$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a0a429e3-e7ff-4211-b53b-efbdce5fb3a8.roa File: a0a429e3-e7ff-4211-b53b-efbdce5fb3a8.roa (raw, json) Hash identifier: Sf/if/BzJdEcAKlFe7Q52RfOH3B7vdpqbn7Epjz8kUw= Subject key identifier: F4:C3:5F:B4:87:14:8D:1F:8F:8A:91:5C:EA:79:F3:93:05:FA:0B:83 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 644F55868B7D286085365BE25291A97B76B91AF5 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a0a429e3-e7ff-4211-b53b-efbdce5fb3a8.roa Signing time: Fri 17 Oct 2025 22:21:23 +0000 ROA not before: Fri 17 Oct 2025 22:21:23 +0000 ROA not after: Fri 21 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.203.248.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:4f:55:86:8b:7d:28:60:85:36:5b:e2:52:91:a9:7b:76:b9:1a:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 17 22:21:23 2025 GMT Not After : Nov 21 23:59:59 2025 GMT Subject: serialNumber=04a14cda5a97ff344ec46263e313c27c21d2d6b77bc4b59099f701e6b0a640e4, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e0:c0:35:6c:74:19:64:e9:30:58:3c:e3:2b: 03:b8:5b:d0:38:d4:51:aa:4e:49:57:4f:c3:6a:35: be:68:40:e5:92:b3:3c:de:4f:ca:91:a2:0f:5d:14: 3d:46:55:a0:fe:6a:97:9d:16:f9:25:6d:81:f5:23: d6:5d:54:26:46:a4:6f:93:d5:dd:4b:f4:85:87:29: 7c:81:03:f7:b9:98:e0:d2:da:cc:08:ef:26:0d:3c: 8f:b1:19:27:d8:90:6a:de:d7:44:6c:14:44:67:22: 6f:4a:82:8c:1f:c7:d3:26:61:67:65:de:64:9f:2c: 98:9d:e4:e7:2b:a8:21:fc:eb:c9:99:66:f9:e4:5f: e5:42:45:09:37:43:b6:ab:62:d6:e9:2d:03:dd:04: e5:84:e6:79:c6:68:52:94:68:1a:5c:f5:b7:e4:bc: cc:45:f6:a6:63:b3:23:4e:60:7e:3f:c1:bd:9b:c7: 0e:bf:71:12:45:1e:16:a3:73:c4:ce:0d:53:7e:46: 1a:ff:c0:5c:6f:58:8a:5b:ce:b0:6c:52:a9:6a:86: 33:c7:3d:31:aa:09:1e:96:bc:a7:35:75:63:5f:af: f5:99:ce:c3:83:77:c4:ae:70:3a:aa:61:ed:42:1a: a4:84:75:bd:2e:68:4d:d3:74:36:b7:3a:eb:08:23: fa:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:C3:5F:B4:87:14:8D:1F:8F:8A:91:5C:EA:79:F3:93:05:FA:0B:83 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a0a429e3-e7ff-4211-b53b-efbdce5fb3a8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.203.248.0/21 Signature Algorithm: sha256WithRSAEncryption 0b:b8:4c:06:3f:f6:26:46:ae:0d:cf:8b:fc:b4:b2:20:d8:5f: 29:26:88:76:22:35:5d:66:53:67:9d:22:3b:f9:87:0b:09:18: 61:ef:07:81:f9:e2:a2:fd:9e:42:07:28:c3:70:8c:de:df:16: 01:67:15:0d:9b:7a:39:e5:f9:68:73:91:86:48:5b:d1:05:38: c6:6b:2b:c2:00:b3:df:3e:9c:56:65:83:46:d7:7a:5e:96:15: 60:dc:4a:c7:4b:e4:52:26:9c:eb:1a:21:bb:de:2f:79:da:9a: 26:f4:c8:63:c5:dd:98:70:8e:16:2a:11:0c:0e:9c:b1:df:81: 9a:3c:24:d4:ff:9f:f4:c3:98:8d:24:00:70:51:df:4f:41:b1: 82:50:e0:15:e3:9a:05:0a:85:df:49:f2:95:dd:b2:6d:e2:bb: 70:b1:fc:cd:f6:b7:c2:05:d2:f6:bb:05:72:a1:f4:3a:42:5d: 01:47:06:19:e4:d9:61:dc:c8:17:08:16:c1:d6:dc:d6:ec:17: d1:20:8e:8c:65:42:d8:76:08:45:e9:32:9c:f2:ac:f8:8e:06: 85:12:e2:97:18:f8:6f:51:c8:59:6e:0b:3b:57:4d:0c:54:29: da:03:bf:3e:42:65:99:17:ee:04:12:a7:56:79:c7:53:79:9a: ce:b3:89:cb -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZE9Vhot9KGCFNlviUpGpe3a5GvUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE3MjIyMTIzWhcNMjUxMTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0AwNGExNGNkYTVhOTdmZjM0NGVjNDYyNjNlMzEzYzI3YzIx ZDJkNmI3N2JjNGI1OTA5OWY3MDFlNmIwYTY0MGU0MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDC4MA1bHQZZOkwWDzjKwO4W9A41FGqTklXT8NqNb5oQOWS szzeT8qRog9dFD1GVaD+apedFvklbYH1I9ZdVCZGpG+T1d1L9IWHKXyBA/e5mODS 2swI7yYNPI+xGSfYkGre10RsFERnIm9Kgowfx9MmYWdl3mSfLJid5OcrqCH868mZ ZvnkX+VCRQk3Q7arYtbpLQPdBOWE5nnGaFKUaBpc9bfkvMxF9qZjsyNOYH4/wb2b xw6/cRJFHhajc8TODVN+Rhr/wFxvWIpbzrBsUqlqhjPHPTGqCR6WvKc1dWNfr/WZ zsODd8SucDqqYe1CGqSEdb0uaE3TdDa3OusII/ojAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU9MNftIcUjR+PipFc6nnzkwX6C4MwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2EwYTQyOWUzLWU3ZmYtNDIxMS1iNTNiLWVmYmRjZTVmYjNhOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAM2y/gwDQYJKoZIhvcNAQELBQADggEBAAu4TAY/9iZGrg3Pi/y0siDYXykm iHYiNV1mU2edIjv5hwsJGGHvB4H54qL9nkIHKMNwjN7fFgFnFQ2bejnl+WhzkYZI W9EFOMZrK8IAs98+nFZlg0bXel6WFWDcSsdL5FImnOsaIbveL3namib0yGPF3Zhw jhYqEQwOnLHfgZo8JNT/n/TDmI0kAHBR309BsYJQ4BXjmgUKhd9J8pXdsm3iu3Cx /M32t8IF0va7BXKh9DpCXQFHBhnk2WHcyBcIFsHW3NbsF9EgjoxlQth2CEXpMpzy rPiOBoUS4pcY+G9RyFluCztXTQxUKdoDvz5CZZkX7gQSp1Z5x1N5ms6zics= -----END CERTIFICATE-----Generated at Fri Oct 17 23:54:44 2025 by rpki-client