$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6ec2324b-f4e3-4512-bd5f-fe2273636819.roa File: 6ec2324b-f4e3-4512-bd5f-fe2273636819.roa (raw, json) Hash identifier: iyqH6f4GtsDgb43/yY+wWPdoQIBALGhMDpw7nkEi04k= Subject key identifier: 61:F5:F2:E9:F5:6F:DF:C9:9E:66:1C:59:53:44:7C:2E:64:4C:93:E1 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 78DD6042454227F19198AE80DC1639B8CB8106F4 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6ec2324b-f4e3-4512-bd5f-fe2273636819.roa Signing time: Thu 16 Oct 2025 16:37:35 +0000 ROA not before: Thu 16 Oct 2025 16:37:35 +0000 ROA not after: Thu 20 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.124.162.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:dd:60:42:45:42:27:f1:91:98:ae:80:dc:16:39:b8:cb:81:06:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 16 16:37:35 2025 GMT Not After : Nov 20 23:59:59 2025 GMT Subject: serialNumber=14453087fbbd9c360b34429e71eabdd2cfb3b4fe576f7c854bb986cf9034fcd2, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:94:88:47:b2:fe:a8:ca:14:ba:6d:be:97:7b: dc:8d:a9:97:d3:f6:79:77:9d:ab:bc:ca:93:72:16: 3c:22:b1:50:c3:c1:ec:1e:f8:32:62:15:1d:b6:4f: be:f5:ff:b9:af:88:20:a0:eb:55:ab:1d:25:c5:37: b0:29:f0:f0:9c:b5:ad:63:27:56:e3:af:9d:28:9d: d1:11:0c:bd:28:89:92:c9:75:4a:53:73:ba:3d:ca: 7a:51:40:a8:e2:a8:71:fc:d2:b3:32:ac:e3:14:a0: 70:b0:f0:04:f7:05:f4:cc:7c:26:89:1c:f4:46:b3: 86:51:93:61:21:d3:a5:ca:55:b4:8e:d2:7f:c5:6f: a6:3f:11:c2:ba:9c:b0:5e:88:49:10:86:8c:47:96: bb:6e:62:fd:f3:dc:3c:c2:93:ec:ba:b8:e0:69:90: 95:03:ac:6c:85:5b:7e:12:eb:97:5c:66:f2:6d:5c: f4:f4:40:bd:3c:5d:8d:f8:68:4c:ca:50:4b:25:6c: af:88:66:24:8e:2a:1a:20:e1:03:65:04:7e:40:ff: e7:d4:0d:99:94:74:6e:70:a0:4d:7c:06:fa:83:af: 8a:4c:4b:63:e9:96:de:c0:39:e8:c0:08:5f:33:cf: 88:44:03:d6:ff:43:0b:66:51:1a:af:22:a7:4a:8d: 4c:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:F5:F2:E9:F5:6F:DF:C9:9E:66:1C:59:53:44:7C:2E:64:4C:93:E1 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6ec2324b-f4e3-4512-bd5f-fe2273636819.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.124.162.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:ec:fc:1d:21:1b:7f:2b:d3:26:c3:00:5c:4c:c0:8f:7e:ca: 93:be:9f:e9:3c:24:5d:56:cc:d4:df:8e:c6:2a:4e:08:94:4c: 89:9f:26:b7:ed:41:71:7f:c7:c6:f7:c3:66:8c:2d:fb:f9:2c: 14:4f:3d:23:4e:c6:de:9e:17:8e:75:6f:74:d3:ae:9b:5d:6b: 1b:50:23:bf:fe:52:1a:07:59:6b:b1:22:1e:9d:9c:bd:a4:cd: 37:68:33:5c:88:10:78:70:ed:7b:eb:ed:d3:3f:6a:7e:e3:3c: ee:29:cd:f6:3d:62:67:ef:65:49:14:60:14:cb:c6:a5:f4:5f: 98:5f:56:9e:c3:ae:ba:d0:ee:28:e3:85:18:dd:60:41:26:33: 10:7d:f7:1f:c5:12:a1:7a:3c:9c:4b:09:45:d9:8d:cd:b8:84: a0:f8:cb:2d:7f:f9:f3:cc:13:29:65:99:84:17:dc:15:4c:8f: 1a:38:72:b8:ab:37:68:2a:4d:73:b3:06:f7:fc:1b:27:6c:1e: a3:9f:76:46:10:e2:bc:f3:80:56:92:30:5e:84:37:e7:b2:36: b0:ed:11:2e:e8:53:7a:74:23:c5:cb:e2:f4:87:e3:ba:e3:4f: a3:5d:2c:57:ee:62:3f:07:c1:94:a2:88:79:b8:58:2c:45:b3: 02:e2:40:27 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUeN1gQkVCJ/GRmK6A3BY5uMuBBvQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE2MTYzNzM1WhcNMjUxMTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxNDQ1MzA4N2ZiYmQ5YzM2MGIzNDQyOWU3MWVhYmRkMmNm YjNiNGZlNTc2ZjdjODU0YmI5ODZjZjkwMzRmY2QyMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQChlIhHsv6oyhS6bb6Xe9yNqZfT9nl3nau8ypNyFjwisVDD wewe+DJiFR22T771/7mviCCg61WrHSXFN7Ap8PCcta1jJ1bjr50ondERDL0oiZLJ dUpTc7o9ynpRQKjiqHH80rMyrOMUoHCw8AT3BfTMfCaJHPRGs4ZRk2Eh06XKVbSO 0n/Fb6Y/EcK6nLBeiEkQhoxHlrtuYv3z3DzCk+y6uOBpkJUDrGyFW34S65dcZvJt XPT0QL08XY34aEzKUEslbK+IZiSOKhog4QNlBH5A/+fUDZmUdG5woE18BvqDr4pM S2Pplt7AOejACF8zz4hEA9b/QwtmURqvIqdKjUxVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUYfXy6fVv38meZhxZU0R8LmRMk+EwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzZlYzIzMjRiLWY0ZTMtNDUxMi1iZDVmLWZlMjI3MzYzNjgxOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA0fKIwDQYJKoZIhvcNAQELBQADggEBAB7s/B0hG38r0ybDAFxMwI9+ypO+ n+k8JF1WzNTfjsYqTgiUTImfJrftQXF/x8b3w2aMLfv5LBRPPSNOxt6eF451b3TT rptdaxtQI7/+UhoHWWuxIh6dnL2kzTdoM1yIEHhw7Xvr7dM/an7jPO4pzfY9Ymfv ZUkUYBTLxqX0X5hfVp7DrrrQ7ijjhRjdYEEmMxB99x/FEqF6PJxLCUXZjc24hKD4 yy1/+fPMEyllmYQX3BVMjxo4crirN2gqTXOzBvf8GydsHqOfdkYQ4rzzgFaSMF6E N+eyNrDtES7oU3p0I8XL4vSH47rjT6NdLFfuYj8HwZSiiHm4WCxFswLiQCc= -----END CERTIFICATE-----Generated at Mon Oct 20 06:07:09 2025 by rpki-client