$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3755c360-cca3-42ae-ad2c-d07e2bd16308.roa File: 3755c360-cca3-42ae-ad2c-d07e2bd16308.roa (raw, json) Hash identifier: lZnNXl7NCBcFSuYp+iFSJeC/Ge24QdMOJXUAIWQWe4Q= Subject key identifier: 6C:4D:E6:12:43:AD:61:1E:E1:C5:66:C9:BA:6F:2A:E0:D3:52:0D:A9 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 65BA371CE701EE2BCB27D758710E63FB6B3660B5 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3755c360-cca3-42ae-ad2c-d07e2bd16308.roa Signing time: Mon 22 Sep 2025 23:41:59 +0000 ROA not before: Mon 22 Sep 2025 23:41:59 +0000 ROA not after: Mon 27 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.84.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:ba:37:1c:e7:01:ee:2b:cb:27:d7:58:71:0e:63:fb:6b:36:60:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 22 23:41:59 2025 GMT Not After : Oct 27 23:59:59 2025 GMT Subject: serialNumber=ce1e61d5796a1d1134a1e7b5f80e08ab9d17fe5310147eacf86cf44a30cf919a, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ef:d9:08:ac:3a:c7:c9:d8:6b:38:66:27:d2: 51:c3:87:3e:41:83:bd:6a:c9:e4:27:df:a3:a6:fe: ce:51:a1:c9:20:e6:8e:41:13:4e:93:15:66:07:5f: 79:9d:87:10:81:57:e2:f0:fe:fe:09:5e:99:0b:dd: 53:62:03:b9:97:54:cc:75:e0:d4:1c:18:c1:04:24: 39:05:38:b3:6e:9b:f2:6b:4c:f0:a6:eb:6c:73:69: e7:00:34:db:f1:6c:5f:58:68:dd:4f:79:a1:c5:2a: 22:44:25:72:cb:14:70:28:d0:4c:ab:20:3c:44:91: 9a:94:35:bd:82:97:63:e0:00:8b:7b:09:95:38:ce: f6:03:ec:80:42:ff:77:67:56:fb:72:aa:76:39:5e: e5:05:69:d2:a5:d4:d9:62:2c:bf:c0:c5:bb:c8:56: b8:d6:ad:34:0f:75:32:47:ed:79:33:1d:32:16:68: 66:d5:fe:8e:78:9b:0e:f0:a0:dd:86:92:e8:21:20: 20:c7:ca:4b:5f:8e:46:6c:11:24:5e:63:1e:d2:80: f4:07:e4:01:69:6d:d7:1b:43:44:ac:8b:b3:22:af: 23:2b:0c:55:c6:1e:a3:cf:20:06:59:38:de:f1:ae: a4:f4:bb:a5:1f:fb:df:dd:4f:bf:d0:c9:69:15:7e: 47:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:4D:E6:12:43:AD:61:1E:E1:C5:66:C9:BA:6F:2A:E0:D3:52:0D:A9 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3755c360-cca3-42ae-ad2c-d07e2bd16308.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.84.103.0/24 Signature Algorithm: sha256WithRSAEncryption 41:81:1b:46:a2:36:8e:54:bd:d2:8d:70:7f:17:09:87:e6:3d: fa:4c:6c:40:50:82:22:61:de:25:bd:8d:88:56:8d:49:c5:8e: 4c:98:a9:f6:98:5b:71:cf:c2:ca:a3:76:84:ab:7e:80:82:fc: 4e:94:f1:61:ac:3b:9a:f1:c8:65:7e:29:06:15:51:bc:d9:3d: d2:f2:1d:98:c9:4b:57:26:6d:e5:b9:07:2e:48:f2:f5:77:fe: 83:33:3b:69:8d:19:fb:5d:26:e1:2e:fc:04:c3:40:3d:0a:f0: a7:f6:07:e3:c1:37:ae:97:d9:60:b8:5e:0b:b6:c3:81:c9:86: f2:cd:f2:86:23:87:b8:b9:af:b7:cd:b6:6d:8e:42:56:75:e1: 65:3d:c3:95:09:d0:8a:97:76:f0:00:d0:86:29:2c:36:10:17: 06:80:5a:cb:d7:24:df:24:7f:f1:60:81:9b:a2:56:d4:fa:4a: b2:2f:01:d0:df:6d:32:d8:93:b7:b3:3c:c5:72:f8:b4:5f:a2: b9:20:e1:7d:e7:07:83:ff:1a:22:59:99:1c:96:24:3f:10:88: 08:d3:3e:e8:75:f6:3d:14:f6:b1:b5:c7:53:12:75:45:42:12: e5:b1:c3:60:b7:10:34:c5:b7:a5:6f:82:ef:2f:a2:d3:e5:e0: 0b:22:88:24 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZbo3HOcB7ivLJ9dYcQ5j+2s2YLUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTIyMjM0MTU5WhcNMjUxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZTFlNjFkNTc5NmExZDExMzRhMWU3YjVmODBlMDhhYjlk MTdmZTUzMTAxNDdlYWNmODZjZjQ0YTMwY2Y5MTlhMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDK79kIrDrHydhrOGYn0lHDhz5Bg71qyeQn36Om/s5Rockg 5o5BE06TFWYHX3mdhxCBV+Lw/v4JXpkL3VNiA7mXVMx14NQcGMEEJDkFOLNum/Jr TPCm62xzaecANNvxbF9YaN1PeaHFKiJEJXLLFHAo0EyrIDxEkZqUNb2Cl2PgAIt7 CZU4zvYD7IBC/3dnVvtyqnY5XuUFadKl1NliLL/AxbvIVrjWrTQPdTJH7XkzHTIW aGbV/o54mw7woN2GkughICDHyktfjkZsESReYx7SgPQH5AFpbdcbQ0Ssi7MiryMr DFXGHqPPIAZZON7xrqT0u6Uf+9/dT7/QyWkVfkfPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUbE3mEkOtYR7hxWbJum8q4NNSDakwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzM3NTVjMzYwLWNjYTMtNDJhZS1hZDJjLWQwN2UyYmQxNjMwOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA0VGcwDQYJKoZIhvcNAQELBQADggEBAEGBG0aiNo5UvdKNcH8XCYfmPfpM bEBQgiJh3iW9jYhWjUnFjkyYqfaYW3HPwsqjdoSrfoCC/E6U8WGsO5rxyGV+KQYV UbzZPdLyHZjJS1cmbeW5By5I8vV3/oMzO2mNGftdJuEu/ATDQD0K8Kf2B+PBN66X 2WC4Xgu2w4HJhvLN8oYjh7i5r7fNtm2OQlZ14WU9w5UJ0IqXdvAA0IYpLDYQFwaA WsvXJN8kf/FggZuiVtT6SrIvAdDfbTLYk7ezPMVy+LRforkg4X3nB4P/GiJZmRyW JD8QiAjTPuh19j0U9rG1x1MSdUVCEuWxw2C3EDTFt6Vvgu8votPl4AsiiCQ= -----END CERTIFICATE-----Generated at Sat Oct 18 05:11:41 2025 by rpki-client