$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7f402875-45b3-4eb2-bfe2-ffbe07239bf7.roa File: 7f402875-45b3-4eb2-bfe2-ffbe07239bf7.roa (raw, json) Hash identifier: VUrXXVc6XSRsozeVY7w9tzndoIEaJb1TtEPWP99nUjA= Subject key identifier: B0:42:DD:7B:BB:B2:5E:99:87:EB:10:EF:55:45:63:6A:60:D1:9B:0B Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 68D3BE1E967830B48EA9D3EBD7D4D5CCDEC0BE Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7f402875-45b3-4eb2-bfe2-ffbe07239bf7.roa Signing time: Tue 23 Sep 2025 00:02:59 +0000 ROA not before: Tue 23 Sep 2025 00:02:59 +0000 ROA not after: Tue 28 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.85.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:d3:be:1e:96:78:30:b4:8e:a9:d3:eb:d7:d4:d5:cc:de:c0:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 23 00:02:59 2025 GMT Not After : Oct 28 23:59:59 2025 GMT Subject: serialNumber=043d3d8f6ec108c2ba5de379c2d117b20451045d48c1245d6327ed7bb46eb6bd, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:06:3e:b6:f7:85:fa:6c:f8:ea:2b:76:46:3c: e2:e5:59:78:a1:d6:8d:e6:13:9a:ba:18:91:17:00: 4b:5a:67:0d:77:e7:91:a9:aa:78:9e:85:c2:fb:20: 36:10:f3:e3:62:c6:8a:4f:46:bd:9a:45:35:26:09: 4e:6b:3d:8f:92:69:64:7b:42:0b:8b:f7:db:7d:4d: 7d:df:af:21:ca:ad:b5:d4:6f:6e:06:d2:75:c2:e4: 6b:32:72:81:c8:25:d7:b5:70:b3:3e:92:6f:fc:f2: 07:6d:54:34:ca:3c:cb:41:57:b6:0c:d6:b7:47:c7: a1:31:c8:16:53:ff:7f:4d:39:2e:33:d0:17:3f:e3: cb:29:0a:f1:bd:c8:83:ab:7a:9b:ec:62:35:f3:4b: df:36:b6:13:99:75:57:17:4c:b4:02:52:ec:03:49: 2d:9a:11:3b:fe:25:80:78:e9:aa:98:33:b5:2d:a2: 46:1f:c8:cb:57:c7:b1:25:e0:6c:d2:d3:f5:a3:91: 64:46:6d:86:82:13:b8:41:77:e4:b3:09:40:f3:f1: ac:dc:f8:62:0b:8e:88:a5:aa:57:db:59:fc:d6:1c: 80:23:6b:59:3b:bf:00:81:cb:8d:29:bd:d9:41:c4: b0:64:30:86:32:b3:1c:c2:4c:5a:c8:44:b4:88:ed: db:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:42:DD:7B:BB:B2:5E:99:87:EB:10:EF:55:45:63:6A:60:D1:9B:0B X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7f402875-45b3-4eb2-bfe2-ffbe07239bf7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.85.186.0/24 Signature Algorithm: sha256WithRSAEncryption 16:c0:46:b1:4d:fe:10:40:d0:f8:1c:db:e0:23:a8:55:13:0c: 1a:e9:e2:bb:f1:e7:0f:60:b9:02:b0:d5:da:00:f1:3b:2a:db: 01:5d:55:69:29:02:ac:2f:54:cd:d2:e6:d1:57:75:77:86:d7: e4:7e:83:1b:0d:30:1f:39:b1:5c:d8:a8:2c:ff:dc:08:bf:72: e1:e5:d5:d4:07:4c:7c:5c:4b:b3:f0:4b:57:30:a4:02:02:3e: f4:a8:cd:f4:a8:64:3f:f5:ad:47:f2:33:b2:38:57:5f:d6:ea: 8e:c4:6e:58:b4:11:06:f8:1c:cf:88:73:5b:83:b9:9d:82:63: d3:de:72:4f:92:5b:46:3a:ee:22:13:9c:c1:86:bf:76:46:72: ea:f7:93:35:15:03:12:ed:a8:9f:87:5a:47:6b:77:96:cf:3a: 0c:3d:e5:80:a8:af:e2:68:dc:87:44:fc:39:08:8a:bc:85:a3: e7:fa:0b:ae:b7:a0:c9:b4:4a:98:b9:56:0f:d7:5a:da:51:2e: ce:91:43:db:a3:bb:9f:ae:81:1d:e3:f4:3b:19:dd:1a:c6:2d: 98:4d:e3:ea:d9:05:d6:8e:13:23:e0:8e:d7:c2:d5:53:df:62: 62:b3:c8:6f:72:77:f8:84:85:b4:a2:41:5d:9a:16:66:bd:b1: 23:0c:28:59 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITaNO+HpZ4MLSOqdPr19TVzN7AvjANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzJkZjZmM2IzYTM0YjYzODZkMWEzMmQ4ZjRmYTMxNzhlZjMx ODg3ZDhiNDI4ZGZhYTQ3NjAeFw0yNTA5MjMwMDAyNTlaFw0yNTEwMjgyMzU5NTla MHoxSTBHBgNVBAUTQDA0M2QzZDhmNmVjMTA4YzJiYTVkZTM3OWMyZDExN2IyMDQ1 MTA0NWQ0OGMxMjQ1ZDYzMjdlZDdiYjQ2ZWI2YmQxLTArBgNVBAMTJDVmMjc2MDQ1 LTViOWYtNDVlZi05MjNkLWYzZmNlMjRhNjIyNTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBANcGPrb3hfps+OordkY84uVZeKHWjeYTmroYkRcAS1pnDXfn kamqeJ6FwvsgNhDz42LGik9GvZpFNSYJTms9j5JpZHtCC4v3231Nfd+vIcqttdRv bgbSdcLkazJygcgl17Vwsz6Sb/zyB21UNMo8y0FXtgzWt0fHoTHIFlP/f005LjPQ Fz/jyykK8b3Ig6t6m+xiNfNL3za2E5l1VxdMtAJS7ANJLZoRO/4lgHjpqpgztS2i Rh/Iy1fHsSXgbNLT9aORZEZthoITuEF35LMJQPPxrNz4YguOiKWqV9tZ/NYcgCNr WTu/AIHLjSm92UHEsGQwhjKzHMJMWshEtIjt2ycCAwEAAaOCArEwggKtMB0GA1Ud DgQWBBSwQt17u7JemYfrEO9VRWNqYNGbCzAfBgNVHSMEGDAWgBQlrdNCsB63pY6t GZAmiLVLP4H0uDAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzg1MWNlZjE3LTEz MmEtNDMzNy1iN2QxLWJmMTZhNTJmZmQwMy9kZjZmM2IzYTM0YjYzODZkMWEzMmQ4 ZjRmYTMxNzhlZjMxODg3ZDhiNDI4ZGZhYTQ3Ni5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9mNzAzNjk2ZS1lNDdiLTRjMjAtYmQ5My02Zjgw OTA0ZTQyZDIvN2Y0MDI4NzUtNDViMy00ZWIyLWJmZTItZmZiZTA3MjM5YmY3LnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMt NmY4MDkwNGU0MmQyL3RqaHRHakxZOVBveGVPOHhpSDJMUW8zNnBIWS5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEADRVujANBgkqhkiG9w0BAQsFAAOCAQEAFsBGsU3+EEDQ+Bzb4COoVRMMGuni u/HnD2C5ArDV2gDxOyrbAV1VaSkCrC9UzdLm0Vd1d4bX5H6DGw0wHzmxXNioLP/c CL9y4eXV1AdMfFxLs/BLVzCkAgI+9KjN9KhkP/WtR/IzsjhXX9bqjsRuWLQRBvgc z4hzW4O5nYJj095yT5JbRjruIhOcwYa/dkZy6veTNRUDEu2on4daR2t3ls86DD3l gKiv4mjch0T8OQiKvIWj5/oLrregybRKmLlWD9da2lEuzpFD26O7n66BHeP0Oxnd GsYtmE3j6tkF1o4TI+CO18LVU99iYrPIb3J3+ISFtKJBXZoWZr2xIwwoWQ== -----END CERTIFICATE-----Generated at Fri Oct 17 21:55:32 2025 by rpki-client