$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9f885891-00d3-485c-8684-7666dfbef761.roa File: 9f885891-00d3-485c-8684-7666dfbef761.roa (raw, json) Hash identifier: T9ChgwZvp9iLAQLYS95VrzHc1s8K+/5weYcM/JMrYJw= Subject key identifier: 7A:73:FF:05:77:F8:2E:FF:9C:DF:9F:6D:B1:53:44:5A:77:42:81:96 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 184BF98F026932DA6DF875C7349792B262670A2C Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9f885891-00d3-485c-8684-7666dfbef761.roa Signing time: Thu 16 Oct 2025 17:06:12 +0000 ROA not before: Thu 16 Oct 2025 17:06:12 +0000 ROA not after: Thu 20 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.124.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:4b:f9:8f:02:69:32:da:6d:f8:75:c7:34:97:92:b2:62:67:0a:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 16 17:06:12 2025 GMT Not After : Nov 20 23:59:59 2025 GMT Subject: serialNumber=2e1db34e61f147f4cc5b78b5ba0caa6a5c6e9902332cbc9eba4f0a302db1b28c, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:cd:18:5e:cf:b3:ef:a3:f0:43:54:7f:48:4c: 14:36:f0:75:29:26:f1:f3:45:e5:38:2b:31:da:e1: a2:c7:40:2e:9b:e7:c0:87:7b:d8:53:3c:e0:64:73: ef:c1:b2:42:a0:40:80:ca:fa:a4:e5:6a:74:ea:23: dd:11:65:ae:5b:a9:fe:f2:13:51:e1:9a:f6:4f:8c: bd:1b:d5:77:9a:85:59:59:8a:01:08:4b:6b:f6:55: 4c:dd:54:ca:a2:32:56:68:c2:68:2c:6e:27:9b:ad: 42:c5:bc:d9:cf:87:24:88:7f:68:4d:9a:5e:c8:42: 04:46:d3:a4:60:d9:82:a8:b9:f7:d3:60:2b:27:d7: e5:5b:c4:5f:00:f2:da:c4:f7:df:ae:32:23:84:35: b5:35:28:c7:c1:53:40:3d:cb:9f:5f:5d:c4:12:52: 6f:fe:af:37:87:64:08:bd:fb:5b:f7:ee:22:e1:9a: e1:22:e2:04:fe:7f:25:b3:0e:4f:12:5f:15:e2:f7: 31:8e:b0:ec:5c:77:9b:48:83:0b:4c:27:35:2a:bb: ae:e1:cb:35:a5:69:af:48:50:d0:35:e2:a3:1b:5d: a7:58:b4:70:f9:34:37:7e:ad:99:d5:cf:3c:f8:fe: de:e5:9f:93:5e:d7:d3:27:11:8e:9d:da:13:0b:40: de:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:73:FF:05:77:F8:2E:FF:9C:DF:9F:6D:B1:53:44:5A:77:42:81:96 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9f885891-00d3-485c-8684-7666dfbef761.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.124.185.0/24 Signature Algorithm: sha256WithRSAEncryption 49:98:ce:29:8e:c1:69:63:13:ee:aa:d1:e2:9a:7a:64:27:ab: ad:0e:8f:89:a8:6b:6c:40:87:c4:7b:66:a8:a9:ba:ce:04:00: 23:00:47:5c:3a:a8:6b:7c:f5:f3:34:91:a4:75:4a:1e:65:b3: 46:a9:9b:48:89:74:08:86:01:5a:73:6d:4d:e1:17:0e:ce:1b: 47:85:0c:f6:9a:45:96:54:a4:91:33:9b:d3:b1:06:94:60:57: 00:7f:a9:ec:ea:a1:bf:f4:bb:7f:54:7c:59:fd:cf:30:49:f3: b4:e1:af:b3:5b:22:d6:f7:c8:f2:1d:28:12:4f:58:d6:53:ca: 45:4c:02:77:b6:7c:29:59:17:1d:1b:65:80:b6:14:b7:94:af: 2c:cc:fd:b3:47:3b:36:fa:94:48:96:f1:f4:e1:c9:40:78:d4: aa:37:f1:3f:e0:12:3f:08:55:e2:f2:92:62:28:20:52:de:67: 42:63:bc:fb:00:57:fe:3a:a0:2b:54:74:5c:b8:97:37:a3:e5: 7b:16:71:4f:85:97:ae:e0:94:39:ce:fa:9f:ba:f8:89:b6:c1: 66:b4:89:19:44:91:5a:0c:1a:93:2d:cf:04:eb:6d:84:15:48: f7:ab:c1:c8:90:70:74:b0:c1:28:98:4c:84:67:42:57:68:c7: d3:a9:1c:88 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGEv5jwJpMtpt+HXHNJeSsmJnCiwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE2MTcwNjEyWhcNMjUxMTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyZTFkYjM0ZTYxZjE0N2Y0Y2M1Yjc4YjViYTBjYWE2YTVj NmU5OTAyMzMyY2JjOWViYTRmMGEzMDJkYjFiMjhjMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1zRhez7Pvo/BDVH9ITBQ28HUpJvHzReU4KzHa4aLHQC6b 58CHe9hTPOBkc+/BskKgQIDK+qTlanTqI90RZa5bqf7yE1HhmvZPjL0b1XeahVlZ igEIS2v2VUzdVMqiMlZowmgsbiebrULFvNnPhySIf2hNml7IQgRG06Rg2YKouffT YCsn1+VbxF8A8trE99+uMiOENbU1KMfBU0A9y59fXcQSUm/+rzeHZAi9+1v37iLh muEi4gT+fyWzDk8SXxXi9zGOsOxcd5tIgwtMJzUqu67hyzWlaa9IUNA14qMbXadY tHD5NDd+rZnVzzz4/t7ln5Ne19MnEY6d2hMLQN67AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUenP/BXf4Lv+c359tsVNEWndCgZYwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzlmODg1ODkxLTAwZDMtNDg1Yy04Njg0LTc2NjZkZmJlZjc2MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA0fLkwDQYJKoZIhvcNAQELBQADggEBAEmYzimOwWljE+6q0eKaemQnq60O j4moa2xAh8R7Zqipus4EACMAR1w6qGt89fM0kaR1Sh5ls0apm0iJdAiGAVpzbU3h Fw7OG0eFDPaaRZZUpJEzm9OxBpRgVwB/qezqob/0u39UfFn9zzBJ87Thr7NbItb3 yPIdKBJPWNZTykVMAne2fClZFx0bZYC2FLeUryzM/bNHOzb6lEiW8fThyUB41Ko3 8T/gEj8IVeLykmIoIFLeZ0JjvPsAV/46oCtUdFy4lzej5XsWcU+Fl67glDnO+p+6 +Im2wWa0iRlEkVoMGpMtzwTrbYQVSPerwciQcHSwwSiYTIRnQldox9OpHIg= -----END CERTIFICATE-----Generated at Mon Oct 20 03:10:36 2025 by rpki-client