$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3050829a-d797-4858-b5a3-5ebe945e75ca.roa File: 3050829a-d797-4858-b5a3-5ebe945e75ca.roa (raw, json) Hash identifier: LcNNdUCEE1idlzDUrNb3jmsbCP2To4NKli1BoJNV3s8= Subject key identifier: 4E:EB:69:CA:E3:2C:3A:25:E1:DF:FF:40:59:FB:94:6F:B0:3A:8C:D7 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 627E0BCC32A6F5B49B8D2F0ED5F0FACA13DF71B0 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3050829a-d797-4858-b5a3-5ebe945e75ca.roa Signing time: Sat 18 Oct 2025 08:03:30 +0000 ROA not before: Sat 18 Oct 2025 08:03:30 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.161.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:7e:0b:cc:32:a6:f5:b4:9b:8d:2f:0e:d5:f0:fa:ca:13:df:71:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 18 08:03:30 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=dbb0429a496aec87f04b2597d0780b234c808e70085eeb9c4b86aaea11410525, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:e1:b0:36:ef:2e:bd:34:9b:f4:c4:b2:f7:c6: d9:65:a7:ea:e1:ab:48:85:b2:de:9c:a3:16:fe:6a: bc:03:41:0c:d7:76:d0:1b:e4:e2:d4:78:97:e5:1b: 86:03:e2:20:af:f2:0f:c0:9c:f3:21:6b:83:f9:74: 9a:5a:c1:24:b0:e6:29:02:51:6e:8c:87:2d:94:41: 54:ef:ff:59:8f:7e:2c:22:2b:35:f3:13:65:8b:9a: 7a:f0:01:a8:68:5a:bb:91:39:d3:5c:d9:97:f7:b3: f4:d5:1d:39:d9:0d:a1:46:d4:51:48:f8:56:ed:9e: 60:86:06:3b:01:ea:29:09:ea:eb:8b:a8:74:cc:56: c2:dd:18:73:bc:50:86:b1:65:d7:e4:40:32:1f:29: 20:e5:48:8d:5b:8c:f5:38:c7:29:50:68:d4:6e:d9: ed:cb:97:07:41:76:28:1a:83:9e:c5:7d:08:81:39: aa:8c:f3:80:a7:40:48:38:ff:bc:05:ed:71:04:d8: c0:d1:52:f5:98:b0:90:e4:d5:e5:32:a4:53:10:dc: f5:f3:f8:fd:5d:87:7e:f7:17:df:19:02:19:34:8d: b0:fb:b3:ad:34:3f:23:ae:a7:47:91:4a:30:4d:74: 9c:15:9e:64:fd:5a:88:2a:2c:3b:03:df:7b:41:d1: 57:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:EB:69:CA:E3:2C:3A:25:E1:DF:FF:40:59:FB:94:6F:B0:3A:8C:D7 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3050829a-d797-4858-b5a3-5ebe945e75ca.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.161.251.0/24 Signature Algorithm: sha256WithRSAEncryption ac:a1:cc:d0:97:a2:c0:39:f3:09:58:8e:18:e6:f2:16:32:91: 24:c0:23:fc:55:4b:b9:57:0c:87:4d:91:eb:ce:47:0e:b7:2c: 91:f2:e0:e0:69:24:43:e0:16:9c:db:21:91:cf:cb:d8:a6:e9: 68:98:04:2b:97:25:92:47:5c:a1:28:c4:5a:0f:1b:0b:3b:a9: 6e:fc:80:43:0a:7d:c3:38:bc:c9:b4:30:94:10:33:7c:54:09: 36:53:ae:8c:75:93:5a:15:c6:67:50:53:d3:f0:ec:c5:7e:f3: 31:64:21:a1:e6:cb:5e:93:33:59:05:41:6b:40:2b:12:af:34: e3:5a:89:67:63:16:97:d1:66:5e:a8:c2:31:b1:76:73:df:ac: 95:c9:df:15:aa:dd:ce:30:27:2e:ac:5f:07:31:09:18:77:a0: a2:26:2c:3d:ed:41:7c:4a:18:87:3f:52:cc:5e:b6:53:49:ff: 4d:31:b2:a6:34:f5:d5:d8:98:e2:c1:8d:bd:a1:5e:fa:32:7e: 77:81:94:c3:ab:6d:c6:e0:8a:76:1b:0a:fe:a5:80:f8:57:00: 61:b4:e9:d0:96:ba:ed:f9:00:c7:2d:11:3b:5f:67:9a:cb:7f: 04:d2:dc:47:38:7c:96:f5:53:20:61:a7:47:f6:d3:ea:9c:00: 32:88:15:d0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYn4LzDKm9bSbjS8O1fD6yhPfcbAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE4MDgwMzMwWhcNMjUxMTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BkYmIwNDI5YTQ5NmFlYzg3ZjA0YjI1OTdkMDc4MGIyMzRj ODA4ZTcwMDg1ZWViOWM0Yjg2YWFlYTExNDEwNTI1MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCi4bA27y69NJv0xLL3xtllp+rhq0iFst6coxb+arwDQQzX dtAb5OLUeJflG4YD4iCv8g/AnPMha4P5dJpawSSw5ikCUW6Mhy2UQVTv/1mPfiwi KzXzE2WLmnrwAahoWruROdNc2Zf3s/TVHTnZDaFG1FFI+FbtnmCGBjsB6ikJ6uuL qHTMVsLdGHO8UIaxZdfkQDIfKSDlSI1bjPU4xylQaNRu2e3LlwdBdigag57FfQiB OaqM84CnQEg4/7wF7XEE2MDRUvWYsJDk1eUypFMQ3PXz+P1dh373F98ZAhk0jbD7 s600PyOup0eRSjBNdJwVnmT9WogqLDsD33tB0VfhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUTutpyuMsOiXh3/9AWfuUb7A6jNcwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzMwNTA4MjlhLWQ3OTctNDg1OC1iNWEzLTVlYmU5NDVlNzVjYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAASofswDQYJKoZIhvcNAQELBQADggEBAKyhzNCXosA58wlYjhjm8hYykSTA I/xVS7lXDIdNkevORw63LJHy4OBpJEPgFpzbIZHPy9im6WiYBCuXJZJHXKEoxFoP Gws7qW78gEMKfcM4vMm0MJQQM3xUCTZTrox1k1oVxmdQU9Pw7MV+8zFkIaHmy16T M1kFQWtAKxKvNONaiWdjFpfRZl6owjGxdnPfrJXJ3xWq3c4wJy6sXwcxCRh3oKIm LD3tQXxKGIc/UsxetlNJ/00xsqY09dXYmOLBjb2hXvoyfneBlMOrbcbginYbCv6l gPhXAGG06dCWuu35AMctETtfZ5rLfwTS3Ec4fJb1UyBhp0f20+qcADKIFdA= -----END CERTIFICATE-----Generated at Mon Oct 20 03:07:45 2025 by rpki-client