$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/92de8b3c-d124-4be3-8d04-f11e9321eeec.roa File: 92de8b3c-d124-4be3-8d04-f11e9321eeec.roa (raw, json) Hash identifier: pSnRA/ukdNP4mxrZ6CtERVAkzIUGFXCKkP7YQcUCx5A= Subject key identifier: 49:26:4F:D9:07:15:53:1D:4A:F4:5D:36:3C:E0:08:AB:1B:ED:30:DB Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 74807700B5282156ED23D97781D084B11151C931 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/92de8b3c-d124-4be3-8d04-f11e9321eeec.roa Signing time: Sun 19 Oct 2025 07:01:11 +0000 ROA not before: Sun 19 Oct 2025 07:01:11 +0000 ROA not after: Sun 23 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.84.184.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:80:77:00:b5:28:21:56:ed:23:d9:77:81:d0:84:b1:11:51:c9:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 19 07:01:11 2025 GMT Not After : Nov 23 23:59:59 2025 GMT Subject: serialNumber=29ec1ebbbc80095782a8fe3e7ec87339ad7dff6c37d95d8a5b410dc1dc766d0d, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:27:b8:cf:01:99:d6:4c:c4:bc:93:47:bd:20: 90:df:dc:e3:51:e2:98:fc:b1:11:70:b7:09:8f:16: 83:4a:ea:4f:1e:6a:7c:cc:9a:9c:60:47:33:0b:6b: f2:d2:8f:b0:f7:7b:18:20:c4:8d:79:47:71:80:44: f0:79:4e:7b:5f:9c:a6:d2:69:22:8a:e4:b8:91:03: 6c:54:9f:ca:3a:c4:bf:d5:39:05:b9:a1:ca:bd:80: 15:3a:09:c8:f0:e2:e4:87:c4:43:33:fa:03:b4:d3: 39:ad:b3:e5:25:5a:a6:d9:b8:13:ba:59:85:50:bf: f4:6f:05:f1:b9:12:03:89:fc:e1:f0:52:88:59:57: e4:5c:c8:73:55:28:66:f8:a2:e6:b0:c7:8c:e2:f5: b2:28:95:a8:3f:a3:9d:43:1c:5e:f4:2d:0a:7b:b6: 66:14:76:98:f0:1b:ad:0c:63:b5:45:02:d9:27:11: d1:78:62:8b:96:0a:a5:aa:9c:a0:2b:e5:2e:26:08: 98:90:dd:07:b0:bc:5d:5d:0e:d7:52:d3:44:7a:d1: 60:73:48:ba:2a:d8:f9:92:f8:9a:d7:fc:cb:79:4c: da:e5:fa:75:d3:2b:93:a3:e0:e1:f5:a0:b5:0d:da: c8:71:9c:72:64:16:e5:08:26:30:c4:cd:17:7e:1b: bd:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:26:4F:D9:07:15:53:1D:4A:F4:5D:36:3C:E0:08:AB:1B:ED:30:DB X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/92de8b3c-d124-4be3-8d04-f11e9321eeec.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.84.184.0/21 Signature Algorithm: sha256WithRSAEncryption 01:8a:50:f3:43:98:06:62:60:3c:45:18:e0:e3:70:f8:8b:db: 8d:41:8e:2e:32:1f:31:83:54:22:59:11:e3:af:85:ba:4a:8f: 25:40:19:f5:76:2f:9e:d7:7e:45:e0:ab:1c:a4:fa:75:5f:a2: 37:15:61:61:8f:19:8c:80:f2:9b:af:4d:b3:97:fb:c3:3d:27: 20:e9:88:25:6a:8a:72:44:db:30:74:59:ce:09:0f:00:80:8f: 14:26:cc:f0:d1:cf:14:7f:c6:ea:e0:a7:d2:f0:c7:59:71:7a: 93:4f:de:17:a0:63:46:03:bc:e1:ad:95:ea:10:7d:ab:25:75: 7f:24:06:77:72:61:6c:de:6a:d9:eb:f0:0e:48:69:4a:27:93: fe:d7:40:41:43:68:21:33:cc:07:e8:f1:0b:d6:03:b4:5d:50: 0c:45:de:5c:3e:54:5c:28:84:0b:47:eb:cf:1b:1e:2e:5a:90: 25:62:22:df:d2:f2:ff:ee:5b:f7:c4:8b:fb:22:a9:64:b3:ec: 09:97:8a:fb:a4:0f:cf:0b:c9:7e:79:3d:e3:54:2d:6a:2c:b7: 20:04:91:6f:bd:78:bf:3c:ca:7a:97:60:8d:6e:66:3d:2e:3e: 59:58:45:ce:a3:ce:30:a0:f2:e0:ad:ea:82:4a:56:11:88:5c: 02:30:11:3a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdIB3ALUoIVbtI9l3gdCEsRFRyTEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE5MDcwMTExWhcNMjUxMTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AyOWVjMWViYmJjODAwOTU3ODJhOGZlM2U3ZWM4NzMzOWFk N2RmZjZjMzdkOTVkOGE1YjQxMGRjMWRjNzY2ZDBkMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDJ7jPAZnWTMS8k0e9IJDf3ONR4pj8sRFwtwmPFoNK6k8e anzMmpxgRzMLa/LSj7D3exggxI15R3GARPB5TntfnKbSaSKK5LiRA2xUn8o6xL/V OQW5ocq9gBU6Ccjw4uSHxEMz+gO00zmts+UlWqbZuBO6WYVQv/RvBfG5EgOJ/OHw UohZV+RcyHNVKGb4ouawx4zi9bIolag/o51DHF70LQp7tmYUdpjwG60MY7VFAtkn EdF4YouWCqWqnKAr5S4mCJiQ3QewvF1dDtdS00R60WBzSLoq2PmS+JrX/Mt5TNrl +nXTK5Oj4OH1oLUN2shxnHJkFuUIJjDEzRd+G739AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUSSZP2QcVUx1K9F02POAIqxvtMNswHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzkyZGU4YjNjLWQxMjQtNGJlMy04ZDA0LWYxMWU5MzIxZWVlYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAM0VLgwDQYJKoZIhvcNAQELBQADggEBAAGKUPNDmAZiYDxFGODjcPiL241B ji4yHzGDVCJZEeOvhbpKjyVAGfV2L57XfkXgqxyk+nVfojcVYWGPGYyA8puvTbOX +8M9JyDpiCVqinJE2zB0Wc4JDwCAjxQmzPDRzxR/xurgp9Lwx1lxepNP3hegY0YD vOGtleoQfasldX8kBndyYWzeatnr8A5IaUonk/7XQEFDaCEzzAfo8QvWA7RdUAxF 3lw+VFwohAtH688bHi5akCViIt/S8v/uW/fEi/siqWSz7AmXivukD88LyX55PeNU LWostyAEkW+9eL88ynqXYI1uZj0uPllYRc6jzjCg8uCt6oJKVhGIXAIwETo= -----END CERTIFICATE-----Generated at Mon Oct 20 15:47:53 2025 by rpki-client