$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2c91061a-ee80-4ba7-87d5-b68a7b08cc53.roa File: 2c91061a-ee80-4ba7-87d5-b68a7b08cc53.roa (raw, json) Hash identifier: eZdnQu1LQ4/oaOUdCIxYG/CWGkfb5fp2XsmXYpDINA0= Subject key identifier: 14:F3:F9:43:CB:42:4D:25:81:2E:2A:34:3E:C6:DB:12:CA:22:61:A3 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 2D0423D0CFB7273FF9D14D7051141E4AFAEA71C6 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2c91061a-ee80-4ba7-87d5-b68a7b08cc53.roa Signing time: Fri 10 Oct 2025 15:57:56 +0000 ROA not before: Fri 10 Oct 2025 15:57:56 +0000 ROA not after: Fri 14 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 52.0.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:04:23:d0:cf:b7:27:3f:f9:d1:4d:70:51:14:1e:4a:fa:ea:71:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 10 15:57:56 2025 GMT Not After : Nov 14 23:59:59 2025 GMT Subject: serialNumber=762eaa099a085eb2ad2f96d0c428a517d65a9dba579bec4eab8afcb13c0e5699, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:e2:41:cc:18:b8:38:30:50:e6:a6:51:4c:64: 3f:f7:65:8c:c8:aa:67:63:ab:d4:62:9d:e1:09:ca: 55:98:81:44:92:16:22:f2:56:e1:54:e8:18:f8:f8: cd:02:99:ae:f6:f1:e0:34:d1:ad:69:aa:fc:9c:37: 6d:08:a2:ea:2c:fc:4d:1c:40:b7:8b:ca:d6:20:9a: 03:6f:2c:cf:97:ba:72:b7:95:be:fa:77:71:8c:84: 6a:4d:5d:ae:40:b8:4a:a4:e2:2e:ed:5b:64:9c:fb: 88:f4:69:5b:56:ee:03:81:c4:c6:c1:7b:4a:1f:3f: a1:94:36:3e:a8:6d:b8:90:15:7a:53:e9:d1:87:d2: 06:b3:a8:f2:13:45:a5:cc:bd:6b:5d:2a:07:93:a3: 1e:a3:7a:9b:e3:2e:13:d5:9f:be:f8:44:77:b3:62: 4f:9a:05:2f:34:9e:7e:c8:8a:1b:b1:5b:ba:0f:67: 86:b7:43:65:9e:f1:5e:e0:05:5e:df:0c:3d:3a:bf: 2c:9c:c2:9a:79:cc:32:53:97:0b:cc:96:19:b8:28: 8b:52:0b:87:a5:3e:2d:03:b4:c8:0b:04:2a:0c:85: 0d:3d:3f:be:0c:ff:87:20:7c:f2:22:68:f9:bc:1a: 87:ab:00:88:24:b7:35:df:ce:38:01:7d:6a:3a:02: da:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:F3:F9:43:CB:42:4D:25:81:2E:2A:34:3E:C6:DB:12:CA:22:61:A3 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2c91061a-ee80-4ba7-87d5-b68a7b08cc53.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.0.0.0/15 Signature Algorithm: sha256WithRSAEncryption 3b:01:f9:59:18:6d:66:17:e2:20:25:d9:cc:a0:b5:58:48:6a: 8c:65:28:92:b7:f2:7b:44:c3:de:e7:1d:99:85:ee:7a:bb:41: aa:96:a1:e8:94:69:91:fa:fb:de:51:fa:b2:25:7d:cf:6f:89: 0c:71:75:5f:e5:25:38:3c:e0:69:71:0e:f5:47:97:f0:59:3f: 22:a8:ed:58:6d:41:b0:77:44:da:70:46:1e:e0:27:c0:91:9f: c9:f2:97:b3:a5:99:ea:59:5c:65:48:1f:d9:51:a7:a2:dc:55: 0b:46:a7:d9:9d:7b:8a:41:44:1d:12:e2:6d:98:6b:8a:ad:5e: 6a:cd:cb:48:70:5c:c9:4e:3d:30:7c:f1:41:05:4d:52:28:63: 8f:d6:55:f1:fe:eb:d6:68:7c:a0:31:90:03:67:d0:56:7d:8b: ea:df:62:d8:ae:cc:c5:6f:08:73:ee:28:71:34:47:bf:f9:6b: 71:69:f5:a4:f5:8e:46:47:d7:76:28:1e:7e:72:ad:25:1f:56: 7b:04:de:6b:5d:4a:d1:bf:9a:12:f4:5e:47:b5:be:e9:d6:37: ee:55:1f:e0:0a:1c:fa:66:4a:d3:ac:6c:96:13:99:63:c8:0d: ad:dd:14:cd:c4:29:4f:b6:8c:2f:be:ca:82:da:ac:19:93:12: dc:26:a2:c1 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIULQQj0M+3Jz/50U1wURQeSvrqccYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDEwMTU1NzU2WhcNMjUxMTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A3NjJlYWEwOTlhMDg1ZWIyYWQyZjk2ZDBjNDI4YTUxN2Q2 NWE5ZGJhNTc5YmVjNGVhYjhhZmNiMTNjMGU1Njk5MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCk4kHMGLg4MFDmplFMZD/3ZYzIqmdjq9RineEJylWYgUSS FiLyVuFU6Bj4+M0Cma728eA00a1pqvycN20Iouos/E0cQLeLytYgmgNvLM+XunK3 lb76d3GMhGpNXa5AuEqk4i7tW2Sc+4j0aVtW7gOBxMbBe0ofP6GUNj6obbiQFXpT 6dGH0gazqPITRaXMvWtdKgeTox6jepvjLhPVn774RHezYk+aBS80nn7IihuxW7oP Z4a3Q2We8V7gBV7fDD06vyycwpp5zDJTlwvMlhm4KItSC4elPi0DtMgLBCoMhQ09 P74M/4cgfPIiaPm8GoerAIgktzXfzjgBfWo6Atp/AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUFPP5Q8tCTSWBLio0PsbbEsoiYaMwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzJjOTEwNjFhLWVlODAtNGJhNy04N2Q1LWI2OGE3YjA4Y2M1My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwE0ADANBgkqhkiG9w0BAQsFAAOCAQEAOwH5WRhtZhfiICXZzKC1WEhqjGUo krfye0TD3ucdmYXuertBqpah6JRpkfr73lH6siV9z2+JDHF1X+UlODzgaXEO9UeX 8Fk/IqjtWG1BsHdE2nBGHuAnwJGfyfKXs6WZ6llcZUgf2VGnotxVC0an2Z17ikFE HRLibZhriq1eas3LSHBcyU49MHzxQQVNUihjj9ZV8f7r1mh8oDGQA2fQVn2L6t9i 2K7MxW8Ic+4ocTRHv/lrcWn1pPWORkfXdigefnKtJR9WewTea11K0b+aEvReR7W+ 6dY37lUf4Aoc+mZK06xslhOZY8gNrd0UzcQpT7aML77KgtqsGZMS3CaiwQ== -----END CERTIFICATE-----Generated at Sun Oct 19 23:00:46 2025 by rpki-client