$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8695cf89-1231-40f9-90db-af08a2fd4133.roa File: 8695cf89-1231-40f9-90db-af08a2fd4133.roa (raw, json) Hash identifier: nP2Mx8qFZkge1Dw+1BdbVZy0aq/Yf7qdwIhwwP9fIhM= Subject key identifier: 81:4A:EB:CF:B8:90:8C:FF:E6:A6:44:4A:38:42:C0:1A:20:C6:E3:35 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 5B3A9116A9182486BEA2927A959A463D9632B4A4 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8695cf89-1231-40f9-90db-af08a2fd4133.roa Signing time: Sat 18 Oct 2025 23:12:49 +0000 ROA not before: Sat 18 Oct 2025 23:12:49 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.164.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:3a:91:16:a9:18:24:86:be:a2:92:7a:95:9a:46:3d:96:32:b4:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 18 23:12:49 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=356469a1a18ca4bacb42cfde17c597a7aabf92e0eb64e78c60d2ddc1075692ee, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:e3:7a:ca:b9:c0:16:2a:c5:0e:3a:f0:d9:e2: 3b:89:5b:f4:9e:c0:d4:12:68:d6:fa:5c:db:f8:6a: 12:3f:3e:cf:98:88:86:81:6b:c6:c1:3a:8d:66:14: 0a:ee:4a:64:ce:53:7d:88:27:c9:34:42:d6:97:e0: d2:56:ac:96:17:f2:91:9a:de:b9:1e:ac:9f:de:ad: 52:f4:36:db:2f:cd:3b:96:84:81:42:89:71:c8:ac: 65:a6:80:34:76:68:95:a5:de:7b:34:2c:9b:96:9e: 72:bc:c1:cf:fb:11:49:a2:4f:9d:63:dd:92:7a:ba: 9f:d3:72:81:a1:4f:d7:0c:95:37:c7:d2:d5:45:ac: e6:15:50:6a:de:d8:2d:1e:74:23:85:cb:2b:c9:8d: 60:42:3f:5b:57:cc:35:7d:ac:d9:4f:9e:ff:7b:41: 63:39:74:20:1e:92:fa:07:77:b5:84:9c:34:8b:5c: 5d:1e:65:50:46:83:a8:8f:24:df:42:c2:4d:97:7c: a9:91:e0:ea:41:a7:a9:bc:fe:f1:70:80:1a:8b:14: 45:a8:3e:cc:56:6a:cf:35:6d:1a:b6:e4:55:de:51: 0a:5e:32:c4:bf:dc:d6:d4:da:3f:4e:ad:7c:c0:3f: 61:82:3a:43:3d:fe:65:ea:e8:45:fe:9c:c6:f7:1e: 01:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:4A:EB:CF:B8:90:8C:FF:E6:A6:44:4A:38:42:C0:1A:20:C6:E3:35 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8695cf89-1231-40f9-90db-af08a2fd4133.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.164.68.0/24 Signature Algorithm: sha256WithRSAEncryption 66:cb:b7:ec:c1:e4:bc:01:18:fa:d5:1e:67:a9:14:93:e3:9f: 69:66:c2:9c:df:00:ac:3e:42:7a:ec:e0:f7:f7:f9:8a:a5:65: cc:c4:e0:e6:02:a3:32:d7:c5:c2:b4:af:ae:c6:bf:a9:ca:a7: ab:d6:1a:e9:77:bb:be:fc:fa:ba:b8:67:89:45:d8:fd:7b:67: a6:bd:39:c9:d0:0f:01:e8:59:49:4f:4c:81:94:b7:7a:e0:ed: 13:43:66:a3:fb:b1:0a:5c:c9:03:91:e4:52:cb:ab:40:86:2d: 7a:49:b9:e7:fc:af:db:50:7e:88:63:8c:86:56:34:39:0e:0c: 19:46:ef:c6:d7:e1:6a:5c:29:b4:c2:d8:5e:b0:07:f5:ad:1f: 2e:1f:e5:26:9f:7f:54:f7:06:f3:30:76:fb:23:ba:1f:8f:f6: bc:12:9c:cf:6b:67:ce:cf:b1:6e:4d:77:a2:ae:53:bb:9a:dc: a9:9b:48:48:8a:8e:ec:49:cd:7e:bd:d7:b5:d9:45:15:58:44: 83:6e:09:6b:c4:19:16:58:48:0b:33:1b:51:de:70:2c:be:ae: 4d:4a:60:c0:eb:c2:88:a7:4a:e4:36:33:40:cb:d4:92:f5:2e: 91:08:20:0a:e0:4b:41:32:08:43:08:10:2c:22:fe:75:03:5e: d3:68:1a:ed -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWzqRFqkYJIa+opJ6lZpGPZYytKQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE4MjMxMjQ5WhcNMjUxMTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0AzNTY0NjlhMWExOGNhNGJhY2I0MmNmZGUxN2M1OTdhN2Fh YmY5MmUwZWI2NGU3OGM2MGQyZGRjMTA3NTY5MmVlMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDM43rKucAWKsUOOvDZ4juJW/SewNQSaNb6XNv4ahI/Ps+Y iIaBa8bBOo1mFAruSmTOU32IJ8k0QtaX4NJWrJYX8pGa3rkerJ/erVL0NtsvzTuW hIFCiXHIrGWmgDR2aJWl3ns0LJuWnnK8wc/7EUmiT51j3ZJ6up/TcoGhT9cMlTfH 0tVFrOYVUGre2C0edCOFyyvJjWBCP1tXzDV9rNlPnv97QWM5dCAekvoHd7WEnDSL XF0eZVBGg6iPJN9Cwk2XfKmR4OpBp6m8/vFwgBqLFEWoPsxWas81bRq25FXeUQpe MsS/3NbU2j9OrXzAP2GCOkM9/mXq6EX+nMb3HgGhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUgUrrz7iQjP/mpkRKOELAGiDG4zUwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzg2OTVjZjg5LTEyMzEtNDBmOS05MGRiLWFmMDhhMmZkNDEzMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAASpEQwDQYJKoZIhvcNAQELBQADggEBAGbLt+zB5LwBGPrVHmepFJPjn2lm wpzfAKw+Qnrs4Pf3+YqlZczE4OYCozLXxcK0r67Gv6nKp6vWGul3u778+rq4Z4lF 2P17Z6a9OcnQDwHoWUlPTIGUt3rg7RNDZqP7sQpcyQOR5FLLq0CGLXpJuef8r9tQ fohjjIZWNDkODBlG78bX4WpcKbTC2F6wB/WtHy4f5Saff1T3BvMwdvsjuh+P9rwS nM9rZ87PsW5Nd6KuU7ua3KmbSEiKjuxJzX6917XZRRVYRINuCWvEGRZYSAszG1He cCy+rk1KYMDrwoinSuQ2M0DL1JL1LpEIIArgS0EyCEMIECwi/nUDXtNoGu0= -----END CERTIFICATE-----Generated at Mon Oct 20 19:16:01 2025 by rpki-client