$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d116be74-af89-40d7-be35-d48c10d814ed.roa File: d116be74-af89-40d7-be35-d48c10d814ed.roa (raw, json) Hash identifier: 5BpzE85oOzz4KVlOxuN53K4StXTNm277WZP76tXYpzQ= Subject key identifier: 8E:B0:58:B1:9D:20:55:1E:ED:00:52:FF:29:32:9A:6A:30:33:DE:F6 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 6E41550C0E2595FB87211FCF8969BF3F866F2635 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d116be74-af89-40d7-be35-d48c10d814ed.roa Signing time: Sun 19 Oct 2025 07:52:36 +0000 ROA not before: Sun 19 Oct 2025 07:52:36 +0000 ROA not after: Sun 23 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.85.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:41:55:0c:0e:25:95:fb:87:21:1f:cf:89:69:bf:3f:86:6f:26:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 19 07:52:36 2025 GMT Not After : Nov 23 23:59:59 2025 GMT Subject: serialNumber=7ac324448abd0b60e931406c10436a641deb18dd4d02c4ac7d86232ced0c5d2b, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:f7:ed:cc:13:54:1a:94:45:05:2e:39:e4:9e: fa:f9:7b:f1:99:10:0a:ef:72:11:7b:58:eb:f3:fe: de:d1:7e:56:c0:53:07:ee:74:5a:f5:02:2b:b6:b0: 41:c1:40:c6:69:7a:47:de:86:a2:2b:3c:1a:5f:a8: 56:9d:f0:7f:f0:9e:8b:f9:5c:2f:d9:3e:e8:f9:7e: 5b:ce:22:2f:d1:71:aa:65:6c:e6:34:66:27:ff:65: 25:f0:18:93:1d:a7:b7:9f:99:02:27:f4:0c:45:3a: 94:32:8c:c3:8f:d6:ab:30:af:21:ae:8a:73:6c:d7: 35:d2:c2:f2:41:78:44:fd:f2:dd:c0:f5:4c:88:68: 1a:08:dc:20:8c:9c:80:bb:e5:cd:ab:1a:2a:21:d2: cf:1c:c8:7b:db:d5:ef:9d:69:60:03:c8:12:04:e6: b0:ef:15:3a:5d:3f:ac:44:0f:e9:7d:c2:d1:1a:58: 19:68:0f:52:e1:c8:37:5c:a7:e6:62:eb:35:8b:96: 93:6b:0d:20:26:96:b3:70:c7:ed:09:a7:dc:b4:fc: 14:2b:ab:7f:cc:cc:13:b7:dc:2b:ff:18:2e:59:4e: 49:f9:1c:bd:f7:fb:98:b2:9e:65:dd:6e:6f:16:b5: 3d:53:38:e6:19:22:5f:13:01:17:86:16:00:7d:e7: 18:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:B0:58:B1:9D:20:55:1E:ED:00:52:FF:29:32:9A:6A:30:33:DE:F6 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d116be74-af89-40d7-be35-d48c10d814ed.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.85.243.0/24 Signature Algorithm: sha256WithRSAEncryption 39:07:f5:6c:a7:60:2e:f1:9f:e7:7d:f1:de:ec:ff:de:53:af: 68:d7:be:95:86:1a:74:df:c4:c7:a1:da:0d:5f:04:94:82:21: be:b4:53:d3:c6:a5:c4:4b:23:b6:3f:20:3f:63:05:7e:f2:af: 5f:37:39:b9:07:f9:35:f8:8b:9a:0d:b7:d7:cf:1b:bf:56:0e: 69:27:9d:30:63:c0:13:69:58:d0:14:9e:27:7c:99:d9:f2:37: 81:56:f0:cc:08:e8:13:73:85:5f:c7:b8:7d:e7:cb:85:62:1b: fb:7f:22:2c:6e:a8:f3:09:04:fb:4b:24:e2:d6:d7:0e:b9:94: 54:c6:5c:ef:09:26:7c:58:2f:86:5c:32:09:dd:ca:c1:23:28: a3:3a:0a:fe:a7:98:a1:9a:f1:37:71:0f:0a:1f:38:d2:57:f8: 1f:28:20:d9:9f:1d:c2:db:81:4d:da:4e:63:58:01:a8:d0:94: 4f:9c:43:b7:18:7f:9d:4b:f1:f7:65:4f:09:ee:d7:af:02:bd: 8d:bb:0e:f0:75:35:cf:6b:2b:fc:24:c7:27:ec:fa:fb:9b:69: 2e:f5:c0:70:a2:a7:dd:21:d7:fa:51:2b:bd:ba:46:f4:e4:03: b2:0d:cc:a3:70:60:8d:20:c8:42:d4:68:66:88:02:51:9e:a7: 37:34:52:5c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbkFVDA4llfuHIR/PiWm/P4ZvJjUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE5MDc1MjM2WhcNMjUxMTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A3YWMzMjQ0NDhhYmQwYjYwZTkzMTQwNmMxMDQzNmE2NDFk ZWIxOGRkNGQwMmM0YWM3ZDg2MjMyY2VkMGM1ZDJiMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDz9+3ME1QalEUFLjnknvr5e/GZEArvchF7WOvz/t7RflbA UwfudFr1Aiu2sEHBQMZpekfehqIrPBpfqFad8H/wnov5XC/ZPuj5flvOIi/Rcapl bOY0Zif/ZSXwGJMdp7efmQIn9AxFOpQyjMOP1qswryGuinNs1zXSwvJBeET98t3A 9UyIaBoI3CCMnIC75c2rGioh0s8cyHvb1e+daWADyBIE5rDvFTpdP6xED+l9wtEa WBloD1LhyDdcp+Zi6zWLlpNrDSAmlrNwx+0Jp9y0/BQrq3/MzBO33Cv/GC5ZTkn5 HL33+5iynmXdbm8WtT1TOOYZIl8TAReGFgB95xgZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUjrBYsZ0gVR7tAFL/KTKaajAz3vYwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2QxMTZiZTc0LWFmODktNDBkNy1iZTM1LWQ0OGMxMGQ4MTRlZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA0VfMwDQYJKoZIhvcNAQELBQADggEBADkH9WynYC7xn+d98d7s/95Tr2jX vpWGGnTfxMeh2g1fBJSCIb60U9PGpcRLI7Y/ID9jBX7yr183ObkH+TX4i5oNt9fP G79WDmknnTBjwBNpWNAUnid8mdnyN4FW8MwI6BNzhV/HuH3ny4ViG/t/IixuqPMJ BPtLJOLW1w65lFTGXO8JJnxYL4ZcMgndysEjKKM6Cv6nmKGa8TdxDwofONJX+B8o INmfHcLbgU3aTmNYAajQlE+cQ7cYf51L8fdlTwnu168CvY27DvB1Nc9rK/wkxyfs +vubaS71wHCip90h1/pRK726RvTkA7INzKNwYI0gyELUaGaIAlGepzc0Ulw= -----END CERTIFICATE-----Generated at Mon Oct 20 21:12:12 2025 by rpki-client