$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6b65b43b-e99d-4d18-b425-0e79217afd29.roa File: 6b65b43b-e99d-4d18-b425-0e79217afd29.roa (raw, json) Hash identifier: J4SGwRWoWlsDW9SSghhdcn4Eswz8kRkjezjhg9hQ/xA= Subject key identifier: 13:B2:87:6D:29:78:78:83:FE:85:CA:24:58:82:96:09:C2:CC:21:45 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 2FBF628852E7A64B8A621143F189EB3DB5310B65 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6b65b43b-e99d-4d18-b425-0e79217afd29.roa Signing time: Fri 17 Oct 2025 23:10:15 +0000 ROA not before: Fri 17 Oct 2025 23:10:15 +0000 ROA not after: Fri 21 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.240.169.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:bf:62:88:52:e7:a6:4b:8a:62:11:43:f1:89:eb:3d:b5:31:0b:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 17 23:10:15 2025 GMT Not After : Nov 21 23:59:59 2025 GMT Subject: serialNumber=ba6f56df53a1899d9c87dfc79c95b0cd99c0635d1f6c9784825fabdd399559cf, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ae:13:7f:dc:13:35:42:ab:82:d1:f8:4c:75: 1a:23:4f:2c:b1:2b:91:bb:46:e9:d3:4e:8a:b6:06: d9:d7:bb:0a:66:6d:33:de:39:50:eb:9d:b3:4b:fc: fd:6f:d4:e6:ea:05:d4:24:f0:78:6d:9c:c5:0f:d7: bc:44:b1:19:e2:50:90:4d:c3:82:d7:ed:71:24:5a: 72:a6:51:a8:98:a9:bb:4e:3c:0d:53:97:96:8e:20: 56:5e:dd:2a:7f:ea:df:bb:15:b3:0f:05:7f:eb:34: 63:06:86:cf:96:49:81:dc:35:ff:42:49:29:26:f7: 59:4e:7f:4b:ec:f3:22:cc:84:2f:1c:dd:04:ed:93: 64:98:a6:4c:9f:af:66:d7:c2:ca:bd:5e:c8:6d:b8: ce:4b:23:16:5f:49:4d:df:c8:02:ca:8d:da:1c:72: 7b:1f:63:c5:7a:fd:57:b7:28:f4:78:58:14:0d:85: 3b:e2:26:03:6c:c6:29:26:6a:2a:ef:e0:1d:dc:ef: bb:f0:9d:37:9b:4a:a2:aa:5e:69:86:7a:79:d9:3d: 31:01:d1:be:f0:31:71:22:9e:5e:31:0d:96:a7:a6: d1:56:a9:d7:0a:25:af:9f:c5:76:fd:d2:59:07:ae: 46:07:7d:cd:ea:5a:88:32:6d:a5:1b:51:a1:ca:b5: 4a:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:B2:87:6D:29:78:78:83:FE:85:CA:24:58:82:96:09:C2:CC:21:45 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6b65b43b-e99d-4d18-b425-0e79217afd29.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.240.169.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:f8:c4:7a:43:ef:96:98:bc:01:92:4f:a9:18:26:59:0f:23: 71:d0:df:f5:0f:cb:9e:e6:97:1e:91:ce:99:af:4c:ab:52:20: b2:e8:73:9b:eb:dd:91:aa:fa:f3:d9:49:fd:47:34:d4:1a:d4: 9a:8f:47:95:93:c3:ea:ee:1a:64:95:11:08:29:2b:67:30:37: d2:aa:a1:85:58:33:1d:c5:39:1e:36:64:bf:a6:b9:b2:9f:e3: 2a:ba:59:4c:4e:8e:d2:1b:8d:dd:9a:15:c4:0a:5b:84:a3:8c: 35:2c:c3:b3:16:b5:85:41:8c:e9:11:f2:1d:54:0c:08:1a:07: fd:47:15:58:1b:de:6f:ec:89:c7:35:2c:28:a2:8a:25:51:ae: c0:d7:f3:4b:db:7d:0d:e3:57:37:33:6c:f6:ea:7f:3a:f3:76: fa:0a:1e:61:74:e6:e0:52:ff:61:20:a2:13:0d:16:04:03:7e: 61:ff:d6:50:77:d0:bf:5f:a0:9c:86:42:65:09:d8:97:bc:4e: 56:dd:b6:a4:af:9a:78:65:ae:26:80:af:cf:e2:13:01:92:d7: f7:25:76:bd:87:51:85:b4:95:f0:6d:21:38:89:63:23:3f:5b: d5:f0:b0:74:ae:d9:01:32:bd:4b:6b:39:b7:6b:5e:e5:62:9b: e7:54:b9:d8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUL79iiFLnpkuKYhFD8YnrPbUxC2UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE3MjMxMDE1WhcNMjUxMTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BiYTZmNTZkZjUzYTE4OTlkOWM4N2RmYzc5Yzk1YjBjZDk5 YzA2MzVkMWY2Yzk3ODQ4MjVmYWJkZDM5OTU1OWNmMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2rhN/3BM1QquC0fhMdRojTyyxK5G7RunTToq2BtnXuwpm bTPeOVDrnbNL/P1v1ObqBdQk8HhtnMUP17xEsRniUJBNw4LX7XEkWnKmUaiYqbtO PA1Tl5aOIFZe3Sp/6t+7FbMPBX/rNGMGhs+WSYHcNf9CSSkm91lOf0vs8yLMhC8c 3QTtk2SYpkyfr2bXwsq9XshtuM5LIxZfSU3fyALKjdoccnsfY8V6/Ve3KPR4WBQN hTviJgNsxikmairv4B3c77vwnTebSqKqXmmGennZPTEB0b7wMXEinl4xDZanptFW qdcKJa+fxXb90lkHrkYHfc3qWogybaUbUaHKtUqVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUE7KHbSl4eIP+hcokWIKWCcLMIUUwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzZiNjViNDNiLWU5OWQtNGQxOC1iNDI1LTBlNzkyMTdhZmQyOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA28KkwDQYJKoZIhvcNAQELBQADggEBAF34xHpD75aYvAGST6kYJlkPI3HQ 3/UPy57mlx6RzpmvTKtSILLoc5vr3ZGq+vPZSf1HNNQa1JqPR5WTw+ruGmSVEQgp K2cwN9KqoYVYMx3FOR42ZL+mubKf4yq6WUxOjtIbjd2aFcQKW4SjjDUsw7MWtYVB jOkR8h1UDAgaB/1HFVgb3m/sicc1LCiiiiVRrsDX80vbfQ3jVzczbPbqfzrzdvoK HmF05uBS/2EgohMNFgQDfmH/1lB30L9foJyGQmUJ2Je8TlbdtqSvmnhlriaAr8/i EwGS1/cldr2HUYW0lfBtITiJYyM/W9XwsHSu2QEyvUtrObdrXuVim+dUudg= -----END CERTIFICATE-----Generated at Mon Oct 20 11:11:19 2025 by rpki-client