$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/20dfdb8e-82f9-432c-9d09-08b35b26e968.roa File: 20dfdb8e-82f9-432c-9d09-08b35b26e968.roa (raw, json) Hash identifier: lMq19ehRNEAl0QihHeLNjsTarXAHk2j6iQGgg2vXHsY= Subject key identifier: 70:00:0A:2E:18:F2:FD:2E:92:7D:40:56:72:9E:41:98:1E:C9:04:48 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 3EAE5D4B91BACE3D4DE13A4D12922808A0486BAD Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/20dfdb8e-82f9-432c-9d09-08b35b26e968.roa Signing time: Tue 21 Oct 2025 10:20:09 +0000 ROA not before: Tue 21 Oct 2025 10:20:09 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.95.46.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 27 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:ae:5d:4b:91:ba:ce:3d:4d:e1:3a:4d:12:92:28:08:a0:48:6b:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 21 10:20:09 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=f98df26358d0a2002c26a075c6a8c10a89ecccd356a7bc96dc20d071bdd38998, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:6b:44:3c:40:61:dc:02:05:3b:41:9c:15:9a: 67:21:99:fc:16:bd:90:f6:04:d2:39:4e:c8:5f:a9: 4e:46:09:6e:ce:cb:80:6e:c7:28:b5:aa:4c:22:10: 7f:0d:10:77:ef:61:97:31:ee:c9:87:fe:85:90:a7: 38:cc:f2:15:f8:bf:88:3a:76:37:ba:b1:4c:7c:07: 6d:3b:82:a1:71:2e:f4:40:be:0d:26:5b:26:3d:8e: d0:bc:dc:df:5d:18:54:d1:d7:31:7c:99:0d:57:69: ab:62:47:25:76:5b:46:56:d9:89:19:fe:ba:37:01: bc:b3:44:a2:0d:e0:62:2d:48:39:3e:0f:47:39:29: 73:d5:e6:ad:ba:cb:47:b6:2b:09:60:ad:ab:66:47: 4e:92:0e:63:5e:c5:62:48:70:89:67:a1:3d:c7:e4: 8c:20:43:17:a1:2d:15:a2:87:82:8c:9e:f8:10:fd: 95:31:c6:17:66:33:ad:c0:40:7e:1c:fe:1a:2b:d0: 70:e2:84:07:d2:30:bf:60:03:87:51:fc:5f:8a:86: 81:79:e5:e6:49:dc:e6:9d:f1:f9:cb:4d:ce:ca:2e: 1a:f1:10:b4:e3:ad:e9:8a:e0:d4:88:a3:0d:78:4d: fb:17:66:17:ea:be:3c:65:23:16:bb:59:af:d6:b2: 20:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:00:0A:2E:18:F2:FD:2E:92:7D:40:56:72:9E:41:98:1E:C9:04:48 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/20dfdb8e-82f9-432c-9d09-08b35b26e968.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.95.46.0/24 Signature Algorithm: sha256WithRSAEncryption 11:a2:5f:ee:bb:71:1c:e9:a2:bc:fd:8c:0f:e6:91:e3:cd:61: c1:8f:53:68:81:c5:fd:af:06:f2:16:68:34:5c:19:31:55:de: 1c:35:f1:97:db:51:de:66:6a:2f:fb:3d:ff:fe:e7:d0:68:38: 91:48:4d:34:2c:29:f3:dc:cc:53:42:fb:fa:52:bd:9c:f2:29: 15:f3:5e:dd:b8:75:f6:af:d1:01:58:87:04:69:6a:58:6d:57: ff:7a:71:6a:30:8e:12:53:f8:89:46:c7:53:ee:31:6e:7a:8f: ea:c4:0b:72:f1:6a:23:f3:b1:ca:44:b5:71:64:96:8d:a4:82: 2a:f7:4e:93:5e:5b:23:eb:80:e8:00:f4:b8:53:e1:30:75:f8: bf:c0:53:96:d5:19:a0:95:ef:38:65:a3:84:f0:eb:b9:53:a2: c4:7c:ba:19:db:5b:f8:12:4d:4e:37:89:9a:ef:f0:d5:71:26: 6e:ea:00:a9:8a:05:10:7e:88:6c:92:d0:f8:63:90:ac:4e:30: f0:8a:9c:1c:2e:62:8f:b2:e5:02:44:20:71:a1:59:85:a6:c9: 52:39:f3:bd:d4:f8:5e:75:d0:c0:58:a8:dd:79:d6:75:a9:da: 3d:e8:84:d1:61:d5:dc:a0:a1:0a:4a:55:21:7e:6f:d6:59:f4: 21:f6:78:0f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPq5dS5G6zj1N4TpNEpIoCKBIa60wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDIxMTAyMDA5WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BmOThkZjI2MzU4ZDBhMjAwMmMyNmEwNzVjNmE4YzEwYTg5 ZWNjY2QzNTZhN2JjOTZkYzIwZDA3MWJkZDM4OTk4MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCSa0Q8QGHcAgU7QZwVmmchmfwWvZD2BNI5TshfqU5GCW7O y4Buxyi1qkwiEH8NEHfvYZcx7smH/oWQpzjM8hX4v4g6dje6sUx8B207gqFxLvRA vg0mWyY9jtC83N9dGFTR1zF8mQ1XaatiRyV2W0ZW2YkZ/ro3AbyzRKIN4GItSDk+ D0c5KXPV5q26y0e2KwlgratmR06SDmNexWJIcIlnoT3H5IwgQxehLRWih4KMnvgQ /ZUxxhdmM63AQH4c/hor0HDihAfSML9gA4dR/F+KhoF55eZJ3Oad8fnLTc7KLhrx ELTjremK4NSIow14TfsXZhfqvjxlIxa7Wa/WsiBlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUcAAKLhjy/S6SfUBWcp5BmB7JBEgwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzIwZGZkYjhlLTgyZjktNDMyYy05ZDA5LTA4YjM1YjI2ZTk2OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA0Xy4wDQYJKoZIhvcNAQELBQADggEBABGiX+67cRzporz9jA/mkePNYcGP U2iBxf2vBvIWaDRcGTFV3hw18ZfbUd5mai/7Pf/+59BoOJFITTQsKfPczFNC+/pS vZzyKRXzXt24dfav0QFYhwRpalhtV/96cWowjhJT+IlGx1PuMW56j+rEC3LxaiPz scpEtXFklo2kgir3TpNeWyPrgOgA9LhT4TB1+L/AU5bVGaCV7zhlo4Tw67lTosR8 uhnbW/gSTU43iZrv8NVxJm7qAKmKBRB+iGyS0PhjkKxOMPCKnBwuYo+y5QJEIHGh WYWmyVI5873U+F510MBYqN151nWp2j3ohNFh1dygoQpKVSF+b9ZZ9CH2eA8= -----END CERTIFICATE-----Generated at Sun Oct 26 08:23:34 2025 by rpki-client