$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9f36589a-6a75-4fe3-a497-53f76c6f6368.roa File: 9f36589a-6a75-4fe3-a497-53f76c6f6368.roa (raw, json) Hash identifier: LohilZV01TC3ZVGW1lKgAgXbk5DIlQYm8AEV65BURGs= Subject key identifier: 81:EA:37:A2:EB:1B:25:53:36:D7:2E:AE:5B:8E:1F:F3:51:D3:7E:65 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 35E49F9D3CBC8CBEBA160F790FDF0ECEE4F3F5DE Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9f36589a-6a75-4fe3-a497-53f76c6f6368.roa Signing time: Sun 19 Oct 2025 05:41:15 +0000 ROA not before: Sun 19 Oct 2025 05:41:15 +0000 ROA not after: Sun 23 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.119.206.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:e4:9f:9d:3c:bc:8c:be:ba:16:0f:79:0f:df:0e:ce:e4:f3:f5:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 19 05:41:15 2025 GMT Not After : Nov 23 23:59:59 2025 GMT Subject: serialNumber=0bb185b1544cd7aa3050430163371b65a3ab4855c19855ebf9bc0591a6511785, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:21:0b:b1:fc:c0:5c:d8:5e:88:42:05:eb:02: 7e:00:e4:2a:86:7e:9d:d6:a1:4c:f2:34:62:b1:19: 6f:23:7f:b9:9c:6f:1a:ff:fe:60:fa:f5:1a:ac:b7: 06:71:87:35:5a:22:d9:37:28:9a:5c:5e:6c:59:0d: 3a:3f:27:93:fe:f0:6b:bf:f2:15:8e:19:27:2b:7c: bc:0b:9a:4d:f5:6f:10:0a:19:ba:c1:1d:57:3c:19: 4f:de:31:aa:79:2f:96:4c:d7:30:31:01:cf:b1:2c: a0:97:2a:a5:da:b6:e5:2d:0f:01:64:7a:6a:81:5a: db:43:7c:87:70:b7:35:eb:2f:69:0a:29:8e:79:73: 14:4a:f7:fe:f3:02:53:23:c2:ea:9b:e6:c2:26:75: 7b:9f:9f:88:b6:5e:af:77:11:80:54:1c:d3:e5:12: c1:16:0b:fd:8f:95:43:13:70:43:0a:9e:49:cd:34: db:fb:6c:0f:cb:87:ab:1e:59:83:75:6b:e4:55:75: e3:a1:a7:e6:76:5b:25:85:61:07:36:49:5f:92:4e: a5:3e:90:8b:18:de:a4:57:4e:96:6a:d7:17:89:6b: 2a:b8:19:ce:de:bd:60:bd:cc:1b:ca:27:50:26:2b: e0:b1:03:a4:16:e5:5b:f4:16:8f:4a:5e:ad:7f:23: 2d:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:EA:37:A2:EB:1B:25:53:36:D7:2E:AE:5B:8E:1F:F3:51:D3:7E:65 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9f36589a-6a75-4fe3-a497-53f76c6f6368.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.119.206.0/23 Signature Algorithm: sha256WithRSAEncryption 27:5f:80:b5:7d:e3:d8:ac:80:f4:e5:43:d1:50:f8:bf:3f:5a: ac:46:02:16:6d:8c:e4:29:97:a0:58:e1:cf:1f:34:ce:c6:71: 12:cf:dc:ad:bb:f7:f5:c4:62:aa:4f:3f:8f:69:73:92:06:6c: 4a:28:e9:65:ab:33:95:05:3e:f8:01:89:2e:c2:36:2d:0b:91: 59:2b:7e:30:31:5e:11:e5:e8:f5:96:9a:23:a1:2d:8d:f5:ee: fe:c1:0f:d7:df:2c:27:0f:f4:dc:46:f5:f9:29:ad:51:98:97: fd:1c:79:d7:41:00:91:f6:1b:78:0f:d9:98:2b:dd:70:18:b8: 36:b2:c0:3a:71:01:86:8e:dd:c3:6d:b8:2f:90:2d:0a:43:31: 9d:8d:56:b1:96:b3:00:21:c9:d5:f5:c2:c6:0e:6e:13:8e:68: 42:15:d7:9c:d6:5a:08:1b:88:bd:bb:e2:bc:21:d3:2d:90:9e: 09:99:2e:b5:4d:5e:22:24:69:8b:26:c8:b1:3f:3f:4f:52:27: 7c:63:2e:f2:4c:2a:d8:0e:38:75:03:cb:e5:67:15:c7:0a:6a: 53:16:0a:80:9d:8f:c8:5b:f4:77:be:9e:2d:44:22:4e:80:6f: ff:52:f7:43:7f:1f:21:bb:09:b8:1c:ef:09:d9:b1:4a:2b:ed: 50:2c:10:4d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNeSfnTy8jL66Fg95D98OzuTz9d4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE5MDU0MTE1WhcNMjUxMTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AwYmIxODViMTU0NGNkN2FhMzA1MDQzMDE2MzM3MWI2NWEz YWI0ODU1YzE5ODU1ZWJmOWJjMDU5MWE2NTExNzg1MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLIQux/MBc2F6IQgXrAn4A5CqGfp3WoUzyNGKxGW8jf7mc bxr//mD69RqstwZxhzVaItk3KJpcXmxZDTo/J5P+8Gu/8hWOGScrfLwLmk31bxAK GbrBHVc8GU/eMap5L5ZM1zAxAc+xLKCXKqXatuUtDwFkemqBWttDfIdwtzXrL2kK KY55cxRK9/7zAlMjwuqb5sImdXufn4i2Xq93EYBUHNPlEsEWC/2PlUMTcEMKnknN NNv7bA/Lh6seWYN1a+RVdeOhp+Z2WyWFYQc2SV+STqU+kIsY3qRXTpZq1xeJayq4 Gc7evWC9zBvKJ1AmK+CxA6QW5Vv0Fo9KXq1/Iy0dAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUgeo3ousbJVM21y6uW44f81HTfmUwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzlmMzY1ODlhLTZhNzUtNGZlMy1hNDk3LTUzZjc2YzZmNjM2OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAE0d84wDQYJKoZIhvcNAQELBQADggEBACdfgLV949isgPTlQ9FQ+L8/WqxG AhZtjOQpl6BY4c8fNM7GcRLP3K279/XEYqpPP49pc5IGbEoo6WWrM5UFPvgBiS7C Ni0LkVkrfjAxXhHl6PWWmiOhLY317v7BD9ffLCcP9NxG9fkprVGYl/0ceddBAJH2 G3gP2Zgr3XAYuDaywDpxAYaO3cNtuC+QLQpDMZ2NVrGWswAhydX1wsYObhOOaEIV 15zWWggbiL274rwh0y2QngmZLrVNXiIkaYsmyLE/P09SJ3xjLvJMKtgOOHUDy+Vn FccKalMWCoCdj8hb9He+ni1EIk6Ab/9S90N/HyG7Cbgc7wnZsUor7VAsEE0= -----END CERTIFICATE-----Generated at Mon Oct 20 03:03:27 2025 by rpki-client