$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a9495ede-ee09-41f0-9612-b2291880fc1e.roa File: a9495ede-ee09-41f0-9612-b2291880fc1e.roa (raw, json) Hash identifier: ALcUnhsnP0XGkCZjtCH3mkEHppTwuN3w1Fhh5WZId/8= Subject key identifier: E6:E6:98:87:47:19:1C:D1:12:7D:02:CB:00:07:CD:6B:19:73:6D:F1 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 476195B405A770EDD4383058568C90BC9E0BF3 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a9495ede-ee09-41f0-9612-b2291880fc1e.roa Signing time: Sat 18 Oct 2025 19:23:44 +0000 ROA not before: Sat 18 Oct 2025 19:23:44 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.239.178.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:61:95:b4:05:a7:70:ed:d4:38:30:58:56:8c:90:bc:9e:0b:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 18 19:23:44 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=0a4398f4665317c3350d1012e0c1c64da2da58e280f533361ed8aff0c45eaa2d, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:28:a1:76:43:c4:36:d2:f7:4f:a8:6f:6a:39: 63:fa:6f:46:6e:ab:6d:d7:7b:b4:e2:50:11:48:0f: 65:ff:fa:f4:71:d5:53:86:c6:cc:7f:95:1a:28:1a: 97:a3:d1:98:7b:a7:fb:9a:dc:c7:c4:bf:9e:0a:ce: 2d:9a:21:3e:d3:99:ab:a8:14:59:37:18:34:4f:4d: 9b:e6:d9:04:6d:84:bf:a6:3b:ac:ee:5c:73:7a:9c: 32:6c:e5:c8:b6:5d:35:17:1b:15:ce:44:96:90:2b: f2:e3:fd:e2:0c:21:1e:80:0a:fa:00:75:3c:c8:95: 7c:57:b3:4d:21:43:74:91:27:82:eb:28:9e:98:81: 21:52:3e:dc:77:f5:cd:ce:d0:1f:5a:3b:44:60:ee: 35:6c:35:c6:35:3a:a8:d5:5c:d5:27:30:3b:20:33: dd:c5:aa:05:b2:ca:81:ba:13:ef:b1:b4:07:f6:6d: e5:55:b4:3a:40:bf:21:00:38:cb:ac:67:24:bc:0d: e2:c2:9c:b3:1a:11:c2:86:d5:af:63:01:d8:84:db: a9:89:89:65:06:93:f5:3b:04:a4:2c:5e:64:16:a3: 2c:42:40:df:66:1b:53:44:8a:76:27:5c:71:4c:da: 40:6c:9b:de:12:ac:9f:5e:5e:fd:80:95:0e:47:b8: ea:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:E6:98:87:47:19:1C:D1:12:7D:02:CB:00:07:CD:6B:19:73:6D:F1 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a9495ede-ee09-41f0-9612-b2291880fc1e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.239.178.0/24 Signature Algorithm: sha256WithRSAEncryption 44:96:0b:75:f2:37:49:38:7e:93:78:0b:51:48:2f:06:98:21: f8:02:8d:b1:5e:33:b3:49:d7:61:74:a6:e2:7b:bf:92:4f:75: 93:ee:ae:bc:3b:1f:8b:5b:14:7d:53:cd:bb:ad:4b:fd:cb:6a: b8:52:6a:fb:ca:fc:ab:0f:78:10:f3:78:3a:ad:d3:4e:cb:07: bb:2e:f5:cc:3b:bb:af:7d:f7:7c:96:a2:9e:f5:0d:85:22:ee: eb:7f:92:6e:3a:6b:64:d3:88:3d:18:8c:d4:7f:3f:63:dc:94: 6a:4e:7d:11:02:36:63:60:53:d7:b6:86:00:e8:4a:78:5d:7c: b5:06:de:06:a9:0b:5d:a8:00:94:48:46:8a:e2:30:1d:a1:de: 1d:65:38:c4:c2:79:3c:cd:a6:11:64:1e:ad:ad:5d:69:65:4c: f3:ee:74:15:eb:03:23:32:fa:84:7e:9e:72:15:9c:c6:d5:94: ce:58:d0:bc:d7:ed:69:c4:5a:53:9a:8b:b8:4f:87:ce:86:2d: 2b:c0:fc:2f:39:97:8b:a0:49:c7:e0:8c:8e:8f:ed:70:8c:da: 17:8e:1b:c8:ea:e0:ea:52:a0:52:ca:b4:9b:2d:9b:8f:a1:52: fe:32:9a:37:18:7e:ec:43:ec:ca:55:ec:2b:14:37:fa:38:bc: ff:92:73:10 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITR2GVtAWncO3UODBYVoyQvJ4L8zANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzJkZjZmM2IzYTM0YjYzODZkMWEzMmQ4ZjRmYTMxNzhlZjMx ODg3ZDhiNDI4ZGZhYTQ3NjAeFw0yNTEwMTgxOTIzNDRaFw0yNTExMjIyMzU5NTla MHoxSTBHBgNVBAUTQDBhNDM5OGY0NjY1MzE3YzMzNTBkMTAxMmUwYzFjNjRkYTJk YTU4ZTI4MGY1MzMzNjFlZDhhZmYwYzQ1ZWFhMmQxLTArBgNVBAMTJDVmMjc2MDQ1 LTViOWYtNDVlZi05MjNkLWYzZmNlMjRhNjIyNTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAK8ooXZDxDbS90+ob2o5Y/pvRm6rbdd7tOJQEUgPZf/69HHV U4bGzH+VGigal6PRmHun+5rcx8S/ngrOLZohPtOZq6gUWTcYNE9Nm+bZBG2Ev6Y7 rO5cc3qcMmzlyLZdNRcbFc5ElpAr8uP94gwhHoAK+gB1PMiVfFezTSFDdJEnguso npiBIVI+3Hf1zc7QH1o7RGDuNWw1xjU6qNVc1ScwOyAz3cWqBbLKgboT77G0B/Zt 5VW0OkC/IQA4y6xnJLwN4sKcsxoRwobVr2MB2ITbqYmJZQaT9TsEpCxeZBajLEJA 32YbU0SKdidccUzaQGyb3hKsn15e/YCVDke46jUCAwEAAaOCArEwggKtMB0GA1Ud DgQWBBTm5piHRxkc0RJ9AssAB81rGXNt8TAfBgNVHSMEGDAWgBQlrdNCsB63pY6t GZAmiLVLP4H0uDAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzg1MWNlZjE3LTEz MmEtNDMzNy1iN2QxLWJmMTZhNTJmZmQwMy9kZjZmM2IzYTM0YjYzODZkMWEzMmQ4 ZjRmYTMxNzhlZjMxODg3ZDhiNDI4ZGZhYTQ3Ni5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9mNzAzNjk2ZS1lNDdiLTRjMjAtYmQ5My02Zjgw OTA0ZTQyZDIvYTk0OTVlZGUtZWUwOS00MWYwLTk2MTItYjIyOTE4ODBmYzFlLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMt NmY4MDkwNGU0MmQyL3RqaHRHakxZOVBveGVPOHhpSDJMUW8zNnBIWS5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEABLvsjANBgkqhkiG9w0BAQsFAAOCAQEARJYLdfI3STh+k3gLUUgvBpgh+AKN sV4zs0nXYXSm4nu/kk91k+6uvDsfi1sUfVPNu61L/ctquFJq+8r8qw94EPN4Oq3T TssHuy71zDu7r333fJainvUNhSLu63+SbjprZNOIPRiM1H8/Y9yUak59EQI2Y2BT 17aGAOhKeF18tQbeBqkLXagAlEhGiuIwHaHeHWU4xMJ5PM2mEWQera1daWVM8+50 FesDIzL6hH6echWcxtWUzljQvNftacRaU5qLuE+HzoYtK8D8LzmXi6BJx+CMjo/t cIzaF44byOrg6lKgUsq0my2bj6FS/jKaNxh+7EPsylXsKxQ3+ji8/5JzEA== -----END CERTIFICATE-----Generated at Mon Oct 20 02:59:35 2025 by rpki-client