$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2e26f451-3b85-4cba-bfdf-458c098d8f0c.roa File: 2e26f451-3b85-4cba-bfdf-458c098d8f0c.roa (raw, json) Hash identifier: RNGSDMbv1RqC2NtkBAP3WEXJ9og5q4JAOmbEIsYTuPg= Subject key identifier: 07:14:4E:58:4D:A2:DC:BC:A6:0C:AD:C9:0F:B1:0D:85:91:2E:71:E1 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 538A0EBB212AAD6FC29A483B7BD91FC97230FD19 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2e26f451-3b85-4cba-bfdf-458c098d8f0c.roa Signing time: Sun 19 Oct 2025 10:00:14 +0000 ROA not before: Sun 19 Oct 2025 10:00:14 +0000 ROA not after: Sun 23 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.65.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:8a:0e:bb:21:2a:ad:6f:c2:9a:48:3b:7b:d9:1f:c9:72:30:fd:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 19 10:00:14 2025 GMT Not After : Nov 23 23:59:59 2025 GMT Subject: serialNumber=c83682cdec02231ea25d90c3f9bdd7a02ddd71217a039455d966985a8573ac85, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:ce:97:81:15:97:fe:69:d1:a7:83:15:2c:f7: 71:3b:11:7d:a8:ef:a5:09:7f:cf:cc:c6:7a:9b:10: 28:a5:54:23:f3:c2:71:5a:00:38:4f:00:93:e8:da: 73:5f:9a:75:ce:b6:1a:e5:69:d2:65:27:20:1c:e4: 9b:d6:16:6b:3c:e6:fc:bb:2b:a3:8a:99:7d:28:80: 97:41:6c:cf:10:d8:fd:71:c7:8d:94:3e:53:50:56: 34:9d:1a:b0:35:27:bb:06:9a:78:91:42:23:95:b7: 3e:6f:86:d8:a3:99:d1:43:01:cf:02:ae:91:d6:13: 62:e4:09:93:b7:fa:c9:d6:54:98:fa:32:0d:48:b4: 55:f7:4e:47:e2:2a:7a:00:2a:b5:17:8e:70:cc:53: 0c:4a:73:d5:13:41:b6:00:6b:d9:2c:5b:20:b9:97: 8d:ae:06:7e:b4:44:a6:71:14:4e:b5:7d:4d:3d:f5: d3:dc:91:d4:a0:c0:80:9c:dd:80:83:d0:40:35:74: 52:f3:7b:32:7a:15:f5:17:f2:59:33:b9:17:fb:96: 32:65:19:06:d2:dc:f4:6f:79:71:be:b1:5f:c8:9b: f1:71:03:1e:c8:0d:29:d3:63:09:82:3b:2a:b4:0a: 56:db:86:70:b6:e6:e7:1b:d0:30:dd:36:2a:88:76: 7a:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:14:4E:58:4D:A2:DC:BC:A6:0C:AD:C9:0F:B1:0D:85:91:2E:71:E1 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2e26f451-3b85-4cba-bfdf-458c098d8f0c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.65.224.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:eb:75:bf:8e:cb:c8:c0:9c:71:41:f6:be:e1:63:8d:4e:d1: f2:a0:35:c1:7e:59:cf:d9:92:70:b3:10:08:59:23:3d:10:86: 14:64:be:96:ff:7a:d4:cb:f5:cc:e1:56:61:bc:4b:d7:14:98: d8:02:52:98:74:38:7d:0c:99:61:c5:45:8d:da:f7:d5:5c:80: 68:0d:07:47:59:75:a8:98:de:45:62:ca:b1:5d:51:22:90:23: 9e:8e:27:69:3c:4e:ef:a4:ea:8f:43:25:e7:e4:8f:8b:6a:dc: 13:31:d7:08:8b:e3:b7:48:85:a7:df:8f:46:43:3d:8a:94:55: 23:f0:61:53:15:a1:e5:0e:72:8c:db:ae:b5:7a:9f:e6:74:09: b5:4f:d2:1f:29:e2:4a:06:18:4f:a7:6b:90:d3:2a:c0:ac:2e: 63:d5:19:d0:79:ff:72:13:f8:5e:84:52:7d:a8:6b:4c:31:5b: f3:f7:83:38:5a:d1:7d:e3:3b:66:fa:2f:ff:ea:ef:35:ad:7c: 75:cf:37:98:67:4e:29:9a:88:d9:b7:22:88:36:12:1e:48:ee: 7c:e4:06:f4:d8:91:e6:8d:6c:2b:be:51:d5:e2:13:cf:f3:2f: cd:b9:96:bd:bb:47:fe:aa:12:8e:b3:b3:88:98:fc:34:9f:82: 3f:94:eb:98 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUU4oOuyEqrW/Cmkg7e9kfyXIw/RkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE5MTAwMDE0WhcNMjUxMTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BjODM2ODJjZGVjMDIyMzFlYTI1ZDkwYzNmOWJkZDdhMDJk ZGQ3MTIxN2EwMzk0NTVkOTY2OTg1YTg1NzNhYzg1MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdzpeBFZf+adGngxUs93E7EX2o76UJf8/MxnqbECilVCPz wnFaADhPAJPo2nNfmnXOthrladJlJyAc5JvWFms85vy7K6OKmX0ogJdBbM8Q2P1x x42UPlNQVjSdGrA1J7sGmniRQiOVtz5vhtijmdFDAc8CrpHWE2LkCZO3+snWVJj6 Mg1ItFX3TkfiKnoAKrUXjnDMUwxKc9UTQbYAa9ksWyC5l42uBn60RKZxFE61fU09 9dPckdSgwICc3YCD0EA1dFLzezJ6FfUX8lkzuRf7ljJlGQbS3PRveXG+sV/Im/Fx Ax7IDSnTYwmCOyq0ClbbhnC25ucb0DDdNiqIdnqPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUBxROWE2i3LymDK3JD7ENhZEuceEwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzJlMjZmNDUxLTNiODUtNGNiYS1iZmRmLTQ1OGMwOThkOGYwYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAASQeAwDQYJKoZIhvcNAQELBQADggEBAJrrdb+Oy8jAnHFB9r7hY41O0fKg NcF+Wc/ZknCzEAhZIz0QhhRkvpb/etTL9czhVmG8S9cUmNgCUph0OH0MmWHFRY3a 99VcgGgNB0dZdaiY3kViyrFdUSKQI56OJ2k8Tu+k6o9DJefkj4tq3BMx1wiL47dI haffj0ZDPYqUVSPwYVMVoeUOcozbrrV6n+Z0CbVP0h8p4koGGE+na5DTKsCsLmPV GdB5/3IT+F6EUn2oa0wxW/P3gzha0X3jO2b6L//q7zWtfHXPN5hnTimaiNm3Iog2 Eh5I7nzkBvTYkeaNbCu+UdXiE8/zL825lr27R/6qEo6zs4iY/DSfgj+U65g= -----END CERTIFICATE-----Generated at Mon Oct 20 11:01:28 2025 by rpki-client