$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/840d3958-0b16-44a8-9be9-57473e89771e.roa File: 840d3958-0b16-44a8-9be9-57473e89771e.roa (raw, json) Hash identifier: 1GYbqaUHrF5a6QgU5mpCvgkrI4COszDV3tQcT6KDw38= Subject key identifier: D0:A0:E6:90:F0:AE:F9:F9:42:99:B1:90:90:5B:7C:2B:F6:EB:CC:89 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 7DF3C3360E0FB151862C41ACA6C04CB5093F5B62 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/840d3958-0b16-44a8-9be9-57473e89771e.roa Signing time: Sat 18 Oct 2025 13:11:28 +0000 ROA not before: Sat 18 Oct 2025 13:11:28 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.244.105.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:f3:c3:36:0e:0f:b1:51:86:2c:41:ac:a6:c0:4c:b5:09:3f:5b:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 18 13:11:28 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=21dd3d2ee31321e87432a421e217987f67922e1a97162c0a3321dca03e4314ba, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:57:e0:89:7d:23:cd:5b:3d:78:fd:85:51:bf: 13:16:6a:82:3a:94:2e:48:3b:46:97:78:5b:45:dc: 77:28:b9:38:ff:de:cf:8b:f3:0f:dd:5c:b8:9f:98: ef:f1:7b:e1:9c:66:27:04:e8:8d:41:47:85:65:7e: e9:ae:de:7f:61:36:fd:22:de:68:ec:5e:e7:b6:c6: 79:43:68:2c:8c:1e:89:3b:00:5e:74:cc:39:a0:de: 87:76:c7:e2:be:ff:2e:ae:9e:39:ca:98:41:9b:d6: cd:0f:1c:46:16:b8:08:31:4a:7e:b3:6e:b6:59:4f: 76:36:f1:68:97:21:d6:df:bd:16:02:e3:35:2e:bb: a0:00:25:5c:5f:cd:7a:55:df:67:1a:8f:6f:71:b6: 39:ee:0d:3b:e3:55:4c:83:87:68:71:8e:a1:de:77: 22:31:ea:42:d3:da:1b:a2:22:ae:f3:f3:4a:19:1f: 73:d9:6c:9f:3a:a2:4f:12:f8:a9:10:07:12:a2:ca: 90:25:8b:00:f2:d0:c4:79:1b:ad:dd:c2:69:21:68: 8b:ec:57:1f:eb:0c:51:48:5b:37:d3:ef:39:fd:2d: 86:a8:fd:2b:7a:e4:c3:02:f0:2b:dd:0b:e0:2f:95: 63:9e:f5:9b:e3:3c:9a:52:24:8e:2d:de:2a:13:62: 99:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:A0:E6:90:F0:AE:F9:F9:42:99:B1:90:90:5B:7C:2B:F6:EB:CC:89 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/840d3958-0b16-44a8-9be9-57473e89771e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.244.105.0/24 Signature Algorithm: sha256WithRSAEncryption 94:54:66:0d:54:da:04:9c:45:0f:2c:9b:35:e7:16:d5:08:a7: e1:9f:d2:18:cd:81:de:5e:0e:4d:c5:78:70:af:85:e4:2f:53: 86:11:fc:46:86:3f:68:18:dc:00:74:50:f2:20:38:81:c1:dd: 20:0d:9d:65:a7:8e:25:35:57:d6:1c:f5:b8:5a:d7:6e:04:76: 2b:a4:20:88:0c:52:57:3d:73:2f:33:51:78:7b:6b:ef:74:9e: dd:80:6a:ec:37:90:f4:1f:48:6c:56:33:3b:38:6f:ba:78:7d: 74:e3:24:33:e7:74:36:7c:a6:ae:91:a4:fe:cb:a7:2a:75:de: 31:1c:a3:88:41:2f:aa:1b:83:b3:a8:cb:61:8c:2f:b3:43:a7: cf:ef:8a:49:64:06:6a:66:8c:33:ec:90:5e:1f:47:df:47:45: 74:93:4f:d2:f1:2b:9d:58:ba:35:7a:a6:19:bf:4a:f3:ac:9b: da:9b:bb:53:88:13:21:b7:2e:3d:64:0e:8e:54:22:cd:03:d9: 17:45:3c:86:d9:f9:48:b7:d0:2d:c2:87:ba:60:3d:7d:da:80: 03:53:fb:ec:0a:88:c8:65:0c:40:ec:73:49:a9:18:f0:bd:29: e4:9f:ae:1f:02:41:da:ac:fd:cc:14:38:d5:42:23:58:70:3e: cc:7a:56:4e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUffPDNg4PsVGGLEGspsBMtQk/W2IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE4MTMxMTI4WhcNMjUxMTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0AyMWRkM2QyZWUzMTMyMWU4NzQzMmE0MjFlMjE3OTg3ZjY3 OTIyZTFhOTcxNjJjMGEzMzIxZGNhMDNlNDMxNGJhMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjV+CJfSPNWz14/YVRvxMWaoI6lC5IO0aXeFtF3HcouTj/ 3s+L8w/dXLifmO/xe+GcZicE6I1BR4Vlfumu3n9hNv0i3mjsXue2xnlDaCyMHok7 AF50zDmg3od2x+K+/y6unjnKmEGb1s0PHEYWuAgxSn6zbrZZT3Y28WiXIdbfvRYC 4zUuu6AAJVxfzXpV32caj29xtjnuDTvjVUyDh2hxjqHedyIx6kLT2huiIq7z80oZ H3PZbJ86ok8S+KkQBxKiypAliwDy0MR5G63dwmkhaIvsVx/rDFFIWzfT7zn9LYao /St65MMC8CvdC+AvlWOe9ZvjPJpSJI4t3ioTYpktAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU0KDmkPCu+flCmbGQkFt8K/brzIkwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzg0MGQzOTU4LTBiMTYtNDRhOC05YmU5LTU3NDczZTg5NzcxZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAS9GkwDQYJKoZIhvcNAQELBQADggEBAJRUZg1U2gScRQ8smzXnFtUIp+Gf 0hjNgd5eDk3FeHCvheQvU4YR/EaGP2gY3AB0UPIgOIHB3SANnWWnjiU1V9Yc9bha 124EdiukIIgMUlc9cy8zUXh7a+90nt2Aauw3kPQfSGxWMzs4b7p4fXTjJDPndDZ8 pq6RpP7Lpyp13jEco4hBL6obg7Ooy2GML7NDp8/viklkBmpmjDPskF4fR99HRXST T9LxK51YujV6phm/SvOsm9qbu1OIEyG3Lj1kDo5UIs0D2RdFPIbZ+Ui30C3Ch7pg PX3agANT++wKiMhlDEDsc0mpGPC9KeSfrh8CQdqs/cwUONVCI1hwPsx6Vk4= -----END CERTIFICATE-----Generated at Mon Oct 20 08:44:03 2025 by rpki-client