$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/62ca852c-bf50-48ec-9293-c00403f003d8.roa File: 62ca852c-bf50-48ec-9293-c00403f003d8.roa (raw, json) Hash identifier: voyvA2P12rM8RI1taeDc9lUiHjIZ52XjQUsJSpLpZoI= Subject key identifier: C2:D5:A2:B9:94:59:45:8C:FA:9B:AF:09:C8:9D:FF:75:C3:A1:1D:47 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 49E3F407622F156FECDC83AA019EAE8BFFB67499 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/62ca852c-bf50-48ec-9293-c00403f003d8.roa Signing time: Thu 16 Oct 2025 17:48:42 +0000 ROA not before: Thu 16 Oct 2025 17:48:42 +0000 ROA not after: Thu 20 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.222.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:e3:f4:07:62:2f:15:6f:ec:dc:83:aa:01:9e:ae:8b:ff:b6:74:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 16 17:48:42 2025 GMT Not After : Nov 20 23:59:59 2025 GMT Subject: serialNumber=aa3f25c892cf14ae1cd1e9a3c1dbb1e9b42463207e9357204f65ad30903f375d, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:16:a5:84:7c:a7:c9:76:58:8d:ee:cd:c3:00: dc:06:91:92:65:74:9c:ae:e3:ae:63:c2:42:70:d4: f9:f7:ff:e1:56:4f:06:52:24:87:68:d4:f5:bd:5b: 39:97:40:34:70:01:eb:bd:6b:c7:9b:82:0d:fa:74: e4:c5:1f:76:ab:d9:05:0a:69:da:4d:e3:21:bc:02: b8:7b:7a:ba:11:af:70:30:a2:65:c9:a8:09:ea:78: 54:9b:fc:69:fc:3c:94:c0:9d:64:05:8f:4e:2b:20: 4a:c8:8f:9f:f4:d6:c8:a1:1f:44:a5:c5:e2:63:aa: ef:49:92:e8:f8:60:f1:d0:e0:11:d3:c6:8c:b7:9c: 51:e0:63:de:82:bc:ed:1e:bf:87:c3:b1:b2:03:bd: 30:e8:bf:8b:e9:c8:c3:5f:bc:59:02:52:14:db:5d: 36:71:3e:7f:35:77:68:12:68:79:45:cc:74:0d:0f: ea:b2:e4:47:b9:89:2a:f7:8a:d7:e4:23:f2:b6:d5: 7b:de:00:a2:7b:ef:a3:cd:94:93:c0:d4:a5:b3:ed: 1c:87:29:89:bd:9c:2c:2a:dd:2a:be:15:9f:60:19: ff:15:90:32:cc:92:2a:82:c3:60:06:5b:b9:77:d9: bf:a7:6a:31:4f:55:82:b3:bd:43:e9:fa:92:03:fb: 3c:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:D5:A2:B9:94:59:45:8C:FA:9B:AF:09:C8:9D:FF:75:C3:A1:1D:47 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/62ca852c-bf50-48ec-9293-c00403f003d8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.222.248.0/24 Signature Algorithm: sha256WithRSAEncryption a8:dd:8e:51:36:0a:44:2d:ff:04:c2:11:5d:64:bf:ae:10:05: c1:c6:16:89:b7:53:1e:5e:3c:25:00:a8:b7:b9:ee:ad:0e:da: 58:f6:66:c0:1e:b6:e5:9f:34:84:0e:a1:43:02:cd:93:55:b3: 55:4b:74:ed:4c:fe:7b:77:a2:eb:4f:be:8a:51:a6:1e:11:d0: ba:b9:53:5f:b3:69:5f:ec:05:2a:ac:ed:ca:93:e2:51:8d:22: aa:c5:84:9f:94:04:f4:40:55:8a:7e:e4:14:c6:aa:5f:81:51: ef:60:1f:cc:49:f1:6a:8d:8e:4b:ab:c8:cb:19:0c:12:72:48: 7c:bc:ca:ab:a0:58:ed:93:f0:60:11:de:5b:5f:1c:ad:db:b8: 12:73:ac:02:06:3d:79:07:51:1e:58:89:b6:e6:ec:7a:e5:17: 63:c6:53:05:00:aa:57:cc:0f:49:4d:7e:a9:92:a0:2b:47:ea: eb:66:91:fe:19:6f:26:f5:2f:5d:86:43:10:20:84:0b:8d:d3: 6f:ba:97:5c:35:1a:80:4d:a7:68:58:cb:46:6f:7d:a3:07:72: 82:33:20:63:24:26:ce:81:06:4e:fa:d1:41:9f:b2:c6:60:39: 62:a9:e9:2b:dd:fc:5b:8b:04:86:59:f8:4d:40:1f:42:1b:33: a7:18:af:20 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSeP0B2IvFW/s3IOqAZ6ui/+2dJkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE2MTc0ODQyWhcNMjUxMTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhYTNmMjVjODkyY2YxNGFlMWNkMWU5YTNjMWRiYjFlOWI0 MjQ2MzIwN2U5MzU3MjA0ZjY1YWQzMDkwM2YzNzVkMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4FqWEfKfJdliN7s3DANwGkZJldJyu465jwkJw1Pn3/+FW TwZSJIdo1PW9WzmXQDRwAeu9a8ebgg36dOTFH3ar2QUKadpN4yG8Arh7eroRr3Aw omXJqAnqeFSb/Gn8PJTAnWQFj04rIErIj5/01sihH0SlxeJjqu9Jkuj4YPHQ4BHT xoy3nFHgY96CvO0ev4fDsbIDvTDov4vpyMNfvFkCUhTbXTZxPn81d2gSaHlFzHQN D+qy5Ee5iSr3itfkI/K21XveAKJ776PNlJPA1KWz7RyHKYm9nCwq3Sq+FZ9gGf8V kDLMkiqCw2AGW7l32b+najFPVYKzvUPp+pID+zxtAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUwtWiuZRZRYz6m68JyJ3/dcOhHUcwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzYyY2E4NTJjLWJmNTAtNDhlYy05MjkzLWMwMDQwM2YwMDNkOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA03vgwDQYJKoZIhvcNAQELBQADggEBAKjdjlE2CkQt/wTCEV1kv64QBcHG Fom3Ux5ePCUAqLe57q0O2lj2ZsAetuWfNIQOoUMCzZNVs1VLdO1M/nt3outPvopR ph4R0Lq5U1+zaV/sBSqs7cqT4lGNIqrFhJ+UBPRAVYp+5BTGql+BUe9gH8xJ8WqN jkuryMsZDBJySHy8yqugWO2T8GAR3ltfHK3buBJzrAIGPXkHUR5Yibbm7HrlF2PG UwUAqlfMD0lNfqmSoCtH6utmkf4Zbyb1L12GQxAghAuN02+6l1w1GoBNp2hYy0Zv faMHcoIzIGMkJs6BBk760UGfssZgOWKp6Svd/FuLBIZZ+E1AH0IbM6cYryA= -----END CERTIFICATE-----Generated at Fri Oct 17 22:02:19 2025 by rpki-client