$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/960c73e9-209a-43e6-a516-998c6d9d83d1.roa File: 960c73e9-209a-43e6-a516-998c6d9d83d1.roa (raw, json) Hash identifier: t7b8JNzLQM9BUdUzHTz0NzEaiEdEWGbP2D+vVxlc6lY= Subject key identifier: FD:31:2F:DB:18:12:E2:DC:6F:1E:9E:DD:D6:27:9C:15:40:3A:EF:EC Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 5B7DF8071939C4A732E3CB58D9775090DF56DAA2 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/960c73e9-209a-43e6-a516-998c6d9d83d1.roa Signing time: Sat 18 Oct 2025 17:10:09 +0000 ROA not before: Sat 18 Oct 2025 17:10:09 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.160.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:7d:f8:07:19:39:c4:a7:32:e3:cb:58:d9:77:50:90:df:56:da:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 18 17:10:09 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=424d1587df438de10bbfa6167b0623b615b6fcd958a44c8848669397c63a5658, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:1e:f1:c8:65:65:68:c9:0f:7f:c2:55:e2:db: b1:85:b4:9b:ed:3a:66:5e:71:6b:21:e0:eb:79:7a: 0b:0e:02:96:1b:a2:25:e9:e2:eb:10:23:7e:00:8d: d9:e4:1d:7e:eb:57:5d:60:70:a8:d7:33:f6:6a:e9: 9e:a4:40:08:fe:ab:84:be:ba:31:6e:5c:5b:b8:d7: 41:c5:87:8c:27:8c:29:8b:c4:83:8e:58:0b:75:4a: 5e:0e:ea:f5:b2:5b:87:dd:ef:1a:55:78:f2:40:e0: 1a:48:0a:cc:ba:94:a8:5b:3b:a1:82:49:8f:91:93: 24:8c:b9:e5:99:c4:a9:e7:1a:df:c0:22:19:e3:c1: fa:52:34:16:93:10:37:39:ab:e9:83:04:27:48:26: c5:6c:8f:93:45:13:e7:20:9c:2f:0a:7e:cf:c1:c6: e0:eb:b8:f7:4a:a5:93:9a:02:c0:98:e2:c8:8d:67: d7:0e:92:2e:1d:3e:2d:c5:ff:fb:71:ca:4a:5a:a7: 26:25:06:c6:f2:ce:f0:dd:5c:63:81:f2:ab:79:4d: 73:be:39:83:72:e2:a4:62:04:98:3b:e6:c1:f1:cf: 06:59:16:90:fa:8b:52:e8:59:a9:18:8b:f8:ae:55: 7d:26:1a:6b:22:e3:74:9c:24:29:c1:27:97:52:78: c8:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:31:2F:DB:18:12:E2:DC:6F:1E:9E:DD:D6:27:9C:15:40:3A:EF:EC X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/960c73e9-209a-43e6-a516-998c6d9d83d1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.160.154.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:2b:f8:66:24:d7:4b:e5:a4:33:d1:94:1b:c2:1d:12:14:a9: 91:78:30:9d:b8:a8:9c:88:e4:3a:63:c6:f8:2a:19:a8:4f:b1: 84:37:6b:73:6a:12:8e:ea:b1:07:46:87:2b:b7:4d:2a:55:38: 49:a4:bb:b7:cb:91:de:85:39:e2:42:7a:d6:f6:ae:9a:19:21: cf:0c:34:6d:d9:67:6d:b2:57:77:59:dc:6b:43:1c:3d:e0:d8: 78:cf:dc:bc:da:bd:3e:a0:9b:ed:f0:3c:bc:56:b5:2b:9d:dd: b9:b6:f4:0d:ac:73:95:03:b5:35:44:ac:f5:15:2f:ba:4e:93: 29:5d:8a:15:c6:01:fa:96:29:27:da:6b:12:31:d9:47:f9:57: 05:1d:44:b0:cd:72:eb:6a:c8:6e:91:1c:35:8b:b9:84:12:68: c9:77:72:b3:4b:2a:56:e7:a7:99:34:2a:74:0f:b2:76:4f:65: 01:15:fb:0a:25:2d:6e:b0:f4:7c:1b:78:83:cb:3e:ae:45:ac: ba:c4:3d:da:18:a4:aa:c2:70:36:eb:5e:37:33:40:62:d4:3b: 5d:ad:7c:65:85:ef:e9:cc:cc:7e:d3:9f:ec:60:0f:e7:79:87: fd:20:c9:ef:b9:09:6a:d6:67:8d:6a:8a:2d:27:62:af:09:e9: 4f:39:db:f7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUW334Bxk5xKcy48tY2XdQkN9W2qIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE4MTcxMDA5WhcNMjUxMTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A0MjRkMTU4N2RmNDM4ZGUxMGJiZmE2MTY3YjA2MjNiNjE1 YjZmY2Q5NThhNDRjODg0ODY2OTM5N2M2M2E1NjU4MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDlHvHIZWVoyQ9/wlXi27GFtJvtOmZecWsh4Ot5egsOApYb oiXp4usQI34AjdnkHX7rV11gcKjXM/Zq6Z6kQAj+q4S+ujFuXFu410HFh4wnjCmL xIOOWAt1Sl4O6vWyW4fd7xpVePJA4BpICsy6lKhbO6GCSY+RkySMueWZxKnnGt/A IhnjwfpSNBaTEDc5q+mDBCdIJsVsj5NFE+cgnC8Kfs/BxuDruPdKpZOaAsCY4siN Z9cOki4dPi3F//txykpapyYlBsbyzvDdXGOB8qt5TXO+OYNy4qRiBJg75sHxzwZZ FpD6i1LoWakYi/iuVX0mGmsi43ScJCnBJ5dSeMirAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU/TEv2xgS4txvHp7d1iecFUA67+wwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzk2MGM3M2U5LTIwOWEtNDNlNi1hNTE2LTk5OGM2ZDlkODNkMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAASoJowDQYJKoZIhvcNAQELBQADggEBAFsr+GYk10vlpDPRlBvCHRIUqZF4 MJ24qJyI5DpjxvgqGahPsYQ3a3NqEo7qsQdGhyu3TSpVOEmku7fLkd6FOeJCetb2 rpoZIc8MNG3ZZ22yV3dZ3GtDHD3g2HjP3LzavT6gm+3wPLxWtSud3bm29A2sc5UD tTVErPUVL7pOkyldihXGAfqWKSfaaxIx2Uf5VwUdRLDNcutqyG6RHDWLuYQSaMl3 crNLKlbnp5k0KnQPsnZPZQEV+wolLW6w9HwbeIPLPq5FrLrEPdoYpKrCcDbrXjcz QGLUO12tfGWF7+nMzH7Tn+xgD+d5h/0gye+5CWrWZ41qii0nYq8J6U852/c= -----END CERTIFICATE-----Generated at Mon Oct 20 08:29:49 2025 by rpki-client