$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/af23b012-3baf-4844-92d9-1cb60734d021.roa File: af23b012-3baf-4844-92d9-1cb60734d021.roa (raw, json) Hash identifier: iloblaIxtejUI1trRBDAh89j0kXrNkUrjCBTHIVPej8= Subject key identifier: 0C:17:CA:07:90:E7:9E:34:37:2C:24:1A:3B:D5:5A:76:9C:E4:D8:F1 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 09EAF492EAF3C193EA73FC7DCBE1A6B4D4EAA85D Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/af23b012-3baf-4844-92d9-1cb60734d021.roa Signing time: Sat 18 Oct 2025 12:13:25 +0000 ROA not before: Sat 18 Oct 2025 12:13:25 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.164.110.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:ea:f4:92:ea:f3:c1:93:ea:73:fc:7d:cb:e1:a6:b4:d4:ea:a8:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 18 12:13:25 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=204d28a4b549ba62fc830c3a6f8c343ceb6d4aae6e93951389d1d37046226ffa, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:f7:f5:cb:c4:f1:62:73:34:4e:43:4f:37:52: 48:16:a6:72:5f:87:59:6e:aa:aa:a6:cb:6b:5a:83: 45:02:1d:08:02:57:12:d9:cc:36:45:1f:19:f2:64: b0:a4:f2:2a:3b:e0:93:4c:20:2e:50:bd:3a:f5:c7: a0:79:c2:12:a2:5a:29:64:e8:a6:56:dd:aa:d5:d4: a1:de:b1:e0:c8:22:3a:d2:b8:92:f2:d9:40:22:cc: b9:bb:62:f3:70:45:a5:23:fa:b3:c8:22:b4:a4:66: cb:48:70:d5:ad:11:c9:92:2b:69:2f:3e:41:47:5f: d0:5a:6e:5e:9e:69:c5:48:12:42:29:f9:81:f9:43: fb:b2:57:3c:a8:f9:f9:d6:5b:72:90:e2:66:a9:7b: 20:d9:25:ea:97:e4:15:36:11:83:25:16:18:e4:c6: 52:ed:a8:f0:9c:1e:63:7e:b9:a4:66:c6:16:c1:01: 84:24:41:8a:1e:0f:c4:1e:8e:fb:0c:af:b3:01:f7: a3:5b:9e:be:6a:fd:90:e5:f5:f7:50:9e:f1:5b:78: 26:1c:5f:f2:b1:54:ef:9c:48:4c:46:e2:ae:a6:8a: 6e:fe:72:4b:d0:35:96:8c:f5:8b:cb:a1:f8:ab:fd: 2c:9b:9f:76:92:7b:11:80:fa:1c:76:54:8d:b6:87: 50:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:17:CA:07:90:E7:9E:34:37:2C:24:1A:3B:D5:5A:76:9C:E4:D8:F1 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/af23b012-3baf-4844-92d9-1cb60734d021.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.164.110.0/23 Signature Algorithm: sha256WithRSAEncryption 50:90:61:33:89:dd:50:8c:37:b1:39:22:98:dc:3c:0f:3f:8a: 21:2c:1a:97:cd:ee:cf:e1:f4:fe:38:28:07:00:c5:7b:bd:fc: ff:37:ae:1d:08:bd:05:eb:d6:ba:88:8a:b8:68:60:01:6a:58: 06:b9:3d:ec:08:d9:68:23:cf:75:d1:5e:f2:0f:c2:64:56:c1: 06:91:ce:fd:3a:e0:19:0d:ce:e0:2e:c6:a5:20:60:45:cd:e5: c6:0f:af:38:02:57:b8:6e:b3:5e:45:49:fd:e9:89:c7:82:6d: 1a:4f:77:a0:10:62:6c:44:64:88:c7:bc:db:86:9e:4e:fa:50: 98:f8:cd:5e:2a:85:3d:26:cb:3b:bc:c4:24:fc:6e:fd:da:fc: 12:97:11:ca:a6:05:9f:3c:81:f3:6f:88:17:20:34:7d:b4:13: 09:22:08:32:e7:32:6d:18:ef:9e:13:4c:d0:67:1e:a3:03:2f: 47:1f:36:ec:ea:de:5c:7b:d7:79:9b:b4:42:0d:73:36:f2:90: b9:a0:a6:bf:1e:7c:af:30:2d:36:af:63:ac:53:60:5a:12:4a: 64:22:b0:a8:ca:6e:49:cc:30:07:2e:12:34:08:af:f8:98:de: 32:36:67:b5:46:3c:68:3e:a9:bb:5a:9b:a5:5d:9a:60:eb:70: fb:bd:7c:4c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCer0kurzwZPqc/x9y+GmtNTqqF0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE4MTIxMzI1WhcNMjUxMTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0AyMDRkMjhhNGI1NDliYTYyZmM4MzBjM2E2ZjhjMzQzY2Vi NmQ0YWFlNmU5Mzk1MTM4OWQxZDM3MDQ2MjI2ZmZhMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCs9/XLxPFiczROQ083UkgWpnJfh1luqqqmy2tag0UCHQgC VxLZzDZFHxnyZLCk8io74JNMIC5QvTr1x6B5whKiWilk6KZW3arV1KHeseDIIjrS uJLy2UAizLm7YvNwRaUj+rPIIrSkZstIcNWtEcmSK2kvPkFHX9Babl6eacVIEkIp +YH5Q/uyVzyo+fnWW3KQ4mapeyDZJeqX5BU2EYMlFhjkxlLtqPCcHmN+uaRmxhbB AYQkQYoeD8QejvsMr7MB96Nbnr5q/ZDl9fdQnvFbeCYcX/KxVO+cSExG4q6mim7+ ckvQNZaM9YvLofir/Sybn3aSexGA+hx2VI22h1A3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUDBfKB5DnnjQ3LCQaO9Vadpzk2PEwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2FmMjNiMDEyLTNiYWYtNDg0NC05MmQ5LTFjYjYwNzM0ZDAyMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAESpG4wDQYJKoZIhvcNAQELBQADggEBAFCQYTOJ3VCMN7E5IpjcPA8/iiEs GpfN7s/h9P44KAcAxXu9/P83rh0IvQXr1rqIirhoYAFqWAa5PewI2Wgjz3XRXvIP wmRWwQaRzv064BkNzuAuxqUgYEXN5cYPrzgCV7hus15FSf3piceCbRpPd6AQYmxE ZIjHvNuGnk76UJj4zV4qhT0myzu8xCT8bv3a/BKXEcqmBZ88gfNviBcgNH20Ewki CDLnMm0Y754TTNBnHqMDL0cfNuzq3lx713mbtEINczbykLmgpr8efK8wLTavY6xT YFoSSmQisKjKbknMMAcuEjQIr/iY3jI2Z7VGPGg+qbtam6VdmmDrcPu9fEw= -----END CERTIFICATE-----Generated at Mon Oct 20 19:16:46 2025 by rpki-client