$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/77fe10f1-0c2d-4a12-a913-be30fb9345e5.roa File: 77fe10f1-0c2d-4a12-a913-be30fb9345e5.roa (raw, json) Hash identifier: fxrE9FUdiQ+6OcLGfnrhaU1QT24bC7TiC7+A1+269fE= Subject key identifier: FB:E3:72:F4:E5:98:2C:49:A0:EB:77:D2:58:5A:E6:49:E9:9D:F4:9A Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 053F8511C78C0FC005ECD8236C929242779C72 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/77fe10f1-0c2d-4a12-a913-be30fb9345e5.roa Signing time: Sat 18 Oct 2025 16:40:12 +0000 ROA not before: Sat 18 Oct 2025 16:40:12 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.165.202.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:3f:85:11:c7:8c:0f:c0:05:ec:d8:23:6c:92:92:42:77:9c:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 18 16:40:12 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=a13f8a72b28ba688eca1b808eb0e29190c708ad457f23d0ee0c4df160e87551a, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:62:aa:18:da:7e:60:20:9f:34:db:95:47:1d: c0:a7:d2:a2:ff:29:20:31:c3:f0:e5:ee:4a:f9:ee: 24:f9:9d:f2:f8:d2:6b:c3:67:a8:d4:66:e0:43:22: 48:68:e8:3e:9e:b6:e7:bc:39:3f:54:26:0d:5b:ac: 9b:4b:b0:43:1b:89:af:de:85:b9:e6:ff:81:d8:cb: 93:b4:ed:5e:6b:c8:15:20:9d:e9:78:10:35:b4:f5: d5:c1:24:b8:9d:69:75:81:d3:75:a9:94:d9:f0:bf: 1f:0f:31:b2:16:87:f2:e2:02:02:e7:fb:a3:94:05: 58:41:ac:ff:d5:ce:7c:4f:f6:85:ec:bc:35:32:8e: 88:62:de:bb:ad:24:a7:83:f5:00:12:b2:5b:7e:ae: 34:30:28:fa:57:88:d9:d2:97:15:81:e1:14:52:75: 74:47:dc:3d:c1:59:ff:63:cd:ca:83:75:5e:e3:18: 8b:93:74:b9:4a:0e:b2:90:bf:77:7d:1c:89:27:2f: 9d:6a:ac:e0:27:13:da:47:51:cf:cd:d2:75:e3:60: fd:e2:2b:fb:59:34:06:88:0f:ca:b4:04:b4:73:45: 74:f5:dc:0a:6b:db:4f:61:87:d3:fb:6c:1d:77:6c: f3:e4:1f:37:53:f7:c1:e5:8d:6d:82:bd:6b:c8:57: 3f:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:E3:72:F4:E5:98:2C:49:A0:EB:77:D2:58:5A:E6:49:E9:9D:F4:9A X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/77fe10f1-0c2d-4a12-a913-be30fb9345e5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.165.202.0/23 Signature Algorithm: sha256WithRSAEncryption ae:38:78:18:4e:c2:f1:a3:50:c0:52:11:d9:9f:e6:69:38:21: ab:0f:f4:71:3d:7b:64:da:95:fc:e0:bd:7c:36:c6:76:2b:d2: 3c:0f:f8:04:b3:2c:8a:08:60:74:f5:c3:ae:fa:06:57:59:e8: 6d:94:5b:ce:d5:e8:a4:ce:81:7c:61:b4:1b:d1:d5:1c:4c:dc: 89:70:6b:a7:cc:96:9a:ab:b6:9e:27:f8:03:90:8a:89:59:57: 3b:5b:44:83:8f:b7:e0:df:03:cc:e4:5e:62:ac:56:ff:7f:0b: 35:e2:f3:3e:5c:68:3b:93:3d:3c:33:39:b0:8e:e4:fc:0e:b4: 06:a0:6e:16:03:fc:74:2b:46:9d:9e:01:8a:c1:e1:88:ba:3a: f6:6f:93:e0:de:d6:8e:6d:d8:24:02:64:bf:55:b9:4e:ac:96: a5:e8:b7:35:a2:98:d3:4a:4b:d8:65:94:1a:a1:64:bb:14:ad: 34:63:ae:c8:da:eb:46:74:7f:15:ff:1a:40:29:68:2e:87:89: 33:9f:71:71:48:2f:db:c0:f4:45:4a:5d:19:dd:0d:a3:b6:16: 3e:95:fa:5f:b7:39:e0:63:c0:3e:85:70:bc:34:a3:26:34:2d: f3:23:b5:ea:bc:e2:fe:f3:14:24:5b:2d:b9:a8:f2:3b:18:81: 38:a8:95:68 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITBT+FEceMD8AF7NgjbJKSQneccjANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzJkZjZmM2IzYTM0YjYzODZkMWEzMmQ4ZjRmYTMxNzhlZjMx ODg3ZDhiNDI4ZGZhYTQ3NjAeFw0yNTEwMTgxNjQwMTJaFw0yNTExMjIyMzU5NTla MHoxSTBHBgNVBAUTQGExM2Y4YTcyYjI4YmE2ODhlY2ExYjgwOGViMGUyOTE5MGM3 MDhhZDQ1N2YyM2QwZWUwYzRkZjE2MGU4NzU1MWExLTArBgNVBAMTJDVmMjc2MDQ1 LTViOWYtNDVlZi05MjNkLWYzZmNlMjRhNjIyNTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAKliqhjafmAgnzTblUcdwKfSov8pIDHD8OXuSvnuJPmd8vjS a8NnqNRm4EMiSGjoPp6257w5P1QmDVusm0uwQxuJr96Fueb/gdjLk7TtXmvIFSCd 6XgQNbT11cEkuJ1pdYHTdamU2fC/Hw8xshaH8uICAuf7o5QFWEGs/9XOfE/2hey8 NTKOiGLeu60kp4P1ABKyW36uNDAo+leI2dKXFYHhFFJ1dEfcPcFZ/2PNyoN1XuMY i5N0uUoOspC/d30ciScvnWqs4CcT2kdRz83SdeNg/eIr+1k0BogPyrQEtHNFdPXc CmvbT2GH0/tsHXds8+QfN1P3weWNbYK9a8hXPzkCAwEAAaOCArEwggKtMB0GA1Ud DgQWBBT743L05ZgsSaDrd9JYWuZJ6Z30mjAfBgNVHSMEGDAWgBQlrdNCsB63pY6t GZAmiLVLP4H0uDAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzg1MWNlZjE3LTEz MmEtNDMzNy1iN2QxLWJmMTZhNTJmZmQwMy9kZjZmM2IzYTM0YjYzODZkMWEzMmQ4 ZjRmYTMxNzhlZjMxODg3ZDhiNDI4ZGZhYTQ3Ni5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9mNzAzNjk2ZS1lNDdiLTRjMjAtYmQ5My02Zjgw OTA0ZTQyZDIvNzdmZTEwZjEtMGMyZC00YTEyLWE5MTMtYmUzMGZiOTM0NWU1LnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMt NmY4MDkwNGU0MmQyL3RqaHRHakxZOVBveGVPOHhpSDJMUW8zNnBIWS5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEARKlyjANBgkqhkiG9w0BAQsFAAOCAQEArjh4GE7C8aNQwFIR2Z/maTghqw/0 cT17ZNqV/OC9fDbGdivSPA/4BLMsighgdPXDrvoGV1nobZRbztXopM6BfGG0G9HV HEzciXBrp8yWmqu2nif4A5CKiVlXO1tEg4+34N8DzOReYqxW/38LNeLzPlxoO5M9 PDM5sI7k/A60BqBuFgP8dCtGnZ4BisHhiLo69m+T4N7Wjm3YJAJkv1W5TqyWpei3 NaKY00pL2GWUGqFkuxStNGOuyNrrRnR/Ff8aQCloLoeJM59xcUgv28D0RUpdGd0N o7YWPpX6X7c54GPAPoVwvDSjJjQt8yO16rzi/vMUJFstuajyOxiBOKiVaA== -----END CERTIFICATE-----Generated at Mon Oct 20 05:17:10 2025 by rpki-client