$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4d3a00a9-ca8e-4353-a4a2-14e14c194d22.roa File: 4d3a00a9-ca8e-4353-a4a2-14e14c194d22.roa (raw, json) Hash identifier: gD/n7Eo7/j5Vj0EsC2FiJzpGHcEJ0ER6qQJul4kpvhk= Subject key identifier: C6:97:2D:C3:4F:08:8D:32:CF:82:E9:3A:BF:CE:93:9B:74:8A:65:A1 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 67AE5A4B61F85EF95CFDDBD590350758745458DF Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4d3a00a9-ca8e-4353-a4a2-14e14c194d22.roa Signing time: Sun 19 Oct 2025 20:50:09 +0000 ROA not before: Sun 19 Oct 2025 20:50:09 +0000 ROA not after: Sun 23 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.65.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:ae:5a:4b:61:f8:5e:f9:5c:fd:db:d5:90:35:07:58:74:54:58:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 19 20:50:09 2025 GMT Not After : Nov 23 23:59:59 2025 GMT Subject: serialNumber=3bbe6b940a8c3f4a2c77a491ea1ec860f734c20e3b33b544b6623e5a32ca09f4, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f9:03:8d:c9:fb:83:6f:19:51:53:3a:9d:fb: 25:a6:25:bd:83:55:72:95:f8:4c:83:e7:0e:ac:84: cc:6a:18:81:de:a5:15:31:2d:8c:24:e1:4b:a4:de: de:c9:6e:84:7f:39:28:ea:6e:42:1e:80:b1:03:bb: f2:3f:2d:3f:6e:9a:c1:c4:64:a4:b4:99:b6:e2:65: 6c:42:20:ab:5b:92:5c:b2:70:23:ae:fe:51:49:b5: fa:71:68:f0:c7:22:aa:8d:91:9e:6b:e7:f4:5d:3e: 20:09:88:af:85:04:d5:89:8a:2b:d7:bf:ba:cf:d2: 00:72:a2:1e:60:b8:e5:61:91:ab:a8:aa:59:16:35: dd:78:07:d8:e9:28:cd:07:d9:bc:7a:cf:19:65:54: de:ad:64:ac:e2:c8:aa:de:73:2d:eb:9c:3a:0b:44: 79:93:db:97:5a:f8:4d:35:7e:51:ca:8a:34:23:b5: ec:31:0d:40:e5:43:68:d5:6e:c9:df:60:9c:93:c1: f0:e9:90:29:76:e4:85:df:44:eb:ea:ba:fa:28:61: 34:59:52:bf:a6:94:05:e1:3e:9d:02:ea:cf:49:dd: c0:3a:0e:31:dc:d7:27:7a:6d:17:bf:70:83:72:63: fe:1e:7b:b4:ca:26:b7:e0:cb:a8:2b:b1:17:8e:c4: e6:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:97:2D:C3:4F:08:8D:32:CF:82:E9:3A:BF:CE:93:9B:74:8A:65:A1 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4d3a00a9-ca8e-4353-a4a2-14e14c194d22.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.65.39.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:ae:29:9e:ab:95:40:76:8a:17:e7:fc:43:86:9c:38:4b:f5: a7:3c:74:21:58:cc:26:a1:b3:8a:90:8f:7b:e1:bf:4c:e4:b1: e3:7f:44:2c:d1:b3:cd:44:73:92:f2:ad:39:21:54:bd:b5:08: 42:ca:81:82:c0:e7:86:28:19:58:4a:fb:ac:4f:11:11:73:2e: fa:59:04:70:48:ca:92:43:2a:f9:ea:03:e3:38:21:01:72:6a: 6d:66:42:f4:09:9c:a1:9d:2f:12:fb:5c:ce:cb:da:06:27:64: b2:e0:17:42:d6:0f:67:e3:ec:e9:56:06:df:8c:b1:f7:fc:da: a0:73:0c:b2:b0:8c:13:8a:39:93:ab:80:51:d5:87:6b:98:51: 1c:91:e6:52:b4:0d:df:6d:ea:11:0d:28:b0:06:8b:4c:2a:28: ca:9d:61:40:82:b3:51:69:5c:bb:ca:1b:b8:e0:6e:83:3b:29: 0e:64:e6:ba:e2:72:ef:45:2b:96:c2:86:28:3b:8f:1d:2b:5d: 5e:73:fc:e0:4d:58:ed:75:29:9a:51:ca:d4:2a:90:a4:18:3e: 47:78:8b:58:41:dc:dc:43:f8:62:d8:22:93:30:28:38:da:71: c6:62:aa:3c:ea:e1:9b:25:26:34:7b:9c:68:d0:f0:72:99:20: 1a:5e:a3:73 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZ65aS2H4Xvlc/dvVkDUHWHRUWN8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE5MjA1MDA5WhcNMjUxMTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AzYmJlNmI5NDBhOGMzZjRhMmM3N2E0OTFlYTFlYzg2MGY3 MzRjMjBlM2IzM2I1NDRiNjYyM2U1YTMyY2EwOWY0MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC++QONyfuDbxlRUzqd+yWmJb2DVXKV+EyD5w6shMxqGIHe pRUxLYwk4Uuk3t7JboR/OSjqbkIegLEDu/I/LT9umsHEZKS0mbbiZWxCIKtbklyy cCOu/lFJtfpxaPDHIqqNkZ5r5/RdPiAJiK+FBNWJiivXv7rP0gByoh5guOVhkauo qlkWNd14B9jpKM0H2bx6zxllVN6tZKziyKrecy3rnDoLRHmT25da+E01flHKijQj tewxDUDlQ2jVbsnfYJyTwfDpkCl25IXfROvquvooYTRZUr+mlAXhPp0C6s9J3cA6 DjHc1yd6bRe/cINyY/4ee7TKJrfgy6grsReOxOZHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUxpctw08IjTLPguk6v86Tm3SKZaEwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzRkM2EwMGE5LWNhOGUtNDM1My1hNGEyLTE0ZTE0YzE5NGQyMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAASQScwDQYJKoZIhvcNAQELBQADggEBAH6uKZ6rlUB2ihfn/EOGnDhL9ac8 dCFYzCahs4qQj3vhv0zkseN/RCzRs81Ec5LyrTkhVL21CELKgYLA54YoGVhK+6xP ERFzLvpZBHBIypJDKvnqA+M4IQFyam1mQvQJnKGdLxL7XM7L2gYnZLLgF0LWD2fj 7OlWBt+Msff82qBzDLKwjBOKOZOrgFHVh2uYURyR5lK0Dd9t6hENKLAGi0wqKMqd YUCCs1FpXLvKG7jgboM7KQ5k5rricu9FK5bChig7jx0rXV5z/OBNWO11KZpRytQq kKQYPkd4i1hB3NxD+GLYIpMwKDjaccZiqjzq4ZslJjR7nGjQ8HKZIBpeo3M= -----END CERTIFICATE-----Generated at Mon Oct 20 15:45:56 2025 by rpki-client