$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1b663720-077c-41a7-8fe2-c73d5f8c253d.roa File: 1b663720-077c-41a7-8fe2-c73d5f8c253d.roa (raw, json) Hash identifier: JNYq27NAf/ep+MQI0iagWyfYOTpcPSd41WNJjvxVwxc= Subject key identifier: AB:B7:23:EA:F8:62:CB:18:DF:13:8F:12:92:7E:ED:AB:09:79:3D:56 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 3D9A0F585017B93B52EE00E8006968F50B4DA184 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1b663720-077c-41a7-8fe2-c73d5f8c253d.roa Signing time: Sun 19 Oct 2025 06:31:29 +0000 ROA not before: Sun 19 Oct 2025 06:31:29 +0000 ROA not after: Sun 23 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.94.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:9a:0f:58:50:17:b9:3b:52:ee:00:e8:00:69:68:f5:0b:4d:a1:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 19 06:31:29 2025 GMT Not After : Nov 23 23:59:59 2025 GMT Subject: serialNumber=bad44c4e2286c71069fd396f170c7723aaa5d0b6eef1243d0c295ae3b00b47e2, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:43:0b:17:98:6d:89:45:6a:73:8c:6b:c3:b0: 9c:ec:97:f2:64:54:56:e9:95:d8:9f:c9:91:49:52: 42:b3:9f:14:e7:65:7a:b7:53:24:9a:58:3a:5a:db: 9a:76:97:17:8e:68:c2:9d:c4:8b:e8:8b:a7:54:eb: 63:1b:91:df:56:c6:b1:e3:95:9a:96:c0:bc:1c:fd: dc:05:82:29:85:75:f6:cb:12:a6:ce:90:27:a8:04: 85:3c:48:76:2d:43:1c:c2:f5:8f:bb:69:69:a5:54: 39:71:43:5e:07:f5:20:a9:d5:1c:f7:89:60:38:8e: b0:c1:69:10:b5:61:5d:ce:d9:ef:93:cc:f1:70:11: db:8d:a6:66:e0:a4:53:23:fb:9f:47:f1:ed:ff:ef: 48:b8:ae:0b:f9:98:61:ba:8e:73:c5:7d:ac:e4:17: e0:7f:6e:35:2e:be:fd:55:ba:87:f0:f6:e4:c3:2b: 3b:d5:26:34:30:0b:38:f3:31:1e:d3:90:3b:c8:db: bf:f2:74:c4:cf:12:79:c9:da:32:12:e7:33:b3:dd: 4f:ad:f4:5a:01:5a:e2:0c:a4:d2:67:7e:68:4e:b7: 6e:b2:6e:fb:ac:54:50:6e:f2:82:2b:6c:d3:d7:1e: 1a:eb:7c:0a:2a:92:a2:37:15:d1:ab:54:2b:c4:bd: a0:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:B7:23:EA:F8:62:CB:18:DF:13:8F:12:92:7E:ED:AB:09:79:3D:56 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1b663720-077c-41a7-8fe2-c73d5f8c253d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.94.9.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:66:58:d8:93:32:d5:e5:3a:bb:2c:b7:97:64:97:5f:4c:14: 8b:89:0a:a9:67:3e:d7:12:74:02:7d:66:d0:24:1d:d0:29:97: b1:a0:76:0c:0a:fa:c3:c7:55:77:84:cf:ad:f2:d0:f2:63:19: e1:c7:e7:83:9c:8c:1c:68:01:2b:bf:0e:43:73:77:8e:bd:4a: 11:1c:f4:76:fb:ee:cc:56:1d:1a:e1:85:55:7e:cf:79:1b:c6: d7:0c:98:cd:e2:16:cf:1b:97:33:0a:d8:e1:7c:50:f2:89:d7: 03:45:c3:20:0e:cf:78:08:21:da:c3:7c:a1:e4:24:5d:07:d3: 39:aa:9e:ed:05:64:a7:9f:f1:42:67:e3:a0:d7:ba:4f:26:e7: 0d:7d:00:54:d8:03:62:ef:52:d0:ea:99:35:25:fd:a1:83:1d: 4b:21:30:cc:15:32:69:87:d5:e5:b2:6e:37:33:d7:e9:90:58: 31:28:b5:db:3c:09:53:87:89:37:52:16:6f:b0:c6:b1:94:78: 1f:43:88:e6:22:45:7b:b4:8c:4a:3b:a3:58:35:7b:f1:21:84: 2b:ad:15:40:16:d3:e0:d4:e9:60:07:dc:d6:28:2c:c3:d9:45: e9:19:16:f2:4d:8e:7c:70:36:d7:56:8d:85:91:47:a0:a1:a2: a0:df:ac:2a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPZoPWFAXuTtS7gDoAGlo9QtNoYQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE5MDYzMTI5WhcNMjUxMTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BiYWQ0NGM0ZTIyODZjNzEwNjlmZDM5NmYxNzBjNzcyM2Fh YTVkMGI2ZWVmMTI0M2QwYzI5NWFlM2IwMGI0N2UyMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsQwsXmG2JRWpzjGvDsJzsl/JkVFbpldifyZFJUkKznxTn ZXq3UySaWDpa25p2lxeOaMKdxIvoi6dU62Mbkd9WxrHjlZqWwLwc/dwFgimFdfbL EqbOkCeoBIU8SHYtQxzC9Y+7aWmlVDlxQ14H9SCp1Rz3iWA4jrDBaRC1YV3O2e+T zPFwEduNpmbgpFMj+59H8e3/70i4rgv5mGG6jnPFfazkF+B/bjUuvv1Vuofw9uTD KzvVJjQwCzjzMR7TkDvI27/ydMTPEnnJ2jIS5zOz3U+t9FoBWuIMpNJnfmhOt26y bvusVFBu8oIrbNPXHhrrfAoqkqI3FdGrVCvEvaDDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUq7cj6vhiyxjfE48Skn7tqwl5PVYwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzFiNjYzNzIwLTA3N2MtNDFhNy04ZmUyLWM3M2Q1ZjhjMjUzZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA0XgkwDQYJKoZIhvcNAQELBQADggEBAF5mWNiTMtXlOrsst5dkl19MFIuJ CqlnPtcSdAJ9ZtAkHdApl7GgdgwK+sPHVXeEz63y0PJjGeHH54OcjBxoASu/DkNz d469ShEc9Hb77sxWHRrhhVV+z3kbxtcMmM3iFs8blzMK2OF8UPKJ1wNFwyAOz3gI IdrDfKHkJF0H0zmqnu0FZKef8UJn46DXuk8m5w19AFTYA2LvUtDqmTUl/aGDHUsh MMwVMmmH1eWybjcz1+mQWDEotds8CVOHiTdSFm+wxrGUeB9DiOYiRXu0jEo7o1g1 e/EhhCutFUAW0+DU6WAH3NYoLMPZRekZFvJNjnxwNtdWjYWRR6ChoqDfrCo= -----END CERTIFICATE-----Generated at Mon Oct 20 03:04:07 2025 by rpki-client