$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/61b60f73-bf0f-4026-ac8a-9e3d53b69b8d.roa File: 61b60f73-bf0f-4026-ac8a-9e3d53b69b8d.roa (raw, json) Hash identifier: oGecGHvkto8XOEYU6bx8B+nDzw/tkXw/LFig1YbJhvs= Subject key identifier: 73:C3:61:95:36:D8:55:13:4D:7B:02:76:C2:A5:E2:6E:F1:B4:DF:1B Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 4F519AE6C196E20CCB012CFAB8A822A5F90A1B07 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/61b60f73-bf0f-4026-ac8a-9e3d53b69b8d.roa Signing time: Thu 16 Oct 2025 19:24:00 +0000 ROA not before: Thu 16 Oct 2025 19:24:00 +0000 ROA not after: Thu 20 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.222.156.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:51:9a:e6:c1:96:e2:0c:cb:01:2c:fa:b8:a8:22:a5:f9:0a:1b:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 16 19:24:00 2025 GMT Not After : Nov 20 23:59:59 2025 GMT Subject: serialNumber=f7c4f46dea3ae5b6df0916612b1ec27a822487d41256a3736fb90a52e3c0d96d, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:44:7f:46:e7:82:04:d8:b3:cd:18:53:43:2b: a3:49:7e:2e:86:8d:c8:27:7f:3a:56:1d:9c:4d:38: 27:a5:29:4e:75:59:df:7c:fe:eb:e0:43:64:0c:55: e7:81:56:0b:a3:1d:d5:87:6a:5f:ad:e8:e0:be:bb: 03:2d:1e:18:f9:31:20:38:91:3c:ee:85:46:3a:ed: 07:ad:90:0d:25:ae:0b:d6:79:24:75:8f:4f:96:e9: ae:4a:9a:4b:17:6a:34:65:bf:1c:8a:ee:6e:3c:23: d1:59:79:28:3c:5a:50:2e:57:f9:82:43:95:ce:dd: 37:89:e7:4c:f5:e5:8c:30:cd:ab:dd:ae:39:2c:8d: 0d:91:f9:9b:8b:44:3a:11:b5:9a:a5:8e:20:61:f8: 48:70:4a:6e:79:e5:a4:3a:d8:c3:2f:88:14:ae:7d: 14:a3:ad:42:f4:32:d5:c6:a7:07:62:21:56:cc:b8: 4f:db:2d:cb:14:7f:23:bf:c4:6a:a7:35:48:d8:3a: 53:8e:83:dc:95:87:2c:f5:c2:a3:75:1c:75:99:2a: 80:4a:12:f3:da:7b:22:99:84:b6:62:28:6e:d6:2d: 90:9b:85:66:0d:d7:3e:20:e1:63:7e:49:dd:cb:0b: b8:ff:f4:b3:32:2e:f7:7c:b2:16:8c:92:ee:56:43: 8a:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:C3:61:95:36:D8:55:13:4D:7B:02:76:C2:A5:E2:6E:F1:B4:DF:1B X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/61b60f73-bf0f-4026-ac8a-9e3d53b69b8d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.222.156.0/24 Signature Algorithm: sha256WithRSAEncryption 47:59:70:e1:0f:58:65:81:84:c3:42:ea:15:1d:9e:ab:6e:24: 39:74:08:40:4c:4a:e5:23:29:20:6d:1a:43:d0:bb:4c:c9:78: d4:ed:1a:cc:cb:a1:2a:02:fc:5e:e6:98:2e:dd:39:aa:00:63: a4:3f:3b:44:49:68:61:d9:33:7f:c0:27:e1:cf:19:ba:af:32: ce:ec:7f:c1:d7:28:90:03:1d:b7:ee:c4:0d:3e:ed:90:4b:14: f3:63:b2:ef:5c:9c:15:25:2d:ed:64:00:0e:a9:2d:78:6d:10: 85:aa:6f:04:c5:83:5c:b6:6e:c7:fb:88:4d:98:bc:63:c2:91: b2:1f:3d:5d:bc:df:cd:ac:b4:9c:4f:e8:1a:c9:49:c8:ca:01: 21:9e:fa:03:66:2f:19:9f:9a:91:e4:ec:68:59:1a:a0:c7:2d: 3a:c2:85:e7:ef:c9:e8:4d:40:54:80:5c:09:b3:b4:fa:f2:6a: 14:fb:22:bd:a6:35:bc:43:ae:03:4c:6f:94:6b:bf:4d:25:f1: 72:4f:5f:ca:d1:12:6a:98:b2:25:53:4c:d4:a7:e6:82:1b:3a: cf:ee:45:69:d6:a3:59:98:cf:d6:15:3f:c8:ea:2c:2a:22:a4: 3b:b5:a7:ce:d8:ec:89:55:6d:a2:28:cd:10:6d:e5:ad:f9:3d: 83:c9:01:63 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUT1Ga5sGW4gzLASz6uKgipfkKGwcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE2MTkyNDAwWhcNMjUxMTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmN2M0ZjQ2ZGVhM2FlNWI2ZGYwOTE2NjEyYjFlYzI3YTgy MjQ4N2Q0MTI1NmEzNzM2ZmI5MGE1MmUzYzBkOTZkMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/RH9G54IE2LPNGFNDK6NJfi6GjcgnfzpWHZxNOCelKU51 Wd98/uvgQ2QMVeeBVgujHdWHal+t6OC+uwMtHhj5MSA4kTzuhUY67QetkA0lrgvW eSR1j0+W6a5KmksXajRlvxyK7m48I9FZeSg8WlAuV/mCQ5XO3TeJ50z15Ywwzavd rjksjQ2R+ZuLRDoRtZqljiBh+EhwSm555aQ62MMviBSufRSjrUL0MtXGpwdiIVbM uE/bLcsUfyO/xGqnNUjYOlOOg9yVhyz1wqN1HHWZKoBKEvPaeyKZhLZiKG7WLZCb hWYN1z4g4WN+Sd3LC7j/9LMyLvd8shaMku5WQ4pTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUc8NhlTbYVRNNewJ2wqXibvG03xswHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzYxYjYwZjczLWJmMGYtNDAyNi1hYzhhLTllM2Q1M2I2OWI4ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA03pwwDQYJKoZIhvcNAQELBQADggEBAEdZcOEPWGWBhMNC6hUdnqtuJDl0 CEBMSuUjKSBtGkPQu0zJeNTtGszLoSoC/F7mmC7dOaoAY6Q/O0RJaGHZM3/AJ+HP GbqvMs7sf8HXKJADHbfuxA0+7ZBLFPNjsu9cnBUlLe1kAA6pLXhtEIWqbwTFg1y2 bsf7iE2YvGPCkbIfPV28382stJxP6BrJScjKASGe+gNmLxmfmpHk7GhZGqDHLTrC hefvyehNQFSAXAmztPryahT7Ir2mNbxDrgNMb5Rrv00l8XJPX8rREmqYsiVTTNSn 5oIbOs/uRWnWo1mYz9YVP8jqLCoipDu1p87Y7IlVbaIozRBt5a35PYPJAWM= -----END CERTIFICATE-----Generated at Fri Oct 17 23:42:08 2025 by rpki-client