$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9a4f8175-d54e-4c06-8a3e-b709d85b4f68.roa File: 9a4f8175-d54e-4c06-8a3e-b709d85b4f68.roa (raw, json) Hash identifier: uNTyfCObldi13GvTHh9fluDATRF/O5UanAgxMGgYDWU= Subject key identifier: 05:3B:EA:6B:CA:3C:41:50:11:F5:ED:FF:45:D8:25:AD:FF:A8:89:CF Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 6505B9D9F08D7FDF9CBE1C37D503003D7888FDB9 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9a4f8175-d54e-4c06-8a3e-b709d85b4f68.roa Signing time: Sat 18 Oct 2025 14:30:17 +0000 ROA not before: Sat 18 Oct 2025 14:30:17 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.239.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:05:b9:d9:f0:8d:7f:df:9c:be:1c:37:d5:03:00:3d:78:88:fd:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 18 14:30:17 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=ca0f60f57faf2885d9fd5bcd14f0e75f073b11a2dfaab10a4f8fe406fd635484, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:0a:24:18:ae:f1:c3:82:37:b8:14:61:40:51: 23:22:64:91:66:d3:7c:22:c8:a9:7a:f4:fd:5d:1c: bd:c4:5f:33:84:52:4c:62:50:17:1d:12:89:bf:ca: 24:a9:a5:b1:36:2e:e7:46:96:0e:c3:3f:78:b4:78: cb:bd:78:23:dc:84:ba:27:2b:2c:9e:37:43:3d:02: 5f:32:9e:86:1c:50:5b:8c:3e:7f:f1:6f:56:3b:00: a8:96:2e:7b:7a:8a:a1:47:c1:a7:97:ed:66:37:90: f2:c3:18:25:8f:83:30:3b:b9:81:94:f8:6f:08:28: 0f:86:8b:df:a7:c6:af:8d:cb:20:f4:e1:04:9c:2f: 2c:59:13:72:2b:3d:8b:62:fe:39:f9:1a:9d:d4:e7: 31:23:1d:c3:ee:91:dc:f5:3e:94:9a:2b:da:08:e7: 50:10:d0:a5:ba:b7:05:be:49:ce:19:8d:8f:fb:46: e7:c3:e3:0d:c7:3b:ff:ed:87:a9:9b:f7:a2:55:53: 17:e1:b1:f3:e5:86:2c:d4:24:08:41:d5:9b:ab:d5: 96:ec:01:01:25:73:b0:8d:a0:37:09:c8:64:b4:95: 28:33:7c:37:3e:f6:4c:6a:95:46:77:6f:48:0b:ae: 82:4f:6e:c2:90:cb:57:92:12:59:fd:5b:2b:35:cc: 49:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:3B:EA:6B:CA:3C:41:50:11:F5:ED:FF:45:D8:25:AD:FF:A8:89:CF X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9a4f8175-d54e-4c06-8a3e-b709d85b4f68.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.239.199.0/24 Signature Algorithm: sha256WithRSAEncryption 98:9c:b9:5e:a6:1b:42:88:21:45:78:7b:ee:28:fd:10:6b:96: cc:b8:43:65:b2:e8:3c:53:1c:8b:0a:06:a8:35:c4:56:47:5e: 13:3e:7f:7e:26:41:8f:0f:16:2e:bc:1f:05:c6:65:c5:53:70: 0c:d3:6b:1b:6e:a7:48:e4:52:14:4b:78:98:3c:99:97:5d:8b: 5e:4c:2e:1e:cc:ad:20:66:dd:db:df:24:47:19:d4:7c:7a:c5: fc:7e:ff:98:1e:3a:03:16:7e:73:c1:96:89:c2:46:70:8a:a4: 8a:fa:6a:d9:1f:14:fa:0d:0e:c8:9d:18:ae:89:20:31:4e:96: 0c:10:7d:90:db:55:7f:fc:22:4b:7a:61:89:cb:df:04:65:1f: 22:ba:7e:c0:7a:78:25:ba:73:0e:59:7b:58:70:2c:42:0d:8c: 43:84:74:36:0b:69:c4:40:a3:4d:75:26:59:75:af:b2:0c:7b: 4a:2f:dc:56:09:70:9c:68:fe:77:6f:0f:bf:91:ec:0e:63:18: 51:38:49:26:3c:95:f5:6c:57:c8:96:5e:1d:29:4d:67:d5:61: 8c:46:ac:a9:5d:07:03:6e:94:e5:e5:53:d7:98:21:bb:40:c5: 3d:ef:bc:59:4d:3f:bb:7c:5f:b6:6f:e5:03:d5:0b:5e:e5:88: 05:cd:51:fb -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZQW52fCNf9+cvhw31QMAPXiI/bkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE4MTQzMDE3WhcNMjUxMTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BjYTBmNjBmNTdmYWYyODg1ZDlmZDViY2QxNGYwZTc1ZjA3 M2IxMWEyZGZhYWIxMGE0ZjhmZTQwNmZkNjM1NDg0MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1CiQYrvHDgje4FGFAUSMiZJFm03wiyKl69P1dHL3EXzOE UkxiUBcdEom/yiSppbE2LudGlg7DP3i0eMu9eCPchLonKyyeN0M9Al8ynoYcUFuM Pn/xb1Y7AKiWLnt6iqFHwaeX7WY3kPLDGCWPgzA7uYGU+G8IKA+Gi9+nxq+NyyD0 4QScLyxZE3IrPYti/jn5Gp3U5zEjHcPukdz1PpSaK9oI51AQ0KW6twW+Sc4ZjY/7 RufD4w3HO//th6mb96JVUxfhsfPlhizUJAhB1Zur1ZbsAQElc7CNoDcJyGS0lSgz fDc+9kxqlUZ3b0gLroJPbsKQy1eSEln9Wys1zEkLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUBTvqa8o8QVAR9e3/Rdglrf+oic8wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzlhNGY4MTc1LWQ1NGUtNGMwNi04YTNlLWI3MDlkODViNGY2OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAS78cwDQYJKoZIhvcNAQELBQADggEBAJicuV6mG0KIIUV4e+4o/RBrlsy4 Q2Wy6DxTHIsKBqg1xFZHXhM+f34mQY8PFi68HwXGZcVTcAzTaxtup0jkUhRLeJg8 mZddi15MLh7MrSBm3dvfJEcZ1Hx6xfx+/5geOgMWfnPBlonCRnCKpIr6atkfFPoN DsidGK6JIDFOlgwQfZDbVX/8Ikt6YYnL3wRlHyK6fsB6eCW6cw5Ze1hwLEINjEOE dDYLacRAo011Jll1r7IMe0ov3FYJcJxo/ndvD7+R7A5jGFE4SSY8lfVsV8iWXh0p TWfVYYxGrKldBwNulOXlU9eYIbtAxT3vvFlNP7t8X7Zv5QPVC17liAXNUfs= -----END CERTIFICATE-----Generated at Mon Oct 20 15:48:06 2025 by rpki-client