$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2aaab800-cd7f-4535-9e1b-9fea34cbadaa.roa File: 2aaab800-cd7f-4535-9e1b-9fea34cbadaa.roa (raw, json) Hash identifier: ak6TAmBtGVlYD0IOmQHDs0LB+jSdkdIrzqK2g+uPB1U= Subject key identifier: 7F:51:E0:A5:C1:1E:7E:62:E7:89:12:5F:DF:AA:0F:0B:9B:31:83:12 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 234B0FEC2CF6B4FB9017C591D139D87E936B4A87 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2aaab800-cd7f-4535-9e1b-9fea34cbadaa.roa Signing time: Fri 26 Sep 2025 02:24:03 +0000 ROA not before: Fri 26 Sep 2025 02:24:03 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.230.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:4b:0f:ec:2c:f6:b4:fb:90:17:c5:91:d1:39:d8:7e:93:6b:4a:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 26 02:24:03 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=8566c555a8faacfd19850df883b0cc2553ef6df4e98cc605aa80e2572b3fe58d, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:66:8f:39:30:ad:06:29:ed:8d:ce:ae:ac:45: 1e:7b:06:3a:a4:aa:fe:12:b6:b9:e0:cd:54:78:c4: a1:d8:19:d6:50:c6:13:2a:ce:8a:50:b8:8e:db:89: 60:db:b4:54:13:ed:37:52:97:5d:3b:13:55:6d:f0: 97:a6:16:68:5a:dc:6a:a0:c3:73:68:a3:a4:69:60: 38:39:8b:a2:61:12:d5:e0:96:aa:49:d6:fe:1d:76: cf:20:aa:ca:2c:46:32:a6:a9:ad:64:19:cf:dd:0f: df:4f:88:fe:ae:b8:47:ce:74:79:ba:cf:0b:ee:92: a9:ac:bf:6e:36:cc:c9:b0:9d:63:e0:fd:de:37:80: 9d:1f:33:8c:6e:1e:39:5b:d3:79:bb:06:0e:d9:0b: ec:9f:07:f3:34:d5:3a:eb:33:ed:45:84:62:bf:d2: a9:c5:2c:39:b6:03:23:b0:21:5b:65:f2:26:5f:1b: 28:28:e4:ee:6c:8f:5f:64:9c:59:f1:53:c3:e3:a1: 8f:69:04:10:62:d1:cb:2a:63:4d:c9:f4:b5:16:c9: 4a:1a:d2:bf:3e:f9:91:05:1e:5e:6f:af:be:71:10: f3:c1:bd:20:26:87:51:e1:bd:50:f9:eb:09:9d:b7: 44:ee:07:9d:3e:b1:3c:39:a0:c8:71:04:e4:31:92: 0a:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:51:E0:A5:C1:1E:7E:62:E7:89:12:5F:DF:AA:0F:0B:9B:31:83:12 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2aaab800-cd7f-4535-9e1b-9fea34cbadaa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.230.139.0/24 Signature Algorithm: sha256WithRSAEncryption 36:55:5f:cc:96:b6:ce:a1:b9:8a:7f:81:65:81:40:6d:06:7d: a4:10:4e:60:37:c3:1b:83:12:b6:51:fe:68:8b:2a:9d:a2:2c: 69:e7:2c:bb:16:c8:50:5f:2c:df:d3:ef:57:ad:34:a5:75:d8: 07:84:a1:05:05:23:02:15:86:9f:dc:f9:cf:c2:c6:74:8c:3b: 60:c9:38:9a:ab:12:44:9f:bd:89:39:dc:7e:dd:b9:59:86:f4: d8:96:7a:c9:f5:43:db:4b:76:68:61:59:a5:8f:12:9c:51:37: f6:58:42:41:3e:59:a9:6b:2f:2c:b6:8e:ee:44:51:ec:e5:ee: 6b:14:ae:45:c1:6d:26:f9:fe:6f:bf:9d:10:6b:f0:68:11:94: d6:45:66:c8:6b:11:4b:8e:fb:1c:fa:38:02:04:35:20:1b:d4: a2:45:ca:b2:b6:6b:51:05:43:39:16:9a:8c:68:c4:b6:bf:05: 1f:21:2b:94:1c:fc:34:9a:54:47:ce:b8:ce:9a:68:b4:5a:b8: 01:e1:6e:1f:dd:fb:f1:a9:0e:29:b4:30:8b:ac:08:58:18:b1: f3:bf:0d:b2:14:bf:28:59:9b:7b:70:68:6c:8b:3d:d1:f4:6d: 81:7f:b0:67:f1:fc:c0:65:43:2e:92:ce:d2:30:65:92:8d:1f: 98:5d:33:ab -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUI0sP7Cz2tPuQF8WR0TnYfpNrSocwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTI2MDIyNDAzWhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0A4NTY2YzU1NWE4ZmFhY2ZkMTk4NTBkZjg4M2IwY2MyNTUz ZWY2ZGY0ZTk4Y2M2MDVhYTgwZTI1NzJiM2ZlNThkMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwZo85MK0GKe2Nzq6sRR57Bjqkqv4StrngzVR4xKHYGdZQ xhMqzopQuI7biWDbtFQT7TdSl107E1Vt8JemFmha3Gqgw3Noo6RpYDg5i6JhEtXg lqpJ1v4dds8gqsosRjKmqa1kGc/dD99PiP6uuEfOdHm6zwvukqmsv242zMmwnWPg /d43gJ0fM4xuHjlb03m7Bg7ZC+yfB/M01TrrM+1FhGK/0qnFLDm2AyOwIVtl8iZf Gygo5O5sj19knFnxU8PjoY9pBBBi0csqY03J9LUWyUoa0r8++ZEFHl5vr75xEPPB vSAmh1HhvVD56wmdt0TuB50+sTw5oMhxBOQxkgp7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUf1HgpcEefmLniRJf36oPC5sxgxIwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzJhYWFiODAwLWNkN2YtNDUzNS05ZTFiLTlmZWEzNGNiYWRhYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA25oswDQYJKoZIhvcNAQELBQADggEBADZVX8yWts6huYp/gWWBQG0GfaQQ TmA3wxuDErZR/miLKp2iLGnnLLsWyFBfLN/T71etNKV12AeEoQUFIwIVhp/c+c/C xnSMO2DJOJqrEkSfvYk53H7duVmG9NiWesn1Q9tLdmhhWaWPEpxRN/ZYQkE+Walr Lyy2ju5EUezl7msUrkXBbSb5/m+/nRBr8GgRlNZFZshrEUuO+xz6OAIENSAb1KJF yrK2a1EFQzkWmoxoxLa/BR8hK5Qc/DSaVEfOuM6aaLRauAHhbh/d+/GpDim0MIus CFgYsfO/DbIUvyhZm3twaGyLPdH0bYF/sGfx/MBlQy6SztIwZZKNH5hdM6s= -----END CERTIFICATE-----Generated at Fri Oct 17 22:17:45 2025 by rpki-client