$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/96e55d42-eddf-4dd8-b4d1-1e927888a9e7.roa File: 96e55d42-eddf-4dd8-b4d1-1e927888a9e7.roa (raw, json) Hash identifier: DpoZ4s+JWaHitxAz4iL/qSeWbpKzoVnBzCFz4fI4S5s= Subject key identifier: 79:0B:30:BA:D7:09:9B:43:36:67:C6:86:0F:F6:7B:36:7C:40:F6:EC Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 1D30D6355CF689343BA6E3BCF7236B0E22B08CB6 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/96e55d42-eddf-4dd8-b4d1-1e927888a9e7.roa Signing time: Fri 17 Oct 2025 22:41:08 +0000 ROA not before: Fri 17 Oct 2025 22:41:08 +0000 ROA not after: Fri 21 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 54.204.49.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 08 Nov 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:30:d6:35:5c:f6:89:34:3b:a6:e3:bc:f7:23:6b:0e:22:b0:8c:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 17 22:41:08 2025 GMT Not After : Nov 21 23:59:59 2025 GMT Subject: serialNumber=048e21095b447d01fb5184011baa0d180ee609802e1e86de652a1a44868d5855, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:08:75:cf:7e:2c:21:df:d4:c1:89:65:9a:fc: 9f:33:7c:37:3e:96:52:a5:72:26:a9:c9:e9:0c:a8: f1:95:62:91:02:0a:12:9a:e9:64:ac:68:27:44:b0: d7:95:b3:46:13:0f:60:54:84:f3:fa:cc:70:80:3b: 7d:11:21:74:3f:ce:b9:14:50:1b:a4:49:ce:e8:a4: 36:b9:01:9d:b4:7c:2f:0c:a2:e8:ff:6c:42:48:71: 88:83:ca:06:f6:5f:33:aa:ca:34:76:37:b3:e7:61: 0f:24:b5:db:14:09:12:a4:f5:34:bc:d8:c5:d3:89: 4f:d7:4a:6d:33:a6:ab:2e:67:ec:64:54:8b:b3:7b: 99:57:07:bd:e2:71:4a:bc:3d:80:0b:97:d9:a0:4f: f4:a2:16:3c:3f:8a:df:6a:02:be:b8:7d:a8:01:fb: 7e:c2:ad:75:b0:8c:81:9e:e2:f3:87:c2:b8:cc:b6: a2:fe:7e:86:7e:72:a6:6e:ad:b7:63:d2:1d:54:45: eb:38:e4:98:a7:07:a7:e9:21:f3:55:fd:0c:96:99: 28:1c:18:17:bf:a2:48:1f:f2:50:b1:06:a7:c7:b9: 92:36:8f:f9:92:bc:c4:22:d9:01:65:a6:57:ef:8c: 97:ed:8d:2e:43:49:7b:6d:d4:0d:36:39:82:29:d0: d1:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:0B:30:BA:D7:09:9B:43:36:67:C6:86:0F:F6:7B:36:7C:40:F6:EC X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/96e55d42-eddf-4dd8-b4d1-1e927888a9e7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.204.49.0/24 Signature Algorithm: sha256WithRSAEncryption 85:52:2c:4e:64:54:cb:15:ba:0e:86:23:01:d1:9b:64:ff:28: 16:a7:32:ba:cd:ef:09:77:c6:c3:7e:01:fd:88:11:8e:ac:43: 8a:0c:9c:4b:5a:c2:46:28:f4:e8:3b:73:ff:00:dd:ba:df:61: 2c:39:68:30:c6:be:8e:bc:42:ab:d3:b4:37:25:db:c3:02:38: fc:61:e1:4b:12:76:6a:d9:68:5b:e9:05:d6:55:0a:8a:55:b1: 0d:cf:a0:0c:cd:bd:5f:a9:a6:fa:71:e9:cb:ff:b3:8b:8c:de: e0:18:84:bc:4d:ee:ef:91:14:7f:a2:8b:d6:12:3b:d8:c9:d5: 2a:f5:66:f1:14:e2:48:1c:6f:4d:84:41:bc:3f:b5:3e:4f:07: 6f:59:84:e5:b1:8c:f3:8d:39:28:51:54:32:62:27:d3:cb:f5: 10:0f:23:95:d4:c5:1c:7d:67:c5:81:86:85:08:27:2e:9e:26: e3:1e:cd:f1:34:07:1e:c5:1f:a9:4a:c2:7d:a5:43:02:4f:f3: dd:aa:85:3e:6d:5b:2e:9b:d6:61:2b:cd:6a:d4:bc:b8:2c:36: a3:ea:31:44:97:a2:1d:dd:ce:7e:85:07:e4:b5:38:7b:14:45: 0e:8a:59:e7:b4:cd:3e:cc:a5:d4:6c:90:8f:2e:90:60:17:37: 5f:a2:34:4d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHTDWNVz2iTQ7puO89yNrDiKwjLYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE3MjI0MTA4WhcNMjUxMTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0AwNDhlMjEwOTViNDQ3ZDAxZmI1MTg0MDExYmFhMGQxODBl ZTYwOTgwMmUxZTg2ZGU2NTJhMWE0NDg2OGQ1ODU1MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDcCHXPfiwh39TBiWWa/J8zfDc+llKlciapyekMqPGVYpEC ChKa6WSsaCdEsNeVs0YTD2BUhPP6zHCAO30RIXQ/zrkUUBukSc7opDa5AZ20fC8M ouj/bEJIcYiDygb2XzOqyjR2N7PnYQ8ktdsUCRKk9TS82MXTiU/XSm0zpqsuZ+xk VIuze5lXB73icUq8PYALl9mgT/SiFjw/it9qAr64fagB+37CrXWwjIGe4vOHwrjM tqL+foZ+cqZurbdj0h1URes45JinB6fpIfNV/QyWmSgcGBe/okgf8lCxBqfHuZI2 j/mSvMQi2QFlplfvjJftjS5DSXtt1A02OYIp0NHRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUeQswutcJm0M2Z8aGD/Z7NnxA9uwwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzk2ZTU1ZDQyLWVkZGYtNGRkOC1iNGQxLTFlOTI3ODg4YTllNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA2zDEwDQYJKoZIhvcNAQELBQADggEBAIVSLE5kVMsVug6GIwHRm2T/KBan MrrN7wl3xsN+Af2IEY6sQ4oMnEtawkYo9Og7c/8A3brfYSw5aDDGvo68QqvTtDcl 28MCOPxh4UsSdmrZaFvpBdZVCopVsQ3PoAzNvV+ppvpx6cv/s4uM3uAYhLxN7u+R FH+ii9YSO9jJ1Sr1ZvEU4kgcb02EQbw/tT5PB29ZhOWxjPONOShRVDJiJ9PL9RAP I5XUxRx9Z8WBhoUIJy6eJuMezfE0Bx7FH6lKwn2lQwJP892qhT5tWy6b1mErzWrU vLgsNqPqMUSXoh3dzn6FB+S1OHsURQ6KWee0zT7MpdRskI8ukGAXN1+iNE0= -----END CERTIFICATE-----Generated at Thu Nov 6 16:29:53 2025 by rpki-client