$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b290c20d-3739-4c75-8719-ba204104866c.roa File: b290c20d-3739-4c75-8719-ba204104866c.roa (raw, json) Hash identifier: p1a/CWhyChcjGJiPCmdLX3HDKLwQE/ve2V/AuZ99+iM= Subject key identifier: 6C:14:D2:89:CC:7C:54:EB:3E:AA:0F:96:8A:07:D5:D7:A4:8D:BE:68 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 2F3C96433A2E80296D25D3DCB380FC155BB222E5 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b290c20d-3739-4c75-8719-ba204104866c.roa Signing time: Sun 19 Oct 2025 08:44:05 +0000 ROA not before: Sun 19 Oct 2025 08:44:05 +0000 ROA not after: Sun 23 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.65.160.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:3c:96:43:3a:2e:80:29:6d:25:d3:dc:b3:80:fc:15:5b:b2:22:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 19 08:44:05 2025 GMT Not After : Nov 23 23:59:59 2025 GMT Subject: serialNumber=2f8738cbf83b32f2e4c5ed8ef4537a9a857b9354cdd17217c6259e0dfdc0bc7b, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:98:f5:36:4f:13:dc:cd:64:67:69:88:0c:33: 44:a8:05:57:92:9a:9a:d6:bc:60:f4:e8:3a:8c:71: f5:45:92:63:9e:f0:4d:1d:4d:33:e1:25:8f:88:ab: 5c:90:2c:27:82:d9:c8:07:85:b6:4a:e5:5e:7c:1c: 2c:33:d7:10:fb:98:6b:6e:b2:ff:fd:23:ab:b5:a4: 73:3d:0f:59:be:70:ae:4a:5f:5f:db:98:39:8b:55: c5:e2:6a:65:9c:85:c3:1d:80:32:be:16:88:73:d4: 68:d6:dc:51:e7:4e:4b:06:c7:f7:1b:97:aa:e6:4e: 1b:d4:94:79:cf:13:fb:01:dd:79:0b:21:08:1c:9c: 09:99:87:4c:a9:d8:cc:0e:f5:1a:f8:74:ba:24:13: ee:a0:43:a9:05:38:ca:e0:19:b3:ab:5b:1b:00:10: 86:71:ef:8e:73:4a:78:41:a5:6f:bc:48:ec:4e:d2: b7:54:0a:e1:56:63:94:da:77:6b:a9:8c:d2:6d:3a: 5a:1a:a0:bb:0f:31:b6:85:73:46:cd:83:78:03:0c: 80:98:de:e7:27:31:3d:fc:bb:cb:58:b4:bb:7e:71: 77:27:8d:9e:15:63:2e:d7:1b:b8:f8:02:20:54:45: df:b0:38:85:ab:72:c2:ba:1a:3a:aa:29:a6:0d:65: b5:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:14:D2:89:CC:7C:54:EB:3E:AA:0F:96:8A:07:D5:D7:A4:8D:BE:68 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b290c20d-3739-4c75-8719-ba204104866c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.65.160.0/19 Signature Algorithm: sha256WithRSAEncryption 1e:79:18:c1:34:93:30:69:8f:39:92:7e:a1:0d:62:d8:1b:dc: 16:60:4e:8a:0a:3a:7b:54:82:4f:1d:49:a3:f6:8b:c0:ac:f9: ba:b3:62:f1:43:f4:09:3d:85:fe:01:bc:9f:93:64:39:0f:8f: 07:6b:c1:3a:fe:f8:a2:4c:5f:57:47:b3:14:51:45:02:57:cd: f4:fd:50:ae:a7:46:1b:bc:58:ca:45:02:80:bc:e9:fd:77:ad: 4f:94:48:38:d6:6d:40:c4:f3:da:b5:bd:4f:f1:de:83:32:c3: ac:48:03:3d:93:58:0d:67:bd:a2:da:b9:f4:09:59:5f:09:9b: 5a:28:cd:4e:78:0c:04:5b:d3:35:ea:06:73:5b:af:a3:f6:e3: 68:cd:c0:2f:45:ce:ab:cd:e2:78:b4:16:53:8b:bd:4b:a2:49: 5d:95:b3:56:aa:27:3f:d0:9e:11:3e:b3:8f:de:4d:f0:3a:00: 53:37:fd:cd:36:9e:16:28:65:15:c1:35:2f:91:52:23:74:9e: 8a:d1:b3:56:b3:a8:60:b7:31:fb:80:08:ed:0f:ec:4f:b6:03: f6:e4:a9:58:fd:9b:ff:ff:a1:fa:34:90:31:f8:4f:f8:a6:f6: c3:7f:68:8d:5e:4a:e0:ec:d5:43:d8:83:0d:47:e1:83:e6:07: 18:43:ea:50 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULzyWQzougCltJdPcs4D8FVuyIuUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE5MDg0NDA1WhcNMjUxMTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AyZjg3MzhjYmY4M2IzMmYyZTRjNWVkOGVmNDUzN2E5YTg1 N2I5MzU0Y2RkMTcyMTdjNjI1OWUwZGZkYzBiYzdiMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCGmPU2TxPczWRnaYgMM0SoBVeSmprWvGD06DqMcfVFkmOe 8E0dTTPhJY+Iq1yQLCeC2cgHhbZK5V58HCwz1xD7mGtusv/9I6u1pHM9D1m+cK5K X1/bmDmLVcXiamWchcMdgDK+Fohz1GjW3FHnTksGx/cbl6rmThvUlHnPE/sB3XkL IQgcnAmZh0yp2MwO9Rr4dLokE+6gQ6kFOMrgGbOrWxsAEIZx745zSnhBpW+8SOxO 0rdUCuFWY5Tad2upjNJtOloaoLsPMbaFc0bNg3gDDICY3ucnMT38u8tYtLt+cXcn jZ4VYy7XG7j4AiBURd+wOIWrcsK6GjqqKaYNZbWRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUbBTSicx8VOs+qg+WigfV16SNvmgwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2IyOTBjMjBkLTM3MzktNGM3NS04NzE5LWJhMjA0MTA0ODY2Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUSQaAwDQYJKoZIhvcNAQELBQADggEBAB55GME0kzBpjzmSfqENYtgb3BZg TooKOntUgk8dSaP2i8Cs+bqzYvFD9Ak9hf4BvJ+TZDkPjwdrwTr++KJMX1dHsxRR RQJXzfT9UK6nRhu8WMpFAoC86f13rU+USDjWbUDE89q1vU/x3oMyw6xIAz2TWA1n vaLaufQJWV8Jm1oozU54DARb0zXqBnNbr6P242jNwC9FzqvN4ni0FlOLvUuiSV2V s1aqJz/QnhE+s4/eTfA6AFM3/c02nhYoZRXBNS+RUiN0norRs1azqGC3MfuACO0P 7E+2A/bkqVj9m///ofo0kDH4T/im9sN/aI1eSuDs1UPYgw1H4YPmBxhD6lA= -----END CERTIFICATE-----Generated at Mon Oct 20 06:10:58 2025 by rpki-client