$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bd64588d-0f1f-47e6-8a3b-93e1ebf4cd4b.roa File: bd64588d-0f1f-47e6-8a3b-93e1ebf4cd4b.roa (raw, json) Hash identifier: lOxLFp15HhvEyQvH7jsnpRJ9Dbodi2La25rjE5IpJDg= Subject key identifier: 15:AE:C0:05:81:92:80:CB:03:C6:B1:8E:E4:C7:B8:90:F1:D0:13:2E Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 33DDB15A48AAD4D221BCF34E82793B287C124AA4 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bd64588d-0f1f-47e6-8a3b-93e1ebf4cd4b.roa Signing time: Thu 16 Oct 2025 00:58:45 +0000 ROA not before: Thu 16 Oct 2025 00:58:45 +0000 ROA not after: Thu 20 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.68.6.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:dd:b1:5a:48:aa:d4:d2:21:bc:f3:4e:82:79:3b:28:7c:12:4a:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 16 00:58:45 2025 GMT Not After : Nov 20 23:59:59 2025 GMT Subject: serialNumber=16741933f4635294b4288b71723ffbd7b62cd588466c79cd7f249eb4fc6e6c6a, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:73:a7:ef:70:2f:5c:ea:6c:3c:47:13:06:20: 29:b4:94:39:51:c2:b9:87:21:47:a3:5d:03:a5:1b: c6:58:ed:a1:c6:e6:19:a1:da:29:2e:15:c3:56:05: c3:50:9c:ee:17:ff:7c:50:0d:e9:e1:9c:96:1a:32: 1b:49:26:ee:38:a8:ab:df:c5:27:a4:f5:3d:82:41: 46:78:dd:cd:9d:81:bc:90:e7:be:5c:45:b3:c5:53: 27:f6:ba:94:26:a2:36:41:45:67:81:66:a7:e3:9a: eb:9c:48:e4:cb:4a:d3:96:1e:21:3b:02:08:b4:ac: 55:1f:ec:71:3f:07:c9:a9:7f:19:8f:68:3f:0a:a7: d6:8d:b8:1d:9e:38:48:ef:11:9d:80:6d:d8:65:d3: a7:e2:ff:2e:57:e0:46:0f:58:36:28:00:e4:15:a3: 53:c7:91:b2:c9:cf:82:6c:28:25:dc:fc:bb:cb:56: e6:b7:e9:a2:de:65:d2:b7:d4:cd:d8:49:49:4b:e4: cf:29:8e:af:86:ec:84:93:6f:a6:94:4d:80:60:d0: a9:f4:09:18:28:24:4d:45:f3:fa:4c:88:5b:76:a9: be:bd:af:5a:b6:fb:41:f0:49:5c:b2:b8:af:94:18: 0b:b1:97:ee:ad:04:fe:9d:96:0b:cc:b9:c3:04:52: 21:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:AE:C0:05:81:92:80:CB:03:C6:B1:8E:E4:C7:B8:90:F1:D0:13:2E X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bd64588d-0f1f-47e6-8a3b-93e1ebf4cd4b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.68.6.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:81:77:82:47:12:df:d3:ec:f9:ac:96:cc:a2:90:4f:a9:4b: 52:7a:79:ac:9a:0f:4b:9b:fe:23:17:05:2a:18:54:7b:18:75: a9:10:86:17:8e:3d:9b:36:50:a1:8d:a2:a0:c1:18:a3:59:fa: be:4f:75:80:8d:fd:66:76:77:8f:8a:88:81:e5:e0:9f:98:6d: 23:d2:19:85:a3:31:13:86:dd:96:88:8d:4d:74:71:66:78:52: 2e:29:11:f9:e5:16:23:7d:36:ec:f6:ce:63:f7:54:e3:ca:23: 74:9c:81:92:91:5f:f4:fa:5c:93:c5:2f:f0:32:7a:45:f0:ee: 97:e4:53:81:f2:e5:c7:ef:e3:dd:cc:73:db:ad:ee:b8:e0:ce: bf:4c:6b:e9:4d:28:24:10:80:4f:b0:7e:c6:91:88:67:01:c3: 48:a7:7f:7a:f5:b4:df:a1:a6:29:c4:5b:8e:90:22:32:00:66: 7d:73:c3:0e:44:05:ab:42:e7:42:9e:dd:31:e6:9a:a9:96:82: 1b:7b:00:a1:37:2a:84:02:a8:cc:88:5a:31:38:f4:09:15:06: 7d:65:bc:14:56:33:75:2f:e9:43:94:27:db:b3:b3:36:14:b5: e8:19:5e:b8:fc:4a:82:a0:c9:9e:35:07:41:d4:bb:19:ab:cf: 70:e6:53:73 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUM92xWkiq1NIhvPNOgnk7KHwSSqQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE2MDA1ODQ1WhcNMjUxMTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxNjc0MTkzM2Y0NjM1Mjk0YjQyODhiNzE3MjNmZmJkN2I2 MmNkNTg4NDY2Yzc5Y2Q3ZjI0OWViNGZjNmU2YzZhMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtc6fvcC9c6mw8RxMGICm0lDlRwrmHIUejXQOlG8ZY7aHG 5hmh2ikuFcNWBcNQnO4X/3xQDenhnJYaMhtJJu44qKvfxSek9T2CQUZ43c2dgbyQ 575cRbPFUyf2upQmojZBRWeBZqfjmuucSOTLStOWHiE7Agi0rFUf7HE/B8mpfxmP aD8Kp9aNuB2eOEjvEZ2Abdhl06fi/y5X4EYPWDYoAOQVo1PHkbLJz4JsKCXc/LvL Vua36aLeZdK31M3YSUlL5M8pjq+G7ISTb6aUTYBg0Kn0CRgoJE1F8/pMiFt2qb69 r1q2+0HwSVyyuK+UGAuxl+6tBP6dlgvMucMEUiEzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUFa7ABYGSgMsDxrGO5Me4kPHQEy4wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2JkNjQ1ODhkLTBmMWYtNDdlNi04YTNiLTkzZTFlYmY0Y2Q0Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAASRAYwDQYJKoZIhvcNAQELBQADggEBAJqBd4JHEt/T7PmslsyikE+pS1J6 eayaD0ub/iMXBSoYVHsYdakQhheOPZs2UKGNoqDBGKNZ+r5PdYCN/WZ2d4+KiIHl 4J+YbSPSGYWjMROG3ZaIjU10cWZ4Ui4pEfnlFiN9Nuz2zmP3VOPKI3ScgZKRX/T6 XJPFL/AyekXw7pfkU4Hy5cfv493Mc9ut7rjgzr9Ma+lNKCQQgE+wfsaRiGcBw0in f3r1tN+hpinEW46QIjIAZn1zww5EBatC50Ke3THmmqmWght7AKE3KoQCqMyIWjE4 9AkVBn1lvBRWM3Uv6UOUJ9uzszYUtegZXrj8SoKgyZ41B0HUuxmrz3DmU3M= -----END CERTIFICATE-----Generated at Mon Oct 20 06:04:26 2025 by rpki-client