$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/553c7b90-35f2-4786-a4e6-1d82621e5a9f.roa File: 553c7b90-35f2-4786-a4e6-1d82621e5a9f.roa (raw, json) Hash identifier: kPb0cb4I+F0zD4eS+5m7TM5N4hRFaevNpQOh4ehpRb0= Subject key identifier: 99:07:B5:9C:2F:CA:7B:1E:83:E0:EF:A7:99:7A:3E:92:3B:E0:6B:C4 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 6FF0A59EA977AC7BB13C63A6EE18C65BB11376DE Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/553c7b90-35f2-4786-a4e6-1d82621e5a9f.roa Signing time: Sat 18 Oct 2025 23:23:34 +0000 ROA not before: Sat 18 Oct 2025 23:23:34 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.172.181.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:f0:a5:9e:a9:77:ac:7b:b1:3c:63:a6:ee:18:c6:5b:b1:13:76:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 18 23:23:34 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=a4212fcffc97c3b14955e0f07bd96d5467cac74195e1e43a4e56707c3c16aa7b, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:8c:ec:08:46:9f:54:02:4e:6d:e4:08:a6:16: f4:4a:be:c4:b6:b7:3a:03:f9:4d:cd:87:3d:b6:17: 5a:a0:27:94:52:68:cc:41:39:9f:37:81:b7:93:b7: ca:5a:4a:47:67:ad:0a:bc:7d:96:7e:ea:31:91:82: be:e9:10:1e:b6:30:cd:53:03:a3:8f:72:6d:ff:a2: 43:78:d1:26:3e:b7:9a:05:77:ce:82:05:83:04:06: b6:6d:79:9e:9e:48:fa:db:30:77:4a:57:0f:1a:6f: cb:fe:42:1c:ea:4d:7b:a0:6c:a0:a8:51:03:75:b1: 10:ad:ed:b4:ee:c6:3b:90:44:12:0c:84:48:0a:d1: 45:19:31:53:78:a3:a8:6f:8d:f7:fd:d8:b4:86:7a: a0:ff:a7:a3:93:01:61:74:fe:2c:cd:9c:b6:9c:2b: 6a:3b:fb:4f:bb:da:38:88:d9:28:7d:12:44:c2:fe: 11:44:50:cb:30:91:11:93:51:a3:8c:a7:fc:bb:a9: 4a:31:e5:a7:46:14:69:31:41:fc:e5:ab:8c:05:64: 5f:91:73:f6:aa:9d:d4:d7:32:af:7c:ec:30:0d:5b: cd:10:56:95:8e:a6:b9:7d:62:df:84:0d:80:b5:33: 0f:a7:72:f1:bd:06:4b:35:51:b5:cc:e0:ae:a9:4b: 5e:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:07:B5:9C:2F:CA:7B:1E:83:E0:EF:A7:99:7A:3E:92:3B:E0:6B:C4 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/553c7b90-35f2-4786-a4e6-1d82621e5a9f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.172.181.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:3e:8e:93:c7:6f:d5:2e:0e:4f:0c:ef:fe:4b:bf:8b:1c:d2: 51:b5:26:f2:85:28:55:9d:7a:ac:1f:bf:d8:6f:63:1d:94:8a: e1:da:97:7b:cb:b8:e7:99:9b:43:09:f0:2f:b0:1d:24:4e:e7: 14:45:a4:c5:bd:a7:17:79:fe:ff:8c:21:10:1d:fd:5b:e0:98: 4e:fc:a9:f7:c4:28:8e:94:71:95:b3:08:8f:10:03:38:f2:1b: 6b:71:ea:37:cb:69:3c:7b:75:f5:b3:32:fc:2e:1f:a6:0d:22: 2a:43:09:36:0e:8d:65:5c:ca:8a:4e:43:08:f8:bd:28:ee:9c: 01:9d:25:ca:7c:e0:9e:cf:40:23:86:e8:b2:94:42:f4:4b:4a: 35:9b:0e:34:5a:bb:94:ea:a9:41:87:d7:34:20:2d:b9:c4:40: 7e:e7:45:01:93:1e:3d:c7:72:d1:cc:bc:38:38:34:d2:aa:c2: 93:d8:1b:fa:cb:56:7b:54:2b:8f:98:66:1e:df:1d:ac:02:5b: 60:a3:b1:77:0d:b8:d0:89:e2:10:ef:d5:dd:2e:f0:3a:a6:67: 63:9a:02:48:dc:5e:03:65:e5:2f:8a:ca:d6:1f:a6:8b:5e:7b: 42:13:7b:16:27:70:2b:ee:57:e6:d5:c4:6d:4d:be:66:fc:29: 1c:e3:ff:13 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUb/Clnql3rHuxPGOm7hjGW7ETdt4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE4MjMyMzM0WhcNMjUxMTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BhNDIxMmZjZmZjOTdjM2IxNDk1NWUwZjA3YmQ5NmQ1NDY3 Y2FjNzQxOTVlMWU0M2E0ZTU2NzA3YzNjMTZhYTdiMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDVjOwIRp9UAk5t5AimFvRKvsS2tzoD+U3Nhz22F1qgJ5RS aMxBOZ83gbeTt8paSkdnrQq8fZZ+6jGRgr7pEB62MM1TA6OPcm3/okN40SY+t5oF d86CBYMEBrZteZ6eSPrbMHdKVw8ab8v+QhzqTXugbKCoUQN1sRCt7bTuxjuQRBIM hEgK0UUZMVN4o6hvjff92LSGeqD/p6OTAWF0/izNnLacK2o7+0+72jiI2Sh9EkTC /hFEUMswkRGTUaOMp/y7qUox5adGFGkxQfzlq4wFZF+Rc/aqndTXMq987DANW80Q VpWOprl9Yt+EDYC1Mw+ncvG9Bks1UbXM4K6pS165AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUmQe1nC/Kex6D4O+nmXo+kjvga8QwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzU1M2M3YjkwLTM1ZjItNDc4Ni1hNGU2LTFkODI2MjFlNWE5Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAASrLUwDQYJKoZIhvcNAQELBQADggEBAE4+jpPHb9UuDk8M7/5Lv4sc0lG1 JvKFKFWdeqwfv9hvYx2UiuHal3vLuOeZm0MJ8C+wHSRO5xRFpMW9pxd5/v+MIRAd /VvgmE78qffEKI6UcZWzCI8QAzjyG2tx6jfLaTx7dfWzMvwuH6YNIipDCTYOjWVc yopOQwj4vSjunAGdJcp84J7PQCOG6LKUQvRLSjWbDjRau5TqqUGH1zQgLbnEQH7n RQGTHj3HctHMvDg4NNKqwpPYG/rLVntUK4+YZh7fHawCW2CjsXcNuNCJ4hDv1d0u 8DqmZ2OaAkjcXgNl5S+KytYfpotee0ITexYncCvuV+bVxG1Nvmb8KRzj/xM= -----END CERTIFICATE-----Generated at Mon Oct 20 21:11:51 2025 by rpki-client