03:d7:5f: f7:31:66:d3:64:3b:7c:72:1a:9e:f7:23:d6:e5:e5:95:a9:b3: fb:4b:6e:76:2f:25:37:0d:72:c4:ed:9c:d3:1f:af:00:c5:95: d0:51:f1:68:0d:f3:6f:00:54:49:98:c9:41:dc:0b:35:1e:13: e4:0c:f4:74:a4:aa:84:ed:e0:be:62:e8:ec:62:d8:b3:ef:15: 25:48:3c:30:87:e7:d0:ef:34:e3:08:34:63:f5:9e:d1:3a:30: 79:23:9b:92:e8:dd:97:0e:17:65:62:65:b0:6b:2a:59:8d:c3: 11:d6:03:e5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUM3dZZwn0vovojfybu2bBJedE8DwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTIyMjM0MjI5WhcNMjUxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlODc3Y2Q4YTMxYWI2YWFjZWY1MGY3MWM0NmU5N2FiZWY2 YzVjZDJiOTdiNDNiZDBlYTE1NGJjNTU2MWQwZjVjMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/FCR9/LWEictEDDC8pGmkQM3WUSe322yhM548fvBHXBYr kJruRB0BlC6CQEJ8e3onRmwrg85XsJ8/cKVoQmqabAGMPBeESB5wMGtoP0FeRi7I 8WykTa5S0S8zAXDSdkrEk6J6UAZFd/vJirwlxRDgVSKMK9CAPEw2lYrHzmXt+E5d LmqpqqKUCbnS7Awlq/roz8SCGOiZT+rsw7b1NQJA82Nx8p6ddFo+3US4U3qXEiwf +wSRk5ImZ6ieIc1AnV1pO/M3qFnIiWqYLY4w1CwW6LE8au8AE3D48LMAJZZYiCB0 K3tmXhFVFaxk0lvuRdwhX6ojkr8RHY1UbNQgnr3tAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUpsmL4vjZUyeApwHJsiK5mEqKnfMwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzIwYjg4ZmVkLWMyNTYtNDc0NC1hMzg2LTEwYjc1YTViODFjOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA0VIMwDQYJKoZIhvcNAQELBQADggEBALTyW0Un2WzIed94InjDz3MtUpU9 EGgiOxCEg1FeulEBOM+doUUG73E32J9zQoxCVmbe9Ud1yikqBqyG1HWN+IUjiolF 9rifn91Q1kLx4BbB0xnQ51XngSQ6p3w2USYekYMxYJs1AXdMOvRV2reb87y5552b Ie7LSjIQp73cHKeDgYy6SXhPcNAU44gVvwPXX/cxZtNkO3xyGp73I9bl5ZWps/tL bnYvJTcNcsTtnNMfrwDFldBR8WgN828AVEmYyUHcCzUeE+QM9HSkqoTt4L5i6Oxi 2LPvFSVIPDCH59DvNOMINGP1ntE6MHkjm5Lo3ZcOF2ViZbBrKlmNwxHWA+U= -----END CERTIFICATE-----Generated at Fri Oct 17 22:19:14 2025 by rpki-client