$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bc89569e-736b-45d6-bc67-e395cb0129fb.roa File: bc89569e-736b-45d6-bc67-e395cb0129fb.roa (raw, json) Hash identifier: Mu845t5ubXVs8XBOMNBbeGMC+ABjBn6AqgnpKMQvKiY= Subject key identifier: D7:B8:91:1C:02:CB:73:64:88:52:C9:AC:63:71:27:99:D4:49:FB:E6 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 106E93535590330E0E27215F5FEC957B02711F73 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bc89569e-736b-45d6-bc67-e395cb0129fb.roa Signing time: Sun 19 Oct 2025 09:41:23 +0000 ROA not before: Sun 19 Oct 2025 09:41:23 +0000 ROA not after: Sun 23 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.65.169.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:6e:93:53:55:90:33:0e:0e:27:21:5f:5f:ec:95:7b:02:71:1f:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 19 09:41:23 2025 GMT Not After : Nov 23 23:59:59 2025 GMT Subject: serialNumber=f919a3276e9c53795dc02f997b3c320a2bd19811838c1110c5e15bf2f598a36a, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:18:64:45:4a:ee:19:d8:53:ff:6a:84:0c:59: 19:87:6b:73:b6:ec:ca:d7:04:c6:b5:e5:f9:7f:15: 92:7b:2d:56:ce:7e:5d:7c:05:c0:10:38:cb:fb:47: 51:96:fa:22:56:88:80:13:d7:68:dd:fc:e8:5f:8d: 22:e5:08:e2:37:b4:d1:9b:77:4c:38:cf:7b:c6:8c: 46:a1:61:61:5d:a6:af:0f:96:18:c3:77:d9:6c:fb: ee:13:92:4e:f0:b0:15:5e:3f:42:85:ce:a0:59:9d: a3:1e:4b:a6:fc:a3:90:74:73:df:2f:23:4c:78:06: 29:a6:cd:48:3b:d6:7d:38:0a:2d:c3:3e:ad:50:67: 63:1f:2c:37:e6:cd:a4:31:99:ad:c8:c6:2d:2f:92: 65:21:e0:c1:4e:7f:53:1d:bd:e4:ce:32:b6:8f:73: f5:71:43:83:76:ff:ba:9e:ae:77:bd:76:6e:11:2a: 24:79:46:b7:82:14:02:5a:5d:14:1a:d2:1f:f4:6c: 7d:68:b3:09:94:25:88:18:04:00:05:54:21:d6:6b: 35:2b:ff:b1:7f:30:6c:4f:7b:fa:1d:44:f9:8a:26: 1e:a2:a1:2d:b2:e4:71:77:5d:e1:13:ab:83:3b:88: 08:78:89:40:12:94:08:c8:1f:1f:62:bf:f0:d5:da: ae:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:B8:91:1C:02:CB:73:64:88:52:C9:AC:63:71:27:99:D4:49:FB:E6 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bc89569e-736b-45d6-bc67-e395cb0129fb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.65.169.0/24 Signature Algorithm: sha256WithRSAEncryption 05:e3:17:e4:05:4d:6d:a3:6b:2e:33:ef:d6:8b:0d:15:d2:0e: 01:86:0b:a5:5b:14:f0:35:3e:77:8b:8b:ea:6f:09:97:8d:5b: 7b:6f:0a:b7:25:42:34:62:6a:d0:54:8d:66:4d:6e:46:29:c3: 43:46:a4:65:b3:8f:fc:8a:24:3d:6e:94:45:c7:bd:6c:d8:46: 2c:d2:c8:29:73:d0:40:9a:59:a0:df:49:1c:e7:11:c6:29:77: e8:87:a7:96:19:d7:9a:ff:7a:c4:9b:f1:89:9d:96:bf:b2:5b: 7c:6b:b1:4f:12:f6:76:a8:fc:98:de:ed:6e:1f:4a:53:e9:cc: f7:b2:6b:b8:ba:da:fa:4d:18:7d:8f:22:3f:6c:59:83:de:a3: 08:a8:bb:e1:94:83:12:51:a6:de:d9:56:75:79:07:b2:8d:6c: 31:6a:1c:a5:81:5e:ab:1f:15:79:ae:ec:a0:ec:37:35:f5:61: ed:1d:e5:7f:f9:2a:f8:be:8d:40:3f:06:75:72:78:1a:f2:cb: ee:2b:ce:af:f1:f8:1f:f3:db:7b:56:ea:7d:98:09:59:60:2e: 77:91:d9:cd:07:86:31:cf:de:5e:4a:97:49:ad:a4:03:ee:fe: 2b:e8:4b:02:05:80:4b:ec:7b:0e:bb:bf:02:42:d8:77:78:ed: 90:54:3e:e2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEG6TU1WQMw4OJyFfX+yVewJxH3MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE5MDk0MTIzWhcNMjUxMTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BmOTE5YTMyNzZlOWM1Mzc5NWRjMDJmOTk3YjNjMzIwYTJi ZDE5ODExODM4YzExMTBjNWUxNWJmMmY1OThhMzZhMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDdGGRFSu4Z2FP/aoQMWRmHa3O27MrXBMa15fl/FZJ7LVbO fl18BcAQOMv7R1GW+iJWiIAT12jd/OhfjSLlCOI3tNGbd0w4z3vGjEahYWFdpq8P lhjDd9ls++4Tkk7wsBVeP0KFzqBZnaMeS6b8o5B0c98vI0x4BimmzUg71n04Ci3D Pq1QZ2MfLDfmzaQxma3Ixi0vkmUh4MFOf1MdveTOMraPc/VxQ4N2/7qerne9dm4R KiR5RreCFAJaXRQa0h/0bH1oswmUJYgYBAAFVCHWazUr/7F/MGxPe/odRPmKJh6i oS2y5HF3XeETq4M7iAh4iUASlAjIHx9iv/DV2q5VAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU17iRHALLc2SIUsmsY3EnmdRJ++YwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2JjODk1NjllLTczNmItNDVkNi1iYzY3LWUzOTVjYjAxMjlmYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAASQakwDQYJKoZIhvcNAQELBQADggEBAAXjF+QFTW2jay4z79aLDRXSDgGG C6VbFPA1PneLi+pvCZeNW3tvCrclQjRiatBUjWZNbkYpw0NGpGWzj/yKJD1ulEXH vWzYRizSyClz0ECaWaDfSRznEcYpd+iHp5YZ15r/esSb8Ymdlr+yW3xrsU8S9nao /Jje7W4fSlPpzPeya7i62vpNGH2PIj9sWYPeowiou+GUgxJRpt7ZVnV5B7KNbDFq HKWBXqsfFXmu7KDsNzX1Ye0d5X/5Kvi+jUA/BnVyeBryy+4rzq/x+B/z23tW6n2Y CVlgLneR2c0HhjHP3l5Kl0mtpAPu/ivoSwIFgEvsew67vwJC2Hd47ZBUPuI= -----END CERTIFICATE-----Generated at Mon Oct 20 10:58:53 2025 by rpki-client