$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0067c08f-1c80-44de-8d33-78c0fd0fe30f.roa File: 0067c08f-1c80-44de-8d33-78c0fd0fe30f.roa (raw, json) Hash identifier: duPIMkV9aH4TgAxoik3v57lYjXX1BM6tae4IA96qqGY= Subject key identifier: B1:36:24:AD:D1:B6:91:28:45:51:BD:8A:EB:88:69:3F:1C:16:5C:7D Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 3A2A10CED537F895A305DC6A3AFD1192E93404C2 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0067c08f-1c80-44de-8d33-78c0fd0fe30f.roa Signing time: Sat 18 Oct 2025 13:12:34 +0000 ROA not before: Sat 18 Oct 2025 13:12:34 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.160.153.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:2a:10:ce:d5:37:f8:95:a3:05:dc:6a:3a:fd:11:92:e9:34:04:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 18 13:12:34 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=2676eb5f09c745cfeb85d070c87e0df4e625d4644dda520a520cab645cc9a72c, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:70:be:28:05:4c:7f:de:ff:1f:64:a4:a0:82: 64:bb:cf:e8:c0:8a:da:63:38:74:8a:67:1b:96:f8: ff:d6:bf:a9:32:b5:b3:a7:14:84:1f:0e:6a:7b:e4: d9:6f:e7:f0:d4:72:35:21:1b:d9:43:c5:58:d7:1e: 7c:7a:98:bd:05:22:b8:ea:a0:17:de:08:f5:bd:d1: a1:38:b3:4e:86:df:b2:a1:4e:07:66:85:bb:f2:32: 3b:22:c0:7f:97:d2:c6:6a:dd:e2:4b:50:7c:5d:ba: 0c:fd:a6:2c:8a:8a:27:75:7c:a5:29:58:a1:78:ec: 4b:39:a3:42:3a:3c:29:08:d7:4e:0e:d3:b9:84:86: ea:aa:7c:d9:a2:f9:a9:9a:4a:aa:54:06:c3:82:52: df:c9:4b:16:7b:bb:11:9a:b5:3d:3e:fb:34:c2:e8: 4a:5f:54:bc:5e:04:43:a1:43:89:3b:19:46:c7:4e: bb:b5:10:d3:1c:0d:f4:a8:c2:48:df:97:de:a5:61: 7c:56:f0:15:2a:c5:ff:37:75:1f:36:17:fd:ed:86: 4b:54:3c:d3:cd:bc:f6:eb:e5:d9:91:22:f7:8f:f4: 95:1c:ea:11:6e:d6:55:55:b0:c6:3b:7b:b3:32:2f: a9:ef:4f:5d:99:51:f5:6b:29:8f:b9:75:ff:04:f6: 7c:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:36:24:AD:D1:B6:91:28:45:51:BD:8A:EB:88:69:3F:1C:16:5C:7D X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0067c08f-1c80-44de-8d33-78c0fd0fe30f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.160.153.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:db:9e:d7:6b:e2:8b:35:93:d5:87:d4:d5:fc:62:4f:7b:a4: 6d:0f:b5:0c:68:86:ea:39:8c:7f:a3:c2:71:c7:95:98:4d:fb: c9:5e:85:00:cb:14:f7:ef:0a:cc:a6:ef:db:bc:97:c9:a6:5a: 4d:5b:02:a8:dc:db:ab:48:ed:25:78:5b:83:15:75:e1:bf:99: c5:e6:02:74:6d:c4:40:94:3a:4e:d1:3e:0e:30:06:3c:b4:b8: ac:ab:b3:63:e9:81:30:01:ac:a8:09:4d:4e:94:0e:9d:8d:68: 82:95:d3:ed:40:d6:7e:82:4e:71:34:24:68:e6:59:9f:c5:5b: 6a:8d:d8:dc:51:1f:d6:73:ff:66:38:25:c2:df:b2:51:d0:e8: 47:20:37:0e:65:1a:29:f0:0f:f6:b8:13:8b:08:f2:ea:a3:9a: 0b:4c:82:f6:69:33:5f:5a:86:c3:01:28:1c:43:a9:94:4a:2f: b8:b9:78:9b:ad:e2:be:e8:65:58:d9:58:0d:3e:27:9c:e6:05: 68:4a:d3:2b:31:3e:b8:71:dc:0f:11:40:1b:c4:37:b1:09:b6: ac:c0:f7:0f:c0:71:76:ed:50:2f:f8:88:a9:9a:0d:81:fb:7a: 17:59:51:5d:98:1a:78:05:6e:3c:97:5d:e8:f3:35:56:42:86: f0:34:83:a2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOioQztU3+JWjBdxqOv0Rkuk0BMIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE4MTMxMjM0WhcNMjUxMTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0AyNjc2ZWI1ZjA5Yzc0NWNmZWI4NWQwNzBjODdlMGRmNGU2 MjVkNDY0NGRkYTUyMGE1MjBjYWI2NDVjYzlhNzJjMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0cL4oBUx/3v8fZKSggmS7z+jAitpjOHSKZxuW+P/Wv6ky tbOnFIQfDmp75Nlv5/DUcjUhG9lDxVjXHnx6mL0FIrjqoBfeCPW90aE4s06G37Kh TgdmhbvyMjsiwH+X0sZq3eJLUHxdugz9piyKiid1fKUpWKF47Es5o0I6PCkI104O 07mEhuqqfNmi+amaSqpUBsOCUt/JSxZ7uxGatT0++zTC6EpfVLxeBEOhQ4k7GUbH Tru1ENMcDfSowkjfl96lYXxW8BUqxf83dR82F/3thktUPNPNvPbr5dmRIveP9JUc 6hFu1lVVsMY7e7MyL6nvT12ZUfVrKY+5df8E9nznAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUsTYkrdG2kShFUb2K64hpPxwWXH0wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzAwNjdjMDhmLTFjODAtNDRkZS04ZDMzLTc4YzBmZDBmZTMwZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAASoJkwDQYJKoZIhvcNAQELBQADggEBAJ3bntdr4os1k9WH1NX8Yk97pG0P tQxohuo5jH+jwnHHlZhN+8lehQDLFPfvCsym79u8l8mmWk1bAqjc26tI7SV4W4MV deG/mcXmAnRtxECUOk7RPg4wBjy0uKyrs2PpgTABrKgJTU6UDp2NaIKV0+1A1n6C TnE0JGjmWZ/FW2qN2NxRH9Zz/2Y4JcLfslHQ6EcgNw5lGinwD/a4E4sI8uqjmgtM gvZpM19ahsMBKBxDqZRKL7i5eJut4r7oZVjZWA0+J5zmBWhK0ysxPrhx3A8RQBvE N7EJtqzA9w/AcXbtUC/4iKmaDYH7ehdZUV2YGngFbjyXXejzNVZChvA0g6I= -----END CERTIFICATE-----Generated at Mon Oct 20 19:16:46 2025 by rpki-client