$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/958bb69d-ad49-4971-ab9f-683a25e1e3dc.roa File: 958bb69d-ad49-4971-ab9f-683a25e1e3dc.roa (raw, json) Hash identifier: iR7lN9aCLaBZYioc/iS6Z8jZFqCMpjw4Wni/69iHA0Y= Subject key identifier: 1F:68:76:09:51:34:AC:B7:3B:86:0D:79:91:C7:D9:49:C6:AA:F9:BB Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 5277B06FD6CF9C5D235ADF6D0603E04B5CDB2E53 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/958bb69d-ad49-4971-ab9f-683a25e1e3dc.roa Signing time: Sat 18 Oct 2025 13:20:13 +0000 ROA not before: Sat 18 Oct 2025 13:20:13 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.239.156.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:77:b0:6f:d6:cf:9c:5d:23:5a:df:6d:06:03:e0:4b:5c:db:2e:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 18 13:20:13 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=df0b7a0cf0430d1ca00ef1dc39a5a8b9bff50b5499803ecdfe3e43ace0cb48f7, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:fd:cc:fe:e1:47:6a:ac:4a:6c:42:88:ae:bc: 83:30:01:6e:9c:43:85:50:4d:e2:ad:ec:13:d2:fb: 7c:9e:07:61:ec:a2:a7:55:30:43:99:1e:31:5c:54: be:63:62:78:10:b7:d0:48:14:e1:53:6e:0f:4c:0b: f9:bc:cc:54:3c:d7:df:47:d5:a7:c8:7a:bc:10:f8: 06:94:d5:1d:56:06:bd:bc:b4:94:86:a1:27:d5:ef: 76:c6:18:0c:14:16:c1:5b:18:9f:8d:d6:05:94:a3: 17:4c:cf:d3:8b:88:3e:b7:90:ed:b8:f2:ee:ad:e4: 84:58:75:b6:7b:90:98:5e:90:e2:cd:af:a3:a0:05: 4b:6d:21:a7:e1:4b:40:90:c9:9d:a7:7d:4f:93:8e: 35:4c:71:c4:31:f9:64:1b:86:5f:66:5e:72:a2:27: b4:f8:90:2e:13:85:a7:4b:b9:53:f3:61:90:71:ea: 96:4f:82:bf:68:7f:5b:5d:49:72:72:d6:ca:28:78: 65:57:d9:51:e7:48:b7:26:eb:88:b7:24:21:7e:74: 86:9b:c3:b6:2a:51:06:3a:e9:9b:ec:08:6d:28:80: a5:71:b4:e7:e4:8c:a6:c4:60:25:cc:e3:c8:cf:ec: 12:89:45:06:6a:8a:6f:b8:9d:ad:25:1c:9a:aa:80: 69:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:68:76:09:51:34:AC:B7:3B:86:0D:79:91:C7:D9:49:C6:AA:F9:BB X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/958bb69d-ad49-4971-ab9f-683a25e1e3dc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.239.156.0/23 Signature Algorithm: sha256WithRSAEncryption 8a:e2:71:85:83:64:9f:a2:dc:a3:2f:d2:ac:cf:b8:95:e2:83: 42:7a:69:b4:e1:c5:67:42:1d:b9:88:7a:0d:47:87:4f:f0:24: 08:d1:e4:ad:a6:53:34:67:b6:41:4c:c0:21:9a:5b:d8:91:ab: 1f:f4:c8:eb:dd:59:78:0e:6c:93:30:b2:41:c9:15:42:8b:f8: 13:fc:32:a3:33:02:da:f2:ae:f2:01:d4:88:21:86:d8:11:52: 0e:99:43:f7:2b:e5:76:ed:ca:bc:b4:71:a5:bb:c8:da:6c:52: 75:a1:de:97:17:28:eb:9f:e3:89:b9:ff:7c:68:8a:ed:e1:2f: 36:78:81:0b:0f:da:e6:89:70:ce:89:a0:0c:8b:a5:ae:7f:72: 5e:ed:94:4b:fe:5b:2f:5a:1a:5f:b6:c2:39:9d:d0:42:ca:18: d8:b1:9c:58:05:3e:73:b0:cf:63:a0:d1:32:a3:7a:e7:bf:73: a8:40:5d:e4:68:d5:cd:f3:5c:f6:02:52:21:15:83:f8:e9:5f: 4c:ec:9d:99:41:fa:d0:1f:4c:61:c2:bd:d5:8a:bb:25:10:4a: 1b:2e:f0:ea:be:57:11:d6:b3:cc:e5:af:b1:6b:ba:77:50:05: df:38:03:58:76:d4:2a:2f:5a:61:87:b7:59:7b:19:da:fe:e5: 7d:ba:c3:0b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUnewb9bPnF0jWt9tBgPgS1zbLlMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE4MTMyMDEzWhcNMjUxMTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BkZjBiN2EwY2YwNDMwZDFjYTAwZWYxZGMzOWE1YThiOWJm ZjUwYjU0OTk4MDNlY2RmZTNlNDNhY2UwY2I0OGY3MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCL/cz+4UdqrEpsQoiuvIMwAW6cQ4VQTeKt7BPS+3yeB2Hs oqdVMEOZHjFcVL5jYngQt9BIFOFTbg9MC/m8zFQ8199H1afIerwQ+AaU1R1WBr28 tJSGoSfV73bGGAwUFsFbGJ+N1gWUoxdMz9OLiD63kO248u6t5IRYdbZ7kJhekOLN r6OgBUttIafhS0CQyZ2nfU+TjjVMccQx+WQbhl9mXnKiJ7T4kC4ThadLuVPzYZBx 6pZPgr9of1tdSXJy1sooeGVX2VHnSLcm64i3JCF+dIabw7YqUQY66ZvsCG0ogKVx tOfkjKbEYCXM48jP7BKJRQZqim+4na0lHJqqgGmFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUH2h2CVE0rLc7hg15kcfZScaq+bswHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzk1OGJiNjlkLWFkNDktNDk3MS1hYjlmLTY4M2EyNWUxZTNkYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAES75wwDQYJKoZIhvcNAQELBQADggEBAIricYWDZJ+i3KMv0qzPuJXig0J6 abThxWdCHbmIeg1Hh0/wJAjR5K2mUzRntkFMwCGaW9iRqx/0yOvdWXgObJMwskHJ FUKL+BP8MqMzAtryrvIB1IghhtgRUg6ZQ/cr5Xbtyry0caW7yNpsUnWh3pcXKOuf 44m5/3xoiu3hLzZ4gQsP2uaJcM6JoAyLpa5/cl7tlEv+Wy9aGl+2wjmd0ELKGNix nFgFPnOwz2Og0TKjeue/c6hAXeRo1c3zXPYCUiEVg/jpX0zsnZlB+tAfTGHCvdWK uyUQShsu8Oq+VxHWs8zlr7FrundQBd84A1h21CovWmGHt1l7Gdr+5X26wws= -----END CERTIFICATE-----Generated at Mon Oct 20 08:29:58 2025 by rpki-client