$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c30a1471-3800-4dea-be34-b5eea12340ce.roa File: c30a1471-3800-4dea-be34-b5eea12340ce.roa (raw, json) Hash identifier: HWMQjf6kBovGwJTsVUuwhwapMOQBoQwEebhRILer1Ic= Subject key identifier: 6B:70:84:D0:94:9A:F7:58:0E:51:E6:05:33:C1:AA:C2:21:DC:5E:B8 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 676E9268F0EF98E4DBBF67C133DD89306DDE0DF8 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c30a1471-3800-4dea-be34-b5eea12340ce.roa Signing time: Sat 18 Oct 2025 13:31:28 +0000 ROA not before: Sat 18 Oct 2025 13:31:28 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.161.240.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:6e:92:68:f0:ef:98:e4:db:bf:67:c1:33:dd:89:30:6d:de:0d:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 18 13:31:28 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=ee2e45d12a3a55d9581114889ffbd366c08c66209356ba1b300bb969942a15cd, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:14:86:c3:4d:c7:a5:52:08:f6:25:2e:4b:2b: 13:a7:06:c3:86:8b:49:1d:72:e7:95:03:29:8d:98: 1a:34:33:48:7c:be:38:c1:76:ba:f4:49:ef:86:cd: 0c:76:37:a0:c3:1c:f1:c2:49:fa:01:e1:0c:10:6a: 27:99:fd:cf:b5:ba:25:b5:2d:3f:f4:57:64:8f:4e: 7f:5f:3c:3f:30:ac:8f:8a:94:b3:03:02:01:c2:49: 0d:dd:dd:fd:23:66:18:f3:1d:eb:1c:fc:c5:ac:d6: ae:5d:4b:11:b8:4e:78:3f:12:f4:63:63:41:f0:40: 42:84:97:d8:da:03:97:81:30:04:4e:d3:3c:eb:05: fd:f0:bb:f6:d8:de:fb:42:fb:5e:0a:c6:61:e1:c6: e4:a8:55:a4:f8:4c:c0:db:39:2f:b7:fa:8a:ae:4d: 71:4a:6c:90:81:21:16:45:c6:c2:97:fb:a3:a3:7f: 30:22:15:f3:c6:f2:0f:7c:09:82:5b:65:8d:72:70: b7:6b:6a:fe:3d:6c:20:a9:40:99:e1:06:48:7e:55: dc:f8:3d:7c:7f:60:f4:98:69:74:e5:78:f8:1b:8b: b3:df:6f:c5:70:86:d6:c2:19:3c:7e:0b:06:a0:da: 0d:1b:fc:ea:0b:08:30:9c:6b:3e:ef:d8:eb:ad:a6: 83:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:70:84:D0:94:9A:F7:58:0E:51:E6:05:33:C1:AA:C2:21:DC:5E:B8 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c30a1471-3800-4dea-be34-b5eea12340ce.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.161.240.0/22 Signature Algorithm: sha256WithRSAEncryption 61:ac:9a:a3:b1:69:1c:be:18:98:ff:9a:5b:af:e0:53:0f:1a: 52:59:ef:3f:5b:37:48:41:6d:41:c6:d0:f2:d4:a0:93:d2:7e: 7f:d1:32:9d:9f:92:b3:7d:67:5e:dd:91:d6:6e:b0:0f:b6:cf: da:4c:26:28:73:95:2a:b4:29:bf:cd:dc:ae:cc:21:ac:7f:8a: 9c:58:2d:9f:41:9b:0d:f2:3b:a0:55:d1:2f:9b:a6:19:ab:82: a0:9d:cc:73:38:c5:cd:51:09:21:fc:ed:d0:17:21:cc:c0:f3: 22:3d:d1:45:7e:40:d7:1e:bd:ee:54:ba:19:0f:5d:96:93:65: 86:bb:91:5d:ff:95:38:94:92:de:af:f7:bd:2f:d7:83:d8:97: cd:79:0a:ad:e6:04:60:12:a5:07:c2:58:46:75:e7:5c:56:97: bf:48:b1:21:37:a7:96:aa:4c:14:8c:bf:7f:cb:14:3d:68:46: ab:cb:28:93:76:5a:7f:c7:5f:73:86:5d:03:5e:53:31:70:18: 9d:37:81:3f:89:1d:86:bd:c8:2b:cf:48:0c:e6:ae:a6:ec:85: 9f:35:1e:02:09:b4:08:2f:1f:cb:71:e8:5b:88:4b:00:4d:79: a5:2b:81:06:ec:55:fd:5d:8b:d8:3a:0a:32:b3:e6:ab:f6:99: eb:85:5e:36 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZ26SaPDvmOTbv2fBM92JMG3eDfgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE4MTMzMTI4WhcNMjUxMTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BlZTJlNDVkMTJhM2E1NWQ5NTgxMTE0ODg5ZmZiZDM2NmMw OGM2NjIwOTM1NmJhMWIzMDBiYjk2OTk0MmExNWNkMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8FIbDTcelUgj2JS5LKxOnBsOGi0kdcueVAymNmBo0M0h8 vjjBdrr0Se+GzQx2N6DDHPHCSfoB4QwQaieZ/c+1uiW1LT/0V2SPTn9fPD8wrI+K lLMDAgHCSQ3d3f0jZhjzHesc/MWs1q5dSxG4Tng/EvRjY0HwQEKEl9jaA5eBMARO 0zzrBf3wu/bY3vtC+14KxmHhxuSoVaT4TMDbOS+3+oquTXFKbJCBIRZFxsKX+6Oj fzAiFfPG8g98CYJbZY1ycLdrav49bCCpQJnhBkh+Vdz4PXx/YPSYaXTlePgbi7Pf b8VwhtbCGTx+Cwag2g0b/OoLCDCcaz7v2OutpoPhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUa3CE0JSa91gOUeYFM8GqwiHcXrgwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2MzMGExNDcxLTM4MDAtNGRlYS1iZTM0LWI1ZWVhMTIzNDBjZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAISofAwDQYJKoZIhvcNAQELBQADggEBAGGsmqOxaRy+GJj/mluv4FMPGlJZ 7z9bN0hBbUHG0PLUoJPSfn/RMp2fkrN9Z17dkdZusA+2z9pMJihzlSq0Kb/N3K7M Iax/ipxYLZ9Bmw3yO6BV0S+bphmrgqCdzHM4xc1RCSH87dAXIczA8yI90UV+QNce ve5UuhkPXZaTZYa7kV3/lTiUkt6v970v14PYl815Cq3mBGASpQfCWEZ151xWl79I sSE3p5aqTBSMv3/LFD1oRqvLKJN2Wn/HX3OGXQNeUzFwGJ03gT+JHYa9yCvPSAzm rqbshZ81HgIJtAgvH8tx6FuISwBNeaUrgQbsVf1di9g6CjKz5qv2meuFXjY= -----END CERTIFICATE-----Generated at Mon Oct 20 08:43:35 2025 by rpki-client