$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/902c55a0-4edb-4aad-945a-5ecd2f621c5d.roa File: 902c55a0-4edb-4aad-945a-5ecd2f621c5d.roa (raw, json) Hash identifier: eBjnmS4ur+KwJVAQkkZuXm4YNkXuy50yx5ZEGiaIGHo= Subject key identifier: 7E:12:E4:75:B5:06:D2:13:70:C2:9C:BC:56:16:77:65:84:24:9A:25 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 661D869F7A4B0A162C103AF851663E868BA47B6B Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/902c55a0-4edb-4aad-945a-5ecd2f621c5d.roa Signing time: Fri 19 Sep 2025 16:50:33 +0000 ROA not before: Fri 19 Sep 2025 16:50:33 +0000 ROA not after: Fri 24 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.240.30.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:1d:86:9f:7a:4b:0a:16:2c:10:3a:f8:51:66:3e:86:8b:a4:7b:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 19 16:50:33 2025 GMT Not After : Oct 24 23:59:59 2025 GMT Subject: serialNumber=1647e22324236ad36f6c0b9a63205129e6eb8b393076f2af83cae61b674aa9a6, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:84:ea:74:75:a9:1b:c4:2a:76:df:33:b3:51: d4:48:d5:02:6d:2a:88:e4:4e:ff:91:ae:64:e7:78: 7d:5b:69:c3:71:f8:8a:f8:02:5f:31:ef:5b:28:1e: 9e:02:45:60:b9:43:08:bc:db:a2:69:95:ee:c0:4d: 5c:ac:ca:74:7b:9e:8d:5b:18:20:73:0d:18:2a:56: 8c:19:bf:94:1e:8f:bb:2f:b6:b5:a2:a4:19:fd:13: 61:c4:d3:3e:6c:16:c2:5d:26:21:1a:bf:14:09:90: 2c:bd:28:82:0d:a2:80:03:e2:96:63:b8:87:56:e3: b1:10:73:ca:8d:61:7b:77:e7:b1:3b:6f:ec:f3:75: 36:50:1b:10:0f:81:54:74:d4:31:8d:40:66:47:ac: 61:db:cd:b6:f6:4a:7a:c3:24:f1:22:72:2f:e1:07: 77:92:e0:92:fa:2e:40:40:43:dd:4a:06:57:b6:58: 62:50:2d:fe:4c:06:04:64:bf:fa:bb:84:47:12:aa: 8b:cc:4f:59:91:2c:ca:16:b6:47:85:64:5a:ff:07: b3:22:00:44:b2:8b:bc:a9:94:06:c2:2c:35:2a:fd: ab:4a:9b:db:68:0b:38:ef:d8:b5:fd:8c:9a:78:cc: 04:36:0e:e9:e6:8f:65:91:72:6d:2f:fe:77:e5:e3: be:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:12:E4:75:B5:06:D2:13:70:C2:9C:BC:56:16:77:65:84:24:9A:25 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/902c55a0-4edb-4aad-945a-5ecd2f621c5d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.240.30.0/23 Signature Algorithm: sha256WithRSAEncryption 95:1b:9f:dd:70:25:6f:ee:16:f2:91:87:ed:70:29:00:92:3a: d7:d8:b9:50:70:db:bd:61:51:ed:fe:d0:8d:84:b0:af:04:19: 0c:a6:48:77:9e:31:6e:a6:76:22:87:41:15:a1:13:dd:20:d9: 6f:e0:45:9c:df:b1:61:c1:22:63:b3:dc:4a:8c:ac:ee:e4:d9: e8:24:96:72:64:5e:c3:12:06:bf:e4:39:37:31:f5:2c:24:d6: aa:e1:fc:fa:11:67:d1:65:e2:e5:57:58:33:cb:24:8a:13:40: a0:ae:da:ce:ec:22:64:bd:d8:5e:9e:27:cc:41:06:f9:74:3b: c5:17:0a:76:16:0a:fc:a4:c6:49:b2:f7:cd:2d:68:18:ca:e4: dc:30:5a:55:1c:2c:d6:75:2e:63:e6:bd:97:51:0f:41:1c:c4: 9f:fa:9d:22:60:37:72:8c:35:6d:a7:ec:fd:8d:ec:25:8d:a5: 9c:c7:cb:0d:dd:7e:d3:27:b5:6c:99:90:54:5c:59:c1:f2:d8: e8:23:03:47:20:c9:e1:b0:d1:24:b7:c7:4f:32:e2:ff:79:96: eb:3f:bb:3f:dd:60:ba:6b:1e:6a:41:75:a0:00:98:35:fb:e5: fd:dd:08:a7:02:97:fd:6e:da:c2:45:b2:1d:7b:cc:7c:9a:ac: 6b:41:f0:9d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZh2Gn3pLChYsEDr4UWY+houke2swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTE5MTY1MDMzWhcNMjUxMDI0MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNjQ3ZTIyMzI0MjM2YWQzNmY2YzBiOWE2MzIwNTEyOWU2 ZWI4YjM5MzA3NmYyYWY4M2NhZTYxYjY3NGFhOWE2MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCihOp0dakbxCp23zOzUdRI1QJtKojkTv+RrmTneH1bacNx +Ir4Al8x71soHp4CRWC5Qwi826Jple7ATVysynR7no1bGCBzDRgqVowZv5Qej7sv trWipBn9E2HE0z5sFsJdJiEavxQJkCy9KIINooAD4pZjuIdW47EQc8qNYXt357E7 b+zzdTZQGxAPgVR01DGNQGZHrGHbzbb2SnrDJPEici/hB3eS4JL6LkBAQ91KBle2 WGJQLf5MBgRkv/q7hEcSqovMT1mRLMoWtkeFZFr/B7MiAESyi7yplAbCLDUq/atK m9toCzjv2LX9jJp4zAQ2Dunmj2WRcm0v/nfl477lAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUfhLkdbUG0hNwwpy8VhZ3ZYQkmiUwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzkwMmM1NWEwLTRlZGItNGFhZC05NDVhLTVlY2QyZjYyMWM1ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAE28B4wDQYJKoZIhvcNAQELBQADggEBAJUbn91wJW/uFvKRh+1wKQCSOtfY uVBw271hUe3+0I2EsK8EGQymSHeeMW6mdiKHQRWhE90g2W/gRZzfsWHBImOz3EqM rO7k2egklnJkXsMSBr/kOTcx9Swk1qrh/PoRZ9Fl4uVXWDPLJIoTQKCu2s7sImS9 2F6eJ8xBBvl0O8UXCnYWCvykxkmy980taBjK5NwwWlUcLNZ1LmPmvZdRD0EcxJ/6 nSJgN3KMNW2n7P2N7CWNpZzHyw3dftMntWyZkFRcWcHy2OgjA0cgyeGw0SS3x08y 4v95lus/uz/dYLprHmpBdaAAmDX75f3dCKcCl/1u2sJFsh17zHyarGtB8J0= -----END CERTIFICATE-----Generated at Fri Oct 17 23:55:05 2025 by rpki-client