$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/af65f2a2-b733-4fa2-8607-bc7ca2fe1408.roa File: af65f2a2-b733-4fa2-8607-bc7ca2fe1408.roa (raw, json) Hash identifier: j1y7aHSjf28ZTJoluZUZ1oRXNk9gQEzDBhVmIYDVgmQ= Subject key identifier: B0:E2:5B:74:24:D1:9E:F2:36:13:42:CF:8D:B5:14:E9:6B:52:7D:AD Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 70CA7E8A76AD5ECABAE144F7F738033720A8C7BB Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/af65f2a2-b733-4fa2-8607-bc7ca2fe1408.roa Signing time: Sat 18 Oct 2025 17:10:10 +0000 ROA not before: Sat 18 Oct 2025 17:10:10 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.172.75.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:ca:7e:8a:76:ad:5e:ca:ba:e1:44:f7:f7:38:03:37:20:a8:c7:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 18 17:10:10 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=9e5a41c0b1c9b4fb179a1d5656d08173f51a3d571ad2c9bded1913c9aec4a857, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:3e:06:07:56:f4:7b:0e:2f:60:c1:de:92:6b: c4:2e:d2:6e:67:30:df:16:c0:9e:c2:64:df:36:d1: 27:c0:1c:97:be:da:a9:85:52:e4:dc:26:da:e5:2a: 04:32:cc:59:60:17:fd:7b:c6:93:dd:8f:91:36:be: e2:4a:30:e6:4e:a6:e2:67:3e:48:4f:9a:28:c6:91: aa:52:87:72:c6:eb:54:ae:71:c9:81:93:3b:be:63: 05:0a:be:ef:08:0c:84:bf:5f:cd:9a:ac:09:60:49: af:a3:76:a9:3d:25:a2:61:10:b7:2b:e0:4f:b3:a2: 22:f7:88:d0:fc:a7:b2:5d:d0:04:e6:a9:05:ee:e4: 3a:80:81:e6:0c:87:aa:95:a3:4f:00:a5:7d:69:9c: ae:47:47:99:48:23:78:2e:11:b2:c3:a2:e0:ff:58: de:e1:1e:bb:c5:b5:2c:3f:77:89:0e:9e:a0:84:ec: d6:da:34:53:e6:d5:72:dc:50:bb:14:c9:e5:1d:ff: f6:e0:d1:20:9e:0e:d2:e0:b9:60:8e:d6:57:0d:a0: f5:c9:ed:b8:2f:ae:e6:a7:a7:4f:f7:a5:9c:8e:8c: 61:83:c4:70:d8:49:e3:3c:37:b1:90:fe:2b:44:4a: b8:64:2e:00:39:43:08:6e:da:53:a4:c3:3e:dd:9f: f1:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:E2:5B:74:24:D1:9E:F2:36:13:42:CF:8D:B5:14:E9:6B:52:7D:AD X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/af65f2a2-b733-4fa2-8607-bc7ca2fe1408.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.172.75.0/24 Signature Algorithm: sha256WithRSAEncryption 51:80:7b:f2:d4:ea:1d:a8:ec:45:a1:a2:fb:4d:2f:13:71:69: 14:41:fe:e5:80:1b:46:8f:cd:83:58:c1:8b:1b:89:63:05:bb: 9e:1f:3e:cf:7f:1e:47:28:b2:ba:58:45:dd:ca:0e:cc:96:90: 1e:a5:b7:31:d8:b5:01:f1:b1:35:cb:6b:8a:5c:bd:3e:c1:4e: e2:83:22:6d:48:57:45:07:2c:99:67:fe:87:f3:7e:91:25:87: da:fc:e1:9b:d0:b5:98:bc:53:8c:02:0e:a9:81:2d:3d:9b:3b: e1:f7:97:3c:d5:0e:43:f1:f7:4f:78:09:5c:c9:d5:66:1b:af: 27:dc:95:cc:66:55:44:6f:b2:90:ab:06:a6:c3:b5:64:17:94: 3a:94:5c:47:7e:39:a7:29:bf:63:70:b6:cd:0f:e5:f9:84:3a: a9:85:37:dd:e7:b9:73:a2:a6:cf:56:b7:46:38:b0:f5:ed:46: 8e:1a:02:b7:ef:c1:df:cb:f2:d8:53:8e:67:1b:5f:65:e2:bc: 82:3b:ed:dd:f4:a6:72:40:18:63:68:bd:f2:39:8f:58:b5:73: 51:d4:68:b4:75:9b:fb:6e:dc:b5:c8:b4:a5:8b:fa:0a:54:4c: 8e:97:eb:70:90:aa:46:52:04:1c:36:5e:2f:4f:02:58:07:c7: ce:d1:f8:89 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcMp+inatXsq64UT39zgDNyCox7swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE4MTcxMDEwWhcNMjUxMTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZTVhNDFjMGIxYzliNGZiMTc5YTFkNTY1NmQwODE3M2Y1 MWEzZDU3MWFkMmM5YmRlZDE5MTNjOWFlYzRhODU3MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDwPgYHVvR7Di9gwd6Sa8Qu0m5nMN8WwJ7CZN820SfAHJe+ 2qmFUuTcJtrlKgQyzFlgF/17xpPdj5E2vuJKMOZOpuJnPkhPmijGkapSh3LG61Su ccmBkzu+YwUKvu8IDIS/X82arAlgSa+jdqk9JaJhELcr4E+zoiL3iND8p7Jd0ATm qQXu5DqAgeYMh6qVo08ApX1pnK5HR5lII3guEbLDouD/WN7hHrvFtSw/d4kOnqCE 7NbaNFPm1XLcULsUyeUd//bg0SCeDtLguWCO1lcNoPXJ7bgvruanp0/3pZyOjGGD xHDYSeM8N7GQ/itESrhkLgA5Qwhu2lOkwz7dn/EdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUsOJbdCTRnvI2E0LPjbUU6WtSfa0wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2FmNjVmMmEyLWI3MzMtNGZhMi04NjA3LWJjN2NhMmZlMTQwOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAASrEswDQYJKoZIhvcNAQELBQADggEBAFGAe/LU6h2o7EWhovtNLxNxaRRB /uWAG0aPzYNYwYsbiWMFu54fPs9/HkcosrpYRd3KDsyWkB6ltzHYtQHxsTXLa4pc vT7BTuKDIm1IV0UHLJln/ofzfpElh9r84ZvQtZi8U4wCDqmBLT2bO+H3lzzVDkPx 9094CVzJ1WYbryfclcxmVURvspCrBqbDtWQXlDqUXEd+Oacpv2Nwts0P5fmEOqmF N93nuXOips9Wt0Y4sPXtRo4aArfvwd/L8thTjmcbX2XivII77d30pnJAGGNovfI5 j1i1c1HUaLR1m/tu3LXItKWL+gpUTI6X63CQqkZSBBw2Xi9PAlgHx87R+Ik= -----END CERTIFICATE-----Generated at Mon Oct 20 05:17:37 2025 by rpki-client