$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2c5f4c5e-740b-46ae-a76c-428c13bd4885.roa File: 2c5f4c5e-740b-46ae-a76c-428c13bd4885.roa (raw, json) Hash identifier: g7c4PCztNZ0XV2wfHiHAtG4h5GEPxSzCH6xoiRuoLJ8= Subject key identifier: 53:FE:05:D4:E2:76:20:82:BF:27:5E:42:8A:19:45:E1:38:37:DC:1E Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 397BA66E157D3B5EF6B5A422BD3C6CC03219C3DC Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2c5f4c5e-740b-46ae-a76c-428c13bd4885.roa Signing time: Fri 26 Sep 2025 17:35:55 +0000 ROA not before: Fri 26 Sep 2025 17:35:55 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.92.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:7b:a6:6e:15:7d:3b:5e:f6:b5:a4:22:bd:3c:6c:c0:32:19:c3:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 26 17:35:55 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=3c17e8b4454bfc34446d49dee9f6f573b04b06c77e66a84fb465da4d0ebf0dfb, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:7b:0c:20:66:51:b7:13:f1:10:6f:73:35:69: cb:1b:cf:75:2b:3c:79:02:e1:72:eb:0e:d6:03:f1: 6f:eb:6c:65:e7:90:15:8e:28:01:c1:ee:64:05:4b: 1b:f4:c9:ab:14:52:61:96:1c:b3:52:39:3f:2c:bf: 3f:a0:bc:d8:f6:09:6c:51:06:c5:4a:e6:5b:c8:15: dc:8e:e8:4c:77:40:02:af:d4:85:d0:ae:66:f8:7d: 5c:49:2c:9a:ae:09:1f:e8:7c:d6:a3:61:14:1b:5a: 06:48:4e:24:ae:bf:f8:12:c6:d7:7d:e0:90:b1:3d: d1:e2:67:7d:db:e3:26:1b:d0:ee:51:ce:63:39:a8: 3b:f1:57:ae:8f:49:ec:46:ce:7a:a3:eb:39:e1:45: 80:1f:31:8b:1d:8b:16:6d:5d:75:3f:70:11:db:b9: 53:66:04:f7:f2:38:93:cd:56:ca:4f:8d:7e:38:ad: 3f:49:00:77:04:30:1b:f8:91:fb:5f:0f:e4:c8:13: ba:c5:90:8f:ee:42:24:e4:08:7e:fd:05:b7:0c:07: 57:98:6b:2e:cf:43:60:82:5f:51:c8:5c:97:b2:0a: 4c:ea:59:0f:65:ef:a4:3b:5d:3a:a4:a7:85:88:cb: aa:26:de:6a:d3:e1:48:f9:34:fa:fd:bf:d9:4b:b2: 1a:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:FE:05:D4:E2:76:20:82:BF:27:5E:42:8A:19:45:E1:38:37:DC:1E X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2c5f4c5e-740b-46ae-a76c-428c13bd4885.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.92.0.0/17 Signature Algorithm: sha256WithRSAEncryption 59:19:5a:c9:11:91:01:7f:10:48:f4:38:69:41:d0:ab:b7:74: 63:35:00:ad:ef:85:93:a7:18:9e:33:e3:6e:63:07:09:85:8a: e8:d0:ed:3a:0a:b1:80:08:31:ba:aa:8f:00:08:38:92:ab:b6: 49:33:b6:09:f3:c5:4b:d2:a5:b5:cc:ff:bd:d6:0b:fa:5d:06: 4f:c8:2b:77:eb:86:c4:89:04:f0:a8:3e:e4:3b:1e:f0:17:d6: bb:c5:a5:a8:c5:2f:78:24:31:1e:ba:b0:68:df:e2:cb:18:08: ce:14:3c:b8:7c:af:42:f6:7b:2c:0b:07:07:36:bd:29:7d:84: 4b:e5:d7:90:2b:2e:80:d5:f8:b2:20:b3:94:a3:da:a5:e1:02: cf:13:69:d9:d9:cc:f8:a1:98:8c:37:2e:43:7f:a3:37:a8:6a: 6c:6a:8e:d5:6e:f8:f9:22:20:ca:a4:40:ee:b4:ba:43:30:d1: 21:b8:3b:f0:e6:15:2c:21:97:67:0f:57:8e:b1:22:9b:9c:e3: de:7e:d5:af:73:01:35:0b:57:86:91:cd:92:e3:2b:45:6b:8b: 7e:e5:be:5c:76:12:e6:34:11:87:ce:8b:e6:07:35:35:13:24: 54:e6:3b:34:46:16:b4:6a:3c:bf:cf:ce:f6:8a:d3:69:0f:b0: 81:97:57:4d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOXumbhV9O172taQivTxswDIZw9wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTI2MTczNTU1WhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0AzYzE3ZThiNDQ1NGJmYzM0NDQ2ZDQ5ZGVlOWY2ZjU3M2Iw NGIwNmM3N2U2NmE4NGZiNDY1ZGE0ZDBlYmYwZGZiMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpewwgZlG3E/EQb3M1acsbz3UrPHkC4XLrDtYD8W/rbGXn kBWOKAHB7mQFSxv0yasUUmGWHLNSOT8svz+gvNj2CWxRBsVK5lvIFdyO6Ex3QAKv 1IXQrmb4fVxJLJquCR/ofNajYRQbWgZITiSuv/gSxtd94JCxPdHiZ33b4yYb0O5R zmM5qDvxV66PSexGznqj6znhRYAfMYsdixZtXXU/cBHbuVNmBPfyOJPNVspPjX44 rT9JAHcEMBv4kftfD+TIE7rFkI/uQiTkCH79BbcMB1eYay7PQ2CCX1HIXJeyCkzq WQ9l76Q7XTqkp4WIy6om3mrT4Uj5NPr9v9lLshq3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUU/4F1OJ2IIK/J15CihlF4Tg33B4wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzJjNWY0YzVlLTc0MGItNDZhZS1hNzZjLTQyOGMxM2JkNDg4NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAc2XAAwDQYJKoZIhvcNAQELBQADggEBAFkZWskRkQF/EEj0OGlB0Ku3dGM1 AK3vhZOnGJ4z425jBwmFiujQ7ToKsYAIMbqqjwAIOJKrtkkztgnzxUvSpbXM/73W C/pdBk/IK3frhsSJBPCoPuQ7HvAX1rvFpajFL3gkMR66sGjf4ssYCM4UPLh8r0L2 eywLBwc2vSl9hEvl15ArLoDV+LIgs5Sj2qXhAs8TadnZzPihmIw3LkN/ozeoamxq jtVu+PkiIMqkQO60ukMw0SG4O/DmFSwhl2cPV46xIpuc495+1a9zATULV4aRzZLj K0Vri37lvlx2EuY0EYfOi+YHNTUTJFTmOzRGFrRqPL/PzvaK02kPsIGXV00= -----END CERTIFICATE-----Generated at Sat Oct 18 00:18:14 2025 by rpki-client