$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/aa5ff16a-b7a9-490e-99be-3eaaa71e154b.roa File: aa5ff16a-b7a9-490e-99be-3eaaa71e154b.roa (raw, json) Hash identifier: i+UWc5c78BgBPSVBf4zaPu8S6xKsjU+ye9CSmwDe1Bw= Subject key identifier: 5D:62:26:35:8D:6A:7D:30:70:8B:3C:5D:A1:63:1B:92:08:71:22:5C Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 68CA87FCB3E2FB7E2DC8C3FE723C800C231886B1 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/aa5ff16a-b7a9-490e-99be-3eaaa71e154b.roa Signing time: Fri 10 Oct 2025 15:36:36 +0000 ROA not before: Fri 10 Oct 2025 15:36:36 +0000 ROA not after: Fri 14 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 34.254.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:ca:87:fc:b3:e2:fb:7e:2d:c8:c3:fe:72:3c:80:0c:23:18:86:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 10 15:36:36 2025 GMT Not After : Nov 14 23:59:59 2025 GMT Subject: serialNumber=dc687eb1c997a6d43a20457ca196d7fba48a6ec7336bfc449c293dfd940fc0d2, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:07:4f:a2:3a:84:51:29:9f:a6:cb:83:6b:17: 8f:70:27:bb:71:99:63:3a:4d:3a:7a:4b:e7:07:c7: 62:47:70:3e:1d:fb:b2:3a:0d:dd:e8:0a:bf:8e:56: 5b:04:6e:77:47:14:e4:74:c9:a5:ae:5e:df:0f:7e: a2:b6:4f:57:8f:70:13:81:97:32:22:04:50:a3:3d: f6:96:c0:ca:16:a8:af:85:13:32:2c:a7:f6:e4:2f: d4:1a:14:4c:5b:bb:21:92:53:09:c5:62:6c:62:eb: 16:33:41:b0:aa:94:b8:66:d5:36:78:aa:af:04:ba: 70:37:66:26:2d:59:77:5b:6e:79:ed:83:b5:0d:a9: 5f:5c:d2:bf:c0:02:27:80:71:f1:10:63:ad:9a:bc: 3e:6e:f6:76:28:b6:6e:2c:d9:e2:8a:fe:45:70:ea: df:60:73:df:1c:17:c6:d3:8a:c7:55:72:22:03:cd: b3:15:51:00:59:33:f3:58:03:0a:a5:a9:bf:0e:36: af:2e:89:60:17:7e:15:be:7a:df:3b:b5:96:32:75: ed:d4:a5:70:b0:d5:cd:95:77:d5:d4:6f:e6:79:b3: 6a:3a:05:b4:3d:56:f5:c4:f9:63:6e:88:75:73:b5: 83:77:fa:1a:f1:e9:97:9f:fd:24:86:8a:16:d7:9e: a4:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:62:26:35:8D:6A:7D:30:70:8B:3C:5D:A1:63:1B:92:08:71:22:5C X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/aa5ff16a-b7a9-490e-99be-3eaaa71e154b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 34.254.192.0/18 Signature Algorithm: sha256WithRSAEncryption ae:0a:29:4c:3a:0b:40:67:7f:16:cc:c8:c8:c8:d5:eb:e3:af: d5:e9:4c:a4:c6:1a:c8:4d:ad:4f:b3:11:48:a5:2d:6c:4b:75: bb:9f:e5:c4:43:b6:60:ed:29:fa:6d:c8:0c:ca:a6:ea:c7:6e: ca:2d:9c:5a:4d:de:9b:52:29:41:46:19:56:72:9f:09:d8:6f: 8c:73:86:f4:36:3d:1f:80:d6:03:6b:39:1e:a6:eb:11:d4:ab: 27:85:23:a8:33:69:ed:f1:69:39:9f:64:4b:23:ac:29:a6:1d: b6:34:10:6d:14:28:08:dc:b5:8a:72:a7:7d:84:4b:56:68:8a: c3:66:9c:36:50:af:83:aa:c4:cb:4c:7f:0f:5a:90:b0:cc:69: 12:84:fd:72:dc:e0:0d:a7:04:67:83:22:be:6a:43:3c:d7:75: a1:c5:c0:ba:0a:67:56:95:28:9a:56:54:13:08:be:4a:f2:0f: 36:f2:b1:0c:d5:60:0f:73:29:53:0e:ba:21:ba:af:77:54:3a: ab:b0:ed:e7:fb:e6:14:45:09:4f:f3:4e:96:a8:fe:46:aa:6a: 36:43:67:78:5f:be:81:e7:a7:72:fc:e8:e5:c9:9b:b0:7b:30: 5b:f0:23:23:36:70:8a:57:5e:99:eb:01:ef:14:fb:78:3f:29: 90:5a:2a:1e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaMqH/LPi+34tyMP+cjyADCMYhrEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDEwMTUzNjM2WhcNMjUxMTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BkYzY4N2ViMWM5OTdhNmQ0M2EyMDQ1N2NhMTk2ZDdmYmE0 OGE2ZWM3MzM2YmZjNDQ5YzI5M2RmZDk0MGZjMGQyMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8B0+iOoRRKZ+my4NrF49wJ7txmWM6TTp6S+cHx2JHcD4d +7I6Dd3oCr+OVlsEbndHFOR0yaWuXt8PfqK2T1ePcBOBlzIiBFCjPfaWwMoWqK+F EzIsp/bkL9QaFExbuyGSUwnFYmxi6xYzQbCqlLhm1TZ4qq8EunA3ZiYtWXdbbnnt g7UNqV9c0r/AAieAcfEQY62avD5u9nYotm4s2eKK/kVw6t9gc98cF8bTisdVciID zbMVUQBZM/NYAwqlqb8ONq8uiWAXfhW+et87tZYyde3UpXCw1c2Vd9XUb+Z5s2o6 BbQ9VvXE+WNuiHVztYN3+hrx6Zef/SSGihbXnqS3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUXWImNY1qfTBwizxdoWMbkghxIlwwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2FhNWZmMTZhLWI3YTktNDkwZS05OWJlLTNlYWFhNzFlMTU0Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYi/sAwDQYJKoZIhvcNAQELBQADggEBAK4KKUw6C0BnfxbMyMjI1evjr9Xp TKTGGshNrU+zEUilLWxLdbuf5cRDtmDtKfptyAzKpurHbsotnFpN3ptSKUFGGVZy nwnYb4xzhvQ2PR+A1gNrOR6m6xHUqyeFI6gzae3xaTmfZEsjrCmmHbY0EG0UKAjc tYpyp32ES1ZoisNmnDZQr4OqxMtMfw9akLDMaRKE/XLc4A2nBGeDIr5qQzzXdaHF wLoKZ1aVKJpWVBMIvkryDzbysQzVYA9zKVMOuiG6r3dUOquw7ef75hRFCU/zTpao /kaqajZDZ3hfvoHnp3L86OXJm7B7MFvwIyM2cIpXXpnrAe8U+3g/KZBaKh4= -----END CERTIFICATE-----Generated at Fri Oct 17 23:54:22 2025 by rpki-client