$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/603d5e9d-f85c-4481-8cc4-053902b12255.roa File: 603d5e9d-f85c-4481-8cc4-053902b12255.roa (raw, json) Hash identifier: uL/D1Icotlp5+Cyh6YB+tHlql4ckLofb4dgObR60q0s= Subject key identifier: 07:63:0E:CA:AB:81:88:73:F7:D5:E8:42:94:A7:A7:7D:A7:4F:F2:0B Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 2D664BE322D7EC65C7A7E958586CCCBF7CF733C3 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/603d5e9d-f85c-4481-8cc4-053902b12255.roa Signing time: Sat 18 Oct 2025 18:11:20 +0000 ROA not before: Sat 18 Oct 2025 18:11:20 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.244.126.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:66:4b:e3:22:d7:ec:65:c7:a7:e9:58:58:6c:cc:bf:7c:f7:33:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 18 18:11:20 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=9fe50ec3007d995b43d1875e3d11a7c24a1b22f9f8b48a03f17c6e6c7613105d, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:c6:1c:8c:ca:0f:c8:27:aa:db:55:6c:19:48: f4:cf:d4:d5:b2:ad:bc:53:8f:87:ee:5a:37:b3:78: 17:6e:a4:7d:96:26:36:5a:83:c3:04:8b:d1:f1:f0: c5:34:d0:08:54:3f:ae:4f:c0:7d:72:ad:64:e2:0f: 13:a6:4f:78:a8:7d:ec:a4:0d:28:93:59:f9:af:60: 39:c7:28:37:9d:98:da:0b:c9:16:a6:6f:da:77:5e: 05:9c:12:78:2f:1e:ea:fb:cd:cd:72:2d:fe:bf:6a: cf:78:6c:91:36:fb:19:c3:e4:70:84:8b:e6:ec:e9: a0:30:89:98:df:16:c9:0a:3d:f2:1d:05:5f:e6:dd: 1d:91:20:a5:b2:ea:16:8c:ee:17:88:37:2e:3f:3e: 6f:98:77:e8:27:13:f9:20:e8:48:9d:b0:64:b3:ea: 4f:7d:db:06:9e:13:89:23:6c:b1:34:06:f9:90:bf: 08:74:15:b0:9c:43:fb:51:27:a7:1f:67:b5:6d:dd: 4d:a8:fa:ea:81:a0:90:62:af:97:59:37:11:95:70: 0c:c5:bb:b2:43:19:11:4a:43:e0:11:fa:be:3f:d5: f7:d7:75:01:54:28:4d:a1:bc:6c:36:a0:8a:1e:03: ce:94:46:15:ec:06:e0:83:db:43:6e:96:8a:25:f9: 83:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:63:0E:CA:AB:81:88:73:F7:D5:E8:42:94:A7:A7:7D:A7:4F:F2:0B X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/603d5e9d-f85c-4481-8cc4-053902b12255.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.244.126.0/23 Signature Algorithm: sha256WithRSAEncryption a3:80:a6:71:04:d0:64:b3:b0:69:b6:c7:01:2a:83:fd:57:a0: 61:55:d7:c1:7d:d8:95:73:88:98:4f:ed:7e:4e:6b:e0:e8:8a: 14:9b:2c:f7:da:67:77:f2:4a:8d:11:04:b8:0a:2c:3f:b9:8b: 06:8a:e4:5c:da:fc:cd:27:93:e8:d3:e1:9d:00:f3:e0:15:3d: 8c:25:b7:7e:3f:53:ac:4d:1e:d8:66:d5:a9:97:39:92:37:f2: 89:85:82:30:d5:16:53:99:cc:41:3c:bb:db:7c:c9:0b:5f:5e: 21:e5:86:44:44:59:af:ad:99:3a:9c:49:1c:3b:0f:6e:a3:ab: 4b:e0:3a:1e:f3:30:7e:13:e1:68:79:d2:b3:d8:2e:52:a7:d0: e8:39:1f:e5:dd:a3:1d:28:3e:35:53:8d:94:c0:11:33:e4:06: 9a:f0:d4:f5:97:3b:fc:1b:4a:23:1d:30:91:36:d0:24:52:4c: d7:c6:5c:9c:e6:f0:da:41:39:b1:b1:12:12:54:cb:ec:ef:5a: 96:c8:da:ff:eb:de:e4:a0:92:bc:c2:2e:22:7c:48:b0:8d:4f: 6d:f1:62:d7:ad:7e:d8:b9:0e:09:1f:c0:be:40:46:d2:b3:29: 07:32:58:6e:70:d4:f8:40:55:36:f3:c3:71:ba:40:11:be:36: 45:4f:c9:05 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULWZL4yLX7GXHp+lYWGzMv3z3M8MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE4MTgxMTIwWhcNMjUxMTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZmU1MGVjMzAwN2Q5OTViNDNkMTg3NWUzZDExYTdjMjRh MWIyMmY5ZjhiNDhhMDNmMTdjNmU2Yzc2MTMxMDVkMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjxhyMyg/IJ6rbVWwZSPTP1NWyrbxTj4fuWjezeBdupH2W JjZag8MEi9Hx8MU00AhUP65PwH1yrWTiDxOmT3iofeykDSiTWfmvYDnHKDedmNoL yRamb9p3XgWcEngvHur7zc1yLf6/as94bJE2+xnD5HCEi+bs6aAwiZjfFskKPfId BV/m3R2RIKWy6haM7heINy4/Pm+Yd+gnE/kg6EidsGSz6k992waeE4kjbLE0BvmQ vwh0FbCcQ/tRJ6cfZ7Vt3U2o+uqBoJBir5dZNxGVcAzFu7JDGRFKQ+AR+r4/1ffX dQFUKE2hvGw2oIoeA86URhXsBuCD20Nulool+YN1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUB2MOyquBiHP31ehClKenfadP8gswHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzYwM2Q1ZTlkLWY4NWMtNDQ4MS04Y2M0LTA1MzkwMmIxMjI1NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAES9H4wDQYJKoZIhvcNAQELBQADggEBAKOApnEE0GSzsGm2xwEqg/1XoGFV 18F92JVziJhP7X5Oa+DoihSbLPfaZ3fySo0RBLgKLD+5iwaK5Fza/M0nk+jT4Z0A 8+AVPYwlt34/U6xNHthm1amXOZI38omFgjDVFlOZzEE8u9t8yQtfXiHlhkREWa+t mTqcSRw7D26jq0vgOh7zMH4T4Wh50rPYLlKn0Og5H+Xdox0oPjVTjZTAETPkBprw 1PWXO/wbSiMdMJE20CRSTNfGXJzm8NpBObGxEhJUy+zvWpbI2v/r3uSgkrzCLiJ8 SLCNT23xYtetfti5DgkfwL5ARtKzKQcyWG5w1PhAVTbzw3G6QBG+NkVPyQU= -----END CERTIFICATE-----Generated at Mon Oct 20 10:58:51 2025 by rpki-client