$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3caaf55d-1377-474e-8a77-e81a50c1b696.roa File: 3caaf55d-1377-474e-8a77-e81a50c1b696.roa (raw, json) Hash identifier: j4JokJ3Mesk0fR7tzGMxlD15qM0WHCt7wcazKl0MStM= Subject key identifier: 08:02:DE:94:1E:04:23:24:05:D7:E8:8A:E2:C4:1E:6A:FA:CD:1C:4E Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 496DAB6E73B7B53E9585094CD8660D4B6BEED048 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3caaf55d-1377-474e-8a77-e81a50c1b696.roa Signing time: Sat 18 Oct 2025 20:01:21 +0000 ROA not before: Sat 18 Oct 2025 20:01:21 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.164.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:6d:ab:6e:73:b7:b5:3e:95:85:09:4c:d8:66:0d:4b:6b:ee:d0:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 18 20:01:21 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=d536abafba4cf5661858f9bbb41d9d5952cbf18e53b20dcb50382ed88b20d654, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:e4:34:2c:1e:a2:6a:8b:71:4e:c3:ca:62:6c: ac:84:bf:7b:e3:96:e1:d3:10:01:b6:80:c1:37:3a: c0:07:5d:5b:61:46:13:fa:89:72:82:b8:40:0a:c0: a8:92:70:1f:2d:c9:6a:c9:89:3f:96:ca:c0:cd:0d: 5f:82:2f:66:11:d6:97:3c:89:c2:d1:a8:6b:06:32: e6:3b:f8:53:61:00:fa:4c:7a:4e:75:b9:ae:52:ab: f3:cc:a7:58:ec:4d:f4:d1:8a:a3:45:9d:17:4e:e6: 62:8d:fd:cb:c6:2d:9c:58:d4:d8:b8:e7:95:6a:e5: 24:e9:ef:9e:5b:45:8c:13:ba:67:20:55:f2:53:39: ef:a4:19:30:63:e1:e3:02:4e:c8:c5:39:6b:ae:5e: 4c:88:16:80:a4:bd:49:39:95:9d:b6:c7:35:db:81: 59:e2:38:fc:ae:a6:62:2f:a5:b0:39:f1:d7:b6:c8: 29:e6:0c:2e:09:6c:3f:8f:3d:9a:13:1d:ad:50:ba: 90:15:8e:05:9b:07:c1:9e:bd:3c:27:72:8c:ef:7d: f8:29:29:d8:63:91:29:a4:f1:5f:2d:c0:a3:d1:07: 75:18:51:1e:06:0d:18:dc:44:46:9c:a5:d4:49:5e: d1:ab:6c:d5:d5:fe:94:27:03:60:24:87:1e:a5:21: a4:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:02:DE:94:1E:04:23:24:05:D7:E8:8A:E2:C4:1E:6A:FA:CD:1C:4E X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3caaf55d-1377-474e-8a77-e81a50c1b696.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.164.248.0/24 Signature Algorithm: sha256WithRSAEncryption 79:11:f6:45:74:5b:50:4f:33:25:e7:4e:be:67:e0:b0:0e:5a: e1:a9:3b:46:5f:77:44:bf:7d:76:0f:4d:91:6b:87:db:c7:fb: f5:0b:63:f0:06:2c:54:5a:71:51:57:c9:ff:b7:6d:eb:b9:b9: 61:41:40:63:8f:e3:1b:08:36:8d:a3:7e:4f:d3:58:b3:98:db: 07:cb:01:0a:f7:86:dd:27:82:9b:0f:40:7b:d2:5d:25:d0:1e: 39:3c:26:80:ae:3f:4b:1b:47:5e:c1:f5:07:f5:47:4a:24:2a: 2d:db:e4:26:2d:fa:7f:78:53:0b:e1:4a:af:1f:06:76:36:03: 87:f4:cf:01:28:46:66:5b:e6:50:f3:09:0f:4b:18:a6:08:ce: 97:37:d1:6a:94:64:a7:3a:ff:25:0a:00:0b:c8:d7:98:50:1b: 1a:16:30:9b:14:ca:a8:47:cb:bd:cb:1e:6a:46:fc:79:ae:ca: 4b:e2:83:27:98:72:25:e1:cd:f7:de:b7:d0:b8:95:ec:b8:3f: bf:35:e7:7a:83:4c:a8:9a:d7:ec:78:95:e3:bd:08:ba:e1:a7: 44:49:80:ac:a4:8b:ab:50:47:61:64:93:be:9b:1c:b2:a8:f9: a4:7e:72:00:a2:67:2d:31:f8:92:c4:83:ed:46:8a:6f:fd:70: fe:6d:2d:7f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSW2rbnO3tT6VhQlM2GYNS2vu0EgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE4MjAwMTIxWhcNMjUxMTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BkNTM2YWJhZmJhNGNmNTY2MTg1OGY5YmJiNDFkOWQ1OTUy Y2JmMThlNTNiMjBkY2I1MDM4MmVkODhiMjBkNjU0MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCV5DQsHqJqi3FOw8pibKyEv3vjluHTEAG2gME3OsAHXVth RhP6iXKCuEAKwKiScB8tyWrJiT+WysDNDV+CL2YR1pc8icLRqGsGMuY7+FNhAPpM ek51ua5Sq/PMp1jsTfTRiqNFnRdO5mKN/cvGLZxY1Ni455Vq5STp755bRYwTumcg VfJTOe+kGTBj4eMCTsjFOWuuXkyIFoCkvUk5lZ22xzXbgVniOPyupmIvpbA58de2 yCnmDC4JbD+PPZoTHa1QupAVjgWbB8GevTwncozvffgpKdhjkSmk8V8twKPRB3UY UR4GDRjcREacpdRJXtGrbNXV/pQnA2Akhx6lIaRpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUCALelB4EIyQF1+iK4sQeavrNHE4wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzNjYWFmNTVkLTEzNzctNDc0ZS04YTc3LWU4MWE1MGMxYjY5Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAASpPgwDQYJKoZIhvcNAQELBQADggEBAHkR9kV0W1BPMyXnTr5n4LAOWuGp O0Zfd0S/fXYPTZFrh9vH+/ULY/AGLFRacVFXyf+3beu5uWFBQGOP4xsINo2jfk/T WLOY2wfLAQr3ht0ngpsPQHvSXSXQHjk8JoCuP0sbR17B9Qf1R0okKi3b5CYt+n94 UwvhSq8fBnY2A4f0zwEoRmZb5lDzCQ9LGKYIzpc30WqUZKc6/yUKAAvI15hQGxoW MJsUyqhHy73LHmpG/HmuykvigyeYciXhzffet9C4ley4P78153qDTKia1+x4leO9 CLrhp0RJgKyki6tQR2Fkk76bHLKo+aR+cgCiZy0x+JLEg+1Gim/9cP5tLX8= -----END CERTIFICATE-----Generated at Mon Oct 20 06:09:38 2025 by rpki-client