$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/03673603-c6e9-4f5b-8fb4-c908b048a115.roa File: 03673603-c6e9-4f5b-8fb4-c908b048a115.roa (raw, json) Hash identifier: XZm9JSaxh4qRtc8PtnX5IDmBfV2NlT24Pif06XRJAoM= Subject key identifier: D4:A3:71:9B:4D:CA:5C:69:27:35:AE:01:FB:21:6F:7E:1C:7B:0B:14 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 514B5134F3666615061160933754F9DF057C0D12 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/03673603-c6e9-4f5b-8fb4-c908b048a115.roa Signing time: Sat 18 Oct 2025 07:52:44 +0000 ROA not before: Sat 18 Oct 2025 07:52:44 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.173.240.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:4b:51:34:f3:66:66:15:06:11:60:93:37:54:f9:df:05:7c:0d:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 18 07:52:44 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=1507fc381058dd2d97613f1c0b6d419a3f052ba5aafaca5ddeda57a1fbb5485c, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:35:d9:41:f4:1c:51:45:29:b0:76:d5:0c:17: 87:76:61:26:c6:18:c3:83:4a:5f:ba:d2:69:fa:61: d7:cc:54:28:42:7c:52:45:a8:94:e7:3e:eb:a0:62: 2b:89:fe:ed:72:e5:9e:39:1c:43:57:7c:01:1c:eb: 1d:c4:37:e7:7e:a8:c0:fe:25:d5:a3:9e:e7:cf:01: 83:e0:a3:af:82:69:d1:ce:73:a4:8e:86:86:80:79: 66:e0:08:4a:60:9d:db:ec:54:93:ec:91:a2:36:b7: 38:fa:00:20:69:dc:67:ed:5e:1c:7a:99:2d:11:a1: 66:38:2b:3b:41:87:20:b4:a6:73:f2:9d:c2:e6:3d: a0:c1:04:c9:e3:a4:6c:c1:04:ad:ef:74:64:e6:53: a5:8c:da:c2:ff:22:0e:63:4d:bc:4d:aa:f3:b3:bf: 34:14:bb:32:21:30:03:bb:b7:c1:e3:52:6d:4f:77: 3e:4f:b7:cb:a5:76:3b:ac:fb:43:08:ec:c7:84:b8: d7:69:1c:55:e6:13:a9:7b:ab:c8:d7:d1:27:8a:94: c9:fe:eb:1f:35:09:ed:44:9b:62:03:e2:82:38:8c: dc:87:44:8c:b5:9d:b8:8a:bd:66:b2:4f:91:e2:0a: 38:6c:43:f7:4e:e3:5c:3b:08:28:ec:70:2e:8f:88: 5b:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:A3:71:9B:4D:CA:5C:69:27:35:AE:01:FB:21:6F:7E:1C:7B:0B:14 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/03673603-c6e9-4f5b-8fb4-c908b048a115.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.173.240.0/20 Signature Algorithm: sha256WithRSAEncryption 4d:ee:72:56:31:02:eb:11:a2:3f:73:65:9b:49:09:45:ae:99: f4:ca:fe:04:a3:1a:2c:d7:e3:80:19:e2:af:5a:e6:52:66:a6: 09:ae:8d:05:11:0c:99:64:83:94:91:d1:0c:64:5e:db:12:c5: 25:a1:43:f1:97:85:e2:88:7a:06:20:e3:6d:a5:fb:19:fc:f3: 09:59:81:cb:c6:38:52:89:1f:50:1c:4a:7e:94:58:08:ff:fd: 40:b6:a7:7f:7b:c3:e0:e4:ad:6b:de:46:b0:1f:9f:24:4c:cf: d9:4d:d1:e2:ed:c8:22:be:15:49:ff:14:69:0f:c3:73:7a:2d: 98:64:f1:c6:bc:c9:94:35:5f:c1:f4:11:19:8f:6a:b8:57:82: c7:89:8d:83:58:8b:3b:9f:0b:b5:b2:97:35:70:43:da:15:8f: cd:5d:0b:2b:84:19:5c:73:88:e1:1d:a8:08:04:ec:72:f3:9a: 52:b9:a7:d0:3b:f2:2e:0f:d2:8a:b1:8c:5f:90:21:ca:c6:42: 6d:00:86:1d:7a:33:41:e6:b1:3d:da:33:d8:c1:8b:64:46:fe: 31:75:6f:60:e2:91:66:22:df:71:65:d0:c9:fd:7f:3e:8a:ed: 12:b9:5c:ca:9f:3e:c6:66:5b:d6:49:e1:2f:eb:82:0f:3b:e4: 85:ad:ec:2d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUUtRNPNmZhUGEWCTN1T53wV8DRIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE4MDc1MjQ0WhcNMjUxMTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0AxNTA3ZmMzODEwNThkZDJkOTc2MTNmMWMwYjZkNDE5YTNm MDUyYmE1YWFmYWNhNWRkZWRhNTdhMWZiYjU0ODVjMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5NdlB9BxRRSmwdtUMF4d2YSbGGMODSl+60mn6YdfMVChC fFJFqJTnPuugYiuJ/u1y5Z45HENXfAEc6x3EN+d+qMD+JdWjnufPAYPgo6+CadHO c6SOhoaAeWbgCEpgndvsVJPskaI2tzj6ACBp3GftXhx6mS0RoWY4KztBhyC0pnPy ncLmPaDBBMnjpGzBBK3vdGTmU6WM2sL/Ig5jTbxNqvOzvzQUuzIhMAO7t8HjUm1P dz5Pt8uldjus+0MI7MeEuNdpHFXmE6l7q8jX0SeKlMn+6x81Ce1Em2ID4oI4jNyH RIy1nbiKvWayT5HiCjhsQ/dO41w7CCjscC6PiFuHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU1KNxm03KXGknNa4B+yFvfhx7CxQwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzAzNjczNjAzLWM2ZTktNGY1Yi04ZmI0LWM5MDhiMDQ4YTExNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQSrfAwDQYJKoZIhvcNAQELBQADggEBAE3uclYxAusRoj9zZZtJCUWumfTK /gSjGizX44AZ4q9a5lJmpgmujQURDJlkg5SR0QxkXtsSxSWhQ/GXheKIegYg422l +xn88wlZgcvGOFKJH1AcSn6UWAj//UC2p397w+DkrWveRrAfnyRMz9lN0eLtyCK+ FUn/FGkPw3N6LZhk8ca8yZQ1X8H0ERmParhXgseJjYNYizufC7WylzVwQ9oVj81d CyuEGVxziOEdqAgE7HLzmlK5p9A78i4P0oqxjF+QIcrGQm0Ahh16M0HmsT3aM9jB i2RG/jF1b2DikWYi33Fl0Mn9fz6K7RK5XMqfPsZmW9ZJ4S/rgg875IWt7C0= -----END CERTIFICATE-----Generated at Mon Oct 20 15:46:42 2025 by rpki-client