$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/935fa227-1133-4d87-8294-839086958eb1.roa File: 935fa227-1133-4d87-8294-839086958eb1.roa (raw, json) Hash identifier: ZOIWvvDgdHFfZKyrlulrrGOkE4nDvxXWcocgPqC9N04= Subject key identifier: 05:FF:49:99:C2:73:A2:66:7B:7B:D8:EF:11:01:8B:56:A8:4E:C5:46 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 608C8B48CC6B4D81C2CB2FEC043EF710C2A2615A Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/935fa227-1133-4d87-8294-839086958eb1.roa Signing time: Mon 22 Sep 2025 23:52:10 +0000 ROA not before: Mon 22 Sep 2025 23:52:10 +0000 ROA not after: Mon 27 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.84.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:8c:8b:48:cc:6b:4d:81:c2:cb:2f:ec:04:3e:f7:10:c2:a2:61:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 22 23:52:10 2025 GMT Not After : Oct 27 23:59:59 2025 GMT Subject: serialNumber=ddfb445c8442602020e1beb17110980edfd2c73f5c89a59452ef5a56f23316d4, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:10:0b:69:cd:ef:76:34:3f:4c:99:1d:20:7c: 8a:3a:a7:a3:c0:48:da:20:3a:73:7a:c7:d6:9e:0b: 6d:27:8a:31:66:aa:23:8b:84:e5:49:95:06:d7:41: 69:c5:12:4c:39:b9:ff:06:c8:f8:df:88:b4:04:6d: 48:08:79:14:3c:75:a2:49:7e:5f:af:c9:f0:02:30: 74:39:cf:4f:55:3f:eb:fb:8c:d6:98:b0:d2:6f:cb: fb:4d:2f:2e:34:d3:a7:44:32:f3:e4:11:ee:a1:45: 0e:a2:07:74:22:39:2d:52:b1:d6:af:eb:4b:d8:df: d2:64:e9:31:fe:04:7d:01:5b:fb:51:0d:4e:8d:e9: 88:95:a4:aa:ee:e6:5a:df:c0:bf:ff:40:bd:ac:bb: 5c:75:43:ae:70:7c:9a:d2:a2:47:e8:23:39:aa:f4: 01:c8:81:f6:0e:23:50:d5:f3:df:df:a6:f4:8a:85: b0:05:c4:38:44:17:6b:14:ee:b1:d5:a9:34:d8:68: 44:2b:ff:96:2b:76:87:40:9b:d1:dd:dc:65:26:8d: ca:e3:d3:95:63:1a:d1:bb:6b:52:7e:e6:9e:5b:a4: 84:31:46:92:3e:99:fe:27:e4:e5:0a:d1:f4:89:ba: 0e:88:7e:96:b4:9b:52:9b:e0:62:ff:f9:b7:7a:92: 0d:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:FF:49:99:C2:73:A2:66:7B:7B:D8:EF:11:01:8B:56:A8:4E:C5:46 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/935fa227-1133-4d87-8294-839086958eb1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.84.24.0/24 Signature Algorithm: sha256WithRSAEncryption 81:fd:75:5a:ca:6e:3b:61:08:a5:ad:39:33:1b:c9:7b:02:62: 16:4e:8f:3e:2e:79:df:43:73:54:b0:07:6e:e1:63:a2:88:02: 4a:c1:14:22:ed:69:52:0e:13:85:2c:db:bf:3a:6e:fd:0b:43: 99:a0:7d:12:d0:61:eb:e4:50:1d:da:2f:07:28:4f:ef:fc:b9: d9:07:b2:91:52:d7:c0:b9:8e:ef:73:df:c7:43:94:b2:bd:5c: 8f:03:63:19:a1:8d:29:03:4e:f8:f8:7c:3d:a2:56:99:fa:93: fe:74:a0:ca:99:1b:1d:64:53:7f:7e:f1:b3:4d:45:68:e6:f2: 7c:ed:74:43:f4:7c:4e:77:9f:42:d3:80:5f:c6:4a:cc:89:7a: a4:09:95:60:72:c6:9f:d4:46:b5:56:3a:38:24:23:e6:3d:f7: 98:95:33:58:ec:07:98:f1:59:bd:3f:0e:4a:5d:cf:b9:23:94: d7:71:f8:c0:58:ff:4e:41:df:70:ae:9d:e9:fb:65:58:9b:ef: f2:b9:aa:65:e4:b5:3e:72:8d:5f:61:a7:36:9b:e6:cb:49:98: fa:e8:48:19:37:cd:4a:fd:c9:72:bc:bc:44:e8:a5:b0:9d:c7: 96:f4:a9:5f:4f:3e:91:71:35:0b:c5:3d:75:86:f2:be:e1:df: 1a:17:28:93 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYIyLSMxrTYHCyy/sBD73EMKiYVowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTIyMjM1MjEwWhcNMjUxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkZGZiNDQ1Yzg0NDI2MDIwMjBlMWJlYjE3MTEwOTgwZWRm ZDJjNzNmNWM4OWE1OTQ1MmVmNWE1NmYyMzMxNmQ0MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClEAtpze92ND9MmR0gfIo6p6PASNogOnN6x9aeC20nijFm qiOLhOVJlQbXQWnFEkw5uf8GyPjfiLQEbUgIeRQ8daJJfl+vyfACMHQ5z09VP+v7 jNaYsNJvy/tNLy4006dEMvPkEe6hRQ6iB3QiOS1Ssdav60vY39Jk6TH+BH0BW/tR DU6N6YiVpKru5lrfwL//QL2su1x1Q65wfJrSokfoIzmq9AHIgfYOI1DV89/fpvSK hbAFxDhEF2sU7rHVqTTYaEQr/5YrdodAm9Hd3GUmjcrj05VjGtG7a1J+5p5bpIQx RpI+mf4n5OUK0fSJug6Ifpa0m1Kb4GL/+bd6kg29AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUBf9JmcJzomZ7e9jvEQGLVqhOxUYwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzkzNWZhMjI3LTExMzMtNGQ4Ny04Mjk0LTgzOTA4Njk1OGViMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA0VBgwDQYJKoZIhvcNAQELBQADggEBAIH9dVrKbjthCKWtOTMbyXsCYhZO jz4ued9Dc1SwB27hY6KIAkrBFCLtaVIOE4Us2786bv0LQ5mgfRLQYevkUB3aLwco T+/8udkHspFS18C5ju9z38dDlLK9XI8DYxmhjSkDTvj4fD2iVpn6k/50oMqZGx1k U39+8bNNRWjm8nztdEP0fE53n0LTgF/GSsyJeqQJlWByxp/URrVWOjgkI+Y995iV M1jsB5jxWb0/Dkpdz7kjlNdx+MBY/05B33Cunen7ZVib7/K5qmXktT5yjV9hpzab 5stJmProSBk3zUr9yXK8vETopbCdx5b0qV9PPpFxNQvFPXWG8r7h3xoXKJM= -----END CERTIFICATE-----Generated at Fri Oct 17 23:54:02 2025 by rpki-client