$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5933b4db-ccbb-47a3-a37b-fa7ff2d0ad09.roa File: 5933b4db-ccbb-47a3-a37b-fa7ff2d0ad09.roa (raw, json) Hash identifier: lbGe8W7iY6yjelEOgpssf2V8ja3Uh96NC4iUMpCuFC0= Subject key identifier: A8:4D:60:81:76:F5:6B:18:23:6A:FB:75:8A:55:29:2B:8C:66:E4:87 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 4D47EFE09AC4DD6AB936E902CDD823908F6A4384 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5933b4db-ccbb-47a3-a37b-fa7ff2d0ad09.roa Signing time: Tue 21 Oct 2025 06:20:08 +0000 ROA not before: Tue 21 Oct 2025 06:20:08 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 159.209.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 23 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:47:ef:e0:9a:c4:dd:6a:b9:36:e9:02:cd:d8:23:90:8f:6a:43:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 21 06:20:08 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=b6eaf5392dc8efcc05f2c53ca1b8daacc8407d8bc7ca3d9a911a91df302d4bdb, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:c5:b9:6f:7a:af:5c:01:72:e3:7e:20:97:6a: a8:a3:dd:6e:3d:6d:ba:40:8d:87:3a:af:76:07:f8: be:41:10:c1:1d:1d:6c:8f:cf:9b:47:34:91:b4:7a: ff:62:bb:45:dd:00:27:67:39:11:f7:02:7d:63:92: f6:ec:78:eb:fd:5e:05:be:de:2e:4e:73:7c:ba:f9: fa:92:d1:e4:0c:57:06:f2:58:26:d6:62:bb:00:62: b1:f8:fa:f5:dc:9f:a2:04:95:ea:d2:2d:65:64:bd: 8f:7d:14:f8:4a:37:09:3f:8e:27:9d:82:82:04:e6: f0:0b:86:c3:ef:4f:1c:be:73:d0:e7:13:3b:35:1c: cc:f4:92:9a:da:86:fd:13:ba:e3:4b:90:35:c7:96: 77:22:de:f3:d1:2c:9a:4f:1a:2d:63:2c:f6:04:87: 6b:ed:a5:bf:b6:12:37:fa:37:fe:f5:3c:a5:c3:c9: ac:30:ae:41:10:13:b8:2c:9d:6c:0e:85:ba:66:f7: 24:7b:8e:22:93:7e:58:a1:fc:03:cc:e6:e5:c4:8e: b2:e1:70:68:9d:d9:61:ef:70:73:66:a7:82:2a:08: bb:63:09:61:7a:bb:bb:af:ea:3d:e6:10:52:df:a7: bf:9d:41:79:92:4f:43:82:81:88:51:b7:a4:41:90: 27:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:4D:60:81:76:F5:6B:18:23:6A:FB:75:8A:55:29:2B:8C:66:E4:87 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5933b4db-ccbb-47a3-a37b-fa7ff2d0ad09.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 159.209.0.0/16 Signature Algorithm: sha256WithRSAEncryption 71:ee:77:4f:92:4a:3e:7e:6d:f6:0d:8c:59:32:6c:a0:01:22: 32:a0:ee:07:a4:a7:73:25:c0:8f:f9:49:d9:e2:83:59:fc:28: 29:6e:06:de:66:8b:a9:10:c2:af:d2:e2:3c:25:5d:c6:d7:06: 14:b6:da:a6:65:e9:ea:ca:5e:af:df:e2:e1:a6:75:a7:5e:71: e0:b9:06:c8:70:e6:89:e6:4d:0d:15:20:98:2a:98:1a:51:8c: 8f:6f:6c:6b:82:c4:85:b7:37:6a:7b:2d:d3:c5:16:81:6b:de: 7b:04:d8:69:8a:52:ee:db:06:26:8d:06:92:4c:1d:40:35:41: 0b:27:e8:f4:0f:7b:84:d8:d9:6f:05:33:31:9f:6b:3c:ad:67: 58:0b:f5:eb:92:26:2f:69:9e:89:a7:ed:88:2b:de:e6:c9:63: 36:7c:51:09:6a:2b:bd:43:b9:78:33:3e:71:ef:c5:c7:d1:77: 87:7d:23:71:03:85:8a:4b:d8:4f:72:88:9c:4f:41:17:27:43: 5a:99:21:33:2f:c5:ed:4b:13:1a:70:1c:3f:7d:fe:27:e8:db: 7c:e3:ef:28:0d:9f:4a:5b:8c:06:a9:45:5b:22:49:29:82:3b: 3d:89:80:9a:f6:4a:f1:ae:d5:9b:5f:fa:3c:83:79:b5:28:54: a0:ee:66:65 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUTUfv4JrE3Wq5NukCzdgjkI9qQ4QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDIxMDYyMDA4WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BiNmVhZjUzOTJkYzhlZmNjMDVmMmM1M2NhMWI4ZGFhY2M4 NDA3ZDhiYzdjYTNkOWE5MTFhOTFkZjMwMmQ0YmRiMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIxblveq9cAXLjfiCXaqij3W49bbpAjYc6r3YH+L5BEMEd HWyPz5tHNJG0ev9iu0XdACdnORH3An1jkvbseOv9XgW+3i5Oc3y6+fqS0eQMVwby WCbWYrsAYrH4+vXcn6IElerSLWVkvY99FPhKNwk/jiedgoIE5vALhsPvTxy+c9Dn Ezs1HMz0kprahv0TuuNLkDXHlnci3vPRLJpPGi1jLPYEh2vtpb+2Ejf6N/71PKXD yawwrkEQE7gsnWwOhbpm9yR7jiKTflih/APM5uXEjrLhcGid2WHvcHNmp4IqCLtj CWF6u7uv6j3mEFLfp7+dQXmST0OCgYhRt6RBkCeJAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUqE1ggXb1axgjavt1ilUpK4xm5IcwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzU5MzNiNGRiLWNjYmItNDdhMy1hMzdiLWZhN2ZmMmQwYWQwOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCf0TANBgkqhkiG9w0BAQsFAAOCAQEAce53T5JKPn5t9g2MWTJsoAEiMqDu B6SncyXAj/lJ2eKDWfwoKW4G3maLqRDCr9LiPCVdxtcGFLbapmXp6sper9/i4aZ1 p15x4LkGyHDmieZNDRUgmCqYGlGMj29sa4LEhbc3anst08UWgWveewTYaYpS7tsG Jo0GkkwdQDVBCyfo9A97hNjZbwUzMZ9rPK1nWAv165ImL2meiaftiCve5sljNnxR CWorvUO5eDM+ce/Fx9F3h30jcQOFikvYT3KInE9BFydDWpkhMy/F7UsTGnAcP33+ J+jbfOPvKA2fSluMBqlFWyJJKYI7PYmAmvZK8a7Vm1/6PIN5tShUoO5mZQ== -----END CERTIFICATE-----Generated at Tue Oct 21 20:24:16 2025 by rpki-client