$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/859dea27-078b-4708-89e6-1e0188e51e9f.roa File: 859dea27-078b-4708-89e6-1e0188e51e9f.roa (raw, json) Hash identifier: EV5gpXA1WNFCYcKPulC2IQRllEGJIKth8dWlT35YIG8= Subject key identifier: 07:2F:87:C1:8D:1F:02:CE:62:55:4F:84:23:39:FE:0D:74:05:DC:D9 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 096F7DA19A1EBEB84DF54AE9CB11E948C5989D0B Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/859dea27-078b-4708-89e6-1e0188e51e9f.roa Signing time: Thu 16 Oct 2025 19:32:25 +0000 ROA not before: Thu 16 Oct 2025 19:32:25 +0000 ROA not after: Thu 20 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.150.144.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:6f:7d:a1:9a:1e:be:b8:4d:f5:4a:e9:cb:11:e9:48:c5:98:9d:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 16 19:32:25 2025 GMT Not After : Nov 20 23:59:59 2025 GMT Subject: serialNumber=09c604e11cd1c085b6345361bfd6ba2bcbb23ada6f05e4f6d04f2b091a3df73f, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:f5:cc:45:f7:a8:48:4f:99:55:9a:62:42:ca: d4:8a:9a:18:97:28:92:eb:e3:5e:ef:43:0b:fb:24: d6:6b:a1:d2:0b:29:16:59:f0:ef:9a:0b:dc:5d:d3: 51:e7:dd:64:e2:45:88:b8:8b:40:43:07:76:84:70: 71:1c:59:17:b7:92:aa:e9:4d:ac:b9:1b:ec:ed:2f: 96:2f:fd:90:65:6e:51:17:94:dd:60:21:17:7e:cf: 11:b7:2c:19:f7:c3:ac:73:7b:00:8c:75:e2:a9:7f: a6:1d:9a:08:8d:4e:3d:6d:59:65:17:02:40:40:69: ce:c6:7e:f7:6e:28:6c:b2:80:54:32:f4:1f:e8:9e: c3:04:e2:12:5e:e8:79:e7:b8:0a:06:53:5a:7c:6d: fc:42:e9:62:7e:7f:5a:94:b2:9d:2d:d2:49:bc:5b: bc:81:7b:06:4a:16:26:d1:76:eb:ef:7a:0c:7d:28: e2:d7:d2:50:69:6c:22:b4:aa:58:f7:9a:02:e0:53: 46:65:f4:1f:5a:16:3c:99:4d:07:68:2d:4d:0e:cc: 97:8e:fe:f0:05:93:6c:7e:3c:5e:45:97:60:53:b8: 51:d7:59:59:53:48:d8:ab:92:5b:25:4b:ef:5e:3a: 6b:5c:31:61:12:2b:67:ef:52:07:ab:54:58:b7:9d: c1:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:2F:87:C1:8D:1F:02:CE:62:55:4F:84:23:39:FE:0D:74:05:DC:D9 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/859dea27-078b-4708-89e6-1e0188e51e9f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.150.144.0/20 Signature Algorithm: sha256WithRSAEncryption 63:d5:ea:a6:99:68:4d:79:71:77:60:48:8a:35:19:2c:c0:bb: 42:7a:72:20:57:7c:7a:2f:e6:52:0b:e4:33:87:7a:b5:8b:35: 22:da:12:8d:c0:fc:6b:75:00:3b:f5:b6:6c:b6:41:ae:8e:31: 8d:e1:7c:d6:e2:1a:aa:5f:71:9a:c6:4d:f5:ee:d5:bf:3a:e3: d9:14:ed:39:88:47:ff:0e:df:39:e0:72:de:05:07:fa:57:28: bc:3a:d4:02:a5:82:e4:cd:5f:ec:2a:65:38:52:ad:83:01:9c: f1:7c:fe:78:14:15:cf:ce:3f:70:24:55:ef:58:89:22:33:62: 1f:66:eb:6c:4e:86:cd:32:45:7c:45:6b:76:34:a7:5f:ca:70: ba:61:fa:2a:84:91:4d:d7:b9:a2:c9:e4:f8:67:35:b1:51:45: de:d3:08:ca:b4:fc:41:39:74:7a:fe:1d:88:c5:d9:a4:40:03: 75:7a:a2:65:54:a6:55:dc:2f:8b:58:e2:3e:41:47:46:5f:61: 61:1e:bb:5a:1c:c0:93:55:b7:72:a8:f0:f2:0a:14:83:7d:e1: 9a:ff:1b:fe:17:c7:c8:c1:f8:94:04:34:24:c8:8d:05:0a:9b: d6:76:2e:62:27:31:e4:8a:1c:17:9e:59:47:8b:52:f0:84:6b: 23:7a:c4:a4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCW99oZoevrhN9UrpyxHpSMWYnQswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE2MTkzMjI1WhcNMjUxMTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AwOWM2MDRlMTFjZDFjMDg1YjYzNDUzNjFiZmQ2YmEyYmNi YjIzYWRhNmYwNWU0ZjZkMDRmMmIwOTFhM2RmNzNmMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCf9cxF96hIT5lVmmJCytSKmhiXKJLr417vQwv7JNZrodIL KRZZ8O+aC9xd01Hn3WTiRYi4i0BDB3aEcHEcWRe3kqrpTay5G+ztL5Yv/ZBlblEX lN1gIRd+zxG3LBn3w6xzewCMdeKpf6YdmgiNTj1tWWUXAkBAac7GfvduKGyygFQy 9B/onsME4hJe6HnnuAoGU1p8bfxC6WJ+f1qUsp0t0km8W7yBewZKFibRduvvegx9 KOLX0lBpbCK0qlj3mgLgU0Zl9B9aFjyZTQdoLU0OzJeO/vAFk2x+PF5Fl2BTuFHX WVlTSNirklslS+9eOmtcMWESK2fvUgerVFi3ncHHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUBy+HwY0fAs5iVU+EIzn+DXQF3NkwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzg1OWRlYTI3LTA3OGItNDcwOC04OWU2LTFlMDE4OGU1MWU5Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQ2lpAwDQYJKoZIhvcNAQELBQADggEBAGPV6qaZaE15cXdgSIo1GSzAu0J6 ciBXfHov5lIL5DOHerWLNSLaEo3A/Gt1ADv1tmy2Qa6OMY3hfNbiGqpfcZrGTfXu 1b8649kU7TmIR/8O3zngct4FB/pXKLw61AKlguTNX+wqZThSrYMBnPF8/ngUFc/O P3AkVe9YiSIzYh9m62xOhs0yRXxFa3Y0p1/KcLph+iqEkU3XuaLJ5PhnNbFRRd7T CMq0/EE5dHr+HYjF2aRAA3V6omVUplXcL4tY4j5BR0ZfYWEeu1ocwJNVt3Ko8PIK FIN94Zr/G/4Xx8jB+JQENCTIjQUKm9Z2LmInMeSKHBeeWUeLUvCEayN6xKQ= -----END CERTIFICATE-----Generated at Fri Oct 17 23:55:07 2025 by rpki-client