$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/498df138-49c2-4f3e-8b64-25cd8bc80471.roa File: 498df138-49c2-4f3e-8b64-25cd8bc80471.roa (raw, json) Hash identifier: v6HgsEgdeUBM35ZYATrQIfNF9ZlrMSwfbpRNu+WgZsE= Subject key identifier: 03:94:07:F9:24:A6:B1:6C:1F:A8:ED:B2:4A:E8:79:3C:FD:AF:41:63 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 022A12032A376E764AD3809D02633CAD4FFB2FE2 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/498df138-49c2-4f3e-8b64-25cd8bc80471.roa Signing time: Sat 18 Oct 2025 05:52:31 +0000 ROA not before: Sat 18 Oct 2025 05:52:31 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.192.179.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:2a:12:03:2a:37:6e:76:4a:d3:80:9d:02:63:3c:ad:4f:fb:2f:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 18 05:52:31 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=730f79cfa9370155fe8039be629f324aa5e7f1847016eb0970dc75020a118cd0, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fe:aa:5d:c7:47:8b:24:d8:9e:f8:90:5a:9a:23: 20:3a:2e:73:ce:5a:10:15:2e:10:80:e7:c4:63:26: 12:18:04:a6:e8:c1:09:33:b2:3e:0f:7c:ed:56:54: f0:0a:4f:eb:1a:c7:6d:b5:86:be:93:1d:43:d8:1b: f8:92:8a:c9:3b:d3:12:82:45:ec:c0:1d:9a:1d:39: 39:f1:b8:dd:58:86:de:21:12:90:cf:91:ea:7a:a0: aa:1c:38:1c:76:fa:65:31:2a:5d:f9:a7:35:51:c8: 1a:4a:b7:e1:b3:66:d6:5e:bd:b9:81:93:39:bd:b5: cc:8e:27:47:48:a2:bc:e6:15:3f:ec:cf:fd:90:a0: 46:3b:38:bf:74:da:56:8f:57:7f:87:88:4d:df:e6: 55:95:08:bd:7d:d0:31:80:de:f0:d0:58:cc:0c:3c: 95:c1:d0:b7:be:68:c1:79:4c:fe:bc:21:e2:b3:df: d5:b8:7a:8c:49:52:a8:52:b9:d0:f8:00:7a:5d:c4: e3:7c:95:29:22:99:1d:9b:80:73:27:40:43:a2:8c: 1f:c1:0e:6a:3b:b7:a6:52:04:ab:11:76:70:97:32: d4:5d:fb:97:19:4c:7d:b6:c8:a1:fc:8a:f5:99:f7: db:56:00:fa:94:14:f1:48:69:c6:83:a4:24:c6:40: 12:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:94:07:F9:24:A6:B1:6C:1F:A8:ED:B2:4A:E8:79:3C:FD:AF:41:63 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/498df138-49c2-4f3e-8b64-25cd8bc80471.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.192.179.0/24 Signature Algorithm: sha256WithRSAEncryption 42:58:43:41:6b:ff:eb:35:15:fc:31:1b:1a:83:20:bd:37:3a: c8:0a:ea:4d:36:55:33:a6:1e:a7:03:8e:0a:79:18:f6:47:d6: 40:3c:d7:57:8d:71:c2:12:f5:8f:82:ae:d8:17:fd:d5:7c:fe: 35:2b:fa:e1:60:dd:00:7b:60:ba:fa:38:50:8a:5c:44:7f:8a: d8:d3:6c:11:3d:c6:9b:2d:24:9f:b8:f5:7a:73:ad:4c:32:ed: e0:96:8d:74:c0:f5:a0:2d:a2:d7:fa:81:10:05:3c:26:57:b0: 3a:db:28:e6:be:b9:1c:b4:e1:2a:1d:5d:48:c1:d8:79:10:fa: f2:1d:1c:4d:6e:02:6d:ee:26:ba:89:b6:3e:68:c3:04:27:38: c2:a8:27:86:ab:34:c3:3d:36:ad:e4:ca:55:45:f8:28:89:3a: 60:b6:a2:df:6f:bc:44:1b:24:29:d0:7a:f3:5d:de:f5:d1:6e: f7:92:af:ce:fc:41:9d:3c:bc:94:27:c2:c7:c4:94:5a:e6:32: c7:27:64:bc:2e:32:6c:ec:7c:7b:27:5b:03:a5:e1:b8:a0:92: ca:cc:d0:a7:15:1b:86:0d:38:15:8f:da:7a:19:3b:b1:84:c0: 59:ab:05:75:0c:ee:b1:e0:77:57:18:70:11:3c:d4:6d:d7:bd: 31:59:3a:0e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAioSAyo3bnZK04CdAmM8rU/7L+IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE4MDU1MjMxWhcNMjUxMTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A3MzBmNzljZmE5MzcwMTU1ZmU4MDM5YmU2MjlmMzI0YWE1 ZTdmMTg0NzAxNmViMDk3MGRjNzUwMjBhMTE4Y2QwMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD+ql3HR4sk2J74kFqaIyA6LnPOWhAVLhCA58RjJhIYBKbo wQkzsj4PfO1WVPAKT+sax221hr6THUPYG/iSisk70xKCRezAHZodOTnxuN1Yht4h EpDPkep6oKocOBx2+mUxKl35pzVRyBpKt+GzZtZevbmBkzm9tcyOJ0dIorzmFT/s z/2QoEY7OL902laPV3+HiE3f5lWVCL190DGA3vDQWMwMPJXB0Le+aMF5TP68IeKz 39W4eoxJUqhSudD4AHpdxON8lSkimR2bgHMnQEOijB/BDmo7t6ZSBKsRdnCXMtRd +5cZTH22yKH8ivWZ99tWAPqUFPFIacaDpCTGQBJxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUA5QH+SSmsWwfqO2ySuh5PP2vQWMwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzQ5OGRmMTM4LTQ5YzItNGYzZS04YjY0LTI1Y2Q4YmM4MDQ3MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA2wLMwDQYJKoZIhvcNAQELBQADggEBAEJYQ0Fr/+s1FfwxGxqDIL03OsgK 6k02VTOmHqcDjgp5GPZH1kA811eNccIS9Y+CrtgX/dV8/jUr+uFg3QB7YLr6OFCK XER/itjTbBE9xpstJJ+49XpzrUwy7eCWjXTA9aAtotf6gRAFPCZXsDrbKOa+uRy0 4SodXUjB2HkQ+vIdHE1uAm3uJrqJtj5owwQnOMKoJ4arNMM9Nq3kylVF+CiJOmC2 ot9vvEQbJCnQevNd3vXRbveSr878QZ08vJQnwsfElFrmMscnZLwuMmzsfHsnWwOl 4bigksrM0KcVG4YNOBWP2noZO7GEwFmrBXUM7rHgd1cYcBE81G3XvTFZOg4= -----END CERTIFICATE-----Generated at Mon Oct 20 06:09:57 2025 by rpki-client