$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f81995e9-34b7-4caf-b73c-42e90c603416.roa File: f81995e9-34b7-4caf-b73c-42e90c603416.roa (raw, json) Hash identifier: eojB0C4uX6QDO5f00KO4AhY1s04UmAF4v3PQKKmWpG0= Subject key identifier: E5:5B:FE:BB:39:0F:AD:BD:6D:0E:77:B3:3F:22:17:FB:72:8E:1A:2D Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 4D4722BAA7AC66F2B384CF6661C3426CA44DA833 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f81995e9-34b7-4caf-b73c-42e90c603416.roa Signing time: Thu 16 Oct 2025 19:25:16 +0000 ROA not before: Thu 16 Oct 2025 19:25:16 +0000 ROA not after: Thu 20 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.42.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:47:22:ba:a7:ac:66:f2:b3:84:cf:66:61:c3:42:6c:a4:4d:a8:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 16 19:25:16 2025 GMT Not After : Nov 20 23:59:59 2025 GMT Subject: serialNumber=802a45b969ae60587664a9b6f4d8c4c0b38ca460fd59d4ff85d5aa27a062a5e9, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:ac:3b:c0:a0:f5:3f:43:cd:00:c4:59:39:29: c7:1d:ba:52:09:6e:e3:ec:d6:d0:c8:59:ad:89:10: 87:3f:d9:37:9a:8e:11:45:8f:1e:f2:90:c2:bb:ac: df:c9:3c:dc:1b:6e:00:10:0e:95:35:96:a4:d4:f1: cb:73:17:80:f0:e7:01:14:95:a6:61:e9:6f:86:15: da:7a:ee:9d:69:bc:d4:86:a9:b6:c1:9c:4e:60:e3: 6b:73:7f:73:3d:c9:4b:82:88:32:2d:74:d6:91:45: d3:e1:2d:38:15:95:a2:67:36:ac:ce:be:bd:4e:e6: c5:6d:7b:06:00:1c:60:7c:05:b0:d2:98:9c:ce:12: aa:97:68:56:78:fa:6d:13:2f:dd:10:67:71:ab:43: c9:fd:66:12:88:33:28:0c:8e:3d:3a:d9:62:88:3d: db:b2:da:b6:64:96:02:fe:5c:fc:b9:0f:0b:c4:f0: ec:1e:3d:d8:38:e8:b2:a0:ed:a4:c7:0e:7f:96:20: e4:39:4b:80:c0:65:61:d1:09:c7:79:e8:bb:67:cf: 10:87:0c:e9:4f:63:f3:47:d7:7a:ce:6c:45:31:a6: 2a:ef:17:eb:42:a7:9f:86:ec:63:84:d4:68:7f:8c: 6c:f4:d7:b4:c4:f0:bf:d7:51:6e:73:2b:72:a6:1f: 2d:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:5B:FE:BB:39:0F:AD:BD:6D:0E:77:B3:3F:22:17:FB:72:8E:1A:2D X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f81995e9-34b7-4caf-b73c-42e90c603416.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.42.64.0/18 Signature Algorithm: sha256WithRSAEncryption 43:07:61:46:43:4a:d7:b4:90:29:2f:8e:8d:e1:48:73:64:0c: ae:1d:0c:b5:16:00:40:9f:9d:64:4d:b8:1a:9f:a7:fb:c5:ff: 2a:f8:0c:24:c2:45:4c:d0:e5:da:4e:a2:84:b0:f6:02:00:e1: 98:a4:55:4b:00:09:84:97:50:48:99:68:d5:03:26:7c:61:0a: 2c:82:92:00:07:e3:ab:10:8b:29:90:7a:ea:92:9d:78:46:d3: b3:30:a5:a2:20:85:03:2b:5c:30:81:1f:58:34:72:6a:e4:26: 0c:22:b3:f5:47:55:87:e4:88:d0:67:0e:15:76:e7:7c:df:13: 05:e0:78:c5:a5:91:6a:87:97:81:d4:25:5b:a7:60:ce:44:44: 74:e5:a8:96:9b:7d:26:53:5a:41:a1:07:67:b2:96:81:ba:53: 30:62:25:15:54:12:63:a0:f8:3c:9d:73:bb:6f:e2:93:eb:d7: 9e:30:de:ca:90:e5:7f:75:66:15:5e:a0:f6:2e:a9:06:f0:8a: e9:f4:8f:1d:e0:06:2d:87:27:af:7a:ea:83:58:8c:b0:be:7e: 6b:5e:2a:4b:a0:08:a7:60:a5:77:c8:a9:7e:d4:e4:31:78:eb: 07:06:06:d7:19:f8:ce:90:4f:9c:61:3d:a2:a8:df:bb:56:11: ec:16:bb:cc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTUciuqesZvKzhM9mYcNCbKRNqDMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE2MTkyNTE2WhcNMjUxMTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4MDJhNDViOTY5YWU2MDU4NzY2NGE5YjZmNGQ4YzRjMGIz OGNhNDYwZmQ1OWQ0ZmY4NWQ1YWEyN2EwNjJhNWU5MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDdrDvAoPU/Q80AxFk5KccdulIJbuPs1tDIWa2JEIc/2Tea jhFFjx7ykMK7rN/JPNwbbgAQDpU1lqTU8ctzF4Dw5wEUlaZh6W+GFdp67p1pvNSG qbbBnE5g42tzf3M9yUuCiDItdNaRRdPhLTgVlaJnNqzOvr1O5sVtewYAHGB8BbDS mJzOEqqXaFZ4+m0TL90QZ3GrQ8n9ZhKIMygMjj062WKIPduy2rZklgL+XPy5DwvE 8OwePdg46LKg7aTHDn+WIOQ5S4DAZWHRCcd56LtnzxCHDOlPY/NH13rObEUxpirv F+tCp5+G7GOE1Gh/jGz017TE8L/XUW5zK3KmHy2rAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU5Vv+uzkPrb1tDnezPyIX+3KOGi0wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2Y4MTk5NWU5LTM0YjctNGNhZi1iNzNjLTQyZTkwYzYwMzQxNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAY0KkAwDQYJKoZIhvcNAQELBQADggEBAEMHYUZDSte0kCkvjo3hSHNkDK4d DLUWAECfnWRNuBqfp/vF/yr4DCTCRUzQ5dpOooSw9gIA4ZikVUsACYSXUEiZaNUD JnxhCiyCkgAH46sQiymQeuqSnXhG07MwpaIghQMrXDCBH1g0cmrkJgwis/VHVYfk iNBnDhV253zfEwXgeMWlkWqHl4HUJVunYM5ERHTlqJabfSZTWkGhB2eyloG6UzBi JRVUEmOg+Dydc7tv4pPr154w3sqQ5X91ZhVeoPYuqQbwiun0jx3gBi2HJ6966oNY jLC+fmteKkugCKdgpXfIqX7U5DF46wcGBtcZ+M6QT5xhPaKo37tWEewWu8w= -----END CERTIFICATE-----Generated at Mon Oct 20 08:51:53 2025 by rpki-client