$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1561b986-d355-4bb7-92db-9e4ce3fbe5a6.roa File: 1561b986-d355-4bb7-92db-9e4ce3fbe5a6.roa (raw, json) Hash identifier: Pz/w6RlvCsxYB7p5a89F2BMgVt3qgXo+9xHCrFdkfIE= Subject key identifier: 41:C4:8C:47:32:64:31:14:A6:CC:2B:EA:59:06:F5:52:CF:0B:38:7A Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 6B39EAC419919567E6117FE4D938C08A4DB4E989 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1561b986-d355-4bb7-92db-9e4ce3fbe5a6.roa Signing time: Sat 18 Oct 2025 06:13:31 +0000 ROA not before: Sat 18 Oct 2025 06:13:31 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.172.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:39:ea:c4:19:91:95:67:e6:11:7f:e4:d9:38:c0:8a:4d:b4:e9:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 18 06:13:31 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=506dfd697fc9e6aca9d574026ae07b1248d4971822d56104b75d2fc5b0cb1f34, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:1d:1d:e3:02:03:f1:f2:6e:89:34:c7:db:b6: d0:0c:e1:29:13:55:27:7b:9a:e3:f5:cc:22:ce:d4: 27:9b:24:96:3a:0c:64:e6:b6:93:86:3f:a6:5d:f3: e7:92:90:77:6d:6c:ee:99:54:ae:a9:df:28:ca:b4: f0:6b:1f:80:91:a9:2b:2b:a5:a4:1a:3d:67:40:63: 1d:7a:05:0b:93:f9:99:30:e1:b3:37:07:55:50:69: 11:45:0f:59:55:35:14:c1:0c:b6:15:2a:9f:9f:f1: e3:83:45:14:4b:51:4a:73:8c:78:19:08:47:28:a6: 91:46:d7:5e:d9:1e:bb:7e:5a:d1:fa:b7:e6:9c:e8: f7:69:06:28:16:14:ff:02:28:a7:df:7d:1d:80:74: 9e:0c:8c:01:b1:c2:e3:44:59:53:cf:4b:44:ef:93: c4:ad:18:89:a4:cc:eb:05:9d:8e:38:91:92:6d:71: 0c:18:02:6e:20:ba:7a:62:9b:1e:e9:fa:1c:e8:12: 27:f1:0b:40:28:41:94:ce:e9:55:39:9b:1a:ae:48: 11:99:fc:40:48:d6:52:f3:1f:d5:0c:6e:eb:dc:2f: 77:31:5e:e5:6a:fb:4e:e4:79:df:3d:67:90:1b:8e: aa:92:c3:ef:ec:b1:95:d8:93:50:b9:a9:72:56:87: 99:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:C4:8C:47:32:64:31:14:A6:CC:2B:EA:59:06:F5:52:CF:0B:38:7A X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1561b986-d355-4bb7-92db-9e4ce3fbe5a6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.172.127.0/24 Signature Algorithm: sha256WithRSAEncryption 20:fd:6f:8d:e5:59:e2:fd:f4:28:8a:80:71:92:a7:50:0d:20: 68:36:a1:f3:96:17:3f:93:2d:28:d9:13:66:eb:66:52:0b:b6: bc:06:16:df:d8:cc:33:d4:44:af:04:8d:07:25:42:aa:99:ae: a4:67:89:cc:07:e2:5b:aa:52:69:fa:6f:17:0d:1f:cf:cf:4a: c8:d4:29:81:37:f7:30:2a:88:65:55:48:c9:a4:84:07:47:b7: ff:99:57:ad:e2:2d:b6:6c:18:18:dd:48:40:43:9c:e7:cc:94: 60:b4:82:51:d3:1f:87:91:f0:e4:c6:4d:7d:3f:56:e0:cb:eb: fd:f5:0f:c2:5e:d0:a6:b3:c9:37:ed:85:e4:aa:25:b5:06:32: 8d:17:2d:86:f2:b0:1d:97:d1:2c:64:cb:0b:d1:de:ff:b5:d6: 4d:0b:8d:25:9a:f8:06:3a:ea:9b:ce:c3:5f:ba:54:e7:47:55: 7a:c5:28:c4:d0:74:b0:3c:ab:24:0c:c1:7f:17:d7:f8:42:9b: a7:0a:62:6e:ce:17:6f:3f:14:0b:03:f9:03:11:b4:ea:0d:84: bd:81:ce:8d:5c:a9:48:12:d1:24:2a:bd:b3:c7:bf:d4:64:83: 97:07:bd:0a:44:b6:19:5f:7c:79:00:93:cc:39:01:dd:f6:be: f0:ce:1d:61 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaznqxBmRlWfmEX/k2TjAik206YkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE4MDYxMzMxWhcNMjUxMTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A1MDZkZmQ2OTdmYzllNmFjYTlkNTc0MDI2YWUwN2IxMjQ4 ZDQ5NzE4MjJkNTYxMDRiNzVkMmZjNWIwY2IxZjM0MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1HR3jAgPx8m6JNMfbttAM4SkTVSd7muP1zCLO1CebJJY6 DGTmtpOGP6Zd8+eSkHdtbO6ZVK6p3yjKtPBrH4CRqSsrpaQaPWdAYx16BQuT+Zkw 4bM3B1VQaRFFD1lVNRTBDLYVKp+f8eODRRRLUUpzjHgZCEcoppFG117ZHrt+WtH6 t+ac6PdpBigWFP8CKKfffR2AdJ4MjAGxwuNEWVPPS0Tvk8StGImkzOsFnY44kZJt cQwYAm4gunpimx7p+hzoEifxC0AoQZTO6VU5mxquSBGZ/EBI1lLzH9UMbuvcL3cx XuVq+07ked89Z5AbjqqSw+/ssZXYk1C5qXJWh5lpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQcSMRzJkMRSmzCvqWQb1Us8LOHowHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzE1NjFiOTg2LWQzNTUtNGJiNy05MmRiLTllNGNlM2ZiZTVhNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAASrH8wDQYJKoZIhvcNAQELBQADggEBACD9b43lWeL99CiKgHGSp1ANIGg2 ofOWFz+TLSjZE2brZlILtrwGFt/YzDPURK8EjQclQqqZrqRnicwH4luqUmn6bxcN H8/PSsjUKYE39zAqiGVVSMmkhAdHt/+ZV63iLbZsGBjdSEBDnOfMlGC0glHTH4eR 8OTGTX0/VuDL6/31D8Je0KazyTftheSqJbUGMo0XLYbysB2X0SxkywvR3v+11k0L jSWa+AY66pvOw1+6VOdHVXrFKMTQdLA8qyQMwX8X1/hCm6cKYm7OF28/FAsD+QMR tOoNhL2Bzo1cqUgS0SQqvbPHv9Rkg5cHvQpEthlffHkAk8w5Ad32vvDOHWE= -----END CERTIFICATE-----Generated at Mon Oct 20 17:29:06 2025 by rpki-client