$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/42f4a988-9548-4458-ae71-26f39fb8ceb6.roa File: 42f4a988-9548-4458-ae71-26f39fb8ceb6.roa (raw, json) Hash identifier: qpKFZk11+so8cs7cJP8w1H2Kh3BLwTrFXu8ncSjz90Q= Subject key identifier: D4:6B:4D:46:DC:53:5C:20:82:6B:17:66:FA:36:5C:1D:EF:6D:29:A2 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 1B661FF7E8AC4043B8502F4466D4FC55E5552D04 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/42f4a988-9548-4458-ae71-26f39fb8ceb6.roa Signing time: Mon 13 Oct 2025 16:51:21 +0000 ROA not before: Mon 13 Oct 2025 16:51:21 +0000 ROA not after: Mon 17 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.158.150.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:66:1f:f7:e8:ac:40:43:b8:50:2f:44:66:d4:fc:55:e5:55:2d:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 13 16:51:21 2025 GMT Not After : Nov 17 23:59:59 2025 GMT Subject: serialNumber=ae9d789ab9261af6a618551c3298990ab1aa15eaea49d9c2faa7d2bc148af6ac, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:23:f3:3b:91:87:aa:42:a7:01:54:26:73:f7: a7:37:83:eb:8d:1a:25:7a:35:6f:c1:bc:0b:cb:3f: c2:bf:71:70:72:e8:95:0c:ae:5a:11:d6:e1:2a:39: 78:48:ef:df:b8:fd:e5:4d:9b:79:46:68:91:37:d1: 1c:15:3b:4c:d1:68:67:b5:c0:c7:da:fc:8b:cd:9e: d2:c6:16:dc:49:d2:4e:b5:c4:9c:c8:a5:3b:85:cd: cb:68:69:b1:37:84:ae:ff:2a:b8:ff:2e:df:6e:bc: d3:17:dd:cc:43:b3:35:dc:2a:cc:d0:1d:01:bc:6f: d9:df:1d:34:5b:76:c1:a9:fd:8b:7d:ea:29:2e:4a: eb:aa:b5:1e:c4:18:eb:23:8f:72:b5:fe:42:00:86: 63:66:ee:1a:66:f9:19:2d:74:2c:7b:84:a7:87:38: ec:0a:8f:59:9e:ce:a2:82:34:76:7f:5d:2a:1c:3d: 43:88:b6:69:60:d3:82:d4:d0:00:13:0c:3c:50:2f: 01:c5:7e:27:13:35:b6:89:ce:22:6c:59:e3:ac:7a: c7:e6:86:21:b2:c7:3e:88:c5:a4:34:7f:8b:30:af: 82:f6:f6:b6:52:0a:23:f8:93:d3:97:82:78:53:a7: da:98:98:da:15:3e:71:db:96:cb:49:01:6f:0f:67: ca:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:6B:4D:46:DC:53:5C:20:82:6B:17:66:FA:36:5C:1D:EF:6D:29:A2 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/42f4a988-9548-4458-ae71-26f39fb8ceb6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.158.150.0/24 Signature Algorithm: sha256WithRSAEncryption 21:5a:60:8c:03:a3:a4:df:62:fe:41:cf:be:75:0f:28:65:44: db:8c:20:7f:43:8c:22:4d:ef:11:bd:e7:aa:e2:13:6d:de:72: 51:01:95:68:93:9c:33:d9:17:b4:1a:db:9c:ca:ec:f2:76:f7: 7e:a2:f3:b9:e8:9d:08:51:7b:f7:d6:b0:43:c4:b4:be:74:bb: 1d:78:73:64:99:c2:c1:9b:3f:cf:83:fc:50:a5:5c:d2:95:4b: 5c:0b:92:01:6d:22:ce:56:32:7a:a0:29:de:c2:2a:56:bc:d1: dc:71:f7:c1:ba:78:07:16:a0:f7:82:78:04:53:ce:13:8d:78: 33:e4:3e:c9:9f:0e:7e:3d:1c:dc:04:f0:78:bf:50:ac:5c:33: c9:a8:6a:8a:30:d9:3f:d6:6f:89:85:3d:3f:2b:16:5b:5a:69: c1:66:f0:8d:94:21:30:de:a7:3f:d1:14:97:71:d5:51:31:f3: a5:48:70:e1:37:49:de:d7:3a:c5:65:51:51:e8:26:7c:8e:f6: d2:18:45:cf:7a:19:90:e1:5e:7d:6d:10:a5:e8:66:b6:f0:49: 2a:e0:1d:b5:b9:d0:f4:4e:80:0a:27:b7:20:49:25:c0:99:30: 9a:a1:02:68:ee:0a:74:6a:39:c9:8d:90:91:f4:76:55:e2:85: 36:e3:b8:22 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUG2Yf9+isQEO4UC9EZtT8VeVVLQQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDEzMTY1MTIxWhcNMjUxMTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BhZTlkNzg5YWI5MjYxYWY2YTYxODU1MWMzMjk4OTkwYWIx YWExNWVhZWE0OWQ5YzJmYWE3ZDJiYzE0OGFmNmFjMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDvI/M7kYeqQqcBVCZz96c3g+uNGiV6NW/BvAvLP8K/cXBy 6JUMrloR1uEqOXhI79+4/eVNm3lGaJE30RwVO0zRaGe1wMfa/IvNntLGFtxJ0k61 xJzIpTuFzctoabE3hK7/Krj/Lt9uvNMX3cxDszXcKszQHQG8b9nfHTRbdsGp/Yt9 6ikuSuuqtR7EGOsjj3K1/kIAhmNm7hpm+RktdCx7hKeHOOwKj1mezqKCNHZ/XSoc PUOItmlg04LU0AATDDxQLwHFficTNbaJziJsWeOsesfmhiGyxz6IxaQ0f4swr4L2 9rZSCiP4k9OXgnhTp9qYmNoVPnHblstJAW8PZ8rhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU1GtNRtxTXCCCaxdm+jZcHe9tKaIwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzQyZjRhOTg4LTk1NDgtNDQ1OC1hZTcxLTI2ZjM5ZmI4Y2ViNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAPnpYwDQYJKoZIhvcNAQELBQADggEBACFaYIwDo6TfYv5Bz751DyhlRNuM IH9DjCJN7xG956riE23eclEBlWiTnDPZF7Qa25zK7PJ2936i87nonQhRe/fWsEPE tL50ux14c2SZwsGbP8+D/FClXNKVS1wLkgFtIs5WMnqgKd7CKla80dxx98G6eAcW oPeCeARTzhONeDPkPsmfDn49HNwE8Hi/UKxcM8moaoow2T/Wb4mFPT8rFltaacFm 8I2UITDepz/RFJdx1VEx86VIcOE3Sd7XOsVlUVHoJnyO9tIYRc96GZDhXn1tEKXo ZrbwSSrgHbW50PROgAontyBJJcCZMJqhAmjuCnRqOcmNkJH0dlXihTbjuCI= -----END CERTIFICATE-----Generated at Mon Oct 20 06:06:39 2025 by rpki-client