$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7075839b-3ad7-410e-8599-848b5508afa1.roa File: 7075839b-3ad7-410e-8599-848b5508afa1.roa (raw, json) Hash identifier: Vyo+QNmZ9ozQsAcPHln54ZBxYmo/7Ry0+DWkunp6gMc= Subject key identifier: 27:77:C3:6D:E1:2F:DB:DD:A0:FA:BF:D5:24:B2:A7:10:E5:54:5C:0B Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 492B3BB5B2871CE2B59EE0A7C26E0A242C6F3962 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7075839b-3ad7-410e-8599-848b5508afa1.roa Signing time: Sun 19 Oct 2025 23:23:40 +0000 ROA not before: Sun 19 Oct 2025 23:23:40 +0000 ROA not after: Sun 23 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.65.220.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:2b:3b:b5:b2:87:1c:e2:b5:9e:e0:a7:c2:6e:0a:24:2c:6f:39:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 19 23:23:40 2025 GMT Not After : Nov 23 23:59:59 2025 GMT Subject: serialNumber=7f45500dab720b916d4eb99bb4aa2d544601f603b99e3453f90070af580d0bd8, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:7d:be:d1:4e:7b:b2:aa:d4:f5:0c:11:5d:ee: 1f:b6:dd:05:81:e7:8d:b8:59:68:e9:8f:9a:51:f8: ab:25:90:59:ac:36:46:0d:33:68:c6:cd:8d:83:6c: 5f:e5:44:7b:5b:5d:65:a1:d3:a2:59:77:81:ab:dd: 76:64:6f:78:c0:f5:75:d3:e9:b0:a2:68:55:99:13: 8c:52:1f:dc:b1:84:61:d3:65:a5:9b:88:7a:3f:27: a9:98:82:d5:1c:ac:65:9c:16:4b:9b:7b:6e:cb:2b: cd:ca:2f:08:3c:8e:02:d2:a3:c8:b0:75:e8:e4:23: 21:48:0b:17:37:ee:88:2a:f0:be:d1:b0:e7:75:ef: ae:9a:f6:2b:df:f4:b1:dd:98:12:b9:19:3f:24:c3: 9a:92:68:4c:b8:2b:62:67:66:32:d0:87:e0:91:76: 23:ff:45:29:9d:dd:17:2d:d9:a8:46:2b:3c:d8:c1: 41:4c:b3:89:e6:dc:e0:10:44:e1:4c:c7:b5:a8:69: 3c:ff:88:65:ff:26:8b:bb:fe:03:30:0b:33:c2:3a: 9e:34:31:41:a4:12:58:02:36:9e:31:e5:2a:50:22: 5e:83:33:aa:75:91:7e:55:bf:86:32:32:cc:34:5e: c4:5a:b6:a8:65:5f:4b:72:6f:e9:a1:f0:30:d3:52: df:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:77:C3:6D:E1:2F:DB:DD:A0:FA:BF:D5:24:B2:A7:10:E5:54:5C:0B X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7075839b-3ad7-410e-8599-848b5508afa1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.65.220.0/22 Signature Algorithm: sha256WithRSAEncryption 10:b9:8d:68:2e:f3:0a:5b:81:c4:5a:51:2a:32:fa:ef:22:52: ac:ce:08:71:bc:8a:c1:b5:14:cf:02:d0:dc:6a:16:c9:33:3c: 0f:0d:c8:ba:65:a4:d0:9c:9d:0a:d7:da:f5:98:da:2e:26:0c: 95:63:21:50:a1:44:ee:51:d3:72:ba:02:b0:3a:e2:b9:bf:ec: 1c:fd:12:ea:12:53:67:74:35:0a:a2:d2:8d:e2:d0:23:94:3f: 5f:86:6e:38:77:4a:42:40:22:a3:b6:a3:36:8e:57:ea:2f:12: 62:13:f2:ed:01:30:1c:5e:d8:a3:27:94:71:ca:29:d1:8d:c7: a5:41:ed:e6:62:88:fe:62:94:31:db:a8:17:6d:e8:b2:3d:a7: 58:f4:d1:f8:42:a6:13:db:26:75:d4:b4:89:e7:4c:e2:f0:9c: d2:af:a1:8c:be:40:fc:10:0c:82:e5:78:0a:6c:a7:e3:cf:1c: 41:c9:c6:10:79:f2:4e:16:75:66:b7:b7:13:eb:97:ce:e3:6b: cd:04:17:8d:04:5a:01:40:12:c7:11:3e:97:ac:c8:6e:c1:0b: cf:f8:50:70:1e:36:31:6a:ce:f1:80:e4:f2:1d:06:f4:4e:7c: 61:1b:df:ef:d8:56:3d:89:fd:0e:40:a4:d9:60:3a:a4:00:e3: 4d:f4:6a:2a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSSs7tbKHHOK1nuCnwm4KJCxvOWIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE5MjMyMzQwWhcNMjUxMTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZjQ1NTAwZGFiNzIwYjkxNmQ0ZWI5OWJiNGFhMmQ1NDQ2 MDFmNjAzYjk5ZTM0NTNmOTAwNzBhZjU4MGQwYmQ4MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+fb7RTnuyqtT1DBFd7h+23QWB5424WWjpj5pR+KslkFms NkYNM2jGzY2DbF/lRHtbXWWh06JZd4Gr3XZkb3jA9XXT6bCiaFWZE4xSH9yxhGHT ZaWbiHo/J6mYgtUcrGWcFkube27LK83KLwg8jgLSo8iwdejkIyFICxc37ogq8L7R sOd1766a9ivf9LHdmBK5GT8kw5qSaEy4K2JnZjLQh+CRdiP/RSmd3Rct2ahGKzzY wUFMs4nm3OAQROFMx7WoaTz/iGX/Jou7/gMwCzPCOp40MUGkElgCNp4x5SpQIl6D M6p1kX5Vv4YyMsw0XsRatqhlX0tyb+mh8DDTUt/pAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUJ3fDbeEv292g+r/VJLKnEOVUXAswHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzcwNzU4MzliLTNhZDctNDEwZS04NTk5LTg0OGI1NTA4YWZhMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAISQdwwDQYJKoZIhvcNAQELBQADggEBABC5jWgu8wpbgcRaUSoy+u8iUqzO CHG8isG1FM8C0NxqFskzPA8NyLplpNCcnQrX2vWY2i4mDJVjIVChRO5R03K6ArA6 4rm/7Bz9EuoSU2d0NQqi0o3i0COUP1+Gbjh3SkJAIqO2ozaOV+ovEmIT8u0BMBxe 2KMnlHHKKdGNx6VB7eZiiP5ilDHbqBdt6LI9p1j00fhCphPbJnXUtInnTOLwnNKv oYy+QPwQDILleApsp+PPHEHJxhB58k4WdWa3txPrl87ja80EF40EWgFAEscRPpes yG7BC8/4UHAeNjFqzvGA5PIdBvROfGEb3+/YVj2J/Q5ApNlgOqQA4030aio= -----END CERTIFICATE-----Generated at Mon Oct 20 11:09:16 2025 by rpki-client