$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/44fadc4f-6a09-4994-bbaf-8604606c9ac8.roa File: 44fadc4f-6a09-4994-bbaf-8604606c9ac8.roa (raw, json) Hash identifier: SG66/WCnczsI9WAjIKDzZyfInvhVizWaLUCpgCKUKuY= Subject key identifier: 08:07:3B:AF:A3:27:2E:2A:00:41:1A:24:0F:F6:E5:D8:3A:C2:D0:14 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 64321B1B5697F998FB46AAF7A3F2DCF24924CF08 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/44fadc4f-6a09-4994-bbaf-8604606c9ac8.roa Signing time: Sun 19 Oct 2025 11:33:46 +0000 ROA not before: Sun 19 Oct 2025 11:33:46 +0000 ROA not after: Sun 23 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.64.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:32:1b:1b:56:97:f9:98:fb:46:aa:f7:a3:f2:dc:f2:49:24:cf:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 19 11:33:46 2025 GMT Not After : Nov 23 23:59:59 2025 GMT Subject: serialNumber=b02745bd9049aee36e82e4c4e4eb9dea165d24b93280842067c1f3c74c526e48, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:eb:5e:5a:ff:40:fa:de:48:98:b9:d3:f0:97: 1c:75:38:bc:46:df:e8:02:ae:f6:2f:d1:9a:26:32: 1f:8e:f5:13:89:e4:0a:dd:fe:30:bb:da:11:e0:42: 97:03:71:8c:c5:2e:2f:1e:ca:25:ea:ba:81:a9:89: ea:c2:b9:91:37:70:e4:92:2c:f6:c6:38:4c:56:53: 3b:68:cb:0a:f8:68:fb:42:f5:81:3d:af:8c:74:aa: db:7f:47:38:15:dc:a8:94:77:e7:1e:76:3f:3a:25: ac:c1:5b:bb:07:9e:ee:3d:f7:8b:2c:2c:a3:17:59: 75:13:24:48:12:05:d1:c4:a7:02:d5:70:79:a6:69: ff:4e:0e:fc:c3:97:18:0a:57:12:77:b0:8a:29:74: 20:5b:25:b6:47:06:66:4c:e5:bb:cb:f4:32:64:8b: 52:09:9a:37:b5:71:c7:24:57:45:9d:28:ea:9b:dd: 3c:66:8f:5b:69:ff:cc:0c:54:f3:90:e4:84:43:6e: 36:a4:6e:3d:88:b3:46:32:08:f0:6f:22:46:d4:a3: 1e:2a:e7:45:ee:d7:6b:47:78:bc:cf:f4:fb:55:97: d0:16:d9:5c:19:6c:36:af:65:1b:b6:32:5e:c7:01: dc:f4:c3:d6:41:0e:74:f5:d8:4a:24:e8:24:62:21: e9:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:07:3B:AF:A3:27:2E:2A:00:41:1A:24:0F:F6:E5:D8:3A:C2:D0:14 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/44fadc4f-6a09-4994-bbaf-8604606c9ac8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.64.0.0/17 Signature Algorithm: sha256WithRSAEncryption 68:ec:58:95:a9:45:1f:a8:02:a8:8e:37:57:55:36:3f:8b:d1: 8a:a7:de:e4:fe:0c:8a:36:d0:52:fb:cb:40:ec:db:42:63:65: 64:a1:4b:e6:24:47:47:31:3d:a9:16:37:38:59:e0:63:65:2f: 65:98:08:3d:4c:cf:53:47:c5:98:ce:8f:84:6b:2b:18:1a:93: 11:f6:68:d0:05:dc:36:e6:d8:35:73:ee:51:46:44:1a:ac:b0: c2:3a:6b:c1:93:43:f8:d7:5d:c3:d7:0d:a0:cf:c2:b4:a2:0e: a1:0b:f0:c4:ba:b1:fd:b8:cc:41:61:dc:8b:40:33:2d:31:13: c4:d7:d3:95:88:b6:7f:dc:6c:60:70:4b:e1:30:d1:aa:d7:66: f3:60:43:bc:65:9a:d5:10:19:7f:aa:63:25:85:aa:f4:d4:c7: c1:82:f8:2b:25:d7:e6:85:66:4a:37:fb:a5:a5:19:55:14:0f: c6:8a:2d:08:70:fb:56:f7:24:20:e2:92:1b:b6:25:e7:b3:2f: b0:62:c3:8f:e8:d8:b5:cf:75:94:0b:52:81:26:28:5f:28:36: 5f:d3:63:94:52:b8:34:42:18:d9:db:36:be:a8:7b:96:f2:d1: 11:57:f0:16:ef:28:06:f1:f2:c2:f1:7c:dd:f2:e5:07:5e:cd: 9e:07:90:3f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZDIbG1aX+Zj7Rqr3o/Lc8kkkzwgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE5MTEzMzQ2WhcNMjUxMTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BiMDI3NDViZDkwNDlhZWUzNmU4MmU0YzRlNGViOWRlYTE2 NWQyNGI5MzI4MDg0MjA2N2MxZjNjNzRjNTI2ZTQ4MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDb615a/0D63kiYudPwlxx1OLxG3+gCrvYv0ZomMh+O9ROJ 5Ard/jC72hHgQpcDcYzFLi8eyiXquoGpierCuZE3cOSSLPbGOExWUztoywr4aPtC 9YE9r4x0qtt/RzgV3KiUd+cedj86JazBW7sHnu4994ssLKMXWXUTJEgSBdHEpwLV cHmmaf9ODvzDlxgKVxJ3sIopdCBbJbZHBmZM5bvL9DJki1IJmje1ccckV0WdKOqb 3Txmj1tp/8wMVPOQ5IRDbjakbj2Is0YyCPBvIkbUox4q50Xu12tHeLzP9PtVl9AW 2VwZbDavZRu2Ml7HAdz0w9ZBDnT12Eok6CRiIenRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUCAc7r6MnLioAQRokD/bl2DrC0BQwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzQ0ZmFkYzRmLTZhMDktNDk5NC1iYmFmLTg2MDQ2MDZjOWFjOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcSQAAwDQYJKoZIhvcNAQELBQADggEBAGjsWJWpRR+oAqiON1dVNj+L0Yqn 3uT+DIo20FL7y0Ds20JjZWShS+YkR0cxPakWNzhZ4GNlL2WYCD1Mz1NHxZjOj4Rr KxgakxH2aNAF3Dbm2DVz7lFGRBqssMI6a8GTQ/jXXcPXDaDPwrSiDqEL8MS6sf24 zEFh3ItAMy0xE8TX05WItn/cbGBwS+Ew0arXZvNgQ7xlmtUQGX+qYyWFqvTUx8GC +Csl1+aFZko3+6WlGVUUD8aKLQhw+1b3JCDikhu2JeezL7Biw4/o2LXPdZQLUoEm KF8oNl/TY5RSuDRCGNnbNr6oe5by0RFX8BbvKAbx8sLxfN3y5QdezZ4HkD8= -----END CERTIFICATE-----Generated at Mon Oct 20 06:35:09 2025 by rpki-client