$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0f735eab-7128-4784-bb45-5cb35fff98f4.roa File: 0f735eab-7128-4784-bb45-5cb35fff98f4.roa (raw, json) Hash identifier: CyMrSpr9/d+X1DoxS16twiPw/+GVHFtftLg+VAM2nEs= Subject key identifier: 3A:CD:FD:0F:47:6A:AA:D5:21:D5:40:CE:15:DB:9E:4C:51:E5:0C:69 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 72E0439EF8C45680540BFC75EE188A8AEB4B646B Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0f735eab-7128-4784-bb45-5cb35fff98f4.roa Signing time: Sat 18 Oct 2025 16:22:34 +0000 ROA not before: Sat 18 Oct 2025 16:22:34 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.173.220.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:e0:43:9e:f8:c4:56:80:54:0b:fc:75:ee:18:8a:8a:eb:4b:64:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 18 16:22:34 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=5f8115db46e792832c08502f338797f9eb27328d5a33e749c7006d691d40925e, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:0f:60:e6:24:0b:8d:c0:ca:c4:83:a2:09:1c: 1d:3b:73:09:46:e6:54:25:fd:fd:34:29:6a:04:ac: c4:d3:4d:2d:2a:a1:96:8c:cd:c9:07:32:a3:b6:f5: ea:f9:15:d2:4e:44:2c:92:47:56:e3:e5:93:ce:7e: 84:c8:fa:ac:46:38:47:8e:12:dc:c0:d5:72:50:be: cf:89:b6:3b:3c:36:f2:df:45:96:a3:4a:4a:c2:cd: 4b:1f:44:86:38:a9:e3:6f:fb:c2:7c:00:e5:6d:cb: 88:9a:d5:41:72:b2:45:e6:50:28:7a:c0:a3:ea:d4: 74:c4:fe:8d:08:82:60:15:8a:0e:e2:f1:3d:e5:ea: b2:e8:db:92:30:47:ea:30:21:55:0e:45:04:c1:1d: 8d:e5:57:a1:16:4d:c5:0c:6f:7b:cf:b1:20:be:c0: 2f:5e:74:be:22:57:5b:b9:b7:0d:f4:59:ca:0b:fc: d3:89:d3:94:e3:ce:f6:49:ff:1e:f8:03:1b:4c:b5: 22:e3:9b:a8:86:02:3e:dc:eb:e7:f1:c3:e3:a2:72: bf:a7:0c:db:24:95:4f:b4:8a:81:a1:47:48:d5:b9: 7b:e4:35:f0:14:48:fb:a4:dd:92:db:72:9f:7a:91: 60:c6:47:bc:53:32:1b:d9:6b:9a:6f:4c:4e:c5:f1: 05:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:CD:FD:0F:47:6A:AA:D5:21:D5:40:CE:15:DB:9E:4C:51:E5:0C:69 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0f735eab-7128-4784-bb45-5cb35fff98f4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.173.220.0/22 Signature Algorithm: sha256WithRSAEncryption 98:12:0e:8f:cc:81:9c:3c:74:dc:c8:94:f3:b3:d7:48:04:9f: c8:d9:9d:b4:6b:3d:3b:4a:3c:b7:58:47:4e:b4:62:73:63:a4: a3:f7:6c:20:f9:a3:5e:41:61:8b:4f:82:d4:5c:3d:48:68:9c: aa:92:7e:cc:56:fc:48:a6:89:9d:3a:56:72:ea:6e:e6:75:b6: d6:c1:ba:e7:30:22:93:da:8f:2c:75:23:38:37:b2:f0:90:fb: 64:f4:4f:15:8a:f0:d7:27:85:a7:c2:df:70:ff:ab:ca:3a:e9: 82:16:da:f2:ec:46:47:fb:7d:e7:6c:82:54:3a:e7:8f:1d:88: 51:46:b3:8b:9f:b3:13:db:66:ac:80:df:d9:b2:24:5d:70:77: f2:48:53:dc:b0:c7:11:c0:d2:87:8d:8f:fb:e0:1b:73:80:aa: 17:a8:62:8a:46:be:92:a9:66:4d:aa:ae:4e:5c:3e:9f:b7:4c: bc:98:f7:7b:7a:c6:0f:6b:b9:ad:67:15:77:4d:f3:0b:60:9b: 2e:a3:9e:a0:c7:a8:0b:be:d0:b2:8c:62:db:ae:d3:b5:34:3b: 24:03:c8:57:c8:d6:d8:17:f1:22:55:81:a7:2e:b8:aa:ad:94: 88:b6:91:3f:83:c3:a2:b4:2f:e5:48:0a:ab:26:1b:33:fc:2c: f2:03:73:b7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcuBDnvjEVoBUC/x17hiKiutLZGswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE4MTYyMjM0WhcNMjUxMTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZjgxMTVkYjQ2ZTc5MjgzMmMwODUwMmYzMzg3OTdmOWVi MjczMjhkNWEzM2U3NDljNzAwNmQ2OTFkNDA5MjVlMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwD2DmJAuNwMrEg6IJHB07cwlG5lQl/f00KWoErMTTTS0q oZaMzckHMqO29er5FdJORCySR1bj5ZPOfoTI+qxGOEeOEtzA1XJQvs+Jtjs8NvLf RZajSkrCzUsfRIY4qeNv+8J8AOVty4ia1UFyskXmUCh6wKPq1HTE/o0IgmAVig7i 8T3l6rLo25IwR+owIVUORQTBHY3lV6EWTcUMb3vPsSC+wC9edL4iV1u5tw30WcoL /NOJ05TjzvZJ/x74AxtMtSLjm6iGAj7c6+fxw+Oicr+nDNsklU+0ioGhR0jVuXvk NfAUSPuk3ZLbcp96kWDGR7xTMhvZa5pvTE7F8QVtAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUOs39D0dqqtUh1UDOFdueTFHlDGkwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzBmNzM1ZWFiLTcxMjgtNDc4NC1iYjQ1LTVjYjM1ZmZmOThmNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAISrdwwDQYJKoZIhvcNAQELBQADggEBAJgSDo/MgZw8dNzIlPOz10gEn8jZ nbRrPTtKPLdYR060YnNjpKP3bCD5o15BYYtPgtRcPUhonKqSfsxW/EimiZ06VnLq buZ1ttbBuucwIpPajyx1Izg3svCQ+2T0TxWK8NcnhafC33D/q8o66YIW2vLsRkf7 fedsglQ6548diFFGs4ufsxPbZqyA39myJF1wd/JIU9ywxxHA0oeNj/vgG3OAqheo YopGvpKpZk2qrk5cPp+3TLyY93t6xg9rua1nFXdN8wtgmy6jnqDHqAu+0LKMYtuu 07U0OyQDyFfI1tgX8SJVgacuuKqtlIi2kT+Dw6K0L+VICqsmGzP8LPIDc7c= -----END CERTIFICATE-----Generated at Mon Oct 20 21:12:29 2025 by rpki-client