$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/93ff3eb7-e008-4ac1-9608-293c908c793d.roa File: 93ff3eb7-e008-4ac1-9608-293c908c793d.roa (raw, json) Hash identifier: cQX/4jjF9asb50PBHG30wzrODb6eBfXRHtLM0XRbWUQ= Subject key identifier: 34:37:39:E0:28:78:AD:E2:72:6D:DC:31:66:84:DD:57:72:DD:CE:2D Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 0835FCA28E4BA3224505626E9B5A943E03584D9B Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/93ff3eb7-e008-4ac1-9608-293c908c793d.roa Signing time: Sun 19 Oct 2025 06:31:28 +0000 ROA not before: Sun 19 Oct 2025 06:31:28 +0000 ROA not after: Sun 23 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.85.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:35:fc:a2:8e:4b:a3:22:45:05:62:6e:9b:5a:94:3e:03:58:4d:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 19 06:31:28 2025 GMT Not After : Nov 23 23:59:59 2025 GMT Subject: serialNumber=dd709af723f0b5afa429eeb94c0bf035220c0a45a9852041a1b64e21c8fa2561, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:42:2f:65:ab:b9:d9:4c:8e:d5:af:8f:e4:f8: 13:ab:e7:75:eb:98:57:ac:eb:89:ba:8a:85:0d:61: 15:a9:d6:c5:ca:50:c5:3e:c3:f2:57:64:e3:d3:d3: 52:a3:6d:46:06:4e:cc:a3:86:b1:82:28:f5:0b:71: 9e:50:6e:5e:6c:5b:b4:46:50:a7:6a:ba:39:da:1e: ca:8b:09:e3:fe:d0:72:63:4a:db:de:c4:da:1e:3e: 5e:b1:4e:f8:60:60:ca:05:9a:00:91:1b:47:88:4c: 8d:46:83:cf:81:ac:0b:a0:da:ed:4a:f2:a2:38:1f: 23:89:58:ba:b6:7a:56:a3:0f:0c:fa:c8:03:ab:e3: 9c:40:86:26:b2:47:ef:80:9f:56:d1:c4:bc:38:d1: 9b:c6:59:e9:27:84:40:ec:c7:e4:a7:57:fd:ca:79: 56:af:d8:c6:83:b4:43:3f:f8:3c:15:c1:ea:48:43: dd:65:43:90:8e:d3:92:40:cf:65:4e:60:d9:be:ef: e5:ef:3f:16:a7:9e:b7:1b:4f:63:6b:8a:78:ac:46: 3c:b3:9c:97:f6:ed:6e:7a:a7:30:10:30:46:5a:c2: 21:cc:8d:17:8b:5c:c1:a7:94:ad:d1:35:3b:13:4f: d5:cd:e3:1b:3b:0c:31:be:ec:70:b2:65:ee:a3:4e: 0d:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:37:39:E0:28:78:AD:E2:72:6D:DC:31:66:84:DD:57:72:DD:CE:2D X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/93ff3eb7-e008-4ac1-9608-293c908c793d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.85.95.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:d9:76:01:2c:3d:8f:07:1a:9a:47:16:8c:68:cf:4f:6e:13: 6f:e9:14:ee:cf:f8:25:c5:ae:0f:48:2e:55:3b:35:61:eb:6f: 93:33:e0:af:14:36:81:28:bf:74:fb:d5:f8:96:2b:02:99:59: 5e:42:10:92:7c:9a:de:55:2e:98:71:33:8a:71:3c:dd:ad:17: 34:7a:8a:8f:7f:42:3c:a2:44:25:fe:af:e8:1b:ab:d3:db:03: 40:c1:4c:ed:3b:94:0e:1c:b2:50:89:78:ac:8b:f1:b8:9e:7e: 4b:04:e3:8f:75:42:b3:4d:2d:56:77:e6:a6:bc:7f:4c:30:47: 1d:fd:6b:91:75:4f:ea:cb:06:68:7d:b6:cd:ae:5d:0e:f2:97: eb:15:56:0f:25:72:43:92:ad:8e:94:96:22:a5:2e:ca:90:cf: c4:01:32:7b:19:5d:91:db:e7:48:cd:5a:50:9a:6b:f7:f0:2c: a1:aa:01:ff:b7:43:87:6b:4b:aa:f4:19:bb:50:4f:72:9f:2e: a9:58:3e:ce:66:d7:de:e2:a5:2c:7f:15:cc:6e:a5:71:35:43: 7a:6b:fc:53:70:c7:05:76:b5:46:04:f4:cd:74:49:a3:04:42: f7:32:19:07:24:b8:11:bf:58:4a:e3:1b:14:d5:ad:c1:bd:98: ce:32:2f:79 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCDX8oo5LoyJFBWJum1qUPgNYTZswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE5MDYzMTI4WhcNMjUxMTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BkZDcwOWFmNzIzZjBiNWFmYTQyOWVlYjk0YzBiZjAzNTIy MGMwYTQ1YTk4NTIwNDFhMWI2NGUyMWM4ZmEyNTYxMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCTQi9lq7nZTI7Vr4/k+BOr53XrmFes64m6ioUNYRWp1sXK UMU+w/JXZOPT01KjbUYGTsyjhrGCKPULcZ5Qbl5sW7RGUKdqujnaHsqLCeP+0HJj StvexNoePl6xTvhgYMoFmgCRG0eITI1Gg8+BrAug2u1K8qI4HyOJWLq2elajDwz6 yAOr45xAhiayR++An1bRxLw40ZvGWeknhEDsx+SnV/3KeVav2MaDtEM/+DwVwepI Q91lQ5CO05JAz2VOYNm+7+XvPxannrcbT2NrinisRjyznJf27W56pzAQMEZawiHM jReLXMGnlK3RNTsTT9XN4xs7DDG+7HCyZe6jTg33AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUNDc54Ch4reJybdwxZoTdV3Ldzi0wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzkzZmYzZWI3LWUwMDgtNGFjMS05NjA4LTI5M2M5MDhjNzkzZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA0VV8wDQYJKoZIhvcNAQELBQADggEBABrZdgEsPY8HGppHFoxoz09uE2/p FO7P+CXFrg9ILlU7NWHrb5Mz4K8UNoEov3T71fiWKwKZWV5CEJJ8mt5VLphxM4px PN2tFzR6io9/QjyiRCX+r+gbq9PbA0DBTO07lA4cslCJeKyL8biefksE4491QrNN LVZ35qa8f0wwRx39a5F1T+rLBmh9ts2uXQ7yl+sVVg8lckOSrY6UliKlLsqQz8QB MnsZXZHb50jNWlCaa/fwLKGqAf+3Q4drS6r0GbtQT3KfLqlYPs5m197ipSx/Fcxu pXE1Q3pr/FNwxwV2tUYE9M10SaMEQvcyGQckuBG/WErjGxTVrcG9mM4yL3k= -----END CERTIFICATE-----Generated at Mon Oct 20 06:07:52 2025 by rpki-client