$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3ddd5ba2-e084-4da7-976e-b35dc1256495.roa File: 3ddd5ba2-e084-4da7-976e-b35dc1256495.roa (raw, json) Hash identifier: 1Dpz+3b4XPr1N1ShOENIkJ2rDK4oR73SCjLXtNZsD+M= Subject key identifier: C4:8F:E9:75:2F:54:70:7E:71:66:C8:9F:8A:8B:45:95:28:1F:09:3B Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 764DCC7DB5C833B6DB5BE766934F34CD920C7B Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3ddd5ba2-e084-4da7-976e-b35dc1256495.roa Signing time: Sat 18 Oct 2025 07:13:08 +0000 ROA not before: Sat 18 Oct 2025 07:13:08 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.165.72.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:4d:cc:7d:b5:c8:33:b6:db:5b:e7:66:93:4f:34:cd:92:0c:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 18 07:13:08 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=d17683214841f24c60508913235c34aeb3562196bb2ffc74589b7154903bd940, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:92:55:78:8c:e6:8a:cc:ae:1d:c9:e9:c2:69: 9d:20:d4:6a:05:f1:63:c5:b8:8b:49:83:3f:da:fe: af:61:9b:e0:7e:ff:93:eb:f4:91:60:a4:f0:3b:6a: 7e:4a:d4:52:6e:75:e1:f4:f5:57:a1:f8:7a:62:b1: 5e:c8:23:ec:74:81:72:e8:f7:b4:26:b9:eb:3e:8a: bc:e3:b9:59:a6:07:f6:23:dd:2e:5b:ab:bb:61:84: 12:c0:f7:42:7b:dc:a4:2a:86:1c:1c:be:c7:04:9e: 21:31:d0:f4:9c:60:67:b2:ba:9f:9b:05:04:4d:ab: fb:2d:7d:a3:31:97:a2:27:b9:f1:12:63:80:f9:b0: 29:57:50:1e:1a:71:f3:28:b8:a5:76:f5:d8:35:3d: 9a:93:1e:4d:94:f9:cd:70:a9:81:8c:3f:f0:90:04: cd:e5:5c:f5:e0:44:ef:35:ee:6c:2e:32:2e:e1:bd: a0:31:f0:38:63:fd:74:59:55:ec:e4:bf:45:2a:1d: fa:b8:24:b5:60:1b:82:12:21:18:48:21:ed:d3:d0: 3a:d4:20:a6:e9:f1:66:82:5f:76:a0:f4:22:32:b3: 5e:4f:fc:a4:9d:f7:c5:d7:49:13:a8:ea:bd:81:20: 2e:c5:97:56:3c:6a:93:90:c5:56:fb:87:21:2d:6a: c2:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:8F:E9:75:2F:54:70:7E:71:66:C8:9F:8A:8B:45:95:28:1F:09:3B X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3ddd5ba2-e084-4da7-976e-b35dc1256495.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.165.72.0/22 Signature Algorithm: sha256WithRSAEncryption 1a:93:1d:8f:4b:86:e8:34:46:f4:1b:cf:ca:46:cd:c5:b3:44: 53:7b:40:e8:22:d7:36:b0:0a:01:3d:9a:bf:e6:14:1c:c5:47: f8:d1:ca:93:0d:42:8e:9e:3f:12:b8:dc:b0:dd:7e:e0:c2:9e: 60:71:09:e9:cf:ab:17:32:9f:01:90:19:bf:c0:6e:cc:e2:49: b4:1d:2f:d8:42:14:fd:77:0c:7b:e4:1f:2f:9c:01:15:af:8f: 59:72:e5:2f:b7:a6:0e:66:1e:96:22:46:9a:b4:a2:2a:3c:72: b9:54:cc:a9:25:e3:ed:87:e7:4a:f3:46:a1:ef:a1:c9:0d:7d: 44:01:5b:68:9d:4b:5b:09:64:88:2a:27:d9:07:26:ed:b5:e8: d2:5f:01:99:06:cb:32:bd:71:2b:db:a8:63:42:2d:43:d9:a0: 76:68:5c:dc:3e:22:5d:33:10:76:c3:55:ba:61:20:ff:41:cf: 4c:af:d1:ed:14:1f:53:5d:e7:68:b4:51:cc:c9:d5:fd:39:ae: 24:5f:67:30:20:e9:62:f0:44:54:17:fc:81:13:b1:a9:8e:c8: 32:c1:24:4b:43:f0:fb:bc:2a:d2:21:49:50:77:2f:d7:54:9f: 7c:e5:e4:19:9d:d9:04:9b:ee:e6:8f:ed:5f:9a:fb:e3:e2:54: 8d:91:9f:2c -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITdk3MfbXIM7bbW+dmk080zZIMezANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzJkZjZmM2IzYTM0YjYzODZkMWEzMmQ4ZjRmYTMxNzhlZjMx ODg3ZDhiNDI4ZGZhYTQ3NjAeFw0yNTEwMTgwNzEzMDhaFw0yNTExMjIyMzU5NTla MHoxSTBHBgNVBAUTQGQxNzY4MzIxNDg0MWYyNGM2MDUwODkxMzIzNWMzNGFlYjM1 NjIxOTZiYjJmZmM3NDU4OWI3MTU0OTAzYmQ5NDAxLTArBgNVBAMTJDVmMjc2MDQ1 LTViOWYtNDVlZi05MjNkLWYzZmNlMjRhNjIyNTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAJySVXiM5orMrh3J6cJpnSDUagXxY8W4i0mDP9r+r2Gb4H7/ k+v0kWCk8DtqfkrUUm514fT1V6H4emKxXsgj7HSBcuj3tCa56z6KvOO5WaYH9iPd Lluru2GEEsD3QnvcpCqGHBy+xwSeITHQ9JxgZ7K6n5sFBE2r+y19ozGXoie58RJj gPmwKVdQHhpx8yi4pXb12DU9mpMeTZT5zXCpgYw/8JAEzeVc9eBE7zXubC4yLuG9 oDHwOGP9dFlV7OS/RSod+rgktWAbghIhGEgh7dPQOtQgpunxZoJfdqD0IjKzXk/8 pJ33xddJE6jqvYEgLsWXVjxqk5DFVvuHIS1qwoECAwEAAaOCArEwggKtMB0GA1Ud DgQWBBTEj+l1L1RwfnFmyJ+Ki0WVKB8JOzAfBgNVHSMEGDAWgBQlrdNCsB63pY6t GZAmiLVLP4H0uDAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzg1MWNlZjE3LTEz MmEtNDMzNy1iN2QxLWJmMTZhNTJmZmQwMy9kZjZmM2IzYTM0YjYzODZkMWEzMmQ4 ZjRmYTMxNzhlZjMxODg3ZDhiNDI4ZGZhYTQ3Ni5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9mNzAzNjk2ZS1lNDdiLTRjMjAtYmQ5My02Zjgw OTA0ZTQyZDIvM2RkZDViYTItZTA4NC00ZGE3LTk3NmUtYjM1ZGMxMjU2NDk1LnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMt NmY4MDkwNGU0MmQyL3RqaHRHakxZOVBveGVPOHhpSDJMUW8zNnBIWS5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAhKlSDANBgkqhkiG9w0BAQsFAAOCAQEAGpMdj0uG6DRG9BvPykbNxbNEU3tA 6CLXNrAKAT2av+YUHMVH+NHKkw1Cjp4/ErjcsN1+4MKeYHEJ6c+rFzKfAZAZv8Bu zOJJtB0v2EIU/XcMe+QfL5wBFa+PWXLlL7emDmYeliJGmrSiKjxyuVTMqSXj7Yfn SvNGoe+hyQ19RAFbaJ1LWwlkiCon2Qcm7bXo0l8BmQbLMr1xK9uoY0ItQ9mgdmhc 3D4iXTMQdsNVumEg/0HPTK/R7RQfU13naLRRzMnV/TmuJF9nMCDpYvBEVBf8gROx qY7IMsEkS0Pw+7wq0iFJUHcv11SffOXkGZ3ZBJvu5o/tX5r74+JUjZGfLA== -----END CERTIFICATE-----Generated at Mon Oct 20 21:11:41 2025 by rpki-client