$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b660aa11-3d88-49d0-8387-6587dbe02a63.roa File: b660aa11-3d88-49d0-8387-6587dbe02a63.roa (raw, json) Hash identifier: zJN5pU9wssBw9FxM9bIkj4MctC1u5JHX4W6u0Rs7pKw= Subject key identifier: 3D:52:EA:1D:27:76:65:98:86:5A:53:63:B5:36:82:71:53:64:05:7D Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 180F58113336A58C9770D5C475E95EB26A519667 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b660aa11-3d88-49d0-8387-6587dbe02a63.roa Signing time: Sun 19 Oct 2025 07:30:21 +0000 ROA not before: Sun 19 Oct 2025 07:30:21 +0000 ROA not after: Sun 23 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.84.92.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:0f:58:11:33:36:a5:8c:97:70:d5:c4:75:e9:5e:b2:6a:51:96:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 19 07:30:21 2025 GMT Not After : Nov 23 23:59:59 2025 GMT Subject: serialNumber=92c9ad18170ce0714a8c95da3779e919d6754cc52b8dc909ca08d3052620b718, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:42:bf:9a:c8:98:79:46:42:2e:8a:af:64:2f: 4f:90:b9:6b:2f:8b:b0:34:c2:f4:ce:27:04:35:e1: df:f4:2e:98:98:55:6b:b8:a8:75:8f:03:da:dc:f3: a1:3d:c2:4f:9a:b0:61:6e:18:03:19:fd:16:7a:f7: db:03:ad:1b:80:75:34:82:dd:a4:56:3a:83:72:c6: 1a:4e:99:1c:02:77:a8:5b:ef:e6:fe:4c:92:0b:fb: f7:c0:14:cf:1e:e1:0e:b4:47:89:fb:b1:0f:9f:91: 00:a6:8c:fe:ef:07:03:14:8f:93:55:81:9e:31:00: fb:46:bf:30:23:4e:75:29:41:dd:8d:66:dc:31:94: ec:07:c3:9f:71:46:2c:9c:af:45:f7:e9:36:22:bb: 84:08:cb:5d:d4:38:54:82:11:78:a2:a1:05:56:ef: ff:6f:59:75:9a:db:7e:a6:0d:69:3d:a5:7b:af:b9: 1d:29:4c:8f:ad:92:a7:1d:74:1c:62:72:6e:66:cb: 40:78:e1:c1:30:fc:4e:1a:d3:0a:61:17:0d:5f:a2: 49:25:6f:c0:b4:8a:64:71:6d:8c:2c:76:be:c1:6e: f1:30:fa:00:8b:e4:6c:b1:23:ff:72:a7:2e:44:a8: 72:a7:ac:71:ea:56:f7:cb:53:c9:ce:da:17:c2:79: 22:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:52:EA:1D:27:76:65:98:86:5A:53:63:B5:36:82:71:53:64:05:7D X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b660aa11-3d88-49d0-8387-6587dbe02a63.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.84.92.0/22 Signature Algorithm: sha256WithRSAEncryption 4d:fa:f3:c5:32:05:a7:2b:ec:f0:0a:4d:4b:a4:37:64:75:59: 60:c3:0c:e2:94:b7:cf:a9:da:47:e5:a9:1a:35:51:3f:43:87: f5:ca:39:5c:79:9a:4b:8a:ef:d1:03:dd:3c:4c:0e:49:67:2a: b5:f7:a7:a9:88:3b:ad:16:b7:06:1c:df:c7:a3:6d:e6:be:1d: 66:fc:ec:6a:4b:78:74:fd:7f:55:a1:50:ad:0f:50:a8:31:28: 1d:1c:d2:76:64:e2:22:ce:49:76:1f:26:80:2f:4f:b3:63:2b: e9:36:cc:e2:8c:7e:29:af:f5:c2:79:fa:ae:a3:bd:19:e5:a0: 05:9a:c8:0f:90:b9:b4:81:34:60:5e:7f:34:56:26:2b:03:41: 14:46:df:2f:15:84:a0:36:59:3f:a0:ba:10:a0:1f:ce:d8:be: bd:34:e6:03:ad:88:59:aa:d3:e0:3a:2c:e3:af:16:55:9b:80: 4d:e9:64:ff:76:35:58:d7:3c:de:da:6c:75:c4:ed:6c:bc:9f: 1e:0b:80:d5:b7:c1:0a:0d:32:24:c2:5c:ff:95:b0:ae:79:3c: d2:e4:38:3e:87:d7:a2:3c:56:07:e1:ac:24:91:7d:e4:0a:0d: 8e:8b:6e:f7:c9:04:31:63:6d:72:ee:2f:0e:60:9e:22:fe:5f: de:93:d6:83 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGA9YETM2pYyXcNXEdelesmpRlmcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE5MDczMDIxWhcNMjUxMTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A5MmM5YWQxODE3MGNlMDcxNGE4Yzk1ZGEzNzc5ZTkxOWQ2 NzU0Y2M1MmI4ZGM5MDljYTA4ZDMwNTI2MjBiNzE4MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzQr+ayJh5RkIuiq9kL0+QuWsvi7A0wvTOJwQ14d/0LpiY VWu4qHWPA9rc86E9wk+asGFuGAMZ/RZ699sDrRuAdTSC3aRWOoNyxhpOmRwCd6hb 7+b+TJIL+/fAFM8e4Q60R4n7sQ+fkQCmjP7vBwMUj5NVgZ4xAPtGvzAjTnUpQd2N ZtwxlOwHw59xRiycr0X36TYiu4QIy13UOFSCEXiioQVW7/9vWXWa236mDWk9pXuv uR0pTI+tkqcddBxicm5my0B44cEw/E4a0wphFw1fokklb8C0imRxbYwsdr7BbvEw +gCL5GyxI/9ypy5EqHKnrHHqVvfLU8nO2hfCeSIBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUPVLqHSd2ZZiGWlNjtTaCcVNkBX0wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2I2NjBhYTExLTNkODgtNDlkMC04Mzg3LTY1ODdkYmUwMmE2My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAI0VFwwDQYJKoZIhvcNAQELBQADggEBAE3688UyBacr7PAKTUukN2R1WWDD DOKUt8+p2kflqRo1UT9Dh/XKOVx5mkuK79ED3TxMDklnKrX3p6mIO60WtwYc38ej bea+HWb87GpLeHT9f1WhUK0PUKgxKB0c0nZk4iLOSXYfJoAvT7NjK+k2zOKMfimv 9cJ5+q6jvRnloAWayA+QubSBNGBefzRWJisDQRRG3y8VhKA2WT+guhCgH87Yvr00 5gOtiFmq0+A6LOOvFlWbgE3pZP92NVjXPN7abHXE7Wy8nx4LgNW3wQoNMiTCXP+V sK55PNLkOD6H16I8VgfhrCSRfeQKDY6LbvfJBDFjbXLuLw5gniL+X96T1oM= -----END CERTIFICATE-----Generated at Mon Oct 20 06:11:09 2025 by rpki-client