$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/080777a4-0eff-4774-9f44-e021cc1509db.roa File: 080777a4-0eff-4774-9f44-e021cc1509db.roa (raw, json) Hash identifier: ku3JxDd4kMLCXOHMArO/SdepQ1dz3WZzMZALerUGr7M= Subject key identifier: A2:12:3D:3F:47:08:FC:19:DE:1A:DD:A3:62:A5:8A:8E:CB:B8:60:B3 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 5ADF25D0BA8177F2E965AFCE7102BC2B460BE543 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/080777a4-0eff-4774-9f44-e021cc1509db.roa Signing time: Sun 19 Oct 2025 19:43:52 +0000 ROA not before: Sun 19 Oct 2025 19:43:52 +0000 ROA not after: Sun 23 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.66.144.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:df:25:d0:ba:81:77:f2:e9:65:af:ce:71:02:bc:2b:46:0b:e5:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 19 19:43:52 2025 GMT Not After : Nov 23 23:59:59 2025 GMT Subject: serialNumber=9ef5d20db6e2de4702bb8c1350c156b20e2fa2e46dbd65cefd06666bda8538d5, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:db:3f:ba:35:70:06:0b:74:48:72:0a:51:43: b4:59:48:59:a1:cd:7e:09:b3:34:8a:4c:73:4e:3c: f3:69:eb:b8:10:b3:5f:32:5a:e6:ca:47:c4:c1:ee: db:68:23:a0:a3:bb:2a:90:69:7b:6e:1f:45:7c:f0: 3c:35:20:88:49:96:cc:bd:f3:6c:28:85:ad:5f:2b: 15:a6:5c:7f:b7:9f:9b:99:92:21:48:d7:2a:48:11: bc:61:cc:95:15:7e:00:82:c8:63:02:69:fb:62:93: fc:ed:05:19:a7:1c:ac:72:9a:f0:61:a7:ae:8b:aa: 72:61:4f:4d:d0:31:01:84:54:f6:1b:ea:39:ea:84: 2c:4d:7a:42:12:c2:a6:b8:05:f4:34:9c:62:d0:5f: 03:2f:84:a7:0e:f9:4a:9c:52:b2:7a:e2:31:da:66: 8c:b6:c0:da:9a:17:c6:cc:b3:4d:3b:ac:f0:9b:7e: 0c:41:e2:72:a2:c6:07:1b:74:6d:45:a5:7d:48:5a: d0:8a:6f:50:e8:79:a7:e7:ad:57:9e:29:be:3e:e3: d8:72:01:3d:5b:c5:eb:f0:fb:08:c9:00:88:cd:f1: cb:31:d8:f0:7b:5b:5e:80:5a:e0:a3:52:0b:f9:82: 79:8e:b7:41:c3:69:a6:51:6d:40:fb:35:d3:52:fc: d4:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:12:3D:3F:47:08:FC:19:DE:1A:DD:A3:62:A5:8A:8E:CB:B8:60:B3 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/080777a4-0eff-4774-9f44-e021cc1509db.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.66.144.0/23 Signature Algorithm: sha256WithRSAEncryption 23:94:e1:e7:55:08:16:99:7a:7f:46:68:72:7e:00:c0:2f:41: 86:30:54:5a:97:1a:4b:07:7e:5a:4c:59:07:b4:74:52:b3:d5: 1b:03:30:6e:6e:a6:b0:37:c3:a4:2b:bc:c6:85:a5:af:63:62: ff:45:ee:a0:e3:0c:29:cd:13:ca:7a:e3:1d:56:87:10:60:fb: ab:9f:85:01:9f:d5:22:16:db:6f:8a:84:f1:d3:1b:13:2f:16: 38:3a:d7:16:da:0a:14:cc:9c:c1:90:35:11:b6:3e:a7:f2:1c: 66:20:9b:4c:9f:90:b2:da:f9:a4:f3:c2:79:e4:a3:b0:4a:a8: b3:22:18:6c:ef:fa:0b:7d:c4:a1:86:62:26:31:ec:e3:63:3e: 94:97:01:f6:e4:77:2e:17:bc:dc:52:80:4c:d1:0d:da:4b:db: 29:30:a2:5d:b7:cf:44:2a:12:82:34:51:6b:b9:b1:f9:b3:69: 5a:9f:c0:83:7c:21:38:0b:cc:31:c4:8f:bf:ae:c0:37:fb:a6: 0f:9a:8f:d1:0a:84:c3:ab:b6:0b:e7:9d:55:7c:e4:94:0f:ac: a8:a9:e9:e2:89:b0:e0:45:f4:0c:2a:3f:37:72:3e:b2:12:7f: 0b:ab:8b:c8:0a:0b:1d:89:89:fb:79:65:2a:71:43:07:a6:59: e0:13:90:39 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWt8l0LqBd/LpZa/OcQK8K0YL5UMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE5MTk0MzUyWhcNMjUxMTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZWY1ZDIwZGI2ZTJkZTQ3MDJiYjhjMTM1MGMxNTZiMjBl MmZhMmU0NmRiZDY1Y2VmZDA2NjY2YmRhODUzOGQ1MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCk2z+6NXAGC3RIcgpRQ7RZSFmhzX4JszSKTHNOPPNp67gQ s18yWubKR8TB7ttoI6CjuyqQaXtuH0V88Dw1IIhJlsy982woha1fKxWmXH+3n5uZ kiFI1ypIEbxhzJUVfgCCyGMCaftik/ztBRmnHKxymvBhp66LqnJhT03QMQGEVPYb 6jnqhCxNekISwqa4BfQ0nGLQXwMvhKcO+UqcUrJ64jHaZoy2wNqaF8bMs007rPCb fgxB4nKixgcbdG1FpX1IWtCKb1DoeafnrVeeKb4+49hyAT1bxevw+wjJAIjN8csx 2PB7W16AWuCjUgv5gnmOt0HDaaZRbUD7NdNS/NSfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUohI9P0cI/BneGt2jYqWKjsu4YLMwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzA4MDc3N2E0LTBlZmYtNDc3NC05ZjQ0LWUwMjFjYzE1MDlkYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAESQpAwDQYJKoZIhvcNAQELBQADggEBACOU4edVCBaZen9GaHJ+AMAvQYYw VFqXGksHflpMWQe0dFKz1RsDMG5uprA3w6QrvMaFpa9jYv9F7qDjDCnNE8p64x1W hxBg+6ufhQGf1SIW22+KhPHTGxMvFjg61xbaChTMnMGQNRG2PqfyHGYgm0yfkLLa +aTzwnnko7BKqLMiGGzv+gt9xKGGYiYx7ONjPpSXAfbkdy4XvNxSgEzRDdpL2ykw ol23z0QqEoI0UWu5sfmzaVqfwIN8ITgLzDHEj7+uwDf7pg+aj9EKhMOrtgvnnVV8 5JQPrKip6eKJsOBF9AwqPzdyPrISfwuri8gKCx2Jift5ZSpxQwemWeATkDk= -----END CERTIFICATE-----Generated at Mon Oct 20 06:10:01 2025 by rpki-client