$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/72080fbd-4aa5-490a-891b-9a9cb5d78d4a.roa File: 72080fbd-4aa5-490a-891b-9a9cb5d78d4a.roa (raw, json) Hash identifier: DwdQ1hB/m98cNO5cXpI3XeBY4VyOsCZ7h8SAjipez4g= Subject key identifier: 08:3A:57:14:AC:91:B3:48:BE:89:7A:A9:BB:69:5A:E6:76:AE:12:33 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 6BB2A0A0D9CB6655496AA8B00BF9A6DFE5717FFA Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/72080fbd-4aa5-490a-891b-9a9cb5d78d4a.roa Signing time: Sat 18 Oct 2025 10:03:53 +0000 ROA not before: Sat 18 Oct 2025 10:03:53 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.244.120.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:b2:a0:a0:d9:cb:66:55:49:6a:a8:b0:0b:f9:a6:df:e5:71:7f:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 18 10:03:53 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=d52bf2129445d3b0440ecd7ed0a2ee90ca527942806f9bc62dce5268c3230ecf, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:45:2e:dc:71:34:a5:d6:62:24:4d:46:59:22: 4c:6b:e1:5c:25:bb:4d:bc:f0:47:a6:ef:05:9c:e8: b2:46:7f:38:ef:b1:e7:79:7e:6e:f2:4d:fe:27:19: 54:13:9c:1a:cb:07:67:7c:ab:00:fc:3e:d6:cc:2a: e8:e5:b5:55:e5:ff:85:5d:cc:5e:09:4b:25:73:0c: 6a:4f:89:c5:63:48:5d:57:fc:df:e9:83:96:e2:b6: 62:eb:b8:b5:b5:98:65:e9:0e:cf:5c:eb:af:c1:c9: a3:a7:08:93:4b:20:b6:54:2b:ce:a8:16:a8:f4:4f: 43:0d:e5:1e:48:28:e6:bf:13:6a:9e:a7:ca:da:28: 32:0b:d8:ce:ed:69:a7:ab:9d:a9:59:04:f9:99:35: f3:54:9e:d5:8e:9d:80:0e:28:84:4f:cc:79:75:fc: bd:55:40:2b:54:cd:77:8c:03:80:4c:67:f1:1e:32: 2e:ec:b3:0d:b8:87:97:89:b4:dc:00:fd:ab:5b:53: b4:08:d2:1d:99:4b:07:c1:07:9e:5b:69:ea:7e:17: 54:1c:5f:6a:5d:2e:16:0a:f5:91:76:e9:8b:f2:c8: 50:32:e7:a2:22:09:75:53:e1:4d:ad:36:8a:fa:d2: 2d:df:61:e4:ab:2f:01:ba:35:79:f4:0a:6c:b3:0b: 79:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:3A:57:14:AC:91:B3:48:BE:89:7A:A9:BB:69:5A:E6:76:AE:12:33 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/72080fbd-4aa5-490a-891b-9a9cb5d78d4a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.244.120.0/23 Signature Algorithm: sha256WithRSAEncryption 80:2f:25:f9:82:a9:c1:0b:a4:c1:73:4b:1a:77:97:94:7c:97: 55:c3:1b:a9:75:17:e9:88:72:87:b9:5b:d5:81:22:41:64:0b: 74:36:7a:9e:75:3b:88:19:18:c3:67:93:3c:8e:f1:a5:f8:7a: b8:a7:74:47:06:e0:a5:60:c4:17:a2:fe:e6:73:18:19:23:e3: 09:4c:da:87:80:bf:a8:ac:37:aa:ae:21:d3:87:9d:f8:16:b5: 84:b2:0a:b9:9c:82:47:7b:30:b3:c5:ab:50:77:12:74:07:d8: 87:a7:6e:23:24:f5:c5:0b:09:79:0c:b5:f6:91:9b:66:47:f6: 1a:81:cf:e0:43:56:f3:ad:d4:b5:e6:5a:05:c8:2f:23:12:5e: f6:b9:7c:f7:dd:57:be:3d:dd:4e:58:0f:ec:89:d5:7d:50:bd: bc:8b:b2:21:c0:17:10:0e:13:74:5f:e0:a2:cc:6f:d9:40:96: ac:77:21:f7:da:3f:c8:67:81:d8:c7:63:94:2a:0d:c6:4b:da: 4f:1c:49:fb:66:7e:43:ac:77:fd:57:32:ab:33:fc:1d:71:9c: 41:e5:fb:88:56:7b:e4:fb:ea:a8:60:b4:d9:6e:9f:50:aa:58: 61:a4:70:d1:b4:57:c7:a6:57:d4:3f:86:e0:4e:84:79:1d:7e: 6d:36:85:ae -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUa7KgoNnLZlVJaqiwC/mm3+Vxf/owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE4MTAwMzUzWhcNMjUxMTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BkNTJiZjIxMjk0NDVkM2IwNDQwZWNkN2VkMGEyZWU5MGNh NTI3OTQyODA2ZjliYzYyZGNlNTI2OGMzMjMwZWNmMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8RS7ccTSl1mIkTUZZIkxr4Vwlu0288Eem7wWc6LJGfzjv sed5fm7yTf4nGVQTnBrLB2d8qwD8PtbMKujltVXl/4VdzF4JSyVzDGpPicVjSF1X /N/pg5bitmLruLW1mGXpDs9c66/ByaOnCJNLILZUK86oFqj0T0MN5R5IKOa/E2qe p8raKDIL2M7taaernalZBPmZNfNUntWOnYAOKIRPzHl1/L1VQCtUzXeMA4BMZ/Ee Mi7ssw24h5eJtNwA/atbU7QI0h2ZSwfBB55baep+F1QcX2pdLhYK9ZF26YvyyFAy 56IiCXVT4U2tNor60i3fYeSrLwG6NXn0CmyzC3mrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUCDpXFKyRs0i+iXqpu2la5nauEjMwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzcyMDgwZmJkLTRhYTUtNDkwYS04OTFiLTlhOWNiNWQ3OGQ0YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAES9HgwDQYJKoZIhvcNAQELBQADggEBAIAvJfmCqcELpMFzSxp3l5R8l1XD G6l1F+mIcoe5W9WBIkFkC3Q2ep51O4gZGMNnkzyO8aX4erindEcG4KVgxBei/uZz GBkj4wlM2oeAv6isN6quIdOHnfgWtYSyCrmcgkd7MLPFq1B3EnQH2IenbiMk9cUL CXkMtfaRm2ZH9hqBz+BDVvOt1LXmWgXILyMSXva5fPfdV7493U5YD+yJ1X1QvbyL siHAFxAOE3Rf4KLMb9lAlqx3IffaP8hngdjHY5QqDcZL2k8cSftmfkOsd/1XMqsz /B1xnEHl+4hWe+T76qhgtNlun1CqWGGkcNG0V8emV9Q/huBOhHkdfm02ha4= -----END CERTIFICATE-----Generated at Mon Oct 20 05:16:36 2025 by rpki-client