$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a432512a-1e09-4036-85dc-9075dfecfc5d.roa File: a432512a-1e09-4036-85dc-9075dfecfc5d.roa (raw, json) Hash identifier: AKKiBXTr83/mddnPaNx6OBCq5U7J8xcxzUxK0PcQT24= Subject key identifier: 93:D1:88:C8:E3:BE:9F:06:C8:6D:E1:F7:28:19:E0:B0:31:6B:66:0C Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 1768C044A6DE3764C7FC0EABFD6F3485F9706F69 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a432512a-1e09-4036-85dc-9075dfecfc5d.roa Signing time: Tue 23 Sep 2025 00:37:05 +0000 ROA not before: Tue 23 Sep 2025 00:37:05 +0000 ROA not after: Tue 28 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.85.64.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:68:c0:44:a6:de:37:64:c7:fc:0e:ab:fd:6f:34:85:f9:70:6f:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 23 00:37:05 2025 GMT Not After : Oct 28 23:59:59 2025 GMT Subject: serialNumber=481025fa25907326bfe99ebe39366a078c05c5e263f78b1e140474739f08c6ac, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:b1:9c:63:e5:a3:fb:5f:2c:d3:5e:c5:bf:9d: b0:26:6b:71:34:c8:e0:f2:2e:48:bf:30:a3:7e:23: 1e:52:ee:03:03:c8:68:13:6c:ad:16:84:7d:ee:e8: bc:cb:49:c6:1f:3c:8d:30:4d:a7:62:49:d0:b4:90: 37:c7:99:8e:b3:f0:90:e5:b4:fc:a9:5e:e2:e2:d4: 1c:2a:fb:93:01:78:ac:fb:0a:02:44:20:06:24:6a: f8:7c:fd:cc:e3:d5:3c:3c:16:2e:82:77:72:dc:f7: 22:37:6b:62:26:2f:10:33:11:56:d8:93:24:ff:12: cf:cb:f1:90:09:7e:69:02:da:12:9a:ab:0b:63:c7: ef:e5:ea:dd:58:87:f9:c9:9e:04:f3:3a:c5:b4:77: 37:0d:4a:b7:86:cf:7c:3f:77:cc:1b:cf:36:68:31: 25:36:ff:b1:2b:3d:3c:b3:08:9b:eb:e8:1b:a0:fb: e3:26:41:19:42:d2:b7:46:63:42:e6:ae:c9:d4:d6: 41:2c:07:82:65:0c:fa:25:d6:af:c9:15:17:9b:45: 46:ba:b5:69:8b:7c:a1:10:cb:fb:ff:41:a4:59:c0: 57:7f:2c:4b:19:37:c0:1a:d1:e7:7f:70:fa:f6:f2: a3:a6:dd:69:d5:10:32:e5:fc:c2:6c:70:45:7e:ea: 32:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:D1:88:C8:E3:BE:9F:06:C8:6D:E1:F7:28:19:E0:B0:31:6B:66:0C X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a432512a-1e09-4036-85dc-9075dfecfc5d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.85.64.0/22 Signature Algorithm: sha256WithRSAEncryption 60:25:30:04:3e:2c:37:af:c4:7c:61:9b:d5:c5:6e:a5:7c:2e: 45:58:35:ba:88:35:53:39:01:0d:e4:d9:a5:7f:f4:42:a3:88: f4:26:8f:06:39:5b:52:71:65:63:f9:f3:98:e9:08:36:0e:4b: bb:3f:2f:e2:90:32:72:a5:46:0d:fa:04:b8:40:10:64:fe:5e: 34:38:bf:b9:66:4d:39:d4:26:cd:47:33:8a:3c:18:56:87:6a: 6a:dd:af:0a:6d:45:58:58:92:b3:a1:c4:53:54:7f:ec:fc:b6: a6:60:b1:6d:a6:72:27:a0:b7:1b:81:d5:72:18:d0:24:34:5c: 0f:7d:db:d2:14:d8:38:f1:81:27:62:36:9b:12:93:01:17:2b: 80:ce:21:12:ba:62:ef:41:b5:48:88:a2:62:23:32:a1:19:d9: 0c:1d:fd:a5:4f:c5:48:02:b2:e8:07:21:4d:8a:cc:87:dd:7f: b0:02:e3:8f:d8:c9:f2:82:11:a6:74:49:80:59:f5:c3:8b:0d: 67:a4:74:31:aa:fc:d4:7d:39:2a:98:17:f8:3a:a9:6f:8c:c3: ba:53:6b:f8:59:36:3a:05:c0:20:77:71:b4:45:16:95:00:d1: 6f:a8:50:e9:f6:ae:a1:02:ef:d5:5a:cb:19:a0:ed:f4:1d:1a: 04:85:a6:ca -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUF2jARKbeN2TH/A6r/W80hflwb2kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTIzMDAzNzA1WhcNMjUxMDI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ODEwMjVmYTI1OTA3MzI2YmZlOTllYmUzOTM2NmEwNzhj MDVjNWUyNjNmNzhiMWUxNDA0NzQ3MzlmMDhjNmFjMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDfsZxj5aP7XyzTXsW/nbAma3E0yODyLki/MKN+Ix5S7gMD yGgTbK0WhH3u6LzLScYfPI0wTadiSdC0kDfHmY6z8JDltPypXuLi1Bwq+5MBeKz7 CgJEIAYkavh8/czj1Tw8Fi6Cd3Lc9yI3a2ImLxAzEVbYkyT/Es/L8ZAJfmkC2hKa qwtjx+/l6t1Yh/nJngTzOsW0dzcNSreGz3w/d8wbzzZoMSU2/7ErPTyzCJvr6Bug ++MmQRlC0rdGY0LmrsnU1kEsB4JlDPol1q/JFRebRUa6tWmLfKEQy/v/QaRZwFd/ LEsZN8Aa0ed/cPr28qOm3WnVEDLl/MJscEV+6jInAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUk9GIyOO+nwbIbeH3KBngsDFrZgwwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2E0MzI1MTJhLTFlMDktNDAzNi04NWRjLTkwNzVkZmVjZmM1ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAI0VUAwDQYJKoZIhvcNAQELBQADggEBAGAlMAQ+LDevxHxhm9XFbqV8LkVY NbqINVM5AQ3k2aV/9EKjiPQmjwY5W1JxZWP585jpCDYOS7s/L+KQMnKlRg36BLhA EGT+XjQ4v7lmTTnUJs1HM4o8GFaHamrdrwptRVhYkrOhxFNUf+z8tqZgsW2mcieg txuB1XIY0CQ0XA9929IU2DjxgSdiNpsSkwEXK4DOIRK6Yu9BtUiIomIjMqEZ2Qwd /aVPxUgCsugHIU2KzIfdf7AC44/YyfKCEaZ0SYBZ9cOLDWekdDGq/NR9OSqYF/g6 qW+Mw7pTa/hZNjoFwCB3cbRFFpUA0W+oUOn2rqEC79Vayxmg7fQdGgSFpso= -----END CERTIFICATE-----Generated at Sat Oct 18 02:17:24 2025 by rpki-client