$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/559072c6-196b-4755-83ef-ac4dbedff91f.roa File: 559072c6-196b-4755-83ef-ac4dbedff91f.roa (raw, json) Hash identifier: ZEYsn+x05WvyjPl7VS41GxZqtDqktk2OSFoBqodgL3k= Subject key identifier: 2A:C7:73:40:50:10:86:C3:C2:A3:C2:81:2A:81:9C:69:03:F2:92:42 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 6CEE92E33F4C5F79EF99AFFEC4F3E461FF31F08F Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/559072c6-196b-4755-83ef-ac4dbedff91f.roa Signing time: Sun 19 Oct 2025 21:32:40 +0000 ROA not before: Sun 19 Oct 2025 21:32:40 +0000 ROA not after: Sun 23 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.64.120.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:ee:92:e3:3f:4c:5f:79:ef:99:af:fe:c4:f3:e4:61:ff:31:f0:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 19 21:32:40 2025 GMT Not After : Nov 23 23:59:59 2025 GMT Subject: serialNumber=ae7901d45f34b64d329d1f6caf048f3edb36c73df2e8c9db6bce764d06da5234, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d3:17:dd:7e:60:7b:27:53:9e:cf:8d:a4:b5: 02:f0:e1:0b:6b:ec:b3:5a:6b:30:b3:d1:9d:c7:1b: 30:ee:7f:01:ee:46:09:51:35:af:90:77:d1:4f:b4: 07:41:38:a2:36:3d:ac:82:23:9a:85:47:21:71:c3: ff:74:d0:a9:c8:f5:c2:47:73:ff:d9:70:9a:71:32: ad:24:d5:e6:76:2e:33:46:23:93:69:ab:f1:0a:9b: 78:c0:a8:f9:18:c0:00:c1:d1:13:e4:e2:d3:29:6e: 46:6c:a6:fa:25:84:9d:c7:9f:fb:dc:47:04:f5:82: 85:67:92:55:1f:a5:7f:2d:de:af:46:d2:f2:17:10: ad:8b:51:fc:f5:90:e9:9a:44:48:bc:b5:ff:2c:53: b9:70:13:79:88:18:f3:9e:54:55:90:22:0f:ef:34: f7:c9:9e:a9:a7:a3:45:cd:82:dd:31:31:60:b8:98: 13:e7:c9:c0:72:81:8e:53:98:d4:34:09:95:85:90: 1d:0b:3b:be:7f:69:22:c1:2f:03:14:de:12:0f:04: 56:e5:1a:24:fe:20:52:dd:b4:36:e0:33:a9:b9:48: c9:90:6a:08:37:42:1c:66:3c:d5:0e:73:ad:45:7c: 9e:1f:20:09:dd:83:58:ce:8a:f0:2d:d2:84:e9:1f: 78:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:C7:73:40:50:10:86:C3:C2:A3:C2:81:2A:81:9C:69:03:F2:92:42 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/559072c6-196b-4755-83ef-ac4dbedff91f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.64.120.0/21 Signature Algorithm: sha256WithRSAEncryption 8c:f4:df:23:3e:c6:aa:18:7a:8e:91:be:9a:c6:fa:25:c9:90: 9b:4b:6f:4b:c6:07:a1:8b:0c:3f:49:cf:f7:c9:45:c8:ae:9c: 60:4e:23:ea:6c:90:ec:8d:53:e2:21:4e:22:53:10:54:4a:2c: 94:92:01:64:53:83:12:ea:85:3b:18:9c:7f:a3:b8:f0:b5:26: ce:0b:35:3b:03:84:58:39:ee:47:69:fd:7b:ec:51:e1:0a:10: 4e:80:c1:b4:d8:09:fc:0d:d9:d8:81:c9:d4:c2:14:56:b4:11: 08:be:ec:93:3e:23:2c:7a:fd:3d:be:eb:87:ff:43:39:bd:90: 48:ba:3b:1e:80:59:7d:57:85:0d:b6:37:de:52:cf:8c:73:9c: b9:95:7f:68:88:a1:3a:e8:96:fa:4a:b9:6b:98:8d:d3:52:ba: 04:03:92:d3:3e:62:10:d5:76:99:75:dc:a2:5a:ba:0f:c0:c5: d4:e1:3d:2b:de:2e:50:c4:09:67:e6:ee:17:1f:06:b7:eb:57: 92:ec:9b:01:04:23:92:ea:48:d7:ad:83:4d:8f:e9:28:61:99: c8:b4:b7:42:bb:82:ee:21:cd:d2:d3:c3:88:46:37:ec:f4:10: 36:c8:5e:aa:63:f3:6c:21:21:7c:aa:57:cd:32:e3:c3:72:f7: a6:80:f8:f9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbO6S4z9MX3nvma/+xPPkYf8x8I8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE5MjEzMjQwWhcNMjUxMTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BhZTc5MDFkNDVmMzRiNjRkMzI5ZDFmNmNhZjA0OGYzZWRi MzZjNzNkZjJlOGM5ZGI2YmNlNzY0ZDA2ZGE1MjM0MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC40xfdfmB7J1Oez42ktQLw4Qtr7LNaazCz0Z3HGzDufwHu RglRNa+Qd9FPtAdBOKI2PayCI5qFRyFxw/900KnI9cJHc//ZcJpxMq0k1eZ2LjNG I5Npq/EKm3jAqPkYwADB0RPk4tMpbkZspvolhJ3Hn/vcRwT1goVnklUfpX8t3q9G 0vIXEK2LUfz1kOmaREi8tf8sU7lwE3mIGPOeVFWQIg/vNPfJnqmno0XNgt0xMWC4 mBPnycBygY5TmNQ0CZWFkB0LO75/aSLBLwMU3hIPBFblGiT+IFLdtDbgM6m5SMmQ agg3QhxmPNUOc61FfJ4fIAndg1jOivAt0oTpH3hRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUKsdzQFAQhsPCo8KBKoGcaQPykkIwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzU1OTA3MmM2LTE5NmItNDc1NS04M2VmLWFjNGRiZWRmZjkxZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMSQHgwDQYJKoZIhvcNAQELBQADggEBAIz03yM+xqoYeo6RvprG+iXJkJtL b0vGB6GLDD9Jz/fJRciunGBOI+pskOyNU+IhTiJTEFRKLJSSAWRTgxLqhTsYnH+j uPC1Js4LNTsDhFg57kdp/XvsUeEKEE6AwbTYCfwN2diBydTCFFa0EQi+7JM+Iyx6 /T2+64f/Qzm9kEi6Ox6AWX1XhQ22N95Sz4xznLmVf2iIoTrolvpKuWuYjdNSugQD ktM+YhDVdpl13KJaug/AxdThPSveLlDECWfm7hcfBrfrV5LsmwEEI5LqSNetg02P 6Shhmci0t0K7gu4hzdLTw4hGN+z0EDbIXqpj82whIXyqV80y48Ny96aA+Pk= -----END CERTIFICATE-----Generated at Mon Oct 20 21:11:48 2025 by rpki-client