$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/95e9d67d-7b92-41e6-baa1-6d723bca2dd3.roa File: 95e9d67d-7b92-41e6-baa1-6d723bca2dd3.roa (raw, json) Hash identifier: ToXKmzMTwmSoFfSEqY2xLcVR/5r+LSwRjCRZBu7P0Fc= Subject key identifier: 98:95:C4:B4:48:40:A6:7C:1E:CE:44:0F:4D:C4:12:E4:78:3F:E2:85 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 72A18F46433BF7D2629ABD471EF71CF3BA785B0D Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/95e9d67d-7b92-41e6-baa1-6d723bca2dd3.roa Signing time: Sun 19 Oct 2025 18:14:15 +0000 ROA not before: Sun 19 Oct 2025 18:14:15 +0000 ROA not after: Sun 23 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.64.132.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:a1:8f:46:43:3b:f7:d2:62:9a:bd:47:1e:f7:1c:f3:ba:78:5b:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 19 18:14:15 2025 GMT Not After : Nov 23 23:59:59 2025 GMT Subject: serialNumber=54100d4744dfcf95ec7a3fe2b53724302df5195949d1ea01126e0fcf7a917f0a, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:2b:1d:5f:4a:0c:11:74:2d:5d:4c:32:a1:43: 3e:bf:05:41:9d:04:d4:6c:26:65:7f:90:fa:49:b8: 0f:14:e9:b6:f4:5c:8f:9c:e7:2f:7d:9c:2b:6e:bd: 69:9b:12:d3:29:a2:64:3e:0c:49:ad:c6:5a:62:22: 27:dd:e2:9d:5f:ac:8a:13:36:aa:fc:16:48:b2:a1: 7d:01:6e:96:b2:9d:4d:0d:d9:94:24:ab:f5:48:90: ab:06:e8:c1:56:f3:d6:78:c2:41:ec:e0:16:b2:28: b6:d2:f7:17:ef:31:bc:a0:3b:f0:06:7c:6f:0f:ab: 0e:21:ac:f6:dd:fe:49:8f:d4:d6:37:e7:91:87:6e: 12:3e:79:c5:8f:58:19:75:ea:08:cd:0c:7e:02:d1: 39:40:38:09:bb:40:34:77:05:22:60:2b:a4:10:f7: e1:b3:32:24:9b:ad:9a:59:4a:ee:17:97:93:06:98: 83:d6:98:cd:ee:1c:df:fa:9c:a8:1f:ae:85:8f:ca: bc:ce:5a:a2:7e:95:c0:fc:33:ca:a4:13:7f:45:2c: 4a:3b:db:41:cd:47:0b:be:5b:42:da:dc:d9:b3:a8: 82:8a:f3:1b:5d:20:b5:06:2a:31:d9:cb:2f:47:35: fe:92:04:53:7b:c9:3b:7e:fa:0e:85:b7:89:b9:4b: 8b:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:95:C4:B4:48:40:A6:7C:1E:CE:44:0F:4D:C4:12:E4:78:3F:E2:85 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/95e9d67d-7b92-41e6-baa1-6d723bca2dd3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.64.132.0/23 Signature Algorithm: sha256WithRSAEncryption a4:d8:f3:23:2e:81:b5:99:85:5e:86:48:bf:ff:61:5b:04:7f: 2d:af:f8:6a:77:e2:9b:36:6f:f7:9d:41:97:bf:74:99:c1:7f: b0:f3:21:32:8b:0a:dc:7b:3f:e3:90:68:9e:4b:2c:f7:4f:7a: 25:be:cb:6b:cb:d0:25:be:34:09:58:4b:46:19:fc:5d:23:ef: 3c:93:0a:f3:88:4a:c5:8c:25:d9:6b:6a:93:85:a9:cf:27:6c: 4c:1a:4d:63:5c:ef:13:24:df:2c:17:0f:09:c2:6e:df:9e:73: bb:56:aa:9d:8c:68:c3:3f:4b:9b:41:9a:48:a7:fa:11:e8:45: 32:78:cb:75:da:02:3e:74:70:85:a2:8e:f1:96:d3:d5:3e:31: a1:8e:46:33:e4:2a:b2:4e:7b:14:db:f8:94:d2:4b:6c:c7:cb: 9c:dd:e4:5c:5b:ed:89:22:66:1b:54:a5:66:cc:5d:da:06:d0: b0:8c:ea:ac:61:c6:ca:27:75:2c:49:e7:63:ad:01:ac:c7:b3: 25:37:aa:46:08:ad:03:4a:72:99:5b:cf:89:c3:f7:54:ca:57: e0:0b:ae:72:53:46:25:98:3a:42:59:ac:d0:8f:40:73:21:2e: 87:3d:22:62:e5:b8:b1:0b:d4:1e:b0:74:c0:88:0f:5a:cc:f0: a1:21:23:c2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcqGPRkM799Jimr1HHvcc87p4Ww0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE5MTgxNDE1WhcNMjUxMTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A1NDEwMGQ0NzQ0ZGZjZjk1ZWM3YTNmZTJiNTM3MjQzMDJk ZjUxOTU5NDlkMWVhMDExMjZlMGZjZjdhOTE3ZjBhMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3Kx1fSgwRdC1dTDKhQz6/BUGdBNRsJmV/kPpJuA8U6bb0 XI+c5y99nCtuvWmbEtMpomQ+DEmtxlpiIifd4p1frIoTNqr8FkiyoX0BbpaynU0N 2ZQkq/VIkKsG6MFW89Z4wkHs4BayKLbS9xfvMbygO/AGfG8Pqw4hrPbd/kmP1NY3 55GHbhI+ecWPWBl16gjNDH4C0TlAOAm7QDR3BSJgK6QQ9+GzMiSbrZpZSu4Xl5MG mIPWmM3uHN/6nKgfroWPyrzOWqJ+lcD8M8qkE39FLEo720HNRwu+W0La3NmzqIKK 8xtdILUGKjHZyy9HNf6SBFN7yTt++g6Ft4m5S4thAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUmJXEtEhApnwezkQPTcQS5Hg/4oUwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzk1ZTlkNjdkLTdiOTItNDFlNi1iYWExLTZkNzIzYmNhMmRkMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAESQIQwDQYJKoZIhvcNAQELBQADggEBAKTY8yMugbWZhV6GSL//YVsEfy2v +Gp34ps2b/edQZe/dJnBf7DzITKLCtx7P+OQaJ5LLPdPeiW+y2vL0CW+NAlYS0YZ /F0j7zyTCvOISsWMJdlrapOFqc8nbEwaTWNc7xMk3ywXDwnCbt+ec7tWqp2MaMM/ S5tBmkin+hHoRTJ4y3XaAj50cIWijvGW09U+MaGORjPkKrJOexTb+JTSS2zHy5zd 5Fxb7YkiZhtUpWbMXdoG0LCM6qxhxsondSxJ52OtAazHsyU3qkYIrQNKcplbz4nD 91TKV+ALrnJTRiWYOkJZrNCPQHMhLoc9ImLluLEL1B6wdMCID1rM8KEhI8I= -----END CERTIFICATE-----Generated at Mon Oct 20 11:10:03 2025 by rpki-client