$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/71d6a8ef-6812-4b82-be67-19cf6fd22ae0.roa File: 71d6a8ef-6812-4b82-be67-19cf6fd22ae0.roa (raw, json) Hash identifier: +iwawpgBdWGImF7dyTWFvucj//ANA3g3cpQXuPBDScg= Subject key identifier: 41:E1:2F:5E:34:48:A2:A6:9D:71:26:6C:28:F5:A9:27:0A:92:5F:91 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 2BA774B870531F4610A314B4B21EB797833DD7 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/71d6a8ef-6812-4b82-be67-19cf6fd22ae0.roa Signing time: Fri 10 Oct 2025 15:38:42 +0000 ROA not before: Fri 10 Oct 2025 15:38:42 +0000 ROA not after: Fri 14 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 34.223.24.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:a7:74:b8:70:53:1f:46:10:a3:14:b4:b2:1e:b7:97:83:3d:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 10 15:38:42 2025 GMT Not After : Nov 14 23:59:59 2025 GMT Subject: serialNumber=401501d1ab97468a5a1d3c96b769accaf1726e159aee2ed6ee5b122eeb3a22b5, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:1c:29:ab:58:c9:88:e3:0f:79:7f:e9:c8:e8: 18:26:1e:11:e3:78:0b:bb:40:2c:bc:be:17:41:bd: c3:64:0d:60:92:7a:16:dd:74:3f:c1:f6:63:6d:04: c1:96:34:1e:78:52:1e:3b:f7:91:7b:34:ec:82:e9: c0:1b:65:61:b8:6d:71:ce:54:33:e7:b4:3e:ac:d2: f9:a0:96:cb:79:f1:fb:2c:a0:4f:d3:d3:27:a1:64: 49:a7:43:d6:3c:80:1e:57:71:94:27:76:b4:94:89: 68:d9:fd:73:93:56:91:e1:a7:1f:d4:a1:d0:79:e3: 99:83:4d:a2:65:7a:57:a8:c5:84:1e:87:45:fb:ac: be:9f:95:b0:a4:a2:dd:6f:34:66:ec:08:cb:47:02: 8b:ab:42:63:c7:7b:93:e9:d1:3c:ed:98:98:e6:ac: 90:3d:66:a5:3d:5b:03:71:31:18:43:8f:7a:1c:f4: 28:c2:4a:99:3c:dd:49:dc:e5:d2:f4:32:7b:f3:3b: ab:1a:49:5c:69:e8:12:f6:34:25:8e:86:a4:85:42: 5b:23:cf:24:8d:6b:3a:46:7b:7a:3f:3c:0f:9f:7a: 8e:1d:ee:93:1f:49:79:c5:38:37:11:c5:57:fa:c6: 4d:1d:c7:d8:68:f5:36:27:10:07:06:8a:65:a3:6e: 4e:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:E1:2F:5E:34:48:A2:A6:9D:71:26:6C:28:F5:A9:27:0A:92:5F:91 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/71d6a8ef-6812-4b82-be67-19cf6fd22ae0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 34.223.24.0/22 Signature Algorithm: sha256WithRSAEncryption 59:34:32:99:60:f4:fd:fa:5d:78:a1:7a:c4:b2:c9:dd:ac:87: 32:36:53:65:61:ef:71:05:91:aa:65:98:84:ee:67:ec:0c:f1: d5:da:22:22:55:a8:0c:f8:d2:67:f4:7e:cc:8f:fa:5e:a9:f8: 9a:66:e0:08:0f:35:70:29:fe:26:46:ef:13:33:61:b9:8a:d3: 76:d1:b5:ac:f2:a8:70:bd:ce:d3:40:c5:fa:5b:72:19:33:ff: ea:37:73:0b:93:43:d4:23:8e:50:85:8e:12:48:18:04:7c:be: 09:d1:db:66:3a:22:eb:58:3a:28:da:ee:57:e1:2e:6d:77:85: 2e:99:62:d8:8a:40:a2:2d:ad:d8:9b:88:38:ce:01:52:14:64: fb:4f:d4:83:1a:15:10:30:30:b5:16:cc:3e:3d:9a:cf:00:ab: 9c:ed:4e:f9:88:63:ce:cc:f9:03:5b:41:88:ad:71:37:6e:02: cc:c8:91:4b:c9:fc:93:44:2a:a1:c5:8e:0c:4d:a7:fa:b4:49: c5:7a:bc:0c:48:01:2a:33:d1:44:74:44:0f:2e:5c:2c:1e:43: 32:c1:5d:07:e4:3c:04:38:74:55:60:b5:bb:51:64:e1:8b:e7: 9e:46:99:5b:7a:bd:c8:a0:04:c3:dd:c4:c2:a2:41:17:70:4f: e0:0e:51:e7 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITK6d0uHBTH0YQoxS0sh63l4M91zANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzJkZjZmM2IzYTM0YjYzODZkMWEzMmQ4ZjRmYTMxNzhlZjMx ODg3ZDhiNDI4ZGZhYTQ3NjAeFw0yNTEwMTAxNTM4NDJaFw0yNTExMTQyMzU5NTla MHoxSTBHBgNVBAUTQDQwMTUwMWQxYWI5NzQ2OGE1YTFkM2M5NmI3NjlhY2NhZjE3 MjZlMTU5YWVlMmVkNmVlNWIxMjJlZWIzYTIyYjUxLTArBgNVBAMTJDVmMjc2MDQ1 LTViOWYtNDVlZi05MjNkLWYzZmNlMjRhNjIyNTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAOEcKatYyYjjD3l/6cjoGCYeEeN4C7tALLy+F0G9w2QNYJJ6 Ft10P8H2Y20EwZY0HnhSHjv3kXs07ILpwBtlYbhtcc5UM+e0PqzS+aCWy3nx+yyg T9PTJ6FkSadD1jyAHldxlCd2tJSJaNn9c5NWkeGnH9Sh0HnjmYNNomV6V6jFhB6H Rfusvp+VsKSi3W80ZuwIy0cCi6tCY8d7k+nRPO2YmOaskD1mpT1bA3ExGEOPehz0 KMJKmTzdSdzl0vQye/M7qxpJXGnoEvY0JY6GpIVCWyPPJI1rOkZ7ej88D596jh3u kx9JecU4NxHFV/rGTR3H2Gj1NicQBwaKZaNuTvMCAwEAAaOCArEwggKtMB0GA1Ud DgQWBBRB4S9eNEiipp1xJmwo9aknCpJfkTAfBgNVHSMEGDAWgBQlrdNCsB63pY6t GZAmiLVLP4H0uDAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzg1MWNlZjE3LTEz MmEtNDMzNy1iN2QxLWJmMTZhNTJmZmQwMy9kZjZmM2IzYTM0YjYzODZkMWEzMmQ4 ZjRmYTMxNzhlZjMxODg3ZDhiNDI4ZGZhYTQ3Ni5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9mNzAzNjk2ZS1lNDdiLTRjMjAtYmQ5My02Zjgw OTA0ZTQyZDIvNzFkNmE4ZWYtNjgxMi00YjgyLWJlNjctMTljZjZmZDIyYWUwLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMt NmY4MDkwNGU0MmQyL3RqaHRHakxZOVBveGVPOHhpSDJMUW8zNnBIWS5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAiLfGDANBgkqhkiG9w0BAQsFAAOCAQEAWTQymWD0/fpdeKF6xLLJ3ayHMjZT ZWHvcQWRqmWYhO5n7Azx1doiIlWoDPjSZ/R+zI/6Xqn4mmbgCA81cCn+JkbvEzNh uYrTdtG1rPKocL3O00DF+ltyGTP/6jdzC5ND1COOUIWOEkgYBHy+CdHbZjoi61g6 KNruV+EubXeFLpli2IpAoi2t2JuIOM4BUhRk+0/UgxoVEDAwtRbMPj2azwCrnO1O +Yhjzsz5A1tBiK1xN24CzMiRS8n8k0QqocWODE2n+rRJxXq8DEgBKjPRRHREDy5c LB5DMsFdB+Q8BDh0VWC1u1Fk4YvnnkaZW3q9yKAEw93EwqJBF3BP4A5R5w== -----END CERTIFICATE-----Generated at Fri Oct 17 23:54:18 2025 by rpki-client