$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0fbfed15-951c-4955-a0cc-f73763037cdf.roa File: 0fbfed15-951c-4955-a0cc-f73763037cdf.roa (raw, json) Hash identifier: D1G7Zi6e97WLAnRA3+3FyfgFUvrVKft+lSopRuZaQvw= Subject key identifier: 3F:67:FF:17:F2:A2:68:CA:C3:81:5F:FC:70:02:A1:36:B3:A7:ED:AA Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 536EE73DD88C184FE02E16664EB36AA6408CAA76 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0fbfed15-951c-4955-a0cc-f73763037cdf.roa Signing time: Sun 19 Oct 2025 09:43:52 +0000 ROA not before: Sun 19 Oct 2025 09:43:52 +0000 ROA not after: Sun 23 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.64.84.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:6e:e7:3d:d8:8c:18:4f:e0:2e:16:66:4e:b3:6a:a6:40:8c:aa:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 19 09:43:52 2025 GMT Not After : Nov 23 23:59:59 2025 GMT Subject: serialNumber=955dace621490985ac9feef56621ce25d6017f0f103e6704a229fed8ca166e49, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:3e:ed:1d:fb:c2:ba:c2:ed:92:f4:1e:4a:7c: 39:77:a4:c8:17:d9:fe:04:fe:b3:0f:fe:11:5a:c1: 2d:e4:29:c7:15:03:d7:3a:cf:21:fb:78:3e:09:20: bb:46:43:09:a7:49:ef:6f:77:5d:56:f7:c6:d1:4d: 24:10:15:9a:c5:b5:7d:d8:c1:98:03:32:bc:f3:91: f5:de:85:65:63:c1:21:aa:7e:69:88:37:33:3c:38: fa:83:35:35:ac:9f:e6:dd:80:1e:c0:93:64:2e:b5: d1:cd:4e:f4:7d:7b:38:2d:6d:e6:ab:a0:01:a5:fc: 97:89:6a:da:d6:0a:12:27:d4:3c:0f:52:11:61:98: 71:d3:e6:2e:c0:88:42:9b:c8:fb:4c:5b:6d:98:67: 31:55:04:99:e7:fa:41:65:c7:56:4b:7e:b7:37:4c: b7:a3:e0:fd:c7:aa:d4:ae:08:0b:67:18:1c:ed:5e: b7:f2:7a:57:18:07:e3:e4:d4:27:4d:e5:85:12:09: 15:e4:b0:1e:21:f2:f7:77:45:3b:b8:b1:59:9e:a9: e3:43:62:33:1c:8e:5c:a8:f2:b8:71:44:8b:e4:ab: 8b:ac:81:61:9f:eb:28:12:76:d6:79:f4:cc:bc:7e: 1e:cb:f8:9c:72:fe:4e:07:97:9c:25:c7:1d:38:3a: d3:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:67:FF:17:F2:A2:68:CA:C3:81:5F:FC:70:02:A1:36:B3:A7:ED:AA X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0fbfed15-951c-4955-a0cc-f73763037cdf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.64.84.0/24 Signature Algorithm: sha256WithRSAEncryption 64:74:80:e4:81:e7:39:62:9d:5d:e9:a7:82:fe:c0:7b:a8:e2: ad:7b:40:10:5e:7d:e2:75:26:05:8f:63:5c:a3:ad:4b:c4:1d: 31:4b:73:6f:03:73:2b:67:8a:e1:cf:c6:53:21:4e:59:f9:0e: 8e:41:03:a2:e2:f1:5f:67:83:16:c0:1a:0c:51:59:91:7b:9d: 20:fe:71:12:08:62:42:4f:b0:34:d3:e0:fa:49:25:d7:d9:b6: 2f:48:50:93:8b:75:16:e0:c2:2d:dc:4b:0a:2d:81:ed:cc:c0: 69:83:92:d6:78:d4:8c:04:5f:ba:01:bb:ec:e3:8d:f9:e4:6d: af:a0:21:af:37:e5:02:85:a7:7a:b4:0b:2e:12:40:1d:86:09: 8e:ab:d4:6d:61:f1:1f:96:b2:01:ad:5f:34:36:68:cc:69:c7: 70:0c:71:6f:15:92:bb:11:8d:cb:8d:b2:3c:69:66:fd:0a:2d: 70:d2:6d:d3:46:6b:36:f4:97:98:32:ef:e6:15:66:c5:1f:91: 91:f3:86:a7:c8:6a:50:74:1c:1c:f0:50:39:a9:54:67:36:f0: cc:80:31:b0:8f:d8:73:e8:e1:c5:b6:82:a5:cf:10:ce:ea:1a: 45:5c:ba:53:57:13:e8:e5:8d:82:1b:ee:b0:aa:f8:37:36:2d: 05:33:93:d7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUU27nPdiMGE/gLhZmTrNqpkCMqnYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE5MDk0MzUyWhcNMjUxMTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A5NTVkYWNlNjIxNDkwOTg1YWM5ZmVlZjU2NjIxY2UyNWQ2 MDE3ZjBmMTAzZTY3MDRhMjI5ZmVkOGNhMTY2ZTQ5MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDvPu0d+8K6wu2S9B5KfDl3pMgX2f4E/rMP/hFawS3kKccV A9c6zyH7eD4JILtGQwmnSe9vd11W98bRTSQQFZrFtX3YwZgDMrzzkfXehWVjwSGq fmmINzM8OPqDNTWsn+bdgB7Ak2QutdHNTvR9ezgtbearoAGl/JeJatrWChIn1DwP UhFhmHHT5i7AiEKbyPtMW22YZzFVBJnn+kFlx1ZLfrc3TLej4P3HqtSuCAtnGBzt XrfyelcYB+Pk1CdN5YUSCRXksB4h8vd3RTu4sVmeqeNDYjMcjlyo8rhxRIvkq4us gWGf6ygSdtZ59My8fh7L+Jxy/k4Hl5wlxx04OtO/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUP2f/F/KiaMrDgV/8cAKhNrOn7aowHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzBmYmZlZDE1LTk1MWMtNDk1NS1hMGNjLWY3Mzc2MzAzN2NkZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAASQFQwDQYJKoZIhvcNAQELBQADggEBAGR0gOSB5zlinV3pp4L+wHuo4q17 QBBefeJ1JgWPY1yjrUvEHTFLc28DcytniuHPxlMhTln5Do5BA6Li8V9ngxbAGgxR WZF7nSD+cRIIYkJPsDTT4PpJJdfZti9IUJOLdRbgwi3cSwotge3MwGmDktZ41IwE X7oBu+zjjfnkba+gIa835QKFp3q0Cy4SQB2GCY6r1G1h8R+WsgGtXzQ2aMxpx3AM cW8VkrsRjcuNsjxpZv0KLXDSbdNGazb0l5gy7+YVZsUfkZHzhqfIalB0HBzwUDmp VGc28MyAMbCP2HPo4cW2gqXPEM7qGkVculNXE+jljYIb7rCq+Dc2LQUzk9c= -----END CERTIFICATE-----Generated at Mon Oct 20 11:10:24 2025 by rpki-client