$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d3df62c6-a20f-49ca-a426-a681b046cf15.roa File: d3df62c6-a20f-49ca-a426-a681b046cf15.roa (raw, json) Hash identifier: px//kgSEbxKCROKTxs+y6AOUvBA2MsvSA3If1UYEgZQ= Subject key identifier: 50:CC:DB:F6:D0:81:F9:D5:A4:3C:F9:34:97:71:A6:82:42:2D:DA:D3 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 5833E13F696D12EA247DD9BD2318B9A65E14844B Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d3df62c6-a20f-49ca-a426-a681b046cf15.roa Signing time: Sun 19 Oct 2025 06:41:25 +0000 ROA not before: Sun 19 Oct 2025 06:41:25 +0000 ROA not after: Sun 23 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.239.48.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:33:e1:3f:69:6d:12:ea:24:7d:d9:bd:23:18:b9:a6:5e:14:84:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 19 06:41:25 2025 GMT Not After : Nov 23 23:59:59 2025 GMT Subject: serialNumber=6f9e98989b035d072cd01028ab5e9c88f50a8ab27fb2b45eb3b4f90a31b57012, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:02:f0:5c:e3:a0:f5:d0:9e:0e:83:d7:83:1d: 85:32:cf:a3:7c:45:59:34:be:99:15:4e:51:a0:1c: 73:0a:07:66:66:12:c4:c0:a3:98:ee:a3:31:0a:74: 8b:94:0f:0e:88:3a:eb:fd:83:9b:0d:f1:81:46:a3: 25:73:58:a2:c0:e5:a9:d0:ab:c2:a0:48:ca:7e:d9: 3c:2d:f8:fb:e6:b3:0c:1e:24:8c:3b:56:7f:68:39: 4d:32:e1:36:da:50:24:5a:49:af:b9:62:b9:c1:3c: 1a:cd:00:55:74:c9:94:b7:bf:b8:39:ad:2b:b3:e7: de:af:0c:80:bd:4e:85:2c:25:5a:4c:59:30:4c:db: 4c:0d:4e:da:81:f5:e2:46:b0:4f:c9:01:6e:c9:a0: bc:ae:d7:e9:e8:b6:17:43:d6:10:05:5b:ca:13:d5: a4:b7:82:37:7d:f0:2e:bc:f3:02:7e:c6:bb:d8:c6: ab:29:69:e1:05:9c:ad:ae:2f:6e:5e:47:69:59:63: 9d:26:d7:23:c5:3a:51:74:53:d9:7e:79:5c:dd:f5: dd:34:3c:9b:92:7d:8e:e4:9e:d2:58:42:48:93:31: 8e:cf:e5:c2:18:d5:1b:58:55:a6:74:58:9c:71:67: c5:1f:31:c9:95:ba:ed:63:13:55:af:fd:a8:23:91: 43:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:CC:DB:F6:D0:81:F9:D5:A4:3C:F9:34:97:71:A6:82:42:2D:DA:D3 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d3df62c6-a20f-49ca-a426-a681b046cf15.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.239.48.0/22 Signature Algorithm: sha256WithRSAEncryption 56:7c:39:09:a1:a7:8d:b0:d9:a1:ff:b9:3f:bc:a0:75:55:09: fa:dc:ca:c4:43:ee:54:8a:ea:37:5a:0a:58:69:8f:77:cc:a6: dd:50:07:2a:a4:45:ff:30:d3:32:81:ed:d2:2f:37:ba:eb:6a: 80:7e:ed:8a:7a:17:3a:71:ca:2f:ba:c3:52:f1:83:99:ae:d1: 7d:d6:1e:d2:56:fa:5a:31:40:f2:17:cc:e6:9c:8a:6e:4c:94: 84:97:28:7b:d3:a1:73:b2:55:15:6a:82:35:ae:4e:8e:82:b3: 23:61:39:fc:c5:a5:0d:da:64:26:9e:ba:41:a9:62:35:30:02: be:3d:40:bf:a0:21:d7:6a:37:05:d5:2c:e8:ae:cc:ba:d8:af: 9f:c4:37:10:24:a3:72:ab:de:fd:60:fd:39:be:7a:3c:d0:37: bc:93:6e:2f:3a:fd:d4:39:ec:77:47:a0:4a:c6:67:69:e8:17: 1e:6f:44:45:8f:46:bb:02:24:06:f0:d0:83:cf:30:0c:0d:95: e2:19:b0:3a:19:9e:15:15:45:d0:c0:34:e9:6f:0a:c8:a8:87: bf:c1:b7:11:93:f9:48:f4:37:ad:ac:b4:21:30:39:52:9e:bd: 24:e1:f9:a3:21:26:1c:ce:b6:4e:e3:a8:d1:57:e3:7a:12:8d: d7:49:33:a3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWDPhP2ltEuokfdm9Ixi5pl4UhEswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE5MDY0MTI1WhcNMjUxMTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZjllOTg5ODliMDM1ZDA3MmNkMDEwMjhhYjVlOWM4OGY1 MGE4YWIyN2ZiMmI0NWViM2I0ZjkwYTMxYjU3MDEyMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuAvBc46D10J4Og9eDHYUyz6N8RVk0vpkVTlGgHHMKB2Zm EsTAo5juozEKdIuUDw6IOuv9g5sN8YFGoyVzWKLA5anQq8KgSMp+2Twt+Pvmswwe JIw7Vn9oOU0y4TbaUCRaSa+5YrnBPBrNAFV0yZS3v7g5rSuz596vDIC9ToUsJVpM WTBM20wNTtqB9eJGsE/JAW7JoLyu1+nothdD1hAFW8oT1aS3gjd98C688wJ+xrvY xqspaeEFnK2uL25eR2lZY50m1yPFOlF0U9l+eVzd9d00PJuSfY7kntJYQkiTMY7P 5cIY1RtYVaZ0WJxxZ8UfMcmVuu1jE1Wv/agjkUP7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUUMzb9tCB+dWkPPk0l3GmgkIt2tMwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2QzZGY2MmM2LWEyMGYtNDljYS1hNDI2LWE2ODFiMDQ2Y2YxNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAI27zAwDQYJKoZIhvcNAQELBQADggEBAFZ8OQmhp42w2aH/uT+8oHVVCfrc ysRD7lSK6jdaClhpj3fMpt1QByqkRf8w0zKB7dIvN7rraoB+7Yp6Fzpxyi+6w1Lx g5mu0X3WHtJW+loxQPIXzOacim5MlISXKHvToXOyVRVqgjWuTo6CsyNhOfzFpQ3a ZCaeukGpYjUwAr49QL+gIddqNwXVLOiuzLrYr5/ENxAko3Kr3v1g/Tm+ejzQN7yT bi86/dQ57HdHoErGZ2noFx5vREWPRrsCJAbw0IPPMAwNleIZsDoZnhUVRdDANOlv Csioh7/BtxGT+Uj0N62stCEwOVKevSTh+aMhJhzOtk7jqNFX43oSjddJM6M= -----END CERTIFICATE-----Generated at Mon Oct 20 05:56:32 2025 by rpki-client