$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/28653b67-3c5f-4278-98a9-36a30cce970f.roa File: 28653b67-3c5f-4278-98a9-36a30cce970f.roa (raw, json) Hash identifier: cCwCpeiMj3C3eSb9yKhXDSRhymtBspmJnggv7JA6zsI= Subject key identifier: 63:E9:D7:CE:03:FF:E9:E1:D3:9F:A6:C9:AE:62:07:05:4C:14:93:CF Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 7E04FED052EC8223BD3A22A0FF2CE051371D6427 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/28653b67-3c5f-4278-98a9-36a30cce970f.roa Signing time: Sun 19 Oct 2025 07:30:19 +0000 ROA not before: Sun 19 Oct 2025 07:30:19 +0000 ROA not after: Sun 23 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.84.216.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:04:fe:d0:52:ec:82:23:bd:3a:22:a0:ff:2c:e0:51:37:1d:64:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 19 07:30:19 2025 GMT Not After : Nov 23 23:59:59 2025 GMT Subject: serialNumber=05eaa8462ebc016177b916c4a7df749209a9957dd5e2b5da6bf7ee2a01d41fcd, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:da:08:7a:4e:1c:f2:44:55:9e:37:fd:e9:66: fd:ee:05:17:d4:fa:05:8c:22:fc:f6:3c:ce:37:e7: ef:89:e1:31:2f:8b:37:94:e1:35:30:00:d4:fb:cc: f0:cb:7a:9d:0f:d8:fc:65:ea:b6:c7:12:1b:a1:ee: 56:d7:57:72:9e:c8:18:24:a6:06:57:53:e3:96:15: 80:84:ac:77:91:d9:39:22:aa:fd:e9:87:af:04:40: 05:b7:71:eb:48:26:47:a0:44:81:b9:a3:92:96:a0: fc:1e:70:40:cc:49:62:fc:76:0f:12:60:b9:67:cc: 79:8a:5a:ee:4b:ef:cd:5f:cf:d4:9c:17:2f:61:5a: 54:05:bc:ea:9e:e7:40:60:aa:62:a2:bf:33:a7:39: 36:6d:18:d1:37:dc:fc:1b:0a:1d:ff:8d:f7:dc:3e: d0:5f:76:81:c4:5d:0a:91:ba:b6:aa:2a:ae:3a:26: bf:77:d7:ab:b2:ff:fd:a0:a4:3a:22:6b:04:36:ce: 91:22:a2:11:e4:fb:2d:bf:3d:ce:d2:5b:f9:52:99: 45:44:ff:50:e6:da:cf:8d:0d:ef:05:34:57:3e:8c: 01:f0:f4:45:a3:8b:89:6c:14:02:93:69:3b:13:de: 06:96:28:ef:4e:04:ed:0d:bd:1a:e6:f4:34:98:29: 7a:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:E9:D7:CE:03:FF:E9:E1:D3:9F:A6:C9:AE:62:07:05:4C:14:93:CF X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/28653b67-3c5f-4278-98a9-36a30cce970f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.84.216.0/22 Signature Algorithm: sha256WithRSAEncryption 87:02:6b:1b:b5:65:f8:70:41:98:cf:a1:17:2a:54:b7:c7:18: 3c:c9:fc:14:5b:0e:fb:16:57:cc:17:5d:54:6f:29:1f:de:00: 8e:ec:39:23:ef:14:cb:4a:0c:e7:1c:41:61:8b:04:a8:02:bd: be:78:37:31:ad:96:c5:75:e4:25:bf:49:1d:2e:1b:37:21:a2: 72:a7:d1:34:9f:98:3c:9f:96:75:de:ca:46:82:4d:3a:2a:e4: 52:06:11:25:4c:aa:6a:7a:d3:7b:5e:7c:4e:0b:1a:ef:8c:9a: ce:24:e3:aa:30:05:f4:2a:bf:0e:2c:31:92:9e:48:97:08:af: fd:af:51:60:54:ef:09:35:d5:9b:0b:23:fe:b3:b3:07:b1:9f: 4a:f0:17:cd:b8:95:a2:7e:32:56:5f:da:cf:dc:0f:53:c9:66: b0:2c:9b:f7:3e:a4:78:dd:56:ee:bb:13:eb:ca:ab:70:55:dd: 74:e2:8c:98:71:d7:0d:dd:9d:6a:bd:36:90:58:57:30:22:3a: 5c:fc:03:66:10:e7:a0:fa:3a:b0:70:b5:c8:75:61:55:d4:13: 83:ed:3e:9c:d2:85:f7:71:38:d0:d5:30:2a:fd:75:63:42:ca: df:69:03:75:17:70:d8:8c:63:99:fe:8a:0a:47:dd:ef:f5:f4: ac:85:0f:99 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfgT+0FLsgiO9OiKg/yzgUTcdZCcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE5MDczMDE5WhcNMjUxMTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AwNWVhYTg0NjJlYmMwMTYxNzdiOTE2YzRhN2RmNzQ5MjA5 YTk5NTdkZDVlMmI1ZGE2YmY3ZWUyYTAxZDQxZmNkMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC42gh6ThzyRFWeN/3pZv3uBRfU+gWMIvz2PM435++J4TEv izeU4TUwANT7zPDLep0P2Pxl6rbHEhuh7lbXV3KeyBgkpgZXU+OWFYCErHeR2Tki qv3ph68EQAW3cetIJkegRIG5o5KWoPwecEDMSWL8dg8SYLlnzHmKWu5L781fz9Sc Fy9hWlQFvOqe50BgqmKivzOnOTZtGNE33PwbCh3/jffcPtBfdoHEXQqRuraqKq46 Jr9316uy//2gpDoiawQ2zpEiohHk+y2/Pc7SW/lSmUVE/1Dm2s+NDe8FNFc+jAHw 9EWji4lsFAKTaTsT3gaWKO9OBO0NvRrm9DSYKXpJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUY+nXzgP/6eHTn6bJrmIHBUwUk88wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzI4NjUzYjY3LTNjNWYtNDI3OC05OGE5LTM2YTMwY2NlOTcwZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAI0VNgwDQYJKoZIhvcNAQELBQADggEBAIcCaxu1ZfhwQZjPoRcqVLfHGDzJ /BRbDvsWV8wXXVRvKR/eAI7sOSPvFMtKDOccQWGLBKgCvb54NzGtlsV15CW/SR0u GzchonKn0TSfmDyflnXeykaCTToq5FIGESVMqmp603tefE4LGu+Mms4k46owBfQq vw4sMZKeSJcIr/2vUWBU7wk11ZsLI/6zswexn0rwF824laJ+MlZf2s/cD1PJZrAs m/c+pHjdVu67E+vKq3BV3XTijJhx1w3dnWq9NpBYVzAiOlz8A2YQ56D6OrBwtch1 YVXUE4PtPpzShfdxONDVMCr9dWNCyt9pA3UXcNiMY5n+igpH3e/19KyFD5k= -----END CERTIFICATE-----Generated at Mon Oct 20 02:56:05 2025 by rpki-client