$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/96531399-fec0-4afa-a3f8-2eab43f28b91.roa File: 96531399-fec0-4afa-a3f8-2eab43f28b91.roa (raw, json) Hash identifier: nV2ruql2QRrTJrTdaigcbwpcZNrNZ2aV+2a6tNbvwxk= Subject key identifier: 60:AC:01:53:14:3C:1B:F4:28:08:03:DA:AA:89:B3:A4:AE:A8:0A:3A Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 0235D14C04D913F750F9B514FDAF08C45985BD0D Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/96531399-fec0-4afa-a3f8-2eab43f28b91.roa Signing time: Mon 22 Sep 2025 23:51:52 +0000 ROA not before: Mon 22 Sep 2025 23:51:52 +0000 ROA not after: Mon 27 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.84.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:35:d1:4c:04:d9:13:f7:50:f9:b5:14:fd:af:08:c4:59:85:bd:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 22 23:51:52 2025 GMT Not After : Oct 27 23:59:59 2025 GMT Subject: serialNumber=1b18174347e9d623b7f5dfef807a1af7a7e3c29fd29d7e1a7deaefdc131d9b98, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:6a:2d:c1:83:b5:9f:1f:ed:49:7f:e4:3e:db: 49:59:07:d6:b8:00:2e:00:66:32:70:b5:08:fd:bd: 00:e3:ee:10:b1:fb:b2:32:5d:dc:49:a9:ed:b4:04: 0a:d5:cd:29:c6:8f:37:25:e6:27:91:96:07:91:cc: a8:64:7a:f6:d6:57:9e:23:a2:c1:e3:1b:16:f8:28: 6c:06:95:09:de:61:01:8f:3e:fc:34:6a:d5:69:e9: 26:23:fd:b6:8d:4f:87:a4:9a:1e:56:16:3c:16:8c: 3e:97:68:11:1d:80:d5:a4:09:8e:5a:ad:aa:40:b9: 24:fe:5a:d5:88:c9:33:7b:cb:72:96:62:54:a3:2e: 3c:9a:c3:34:88:a2:66:9e:8f:f1:d5:9b:44:01:0f: 54:85:f4:af:79:97:c4:df:59:8d:28:88:ab:f3:f2: 9a:2d:11:d4:77:34:e2:a6:f6:5d:2b:82:5a:85:75: 1c:54:31:a9:dd:68:54:d2:b2:5d:9d:08:19:03:8d: fd:ab:bb:8e:fe:26:ad:f4:1a:46:31:ab:10:15:2f: 80:e4:31:f0:f5:41:43:11:7d:1a:05:bd:b6:9c:53: 60:dd:ec:f5:32:1c:8e:89:f9:23:76:1f:49:e3:00: f5:ed:87:9a:6c:14:8d:79:84:34:6f:54:f3:d4:45: 28:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:AC:01:53:14:3C:1B:F4:28:08:03:DA:AA:89:B3:A4:AE:A8:0A:3A X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/96531399-fec0-4afa-a3f8-2eab43f28b91.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.84.223.0/24 Signature Algorithm: sha256WithRSAEncryption 15:94:c9:de:0f:ad:d2:42:f6:df:77:83:9d:7f:d9:61:ed:5a: b3:d0:11:c8:eb:57:e8:f5:48:20:06:cd:d3:32:b7:50:40:32: c3:7a:7b:a2:63:4a:38:95:79:7d:70:4a:f6:ed:b0:18:7b:d6: ee:fb:ed:f6:40:87:cf:cc:d5:48:e6:e0:2c:1e:33:b7:bc:5d: b7:a8:56:4d:37:01:f0:ac:91:df:57:de:8d:8c:ce:15:71:90: 9c:ad:60:57:d1:3c:9c:9e:7a:72:40:ba:cb:98:92:d5:73:50: ef:7f:a9:7f:4f:44:10:12:00:ba:7d:c5:4a:da:c7:24:b9:b8: 45:cd:19:82:08:39:86:83:76:83:9d:5e:74:f6:fe:0e:ac:ee: fa:dc:8e:4e:35:32:56:eb:01:94:74:4b:1c:5b:42:7f:23:6b: ff:46:16:20:a0:cb:f4:b7:25:b2:e3:0b:e7:00:c8:13:a9:47: 01:68:fe:92:46:d5:b0:13:5d:ac:53:41:b3:bb:88:9e:ed:9d: 42:49:91:48:8e:8c:2e:be:c1:ec:20:48:dc:58:c3:8d:fc:3b: 7d:f0:4c:95:4f:00:c9:5d:10:87:fc:c5:c1:d1:de:59:19:4e: 8e:a5:d3:b0:f7:3f:6c:20:92:4b:64:5f:d1:3f:d4:cf:99:f6: b1:0a:b1:e6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAjXRTATZE/dQ+bUU/a8IxFmFvQ0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTIyMjM1MTUyWhcNMjUxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxYjE4MTc0MzQ3ZTlkNjIzYjdmNWRmZWY4MDdhMWFmN2E3 ZTNjMjlmZDI5ZDdlMWE3ZGVhZWZkYzEzMWQ5Yjk4MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDEai3Bg7WfH+1Jf+Q+20lZB9a4AC4AZjJwtQj9vQDj7hCx +7IyXdxJqe20BArVzSnGjzcl5ieRlgeRzKhkevbWV54josHjGxb4KGwGlQneYQGP Pvw0atVp6SYj/baNT4ekmh5WFjwWjD6XaBEdgNWkCY5arapAuST+WtWIyTN7y3KW YlSjLjyawzSIomaej/HVm0QBD1SF9K95l8TfWY0oiKvz8potEdR3NOKm9l0rglqF dRxUMandaFTSsl2dCBkDjf2ru47+Jq30GkYxqxAVL4DkMfD1QUMRfRoFvbacU2Dd 7PUyHI6J+SN2H0njAPXth5psFI15hDRvVPPURSjjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUYKwBUxQ8G/QoCAPaqomzpK6oCjowHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzk2NTMxMzk5LWZlYzAtNGFmYS1hM2Y4LTJlYWI0M2YyOGI5MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA0VN8wDQYJKoZIhvcNAQELBQADggEBABWUyd4PrdJC9t93g51/2WHtWrPQ EcjrV+j1SCAGzdMyt1BAMsN6e6JjSjiVeX1wSvbtsBh71u777fZAh8/M1Ujm4Cwe M7e8XbeoVk03AfCskd9X3o2MzhVxkJytYFfRPJyeenJAusuYktVzUO9/qX9PRBAS ALp9xUraxyS5uEXNGYIIOYaDdoOdXnT2/g6s7vrcjk41MlbrAZR0SxxbQn8ja/9G FiCgy/S3JbLjC+cAyBOpRwFo/pJG1bATXaxTQbO7iJ7tnUJJkUiOjC6+wewgSNxY w438O33wTJVPAMldEIf8xcHR3lkZTo6l07D3P2wgkktkX9E/1M+Z9rEKseY= -----END CERTIFICATE-----Generated at Fri Oct 17 22:02:42 2025 by rpki-client