$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4be5bf81-7974-4cac-8621-0cce3471aa2b.roa File: 4be5bf81-7974-4cac-8621-0cce3471aa2b.roa (raw, json) Hash identifier: hVFRmGyYAeRxAFg1WK+L9Oe1duEYoZes+YXTNjFiFMA= Subject key identifier: BC:BB:59:F4:52:0D:F3:C0:78:C0:9A:CB:05:1F:41:6C:70:34:94:8C Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 5EEE7ACE8457936B7E1C6AFEF767120B5E4051BD Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4be5bf81-7974-4cac-8621-0cce3471aa2b.roa Signing time: Fri 19 Sep 2025 17:11:23 +0000 ROA not before: Fri 19 Sep 2025 17:11:23 +0000 ROA not after: Fri 24 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.245.160.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:ee:7a:ce:84:57:93:6b:7e:1c:6a:fe:f7:67:12:0b:5e:40:51:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 19 17:11:23 2025 GMT Not After : Oct 24 23:59:59 2025 GMT Subject: serialNumber=e8a7fa81f80806a3077ed83af0e66a8f8cc8491b007d9b2a7cbdeb76a2dcb8c7, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:6b:83:82:06:be:66:60:e0:ce:15:14:a0:c8: 14:9a:f0:74:ae:7c:4e:87:4b:f1:7a:ef:01:79:ca: ce:7f:b4:8a:4f:80:bf:c8:5b:7d:8f:f3:cb:09:fb: fb:d0:34:62:b8:11:ed:2d:95:29:96:5f:aa:d4:d9: 52:75:a7:38:bc:c4:82:29:be:18:b3:77:f9:1e:0a: fd:f6:e0:b7:12:60:5d:b2:c8:63:14:95:75:0d:e1: 2e:62:63:ce:ef:7c:92:63:60:67:88:7b:1e:6e:9d: ee:20:f2:f7:f0:a4:75:63:b0:77:ea:01:5e:73:cb: 60:15:19:45:11:21:95:05:9d:3b:67:e3:31:a2:96: b7:30:e0:e9:7b:58:2c:ac:db:74:00:bd:3a:fb:85: fc:04:1d:ea:41:ca:a5:d0:06:5f:94:fa:b8:6a:93: c3:83:cd:7e:ec:fe:b5:07:11:4e:fb:b9:6b:d4:e2: 3d:d9:e7:e1:09:8b:c4:9a:b0:99:43:e7:2d:aa:dc: 9b:a7:87:d8:b1:54:be:c8:5a:b8:67:04:05:7d:43: 23:d1:c1:08:4f:02:fa:e3:f6:3b:7a:b8:40:ff:0f: d8:af:45:63:ab:a7:7b:e2:1a:39:e4:ef:83:19:5b: 5f:32:dd:47:3a:ae:1d:94:2c:83:3e:d1:11:a9:ef: bf:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:BB:59:F4:52:0D:F3:C0:78:C0:9A:CB:05:1F:41:6C:70:34:94:8C X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4be5bf81-7974-4cac-8621-0cce3471aa2b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.245.160.0/21 Signature Algorithm: sha256WithRSAEncryption 96:ae:7e:37:a9:9d:5c:5d:aa:cd:ba:5f:0f:9e:05:fc:10:44: 17:d8:6d:f7:57:7b:07:47:d0:b4:1b:9c:92:d1:43:0e:d9:3d: 9b:8b:ad:b5:6d:0c:e5:1d:8c:19:59:24:4b:89:81:fd:20:26: 4f:cc:9c:7a:d4:16:3c:07:5a:e5:cf:94:bc:91:0d:78:de:42: 0b:22:30:90:12:51:fe:de:07:3a:42:32:da:2a:f5:38:48:16: 7c:cc:d8:8e:38:8d:1c:2d:20:1c:49:68:84:02:f4:83:f4:53: 0d:2b:ef:03:3b:08:fc:5a:e5:65:24:8d:69:21:96:49:91:66: 32:fa:a0:31:a7:9f:b5:df:a6:28:89:9b:a3:c7:56:1c:82:4b: 54:f5:bd:61:e1:9e:85:cf:16:95:9e:bd:b8:ce:07:fc:0b:8c: a4:1f:87:a6:b1:d8:38:ff:3e:eb:f4:2b:da:af:37:ac:84:3b: 84:ad:97:89:33:0a:42:60:b8:db:29:7f:97:2f:87:a6:d1:ca: a1:39:f1:f2:2c:c6:bc:ed:f7:10:ec:7d:c8:20:4f:d4:7d:5d: 76:88:b6:cf:9f:ad:6a:d9:0d:62:bd:2f:ab:ce:4d:58:d7:3a: 40:f9:b4:98:ff:76:62:9e:b2:ce:53:15:16:9d:68:b6:13:a3: 17:3b:45:4a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXu56zoRXk2t+HGr+92cSC15AUb0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTE5MTcxMTIzWhcNMjUxMDI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BlOGE3ZmE4MWY4MDgwNmEzMDc3ZWQ4M2FmMGU2NmE4Zjhj Yzg0OTFiMDA3ZDliMmE3Y2JkZWI3NmEyZGNiOGM3MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMa4OCBr5mYODOFRSgyBSa8HSufE6HS/F67wF5ys5/tIpP gL/IW32P88sJ+/vQNGK4Ee0tlSmWX6rU2VJ1pzi8xIIpvhizd/keCv324LcSYF2y yGMUlXUN4S5iY87vfJJjYGeIex5une4g8vfwpHVjsHfqAV5zy2AVGUURIZUFnTtn 4zGilrcw4Ol7WCys23QAvTr7hfwEHepByqXQBl+U+rhqk8ODzX7s/rUHEU77uWvU 4j3Z5+EJi8SasJlD5y2q3Junh9ixVL7IWrhnBAV9QyPRwQhPAvrj9jt6uED/D9iv RWOrp3viGjnk74MZW18y3Uc6rh2ULIM+0RGp77/7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUvLtZ9FIN88B4wJrLBR9BbHA0lIwwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzRiZTViZjgxLTc5NzQtNGNhYy04NjIxLTBjY2UzNDcxYWEyYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAM29aAwDQYJKoZIhvcNAQELBQADggEBAJaufjepnVxdqs26Xw+eBfwQRBfY bfdXewdH0LQbnJLRQw7ZPZuLrbVtDOUdjBlZJEuJgf0gJk/MnHrUFjwHWuXPlLyR DXjeQgsiMJASUf7eBzpCMtoq9ThIFnzM2I44jRwtIBxJaIQC9IP0Uw0r7wM7CPxa 5WUkjWkhlkmRZjL6oDGnn7XfpiiJm6PHVhyCS1T1vWHhnoXPFpWevbjOB/wLjKQf h6ax2Dj/Puv0K9qvN6yEO4Stl4kzCkJguNspf5cvh6bRyqE58fIsxrzt9xDsfcgg T9R9XXaIts+frWrZDWK9L6vOTVjXOkD5tJj/dmKess5TFRadaLYToxc7RUo= -----END CERTIFICATE-----Generated at Sat Oct 18 02:42:03 2025 by rpki-client