$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7722670b-c9e5-4e32-8a42-3252342898d4.roa File: 7722670b-c9e5-4e32-8a42-3252342898d4.roa (raw, json) Hash identifier: fD+LUhJ+2oN+IA1xRSTL/ybHRjb6veJspnliDtMMF/U= Subject key identifier: DB:81:E7:78:F5:95:03:D4:98:A7:C5:74:6A:CD:31:AC:CF:5B:89:F1 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 6D1B84B600F9424A3F572908EFF7C6D23D3F2B6E Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7722670b-c9e5-4e32-8a42-3252342898d4.roa Signing time: Thu 16 Oct 2025 01:07:28 +0000 ROA not before: Thu 16 Oct 2025 01:07:28 +0000 ROA not after: Thu 20 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.68.54.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:1b:84:b6:00:f9:42:4a:3f:57:29:08:ef:f7:c6:d2:3d:3f:2b:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 16 01:07:28 2025 GMT Not After : Nov 20 23:59:59 2025 GMT Subject: serialNumber=e1eecb15e8395d1bcba3d4469295c11b5cf7fa59bdb981bf0f053d015f1c050b, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:b0:b0:25:20:2f:d7:ea:8e:61:ad:05:b0:cc: 5b:75:74:8c:18:2b:98:a1:03:7f:a5:3a:fa:fd:e7: 42:fa:8e:01:da:a4:6c:4b:e2:56:18:1c:40:0b:be: d0:6f:42:b0:48:0d:c5:c6:ce:a4:03:d1:1c:34:3a: 8e:38:66:7a:22:60:97:7b:be:72:c2:33:a3:53:ec: ed:a1:29:1a:56:54:d3:33:23:1d:0e:aa:dd:f2:c8: c6:f5:16:6a:77:69:fd:9b:01:d1:ad:a7:dc:8e:e6: 7a:89:d3:2b:89:88:32:be:a1:ac:cc:95:24:e2:92: 80:9b:d7:b5:f4:81:f2:51:43:46:ea:e0:0f:c7:d0: b7:6f:9d:e3:c9:69:2f:7c:a8:a0:33:7e:5b:a3:84: 2f:7e:5f:ac:5c:36:e7:e3:42:f9:c2:4f:b8:dd:17: 33:3a:38:22:b2:ef:91:21:a0:d8:c6:91:00:12:5e: e5:7c:27:97:b4:8a:99:54:0e:f6:14:a2:aa:ea:6f: d8:05:fd:61:a4:7a:29:f4:45:40:7a:06:86:1c:30: 76:da:8c:cc:3c:65:d7:30:03:58:0b:03:0d:d9:73: b5:8b:93:1a:44:9c:84:7e:fa:95:9e:55:fc:a0:42: de:9b:e0:20:9d:24:ed:f5:a1:81:20:b2:1c:af:61: fa:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:81:E7:78:F5:95:03:D4:98:A7:C5:74:6A:CD:31:AC:CF:5B:89:F1 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7722670b-c9e5-4e32-8a42-3252342898d4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.68.54.0/24 Signature Algorithm: sha256WithRSAEncryption 89:f2:4f:a7:be:2b:4c:af:9f:27:bb:b7:e8:28:88:89:36:ea: 70:23:b2:51:9b:15:20:04:2f:67:a4:f2:cb:6e:26:a7:db:5e: a4:0e:c3:77:0a:dd:2a:2c:f2:e0:59:39:9d:2c:ac:17:01:90: d3:91:61:95:4a:d6:cd:99:9d:14:50:41:e3:0f:ea:4c:52:35: 2d:19:89:a2:06:07:e9:b4:95:a8:8f:ad:1d:07:ea:61:6a:7e: 61:ff:5d:a0:06:09:b6:a7:fa:bf:a1:fb:26:7a:3f:0c:d1:b7: 8d:9f:a2:63:e1:c7:1a:8d:20:c2:e2:02:bb:db:ee:16:d7:db: 92:30:b7:98:37:d9:f0:ce:ea:75:57:4a:fc:fc:6e:b9:96:9e: 3e:c6:1b:2c:0d:48:4c:c4:86:f2:f5:68:38:b5:45:5d:50:0c: 77:7b:20:7b:93:bf:8e:f9:c1:ac:71:99:82:2c:4c:57:19:78: 9f:d3:a8:e0:64:3f:ea:6e:ea:ce:a0:3b:86:2b:aa:d6:91:ed: 31:40:d0:23:ab:ea:60:85:13:99:be:fd:db:3c:0b:ac:d5:e7: d6:4a:3a:88:e7:72:24:c2:b5:a7:41:13:73:e6:c2:fa:1c:66: 9e:0d:64:b5:0f:1c:49:d2:3e:23:de:7e:90:3b:20:00:e2:4d: 67:63:67:2e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbRuEtgD5Qko/VykI7/fG0j0/K24wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE2MDEwNzI4WhcNMjUxMTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BlMWVlY2IxNWU4Mzk1ZDFiY2JhM2Q0NDY5Mjk1YzExYjVj ZjdmYTU5YmRiOTgxYmYwZjA1M2QwMTVmMWMwNTBiMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgsLAlIC/X6o5hrQWwzFt1dIwYK5ihA3+lOvr950L6jgHa pGxL4lYYHEALvtBvQrBIDcXGzqQD0Rw0Oo44ZnoiYJd7vnLCM6NT7O2hKRpWVNMz Ix0Oqt3yyMb1Fmp3af2bAdGtp9yO5nqJ0yuJiDK+oazMlSTikoCb17X0gfJRQ0bq 4A/H0LdvnePJaS98qKAzflujhC9+X6xcNufjQvnCT7jdFzM6OCKy75EhoNjGkQAS XuV8J5e0iplUDvYUoqrqb9gF/WGkein0RUB6BoYcMHbajMw8ZdcwA1gLAw3Zc7WL kxpEnIR++pWeVfygQt6b4CCdJO31oYEgshyvYfp9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU24HnePWVA9SYp8V0as0xrM9bifEwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzc3MjI2NzBiLWM5ZTUtNGUzMi04YTQyLTMyNTIzNDI4OThkNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAASRDYwDQYJKoZIhvcNAQELBQADggEBAInyT6e+K0yvnye7t+goiIk26nAj slGbFSAEL2ek8stuJqfbXqQOw3cK3Sos8uBZOZ0srBcBkNORYZVK1s2ZnRRQQeMP 6kxSNS0ZiaIGB+m0laiPrR0H6mFqfmH/XaAGCban+r+h+yZ6PwzRt42fomPhxxqN IMLiArvb7hbX25Iwt5g32fDO6nVXSvz8brmWnj7GGywNSEzEhvL1aDi1RV1QDHd7 IHuTv475waxxmYIsTFcZeJ/TqOBkP+pu6s6gO4YrqtaR7TFA0COr6mCFE5m+/ds8 C6zV59ZKOojnciTCtadBE3PmwvocZp4NZLUPHEnSPiPefpA7IADiTWdjZy4= -----END CERTIFICATE-----Generated at Mon Oct 20 11:55:04 2025 by rpki-client