$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/271c957d-2144-459c-a192-fbfa62caf31c.roa File: 271c957d-2144-459c-a192-fbfa62caf31c.roa (raw, json) Hash identifier: gKQNwqCLbcxtZ8/fxkVe1rM8dR2JgP8KBpKRcTUPOzY= Subject key identifier: F0:FA:C8:B5:9A:D1:AB:7B:4F:F5:DE:0D:61:C4:15:89:FE:B9:03:B8 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 2D1F968E928F78AEB321212A7F89925C8F2CA35F Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/271c957d-2144-459c-a192-fbfa62caf31c.roa Signing time: Mon 13 Oct 2025 16:48:54 +0000 ROA not before: Mon 13 Oct 2025 16:48:54 +0000 ROA not after: Mon 17 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.158.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:1f:96:8e:92:8f:78:ae:b3:21:21:2a:7f:89:92:5c:8f:2c:a3:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 13 16:48:54 2025 GMT Not After : Nov 17 23:59:59 2025 GMT Subject: serialNumber=5799a89af2c82e259564d2bee329bcacc519c7c5139c616b94b677639a851146, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:d1:26:77:60:f9:6d:4f:9f:c3:f9:0d:87:60: fa:eb:15:e5:3f:5e:74:21:ce:f1:5b:1e:5e:45:5c: 9e:e0:31:2f:95:b8:8b:29:fd:19:2c:d5:ed:b1:a7: 5b:a2:cf:1a:c1:43:da:49:45:42:61:4a:f8:35:e2: bf:05:1b:c6:42:8f:e7:c7:7b:47:98:53:f5:6d:99: a9:ec:04:fe:33:c0:1e:3e:32:ab:96:ed:a5:f9:87: 93:db:1d:cc:02:65:cd:8d:28:ee:04:0c:66:a6:03: 91:c4:3b:5f:d1:a8:a8:65:94:f9:a7:f5:c0:d1:64: 8b:63:84:a1:c2:07:a7:82:6f:51:f4:61:58:ed:01: a0:26:92:67:2f:8e:ed:aa:4d:fb:b5:1c:05:fc:96: b0:6d:fc:d6:ad:9c:8b:cb:1a:15:e8:4b:32:80:4e: 30:dc:18:77:2a:eb:80:c0:22:af:d4:18:15:fe:ff: 04:2a:bf:13:73:95:ba:01:c2:91:40:97:63:0d:1b: ca:9e:3a:c1:b3:86:af:9b:24:b5:dc:9c:d2:64:0f: 63:d3:ee:b2:1c:62:6f:15:3b:bb:db:70:85:39:7c: 26:0b:f9:83:10:ad:34:07:ad:4f:1e:8b:bc:0e:d1: a1:b2:85:99:2f:ea:50:a4:02:c5:20:d4:a3:18:46: bb:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:FA:C8:B5:9A:D1:AB:7B:4F:F5:DE:0D:61:C4:15:89:FE:B9:03:B8 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/271c957d-2144-459c-a192-fbfa62caf31c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.158.22.0/24 Signature Algorithm: sha256WithRSAEncryption 09:d5:ee:94:03:f7:bc:35:b7:38:bb:70:01:ab:56:df:bf:b8: bd:53:cb:12:62:7d:66:b7:18:fd:de:5d:4c:18:41:96:2a:6f: c2:ba:36:9b:ce:98:3e:e2:65:14:27:da:23:5e:1c:93:59:b5: f5:de:e0:2c:77:63:64:dc:7f:ef:5d:7f:9b:47:b8:35:17:ed: fc:ee:7f:75:48:2a:ea:e0:15:dc:47:65:45:e4:27:aa:33:bb: 4c:f8:ba:87:5e:32:58:ae:f6:8e:69:76:b4:92:13:1d:72:51: fc:cb:8b:8d:40:31:b6:a3:f8:ce:e7:96:15:c5:7c:75:22:e9: d2:b9:5f:5a:d1:09:51:b9:87:98:7a:f9:2e:92:cf:52:3c:75: f2:03:67:71:bb:98:3e:f8:da:7a:47:a1:38:14:e0:bb:26:f6: 65:95:59:f4:4f:cb:80:d5:a8:da:5c:62:b4:23:bb:2b:0b:54: 6f:50:cb:09:23:a4:62:16:c3:a3:d9:26:c0:b8:81:86:bd:b8: 48:d6:a0:46:35:ab:1c:08:14:26:4e:48:3c:14:c8:b2:42:a6: 58:03:d5:da:9f:50:59:31:43:7e:89:97:80:7c:82:d9:91:db: b9:7e:52:50:97:8a:5d:f7:45:c0:67:b2:0a:41:76:4e:0e:d2: ab:2c:bc:9e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULR+WjpKPeK6zISEqf4mSXI8so18wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDEzMTY0ODU0WhcNMjUxMTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A1Nzk5YTg5YWYyYzgyZTI1OTU2NGQyYmVlMzI5YmNhY2M1 MTljN2M1MTM5YzYxNmI5NGI2Nzc2MzlhODUxMTQ2MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCa0SZ3YPltT5/D+Q2HYPrrFeU/XnQhzvFbHl5FXJ7gMS+V uIsp/Rks1e2xp1uizxrBQ9pJRUJhSvg14r8FG8ZCj+fHe0eYU/VtmansBP4zwB4+ MquW7aX5h5PbHcwCZc2NKO4EDGamA5HEO1/RqKhllPmn9cDRZItjhKHCB6eCb1H0 YVjtAaAmkmcvju2qTfu1HAX8lrBt/NatnIvLGhXoSzKATjDcGHcq64DAIq/UGBX+ /wQqvxNzlboBwpFAl2MNG8qeOsGzhq+bJLXcnNJkD2PT7rIcYm8VO7vbcIU5fCYL +YMQrTQHrU8ei7wO0aGyhZkv6lCkAsUg1KMYRrulAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU8PrItZrRq3tP9d4NYcQVif65A7gwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzI3MWM5NTdkLTIxNDQtNDU5Yy1hMTkyLWZiZmE2MmNhZjMxYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAPnhYwDQYJKoZIhvcNAQELBQADggEBAAnV7pQD97w1tzi7cAGrVt+/uL1T yxJifWa3GP3eXUwYQZYqb8K6NpvOmD7iZRQn2iNeHJNZtfXe4Cx3Y2Tcf+9df5tH uDUX7fzuf3VIKurgFdxHZUXkJ6ozu0z4uodeMliu9o5pdrSSEx1yUfzLi41AMbaj +M7nlhXFfHUi6dK5X1rRCVG5h5h6+S6Sz1I8dfIDZ3G7mD742npHoTgU4Lsm9mWV WfRPy4DVqNpcYrQjuysLVG9QywkjpGIWw6PZJsC4gYa9uEjWoEY1qxwIFCZOSDwU yLJCplgD1dqfUFkxQ36Jl4B8gtmR27l+UlCXil33RcBnsgpBdk4O0qssvJ4= -----END CERTIFICATE-----Generated at Mon Oct 20 03:00:29 2025 by rpki-client