$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/765f9b32-638c-465b-b482-a34f5766f733.roa File: 765f9b32-638c-465b-b482-a34f5766f733.roa (raw, json) Hash identifier: mYn2Kvsg+pGjXJpBedJbTdH1HH8N5weRyfDWe7O3cFs= Subject key identifier: F8:E3:E8:BE:4D:75:09:C8:B1:AC:AB:11:14:6E:BB:6D:94:5B:74:4D Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 6360A771E6553A4341DF544CF6408C425778CD3E Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/765f9b32-638c-465b-b482-a34f5766f733.roa Signing time: Sat 18 Oct 2025 06:43:19 +0000 ROA not before: Sat 18 Oct 2025 06:43:19 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.161.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:60:a7:71:e6:55:3a:43:41:df:54:4c:f6:40:8c:42:57:78:cd:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 18 06:43:19 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=febcca8fa2ee97f00b3e32f93cab5277994091dcd6360f6bb6d11e5988b62294, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:23:0f:3f:79:32:75:30:4f:a5:a6:cb:ca:5d: fd:b0:d7:9a:46:66:6d:be:68:7e:54:95:f3:7e:d5: 69:04:0e:c1:7c:22:31:03:09:fc:55:15:eb:b9:1c: eb:00:06:a6:15:52:07:a4:0a:42:fa:77:c1:aa:54: 17:7b:5b:80:b6:da:6e:a9:5e:1c:49:ed:41:d6:d5: e1:a7:c3:d3:38:76:54:84:d1:56:19:6c:9f:15:6a: 0f:32:9e:0f:17:9a:e6:5a:9c:19:cf:97:18:84:a1: 1c:bf:bd:eb:c1:c2:15:78:3a:35:d3:aa:2c:fd:cc: ff:e1:4f:29:f8:a9:67:43:57:a6:fe:71:b9:8f:07: c7:91:f9:f8:97:54:4a:83:d7:eb:45:6f:56:18:24: 9a:5f:e7:7a:42:de:4d:86:33:dd:50:e7:3c:15:ec: 5b:07:9a:99:61:87:e9:9e:95:90:b5:3f:ed:b2:24: 3c:3e:28:bd:f5:b8:35:6d:ce:66:12:e8:c9:fd:d2: 19:ef:21:d2:21:68:4b:fc:65:ed:a7:b9:6f:b7:d3: 7a:d6:4b:66:d4:3c:a2:c1:5a:61:d6:18:67:4c:db: c4:ef:a4:13:ce:4e:f3:78:a7:e4:59:ab:dd:c3:0d: f6:42:10:0b:55:4b:d7:64:3d:57:2d:4b:df:9e:d4: f7:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:E3:E8:BE:4D:75:09:C8:B1:AC:AB:11:14:6E:BB:6D:94:5B:74:4D X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/765f9b32-638c-465b-b482-a34f5766f733.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.161.9.0/24 Signature Algorithm: sha256WithRSAEncryption 03:90:64:46:55:2d:de:0a:c9:b2:d9:47:3b:1e:07:df:a1:4a: fb:12:e6:66:6c:4f:24:af:7c:e8:fd:7a:c5:cf:a2:53:d6:83: 53:cd:e0:38:82:8c:68:40:5f:91:8a:49:0d:1a:21:c1:76:c5: 21:44:a8:8c:2c:30:8a:0d:6f:ef:43:fc:d8:94:53:41:f6:9e: ac:5f:37:cf:13:78:9c:b7:ca:1e:a6:47:62:7a:0f:ab:97:33: 54:f3:ed:16:9a:5f:c9:05:a5:44:54:99:e3:da:86:c0:19:74: f8:57:20:d3:3c:59:96:fd:45:c5:7a:62:94:bf:52:e9:4f:cb: e1:56:6a:21:48:85:2d:fd:b4:7d:70:44:77:11:f9:c9:a9:9f: 18:cd:8f:89:d8:19:a6:14:ef:3f:f5:79:14:62:04:97:e1:dc: 5f:70:78:39:8b:9b:fa:9a:2f:a5:13:32:97:b5:44:f7:82:45: 76:7d:f8:04:54:68:77:cb:10:ae:27:5d:ea:cb:73:a5:63:1a: ca:ee:f5:dc:59:4a:e5:dd:65:89:92:19:42:04:66:72:fa:85: e9:6c:6e:52:63:35:f5:95:f5:8c:0c:29:21:78:60:f3:71:17: 23:87:a6:89:a3:c7:f9:6c:5b:f0:03:f8:1d:dc:0c:de:e7:ad: 9f:76:9b:fb -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUY2CnceZVOkNB31RM9kCMQld4zT4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE4MDY0MzE5WhcNMjUxMTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BmZWJjY2E4ZmEyZWU5N2YwMGIzZTMyZjkzY2FiNTI3Nzk5 NDA5MWRjZDYzNjBmNmJiNmQxMWU1OTg4YjYyMjk0MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCIw8/eTJ1ME+lpsvKXf2w15pGZm2+aH5UlfN+1WkEDsF8 IjEDCfxVFeu5HOsABqYVUgekCkL6d8GqVBd7W4C22m6pXhxJ7UHW1eGnw9M4dlSE 0VYZbJ8Vag8yng8XmuZanBnPlxiEoRy/vevBwhV4OjXTqiz9zP/hTyn4qWdDV6b+ cbmPB8eR+fiXVEqD1+tFb1YYJJpf53pC3k2GM91Q5zwV7FsHmplhh+melZC1P+2y JDw+KL31uDVtzmYS6Mn90hnvIdIhaEv8Ze2nuW+303rWS2bUPKLBWmHWGGdM28Tv pBPOTvN4p+RZq93DDfZCEAtVS9dkPVctS9+e1PdjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU+OPovk11CcixrKsRFG67bZRbdE0wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzc2NWY5YjMyLTYzOGMtNDY1Yi1iNDgyLWEzNGY1NzY2ZjczMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAASoQkwDQYJKoZIhvcNAQELBQADggEBAAOQZEZVLd4KybLZRzseB9+hSvsS 5mZsTySvfOj9esXPolPWg1PN4DiCjGhAX5GKSQ0aIcF2xSFEqIwsMIoNb+9D/NiU U0H2nqxfN88TeJy3yh6mR2J6D6uXM1Tz7RaaX8kFpURUmePahsAZdPhXINM8WZb9 RcV6YpS/UulPy+FWaiFIhS39tH1wRHcR+cmpnxjNj4nYGaYU7z/1eRRiBJfh3F9w eDmLm/qaL6UTMpe1RPeCRXZ9+ARUaHfLEK4nXerLc6VjGsru9dxZSuXdZYmSGUIE ZnL6helsblJjNfWV9YwMKSF4YPNxFyOHpomjx/lsW/AD+B3cDN7nrZ92m/s= -----END CERTIFICATE-----Generated at Mon Oct 20 11:09:58 2025 by rpki-client