$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5c7f6f04-bfce-4f41-a157-64e6e6ebef4e.roa File: 5c7f6f04-bfce-4f41-a157-64e6e6ebef4e.roa (raw, json) Hash identifier: bmmUWqjoRRK5ZPZfraXp3mGLzbAiX8N3/RwivAl9XYs= Subject key identifier: CB:F3:14:1F:F4:7A:D5:AA:01:F4:A3:42:1D:AB:E1:4C:1F:D5:4B:37 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 0AD41D92F25B46C95946DA2E36E945433E2210C9 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5c7f6f04-bfce-4f41-a157-64e6e6ebef4e.roa Signing time: Fri 26 Sep 2025 15:30:56 +0000 ROA not before: Fri 26 Sep 2025 15:30:56 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.220.144.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:d4:1d:92:f2:5b:46:c9:59:46:da:2e:36:e9:45:43:3e:22:10:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 26 15:30:56 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=6a0e6061342c3e2db7475b899f0a75e3e4acb38e4f362036970f91faf7509964, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:be:d1:ae:3c:3e:a5:6a:6b:2b:f5:09:f8:68: ba:de:9a:08:cc:87:90:38:68:22:92:7f:b9:26:f5: 8c:68:e5:56:35:65:8f:8a:4e:9d:82:f9:18:2a:07: a0:f5:f4:f2:29:16:14:05:bf:48:41:a0:aa:d2:d9: 0d:f1:8b:63:05:2c:3c:66:94:20:26:46:af:07:09: 82:ed:b9:a5:9d:ce:52:bd:47:46:83:f5:03:eb:7b: ef:e8:0d:a7:10:15:e2:01:49:58:0e:0b:44:66:cb: 5d:83:06:05:44:6a:15:21:7a:9f:8f:c1:95:83:da: b4:80:f2:91:8b:27:0b:99:07:03:fb:a5:4a:e6:e5: cd:4b:5e:f8:9a:e1:32:0e:7f:45:35:ec:63:1e:4e: 27:52:98:63:2a:29:68:fd:88:3a:52:c0:b4:b9:66: fc:8e:cd:77:07:8c:37:5e:34:56:bb:af:6a:6e:af: 2a:5d:8e:3f:4e:46:ca:84:af:05:7d:0b:89:ad:c7: 84:57:fc:52:1e:56:6d:8b:ed:67:42:d5:9d:5d:e2: 7f:b2:df:0b:ad:60:42:3e:e5:d8:96:6f:e0:0d:89: 53:af:12:e1:17:51:93:19:65:f2:94:d9:18:15:d2: bb:13:70:d8:26:59:f5:c4:99:f5:ed:74:67:ae:76: 97:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:F3:14:1F:F4:7A:D5:AA:01:F4:A3:42:1D:AB:E1:4C:1F:D5:4B:37 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5c7f6f04-bfce-4f41-a157-64e6e6ebef4e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.220.144.0/23 Signature Algorithm: sha256WithRSAEncryption 3f:b7:81:77:06:e0:30:90:1e:7e:b1:17:fd:6b:e2:c5:6e:cd: 77:2c:70:18:71:64:ff:d9:26:9b:19:69:bc:ed:ca:10:6a:f6: 52:26:8d:11:0d:13:98:c3:f2:34:12:2d:bc:53:e6:86:c4:3e: 52:4e:38:d8:11:76:1d:3e:f1:8a:ce:9a:2e:40:b7:07:9c:32: 25:3b:37:2b:14:28:74:44:08:30:f7:44:40:f9:1d:e6:1a:60: ed:73:e0:90:64:62:00:96:8a:f0:a7:64:1f:76:99:e9:84:e7: 1f:a9:9b:7a:8a:5c:25:dd:f3:f4:6e:a8:56:cf:a9:c4:50:f2: c3:49:37:c5:74:9d:9f:9e:f5:b2:c4:22:07:a8:21:2f:e2:55: 11:0a:26:38:04:6f:d3:aa:74:77:af:21:37:2d:6b:db:5e:8c: 9e:d1:61:a7:89:5e:9c:2a:42:df:ef:2e:54:ed:66:6c:60:d0: d6:ed:fa:83:a0:87:f4:9d:4d:33:dc:b2:99:e9:24:05:47:26: 80:20:7b:31:b6:0d:ba:12:4d:52:fb:1c:86:73:f0:37:43:a2: 2c:b5:79:ed:4e:f6:ab:aa:db:0d:1d:5b:08:cc:63:30:8a:88: 38:ac:27:b6:30:0b:26:b5:ae:0f:b7:dd:84:f5:cf:cb:e7:18: 12:0c:83:bd -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCtQdkvJbRslZRtouNulFQz4iEMkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTI2MTUzMDU2WhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0A2YTBlNjA2MTM0MmMzZTJkYjc0NzViODk5ZjBhNzVlM2U0 YWNiMzhlNGYzNjIwMzY5NzBmOTFmYWY3NTA5OTY0MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDmvtGuPD6lamsr9Qn4aLremgjMh5A4aCKSf7km9Yxo5VY1 ZY+KTp2C+RgqB6D19PIpFhQFv0hBoKrS2Q3xi2MFLDxmlCAmRq8HCYLtuaWdzlK9 R0aD9QPre+/oDacQFeIBSVgOC0Rmy12DBgVEahUhep+PwZWD2rSA8pGLJwuZBwP7 pUrm5c1LXvia4TIOf0U17GMeTidSmGMqKWj9iDpSwLS5ZvyOzXcHjDdeNFa7r2pu rypdjj9ORsqErwV9C4mtx4RX/FIeVm2L7WdC1Z1d4n+y3wutYEI+5diWb+ANiVOv EuEXUZMZZfKU2RgV0rsTcNgmWfXEmfXtdGeudpebAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUy/MUH/R61aoB9KNCHavhTB/VSzcwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzVjN2Y2ZjA0LWJmY2UtNGY0MS1hMTU3LTY0ZTZlNmViZWY0ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEP3JAwDQYJKoZIhvcNAQELBQADggEBAD+3gXcG4DCQHn6xF/1r4sVuzXcs cBhxZP/ZJpsZabztyhBq9lImjRENE5jD8jQSLbxT5obEPlJOONgRdh0+8YrOmi5A twecMiU7NysUKHRECDD3RED5HeYaYO1z4JBkYgCWivCnZB92memE5x+pm3qKXCXd 8/RuqFbPqcRQ8sNJN8V0nZ+e9bLEIgeoIS/iVREKJjgEb9OqdHevITcta9tejJ7R YaeJXpwqQt/vLlTtZmxg0Nbt+oOgh/SdTTPcspnpJAVHJoAgezG2DboSTVL7HIZz 8DdDoiy1ee1O9quq2w0dWwjMYzCKiDisJ7YwCya1rg+33YT1z8vnGBIMg70= -----END CERTIFICATE-----Generated at Fri Oct 17 23:55:08 2025 by rpki-client