$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a0f322d1-3fa0-4ae3-976b-ca207ebba35a.roa File: a0f322d1-3fa0-4ae3-976b-ca207ebba35a.roa (raw, json) Hash identifier: UYpZ0h8DCx9bWgpmP/tLxUhjJMiw+SBftmi1nrjJ4JQ= Subject key identifier: B1:4F:0F:02:3E:E9:99:81:02:69:1C:4C:4B:52:16:10:9B:C0:7B:E8 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 4EC1A13E3061DF7C187E12E331F989A46112D210 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a0f322d1-3fa0-4ae3-976b-ca207ebba35a.roa Signing time: Mon 13 Oct 2025 17:46:16 +0000 ROA not before: Mon 13 Oct 2025 17:46:16 +0000 ROA not after: Mon 17 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.95.104.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:c1:a1:3e:30:61:df:7c:18:7e:12:e3:31:f9:89:a4:61:12:d2:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 13 17:46:16 2025 GMT Not After : Nov 17 23:59:59 2025 GMT Subject: serialNumber=f6481951839ddd753a485321ba50987ff1f64cedc78523123bb411d6126a687a, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:01:d6:ce:59:c6:61:dd:41:48:8f:aa:8d:d9: ad:92:36:b4:0a:c6:f2:46:61:26:43:63:3e:ea:28: 42:f4:97:ee:36:e4:e2:05:94:d7:32:6b:3d:0f:3e: f7:71:ed:9f:59:ff:f4:78:50:5f:9e:10:ea:da:11: a6:6e:8c:98:61:1c:18:a9:8f:15:68:7d:80:58:65: 7c:6a:ba:71:10:2c:ef:2a:c8:40:aa:9a:2e:60:e5: 30:94:01:f7:4e:e5:68:59:b6:e1:ec:53:34:ee:bd: e8:d3:9a:18:d5:a7:58:b8:99:61:d9:f6:1c:3b:82: bd:14:78:36:b3:ee:f6:95:7a:e7:fc:39:05:f0:c0: b1:b4:7c:ff:68:30:d5:e2:53:68:fa:79:65:22:35: 6e:4d:36:a5:4d:32:5f:7e:03:a7:08:8d:87:a6:cf: 4d:de:33:a7:b4:55:54:bf:97:27:ee:a9:51:a9:2a: 42:f7:5f:16:06:92:a6:c3:01:a9:ed:c7:b1:3e:4d: dc:67:55:3f:41:e6:0a:98:6f:8d:8c:ed:d2:1c:cd: 5b:fe:b5:30:9a:c9:f6:47:23:51:1e:e2:d9:2c:22: 15:4c:59:bf:d2:19:fc:ea:f8:fb:44:47:1d:f4:fc: c0:b1:7a:ef:45:bc:b7:c1:2f:b6:ef:fd:ef:a2:0c: 4c:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:4F:0F:02:3E:E9:99:81:02:69:1C:4C:4B:52:16:10:9B:C0:7B:E8 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a0f322d1-3fa0-4ae3-976b-ca207ebba35a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.95.104.0/22 Signature Algorithm: sha256WithRSAEncryption 66:fa:ba:d9:d9:53:8c:d9:12:7a:5f:9b:87:4d:a4:88:5d:22: ad:44:0f:1b:70:ac:e2:4a:ec:f2:ab:61:a8:16:0e:73:bb:cb: 6e:00:61:64:63:57:7c:35:fc:d4:62:1d:cf:00:83:1f:ae:75: 54:fc:1f:c7:04:e3:fe:b0:9f:38:61:0a:c6:9f:3e:b9:49:5a: 29:4f:b6:e7:31:76:d1:dd:28:5c:34:59:f8:85:da:9e:e1:97: 00:23:1b:c4:4d:79:56:74:14:f4:01:c7:df:b6:ce:cc:6d:89: 8c:3e:e3:02:94:0b:95:53:42:26:f8:77:3d:d0:69:aa:8d:19: eb:42:c6:15:87:4e:69:7f:f5:71:04:8a:e2:b4:33:6a:32:5a: cc:3d:cd:74:29:82:46:d3:fd:45:84:d4:a1:69:bf:ba:24:bf: e5:15:b2:c5:05:18:88:c1:d0:af:40:7d:58:1f:66:43:cd:a9: 73:c5:50:a2:d9:3c:23:49:54:42:f9:97:50:45:86:83:4c:ed: e8:35:85:5d:2c:f3:7c:f9:a6:f8:b5:fd:c9:b6:52:d4:b3:f2: b9:f6:26:93:98:37:8f:df:c8:3b:83:9d:8d:ab:31:da:e8:69: ee:48:17:6f:2c:12:2c:f1:f7:c4:1e:1f:ad:98:67:2b:9e:d8: 06:f1:5c:d5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTsGhPjBh33wYfhLjMfmJpGES0hAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDEzMTc0NjE2WhcNMjUxMTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNjQ4MTk1MTgzOWRkZDc1M2E0ODUzMjFiYTUwOTg3ZmYx ZjY0Y2VkYzc4NTIzMTIzYmI0MTFkNjEyNmE2ODdhMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDOAdbOWcZh3UFIj6qN2a2SNrQKxvJGYSZDYz7qKEL0l+42 5OIFlNcyaz0PPvdx7Z9Z//R4UF+eEOraEaZujJhhHBipjxVofYBYZXxqunEQLO8q yECqmi5g5TCUAfdO5WhZtuHsUzTuvejTmhjVp1i4mWHZ9hw7gr0UeDaz7vaVeuf8 OQXwwLG0fP9oMNXiU2j6eWUiNW5NNqVNMl9+A6cIjYemz03eM6e0VVS/lyfuqVGp KkL3XxYGkqbDAantx7E+TdxnVT9B5gqYb42M7dIczVv+tTCayfZHI1Ee4tksIhVM Wb/SGfzq+PtERx30/MCxeu9FvLfBL7bv/e+iDExTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUsU8PAj7pmYECaRxMS1IWEJvAe+gwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2EwZjMyMmQxLTNmYTAtNGFlMy05NzZiLWNhMjA3ZWJiYTM1YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAI0X2gwDQYJKoZIhvcNAQELBQADggEBAGb6utnZU4zZEnpfm4dNpIhdIq1E DxtwrOJK7PKrYagWDnO7y24AYWRjV3w1/NRiHc8Agx+udVT8H8cE4/6wnzhhCsaf PrlJWilPtucxdtHdKFw0WfiF2p7hlwAjG8RNeVZ0FPQBx9+2zsxtiYw+4wKUC5VT Qib4dz3QaaqNGetCxhWHTml/9XEEiuK0M2oyWsw9zXQpgkbT/UWE1KFpv7okv+UV ssUFGIjB0K9AfVgfZkPNqXPFUKLZPCNJVEL5l1BFhoNM7eg1hV0s83z5pvi1/cm2 UtSz8rn2JpOYN4/fyDuDnY2rMdroae5IF28sEizx98QeH62YZyue2AbxXNU= -----END CERTIFICATE-----Generated at Fri Oct 17 23:54:59 2025 by rpki-client