$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/42e5bfbd-5e9f-47be-ad3f-b2cc7d47d8f3.roa File: 42e5bfbd-5e9f-47be-ad3f-b2cc7d47d8f3.roa (raw, json) Hash identifier: 4Eei+PQTAyB3KX0grQaMeta/2rBFAHJx/6K3LJnrff4= Subject key identifier: 16:44:C1:1F:EE:32:C6:7D:97:F2:42:C8:1E:E1:A2:5B:8D:F9:DE:E9 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 7E98771B7D2126CA3BD526905458FE881EC03665 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/42e5bfbd-5e9f-47be-ad3f-b2cc7d47d8f3.roa Signing time: Sat 18 Oct 2025 11:51:05 +0000 ROA not before: Sat 18 Oct 2025 11:51:05 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.160.182.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:98:77:1b:7d:21:26:ca:3b:d5:26:90:54:58:fe:88:1e:c0:36:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 18 11:51:05 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=902903bfcb58009f0eaac47914fce8591c63e2fccb2939193e04e8a550c00823, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:02:fb:3f:b7:a2:a4:4e:46:e4:0a:80:14:65: 3f:0d:25:66:b1:48:8d:82:27:e5:02:22:d8:81:4e: 4f:68:65:e1:e7:73:4b:c6:7f:b5:1e:75:36:a2:00: d5:09:c0:4c:03:60:34:bb:10:b8:65:53:1e:60:d0: f6:81:30:0c:fc:d6:0c:88:39:68:76:1d:5e:ac:ad: 52:80:dc:dc:7a:d0:df:93:43:8f:c3:c0:bb:3f:9c: fe:cd:8e:56:7f:0b:77:b1:3d:28:58:8f:71:18:5c: 32:97:a1:6a:12:fc:ae:ef:71:35:25:31:1d:01:07: 29:6c:5d:aa:9b:4b:95:9a:b2:63:ca:08:08:9a:7a: a1:b4:1a:a3:eb:12:92:fb:ac:05:ac:b0:36:78:57: 33:81:94:2e:4c:e0:fb:cf:db:a6:a2:96:77:66:14: 64:0c:4d:ea:79:f1:39:0d:e2:ab:de:9b:96:4e:ba: 72:8c:c2:1c:c6:4f:bb:28:c9:be:cc:b6:e0:4f:ac: 68:f7:d3:76:e7:d4:5a:9c:9f:57:ef:41:78:20:b1: 1e:4a:06:eb:d0:3a:4f:eb:5d:40:1e:cc:a5:57:52: e9:6f:5f:c9:c4:9a:09:1a:b1:bc:13:f7:33:de:98: 2c:2b:39:86:bc:06:33:61:3d:3d:2d:5d:42:1c:ac: 07:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:44:C1:1F:EE:32:C6:7D:97:F2:42:C8:1E:E1:A2:5B:8D:F9:DE:E9 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/42e5bfbd-5e9f-47be-ad3f-b2cc7d47d8f3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.160.182.0/24 Signature Algorithm: sha256WithRSAEncryption a1:0a:ec:b6:07:99:79:82:4f:c6:21:be:2b:9b:d4:69:5f:d0: da:50:1f:b0:cf:66:54:d8:a9:8f:8e:13:14:a2:4c:42:16:f1: 5d:25:c2:2e:9e:b9:c4:2d:ab:4a:7d:80:53:0c:e9:d7:6c:78: cb:0b:6f:25:f9:ad:5f:40:f6:ae:6d:1a:48:ca:84:c6:d1:34: 32:a7:64:d4:f9:ce:bf:f7:51:0e:a3:57:be:99:06:87:b4:13: b9:ac:d5:ee:75:6c:96:25:20:3c:3c:9f:93:ce:e1:3e:93:fe: d1:d2:9c:29:e7:f3:2b:06:d6:47:a2:bf:26:4a:da:7e:a5:c2: 1b:0a:a8:eb:e6:1a:02:d8:92:83:0d:d3:cf:40:02:05:54:96: e8:21:c3:f7:ba:34:fa:76:09:ed:61:5d:ec:81:2c:ae:4d:51: 4a:ce:15:b3:bd:ca:7e:e6:f9:b2:1d:bf:f1:38:e7:81:3b:f5: 06:6a:a1:fe:ab:29:c6:67:7c:4a:a4:85:f7:68:86:6f:82:fc: 97:ef:c5:72:87:5a:98:81:b0:1a:f0:15:34:f6:5d:24:38:10: 16:b9:5d:a4:2c:6e:0e:4b:d7:b3:87:86:a6:f0:f5:db:3c:c4: 82:a0:d6:0a:34:b4:80:01:69:a5:df:81:fe:72:b4:09:e0:73: b0:36:22:43 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfph3G30hJso71SaQVFj+iB7ANmUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE4MTE1MTA1WhcNMjUxMTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A5MDI5MDNiZmNiNTgwMDlmMGVhYWM0NzkxNGZjZTg1OTFj NjNlMmZjY2IyOTM5MTkzZTA0ZThhNTUwYzAwODIzMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFAvs/t6KkTkbkCoAUZT8NJWaxSI2CJ+UCItiBTk9oZeHn c0vGf7UedTaiANUJwEwDYDS7ELhlUx5g0PaBMAz81gyIOWh2HV6srVKA3Nx60N+T Q4/DwLs/nP7NjlZ/C3exPShYj3EYXDKXoWoS/K7vcTUlMR0BBylsXaqbS5WasmPK CAiaeqG0GqPrEpL7rAWssDZ4VzOBlC5M4PvP26ailndmFGQMTep58TkN4qvem5ZO unKMwhzGT7soyb7MtuBPrGj303bn1Fqcn1fvQXggsR5KBuvQOk/rXUAezKVXUulv X8nEmgkasbwT9zPemCwrOYa8BjNhPT0tXUIcrAdDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUFkTBH+4yxn2X8kLIHuGiW4353ukwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzQyZTViZmJkLTVlOWYtNDdiZS1hZDNmLWIyY2M3ZDQ3ZDhmMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAASoLYwDQYJKoZIhvcNAQELBQADggEBAKEK7LYHmXmCT8Yhviub1Glf0NpQ H7DPZlTYqY+OExSiTEIW8V0lwi6eucQtq0p9gFMM6ddseMsLbyX5rV9A9q5tGkjK hMbRNDKnZNT5zr/3UQ6jV76ZBoe0E7ms1e51bJYlIDw8n5PO4T6T/tHSnCnn8ysG 1keivyZK2n6lwhsKqOvmGgLYkoMN089AAgVUlughw/e6NPp2Ce1hXeyBLK5NUUrO FbO9yn7m+bIdv/E454E79QZqof6rKcZnfEqkhfdohm+C/JfvxXKHWpiBsBrwFTT2 XSQ4EBa5XaQsbg5L17OHhqbw9ds8xIKg1go0tIABaaXfgf5ytAngc7A2IkM= -----END CERTIFICATE-----Generated at Mon Oct 20 02:57:04 2025 by rpki-client