$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9de2f4b7-1822-4438-8458-48c05645a334.roa File: 9de2f4b7-1822-4438-8458-48c05645a334.roa (raw, json) Hash identifier: A7D/DRm6t/ZdQNomClw/hsHlmdUkMKHOdvdlw71uyNY= Subject key identifier: C3:29:9E:E6:40:9E:61:6B:EE:21:DE:FF:FD:1D:BC:F6:87:33:E8:BD Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 6F2BD54F0F9361ABCD595DBB7E9855FE6EAEE146 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9de2f4b7-1822-4438-8458-48c05645a334.roa Signing time: Sat 18 Oct 2025 23:10:09 +0000 ROA not before: Sat 18 Oct 2025 23:10:09 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.164.148.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:2b:d5:4f:0f:93:61:ab:cd:59:5d:bb:7e:98:55:fe:6e:ae:e1:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 18 23:10:09 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=e2cf1d4f5047289c0415993cef7f036624064892d0413c2c3312c4b8db0cdd80, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:37:dd:41:90:07:69:53:62:5b:60:54:9b:3f: 93:78:82:a6:a0:59:c8:04:b5:ff:e4:32:3c:99:f6: 6b:93:b1:b1:0c:02:be:66:85:ea:ef:c5:4f:3d:d1: fb:8d:23:81:cb:32:25:13:a7:1c:47:3e:c2:5f:91: b1:8d:bf:f5:6b:09:b2:84:f7:c6:4b:ef:3d:34:a8: 48:d6:a6:bd:39:3a:25:1e:77:5e:a0:fd:91:65:ad: 78:a6:03:a4:26:e8:5b:96:d0:c1:aa:68:2b:22:d1: 88:79:3d:43:d8:b7:26:40:87:92:ea:60:76:b9:9a: 78:b4:ee:8b:af:39:59:e9:9c:31:df:25:96:46:a5: 2d:b1:42:f3:d4:5c:54:eb:38:b7:c6:dd:e7:e2:17: 2f:e0:b4:10:44:eb:f4:90:1d:c7:53:28:02:46:7c: d9:65:ae:29:c5:29:03:b4:f2:d0:ea:5b:46:89:3c: 39:c0:df:1a:0d:94:4c:42:f0:d0:3e:7f:eb:36:bb: 3d:95:92:a3:5c:f8:09:7f:5b:b5:b1:a5:a6:56:66: fc:79:78:b8:17:4a:4d:75:81:03:06:24:bc:92:01: ee:13:16:51:79:9c:b4:68:2c:9f:69:2d:c7:f1:42: a5:3f:f8:c4:cf:32:34:7e:7f:17:25:c4:ea:17:6f: a0:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:29:9E:E6:40:9E:61:6B:EE:21:DE:FF:FD:1D:BC:F6:87:33:E8:BD X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9de2f4b7-1822-4438-8458-48c05645a334.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.164.148.0/24 Signature Algorithm: sha256WithRSAEncryption 14:57:9f:2e:34:78:2f:fa:ae:3c:5b:1a:8c:82:21:d0:99:bc: 88:9e:ac:ba:c0:a1:c6:43:a7:42:c6:79:55:df:86:d9:96:7e: 52:2b:4b:56:95:aa:c0:d1:b4:85:2d:5a:de:f2:a0:90:4f:36: a5:54:29:b8:8e:cd:90:fa:8d:f3:96:05:32:1f:91:1f:c1:c6: 5f:29:48:fe:ae:ef:b9:1c:01:1f:6a:b8:d0:56:a3:62:d0:f2: 64:48:c3:f7:8a:0b:cc:d7:ed:3d:b8:59:b0:68:aa:fc:b9:3d: 32:a9:61:9e:79:cf:51:01:9d:00:d9:33:e6:df:dc:6c:0b:1c: 6b:f0:b3:89:0e:0d:70:7a:78:f4:c6:ea:50:9c:84:5d:78:5c: 3a:bd:58:9d:76:89:ef:a6:0c:f5:e9:a3:a4:fd:9a:a4:35:60: f5:c7:c7:84:cd:0d:6c:02:b1:41:1a:5f:74:c3:18:1a:a5:33: 5a:5b:2d:77:ec:8d:f3:d6:da:a8:56:eb:76:2c:5e:b9:3b:e0: 4d:9a:47:03:ff:f1:03:67:e3:c4:de:2c:96:e6:93:82:50:24: 52:6a:86:86:66:82:72:01:bc:b6:27:5c:bc:06:9e:3e:6d:58: 46:5c:2f:05:44:fd:89:59:02:1d:96:69:ab:c2:a0:c5:03:42: d4:1a:f5:28 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbyvVTw+TYavNWV27fphV/m6u4UYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE4MjMxMDA5WhcNMjUxMTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BlMmNmMWQ0ZjUwNDcyODljMDQxNTk5M2NlZjdmMDM2NjI0 MDY0ODkyZDA0MTNjMmMzMzEyYzRiOGRiMGNkZDgwMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDUN91BkAdpU2JbYFSbP5N4gqagWcgEtf/kMjyZ9muTsbEM Ar5mhervxU890fuNI4HLMiUTpxxHPsJfkbGNv/VrCbKE98ZL7z00qEjWpr05OiUe d16g/ZFlrXimA6Qm6FuW0MGqaCsi0Yh5PUPYtyZAh5LqYHa5mni07ouvOVnpnDHf JZZGpS2xQvPUXFTrOLfG3efiFy/gtBBE6/SQHcdTKAJGfNllrinFKQO08tDqW0aJ PDnA3xoNlExC8NA+f+s2uz2VkqNc+Al/W7WxpaZWZvx5eLgXSk11gQMGJLySAe4T FlF5nLRoLJ9pLcfxQqU/+MTPMjR+fxclxOoXb6BhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUwyme5kCeYWvuId7//R289ocz6L0wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzlkZTJmNGI3LTE4MjItNDQzOC04NDU4LTQ4YzA1NjQ1YTMzNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAASpJQwDQYJKoZIhvcNAQELBQADggEBABRXny40eC/6rjxbGoyCIdCZvIie rLrAocZDp0LGeVXfhtmWflIrS1aVqsDRtIUtWt7yoJBPNqVUKbiOzZD6jfOWBTIf kR/Bxl8pSP6u77kcAR9quNBWo2LQ8mRIw/eKC8zX7T24WbBoqvy5PTKpYZ55z1EB nQDZM+bf3GwLHGvws4kODXB6ePTG6lCchF14XDq9WJ12ie+mDPXpo6T9mqQ1YPXH x4TNDWwCsUEaX3TDGBqlM1pbLXfsjfPW2qhW63YsXrk74E2aRwP/8QNn48TeLJbm k4JQJFJqhoZmgnIBvLYnXLwGnj5tWEZcLwVE/YlZAh2WaavCoMUDQtQa9Sg= -----END CERTIFICATE-----Generated at Mon Oct 20 21:12:25 2025 by rpki-client