$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5d8487a4-9703-4204-acc0-76bafb3bfa4e.roa File: 5d8487a4-9703-4204-acc0-76bafb3bfa4e.roa (raw, json) Hash identifier: 7oRKVqk+ZmKCJoAtA14b73FIs61iH5sp+rrg0NjtT3Q= Subject key identifier: 5B:27:D0:45:64:2E:29:73:03:A8:96:BB:12:0A:65:58:B2:1F:E1:F9 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 309FF7A2EAA5DCFA48E4BB7866A3029D1C4584E3 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5d8487a4-9703-4204-acc0-76bafb3bfa4e.roa Signing time: Sun 19 Oct 2025 15:11:29 +0000 ROA not before: Sun 19 Oct 2025 15:11:29 +0000 ROA not after: Sun 23 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.65.134.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:9f:f7:a2:ea:a5:dc:fa:48:e4:bb:78:66:a3:02:9d:1c:45:84:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 19 15:11:29 2025 GMT Not After : Nov 23 23:59:59 2025 GMT Subject: serialNumber=b11318b6d85b52d0a96053f819f2b1205273e53b058293863b593f19b61b5fb3, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:a8:ff:a5:20:40:c2:72:16:32:ca:08:6a:75: 63:63:6c:5d:9e:c4:ee:0b:7e:9d:13:d1:4a:fc:50: 0f:34:6d:06:1b:10:a8:01:cd:3f:09:d0:a6:2b:6f: 61:41:df:77:0a:15:d6:e5:37:1e:56:a3:4d:a8:77: 50:aa:f0:d7:5a:59:48:38:95:77:6d:9d:8c:19:0a: b1:c2:7d:b2:ee:ae:5a:da:e5:60:e6:57:f3:85:03: 22:33:3c:a1:c2:fe:21:59:e7:d5:68:39:62:62:b8: e6:da:29:69:4a:9a:39:e7:da:e8:be:6d:44:0a:5c: f5:b4:e8:ca:97:8a:1f:4e:c9:80:39:8c:24:73:d8: 91:a0:aa:a4:a7:0f:87:57:1d:83:14:74:ee:b9:32: 1d:ce:b5:bf:c3:94:63:30:bf:6b:6b:6f:b8:2a:f5: c2:99:ab:a0:3a:d5:ec:d4:f5:d1:45:44:e8:a3:45: d2:06:2b:14:a4:3e:f2:ad:5c:02:eb:0f:3f:80:69: cd:6f:17:77:54:0c:54:a9:02:a1:e3:51:74:19:b8: fd:92:98:12:8b:ec:38:87:a7:36:20:44:f6:f5:b4: 78:ef:c5:ee:26:2b:ac:f0:15:8e:20:7a:bb:80:4d: 84:4d:2b:bc:29:20:6e:9d:7a:7a:e9:9d:ea:25:0e: 42:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:27:D0:45:64:2E:29:73:03:A8:96:BB:12:0A:65:58:B2:1F:E1:F9 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5d8487a4-9703-4204-acc0-76bafb3bfa4e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.65.134.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:5c:da:ef:94:51:cc:7a:70:9c:89:9a:71:64:2d:08:9e:20: 09:04:c8:06:76:e8:fc:84:e2:91:62:5b:6f:73:87:5b:b4:1e: 51:5f:69:7c:81:3b:59:16:55:48:42:5e:40:99:cc:56:61:02: 2c:83:a9:7f:fc:11:27:ff:25:35:da:ee:bc:ea:43:b7:ed:15: f7:14:20:9b:b9:d8:f6:8d:8b:74:04:9d:1f:c9:c4:06:f0:de: 13:b8:5f:7e:39:8f:5c:2d:5a:b5:8d:69:43:69:7f:8d:50:f5: 8d:fa:f7:6e:24:cb:6e:ab:aa:66:1b:74:24:b3:f5:0f:2c:d8: df:e3:3b:5f:f1:ad:ba:14:c1:33:8b:99:82:f9:01:9e:85:2d: 88:1e:fe:1e:1c:3d:76:bd:da:cf:4e:36:74:ce:69:14:18:a6: 78:a3:47:b1:f4:af:55:ce:f1:59:f6:a1:da:b7:f3:a8:65:7b: d2:69:f0:4a:e4:be:09:61:7e:b3:0f:a3:88:c8:6e:b2:7a:be: 84:e5:9d:0d:43:f3:6f:c9:7d:2d:6f:a1:a8:56:e1:7f:b9:ad: 79:c6:d6:a4:48:4f:44:46:3b:ab:f1:7c:7b:d1:f2:3d:1b:30: cd:d2:56:34:38:44:1e:4b:b7:1d:f9:99:63:09:64:2c:bd:88: 84:ab:e6:40 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMJ/3ouql3PpI5Lt4ZqMCnRxFhOMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE5MTUxMTI5WhcNMjUxMTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BiMTEzMThiNmQ4NWI1MmQwYTk2MDUzZjgxOWYyYjEyMDUy NzNlNTNiMDU4MjkzODYzYjU5M2YxOWI2MWI1ZmIzMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5qP+lIEDCchYyyghqdWNjbF2exO4Lfp0T0Ur8UA80bQYb EKgBzT8J0KYrb2FB33cKFdblNx5Wo02od1Cq8NdaWUg4lXdtnYwZCrHCfbLurlra 5WDmV/OFAyIzPKHC/iFZ59VoOWJiuObaKWlKmjnn2ui+bUQKXPW06MqXih9OyYA5 jCRz2JGgqqSnD4dXHYMUdO65Mh3Otb/DlGMwv2trb7gq9cKZq6A61ezU9dFFROij RdIGKxSkPvKtXALrDz+Aac1vF3dUDFSpAqHjUXQZuP2SmBKL7DiHpzYgRPb1tHjv xe4mK6zwFY4geruATYRNK7wpIG6denrpneolDkKZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUWyfQRWQuKXMDqJa7EgplWLIf4fkwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzVkODQ4N2E0LTk3MDMtNDIwNC1hY2MwLTc2YmFmYjNiZmE0ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAASQYYwDQYJKoZIhvcNAQELBQADggEBAB5c2u+UUcx6cJyJmnFkLQieIAkE yAZ26PyE4pFiW29zh1u0HlFfaXyBO1kWVUhCXkCZzFZhAiyDqX/8ESf/JTXa7rzq Q7ftFfcUIJu52PaNi3QEnR/JxAbw3hO4X345j1wtWrWNaUNpf41Q9Y36924ky26r qmYbdCSz9Q8s2N/jO1/xrboUwTOLmYL5AZ6FLYge/h4cPXa92s9ONnTOaRQYpnij R7H0r1XO8Vn2odq386hle9Jp8ErkvglhfrMPo4jIbrJ6voTlnQ1D82/JfS1voahW 4X+5rXnG1qRIT0RGO6vxfHvR8j0bMM3SVjQ4RB5Ltx35mWMJZCy9iISr5kA= -----END CERTIFICATE-----Generated at Mon Oct 20 11:14:01 2025 by rpki-client