$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c37cc9c5-e07c-4f8e-bde8-95f8be4beb6d.roa File: c37cc9c5-e07c-4f8e-bde8-95f8be4beb6d.roa (raw, json) Hash identifier: FRq+4h8IREZJqq4QxXFrM3kwyDpyR12tNWIAycwnGV8= Subject key identifier: 33:BA:76:0B:31:26:E3:32:66:DC:6B:70:E7:28:B8:3A:45:E0:03:AB Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 64BFD0FE94BBF022B3C8C94F53E69A0F13FC716A Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c37cc9c5-e07c-4f8e-bde8-95f8be4beb6d.roa Signing time: Fri 17 Oct 2025 22:32:54 +0000 ROA not before: Fri 17 Oct 2025 22:32:54 +0000 ROA not after: Fri 21 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.192.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:bf:d0:fe:94:bb:f0:22:b3:c8:c9:4f:53:e6:9a:0f:13:fc:71:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 17 22:32:54 2025 GMT Not After : Nov 21 23:59:59 2025 GMT Subject: serialNumber=9348168d9515f78f5e31d7774ce83a2d2f28feafc98fe39ca5b47d14facba289, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:70:d2:6f:e7:2c:fc:74:1f:f1:02:b5:eb:8e: ad:75:5b:ea:e9:cf:80:9f:04:6a:18:5d:f1:67:22: 55:52:f8:10:58:6d:71:63:ee:6e:f6:76:80:09:a9: 2a:8d:67:7c:36:fc:52:37:5e:4d:37:1b:2c:68:6d: fb:1e:04:73:3c:bb:d3:fb:d9:b0:33:20:85:3b:e3: d7:7f:c5:09:88:a3:ba:c4:b0:9b:fb:c2:37:b0:b1: 05:c7:66:47:79:ca:fd:71:d2:17:db:03:b2:aa:1a: dc:e0:8f:b5:ec:fa:08:a9:56:04:b4:12:fd:4a:06: 51:dc:20:2c:e4:7a:93:5a:1f:b4:ee:2c:5f:40:e5: c7:2e:b9:af:de:61:95:c7:25:52:08:23:2f:33:bc: 16:e1:30:a9:57:02:5e:fa:18:0e:db:ae:ff:25:c9: 45:e1:30:8f:24:ec:96:19:ec:da:27:9a:2e:a3:4c: 34:02:03:09:4a:37:03:2d:f8:4c:a8:96:d1:fc:8e: 76:75:9f:fe:5c:5c:c7:b7:7a:31:82:dc:68:2a:43: 93:47:32:a6:d0:7f:8f:83:5e:41:d1:de:bc:d5:f3: 46:b4:53:34:92:4b:a7:54:4d:ff:77:49:cf:5b:76: 93:c6:aa:21:12:85:db:12:b5:da:81:2e:29:c6:5b: ee:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:BA:76:0B:31:26:E3:32:66:DC:6B:70:E7:28:B8:3A:45:E0:03:AB X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c37cc9c5-e07c-4f8e-bde8-95f8be4beb6d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.192.209.0/24 Signature Algorithm: sha256WithRSAEncryption 18:fd:6e:e2:e6:b5:1d:7b:08:dc:1e:ff:ab:f6:b5:25:14:97: 46:66:8f:e7:20:d5:ac:fd:f5:1a:40:de:08:c1:1c:97:7f:be: 4d:b8:c7:51:25:9a:20:19:6e:ad:c7:77:ac:97:e1:95:4b:a2: c3:41:f4:3f:b0:45:94:a2:ed:3a:62:6d:a0:f3:86:5e:96:e1: a6:99:f4:25:ef:71:43:b7:b0:49:1b:83:d2:94:7a:87:08:7a: 12:94:9b:85:b3:9c:5b:90:86:69:54:d6:a5:9d:9a:71:2a:9d: 5c:a3:aa:4d:b8:7c:73:ef:38:6f:56:56:6c:78:a6:ae:45:cc: 7f:df:ef:23:02:83:d4:28:2a:dd:be:ff:95:25:c8:e5:92:c4: fb:81:8d:36:9d:34:bf:20:63:12:8d:15:8e:d0:04:48:a4:32: 89:01:ad:4f:e7:c2:45:1a:d5:42:f2:fe:f4:c3:08:36:ee:f4: 46:cc:bf:7a:fc:3a:53:05:0c:96:57:b2:d1:9b:33:6a:14:c2: 5c:b0:70:3d:b7:b5:c0:80:48:4c:3b:1a:01:0a:ab:63:9f:db: ca:37:b5:e4:19:f3:98:12:a9:ac:da:47:ab:40:40:d9:7a:24: 6e:40:3e:b2:a7:52:fe:8a:86:01:e7:8b:aa:9a:1e:53:70:b8: de:68:fa:74 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZL/Q/pS78CKzyMlPU+aaDxP8cWowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE3MjIzMjU0WhcNMjUxMTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A5MzQ4MTY4ZDk1MTVmNzhmNWUzMWQ3Nzc0Y2U4M2EyZDJm MjhmZWFmYzk4ZmUzOWNhNWI0N2QxNGZhY2JhMjg5MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6cNJv5yz8dB/xArXrjq11W+rpz4CfBGoYXfFnIlVS+BBY bXFj7m72doAJqSqNZ3w2/FI3Xk03GyxobfseBHM8u9P72bAzIIU749d/xQmIo7rE sJv7wjewsQXHZkd5yv1x0hfbA7KqGtzgj7Xs+gipVgS0Ev1KBlHcICzkepNaH7Tu LF9A5ccuua/eYZXHJVIIIy8zvBbhMKlXAl76GA7brv8lyUXhMI8k7JYZ7Nonmi6j TDQCAwlKNwMt+EyoltH8jnZ1n/5cXMe3ejGC3GgqQ5NHMqbQf4+DXkHR3rzV80a0 UzSSS6dUTf93Sc9bdpPGqiEShdsStdqBLinGW+6BAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUM7p2CzEm4zJm3Gtw5yi4OkXgA6swHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2MzN2NjOWM1LWUwN2MtNGY4ZS1iZGU4LTk1ZjhiZTRiZWI2ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA2wNEwDQYJKoZIhvcNAQELBQADggEBABj9buLmtR17CNwe/6v2tSUUl0Zm j+cg1az99RpA3gjBHJd/vk24x1ElmiAZbq3Hd6yX4ZVLosNB9D+wRZSi7TpibaDz hl6W4aaZ9CXvcUO3sEkbg9KUeocIehKUm4WznFuQhmlU1qWdmnEqnVyjqk24fHPv OG9WVmx4pq5FzH/f7yMCg9QoKt2+/5UlyOWSxPuBjTadNL8gYxKNFY7QBEikMokB rU/nwkUa1ULy/vTDCDbu9EbMv3r8OlMFDJZXstGbM2oUwlywcD23tcCASEw7GgEK q2Of28o3teQZ85gSqazaR6tAQNl6JG5APrKnUv6KhgHni6qaHlNwuN5o+nQ= -----END CERTIFICATE-----Generated at Mon Oct 20 17:29:08 2025 by rpki-client