$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/52d580d4-3f6b-4be1-8762-6379a34ca430.roa File: 52d580d4-3f6b-4be1-8762-6379a34ca430.roa (raw, json) Hash identifier: MUi84QlQDvNH+fOWiB7XwzLclUasdtnCJw9P5gzMHUU= Subject key identifier: 79:5A:38:B1:5B:70:16:78:89:86:CF:A4:56:8C:4A:1B:BE:DC:4D:B5 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 30CD96D8FA75EB02990D65DC79DD22CFD65F078A Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/52d580d4-3f6b-4be1-8762-6379a34ca430.roa Signing time: Sat 18 Oct 2025 09:30:18 +0000 ROA not before: Sat 18 Oct 2025 09:30:18 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.154.212.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:cd:96:d8:fa:75:eb:02:99:0d:65:dc:79:dd:22:cf:d6:5f:07:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 18 09:30:18 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=ea4ee930d10a714207d5a3e4b45240202b500e23a880241d4d515894ad2fac75, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:d1:30:71:f0:b9:5a:26:90:13:18:5b:3b:3f: 88:e1:56:0a:ce:a7:5b:70:d7:3d:4e:db:f2:f6:53: 8e:33:83:38:f7:e5:68:ee:0a:2b:ee:f0:35:bd:fe: 2d:0c:dc:91:fb:db:c0:79:5c:08:42:db:4d:61:fa: c2:25:db:e9:b6:82:ea:e3:c0:50:63:7e:e6:5d:06: 36:05:03:f9:4c:be:11:21:2d:02:4f:f6:72:c3:29: 7c:58:88:e5:85:20:7a:1e:b1:84:be:69:2c:22:2e: 28:e7:cd:ae:4f:68:1b:b5:b0:3b:6c:2d:3e:c1:ae: 44:79:48:12:2b:f5:2a:3c:01:e1:57:94:5e:9b:ef: d2:19:64:bc:81:9e:02:81:b2:6e:73:19:60:d6:e6: 7c:ab:59:d6:a7:d8:aa:77:14:09:fa:e8:d5:c4:5b: bc:2f:18:6d:03:d1:0d:a8:a5:a3:c7:6a:d2:55:73: d2:93:61:3d:f9:63:71:b6:01:e5:f4:26:69:54:3d: 44:9b:d8:2c:4a:e5:2c:ba:c3:de:11:cc:aa:e8:ee: de:a9:c1:3e:e0:d4:ce:d2:15:2f:93:75:70:7f:ca: a9:52:41:12:f9:28:b4:6f:09:84:18:50:00:74:f2: 43:d0:d0:55:d4:8d:7b:51:0f:af:0f:50:b9:82:23: b2:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:5A:38:B1:5B:70:16:78:89:86:CF:A4:56:8C:4A:1B:BE:DC:4D:B5 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/52d580d4-3f6b-4be1-8762-6379a34ca430.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.154.212.0/22 Signature Algorithm: sha256WithRSAEncryption 32:e2:a2:fd:58:07:5e:9d:58:fa:79:26:83:d9:5a:24:d6:7f: 38:e5:3c:d7:18:6f:29:53:5e:55:ce:cf:42:d9:ba:57:34:9d: ee:17:93:35:b2:18:e9:0a:9a:1f:83:63:94:95:18:9b:1f:89: f1:f9:30:a9:73:e4:e5:91:9a:8e:d3:b0:0f:28:6d:93:91:c3: ff:5b:ef:e6:5e:25:02:91:04:c9:ee:78:c8:3b:ac:ee:6d:a8: 73:63:0d:75:b8:40:9d:69:f4:c4:fd:01:b2:78:28:94:4d:5e: 6d:98:3a:ef:38:a9:41:8a:28:9f:56:31:c5:6a:a5:52:76:3b: 91:b1:dc:49:e9:e3:14:38:ea:05:13:ac:3f:e7:38:1c:ce:ab: 96:4c:21:a5:55:4d:b7:73:6f:e5:a9:fb:33:e5:e4:a6:f4:b6: b4:d2:34:55:25:a2:43:a8:de:3e:e4:fc:72:97:24:2b:92:2e: 66:ad:80:64:12:85:9b:b1:67:57:bc:04:fb:42:27:37:9a:e3: 41:03:8b:c7:5d:4a:41:bc:2d:c4:00:bb:e4:06:1a:b7:76:a2: 39:c3:f5:7d:4d:4d:f6:05:c3:2d:ec:f0:f6:5f:f9:99:73:a0: 0b:2e:05:e5:60:52:89:e5:eb:aa:e1:ed:83:23:cb:2d:10:04: d8:22:26:2b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMM2W2Pp16wKZDWXced0iz9ZfB4owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE4MDkzMDE4WhcNMjUxMTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BlYTRlZTkzMGQxMGE3MTQyMDdkNWEzZTRiNDUyNDAyMDJi NTAwZTIzYTg4MDI0MWQ0ZDUxNTg5NGFkMmZhYzc1MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDL0TBx8LlaJpATGFs7P4jhVgrOp1tw1z1O2/L2U44zgzj3 5WjuCivu8DW9/i0M3JH728B5XAhC201h+sIl2+m2gurjwFBjfuZdBjYFA/lMvhEh LQJP9nLDKXxYiOWFIHoesYS+aSwiLijnza5PaBu1sDtsLT7BrkR5SBIr9So8AeFX lF6b79IZZLyBngKBsm5zGWDW5nyrWdan2Kp3FAn66NXEW7wvGG0D0Q2opaPHatJV c9KTYT35Y3G2AeX0JmlUPUSb2CxK5Sy6w94RzKro7t6pwT7g1M7SFS+TdXB/yqlS QRL5KLRvCYQYUAB08kPQ0FXUjXtRD68PULmCI7JhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUeVo4sVtwFniJhs+kVoxKG77cTbUwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzUyZDU4MGQ0LTNmNmItNGJlMS04NzYyLTYzNzlhMzRjYTQzMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAISmtQwDQYJKoZIhvcNAQELBQADggEBADLiov1YB16dWPp5JoPZWiTWfzjl PNcYbylTXlXOz0LZulc0ne4XkzWyGOkKmh+DY5SVGJsfifH5MKlz5OWRmo7TsA8o bZORw/9b7+ZeJQKRBMnueMg7rO5tqHNjDXW4QJ1p9MT9AbJ4KJRNXm2YOu84qUGK KJ9WMcVqpVJ2O5Gx3Enp4xQ46gUTrD/nOBzOq5ZMIaVVTbdzb+Wp+zPl5Kb0trTS NFUlokOo3j7k/HKXJCuSLmatgGQShZuxZ1e8BPtCJzea40EDi8ddSkG8LcQAu+QG Grd2ojnD9X1NTfYFwy3s8PZf+ZlzoAsuBeVgUonl66rh7YMjyy0QBNgiJis= -----END CERTIFICATE-----Generated at Mon Oct 20 08:41:45 2025 by rpki-client