$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c7068ea0-fc74-4961-910a-171780017217.roa File: c7068ea0-fc74-4961-910a-171780017217.roa (raw, json) Hash identifier: SeuvLbr1XrjzYN122BrjNxq0ynZKrMwQrZbyY8ag1mw= Subject key identifier: B3:0B:9E:6A:3F:9C:E1:47:4E:E6:90:9B:2A:08:EB:16:C0:34:A2:21 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 3DE95E457BB4FF6098B2D5F8E353837781D215 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c7068ea0-fc74-4961-910a-171780017217.roa Signing time: Mon 13 Oct 2025 17:44:01 +0000 ROA not before: Mon 13 Oct 2025 17:44:01 +0000 ROA not after: Mon 17 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.158.169.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:e9:5e:45:7b:b4:ff:60:98:b2:d5:f8:e3:53:83:77:81:d2:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 13 17:44:01 2025 GMT Not After : Nov 17 23:59:59 2025 GMT Subject: serialNumber=561cda337ee73006b170622a4d71f65357ee78bdef22509e9cb995f30b839745, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:6e:2f:64:c2:3a:ed:cb:5a:a6:f2:0f:be:b2: 28:35:ea:4b:1c:71:d2:1b:47:45:d1:06:27:74:79: c3:19:bd:da:53:5b:35:ad:92:c1:63:e8:1d:09:c7: ba:22:44:fd:3b:80:70:91:68:a3:db:78:82:ba:49: 17:0e:72:5d:88:e6:93:4d:8e:fa:e3:bb:69:17:4b: 3c:a2:d3:d8:2d:2d:9b:2f:c0:93:24:72:a6:a7:74: bf:c0:03:37:a5:a4:0c:ae:fe:de:80:0b:5f:40:d9: e4:e9:91:b7:7c:3e:cd:3c:53:6e:5c:e0:c3:9c:d6: f6:3a:18:ff:c8:35:ea:a6:a7:b6:40:2b:99:90:77: ee:0f:be:f4:f6:39:6e:08:25:ff:d4:9e:b1:a0:00: 6a:a9:73:68:a7:27:07:0f:9d:a5:2d:88:15:23:d8: 85:94:10:ef:f6:22:d5:53:47:1f:a8:b8:09:ab:64: 21:e6:26:c4:ab:8b:74:74:fc:1f:cb:d9:70:4d:24: 2e:63:e6:47:cf:35:45:a3:a9:d1:cb:7c:d0:e3:02: 8a:c2:87:ce:ca:6a:d4:17:5a:9e:b8:59:49:ee:0f: e0:f9:48:97:63:f0:70:00:45:e9:cf:51:c9:e8:6b: 51:43:7d:aa:3b:79:fd:12:9f:e8:10:1f:0e:43:6e: 85:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:0B:9E:6A:3F:9C:E1:47:4E:E6:90:9B:2A:08:EB:16:C0:34:A2:21 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c7068ea0-fc74-4961-910a-171780017217.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.158.169.0/24 Signature Algorithm: sha256WithRSAEncryption ac:03:8b:06:cf:2c:2e:13:1d:3c:a3:c9:c6:83:95:41:80:e3: 58:f6:ac:b6:4d:32:11:28:d1:14:33:68:19:d4:50:56:f6:23: 3d:3a:3e:7a:3f:a1:60:69:ec:4f:fc:7e:6d:2c:f3:e6:d8:0a: f4:66:71:2a:14:13:67:04:2b:da:d2:94:55:3b:57:fd:da:48: 97:19:d5:59:58:f4:a0:cf:bc:2e:4d:7d:ec:4c:19:7b:f1:a4: 3a:db:ac:67:39:17:ad:a1:ad:1e:c8:af:f0:2e:36:30:cd:f4: c9:0b:ab:67:ac:a4:50:40:99:e7:25:62:c3:2f:1f:d7:10:2a: 0a:54:0b:f8:b7:24:b7:30:8a:7f:39:02:be:9f:b4:05:78:5b: 40:4f:96:80:c7:12:6b:00:42:4b:66:cc:fd:2a:33:84:f1:d8: e7:62:a5:08:e1:e1:09:8f:b3:23:4b:18:86:18:b8:16:2b:32: 1d:da:48:8a:a9:26:bb:52:91:c9:de:70:42:cd:be:e6:1a:49: fa:db:60:24:f7:19:28:a8:6c:0c:58:1d:1f:ff:23:21:87:60: af:01:de:d9:96:57:dc:ae:69:70:9e:e2:5e:b2:d9:b5:c3:4a: 2d:41:4a:67:52:a5:87:3a:fb:3b:2d:45:fa:bb:1e:11:57:bb: 4f:06:80:38 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITPeleRXu0/2CYstX441ODd4HSFTANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzJkZjZmM2IzYTM0YjYzODZkMWEzMmQ4ZjRmYTMxNzhlZjMx ODg3ZDhiNDI4ZGZhYTQ3NjAeFw0yNTEwMTMxNzQ0MDFaFw0yNTExMTcyMzU5NTla MHoxSTBHBgNVBAUTQDU2MWNkYTMzN2VlNzMwMDZiMTcwNjIyYTRkNzFmNjUzNTdl ZTc4YmRlZjIyNTA5ZTljYjk5NWYzMGI4Mzk3NDUxLTArBgNVBAMTJDVmMjc2MDQ1 LTViOWYtNDVlZi05MjNkLWYzZmNlMjRhNjIyNTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAMFuL2TCOu3LWqbyD76yKDXqSxxx0htHRdEGJ3R5wxm92lNb Na2SwWPoHQnHuiJE/TuAcJFoo9t4grpJFw5yXYjmk02O+uO7aRdLPKLT2C0tmy/A kyRypqd0v8ADN6WkDK7+3oALX0DZ5OmRt3w+zTxTblzgw5zW9joY/8g16qantkAr mZB37g++9PY5bggl/9SesaAAaqlzaKcnBw+dpS2IFSPYhZQQ7/Yi1VNHH6i4Catk IeYmxKuLdHT8H8vZcE0kLmPmR881RaOp0ct80OMCisKHzspq1BdanrhZSe4P4PlI l2PwcABF6c9RyehrUUN9qjt5/RKf6BAfDkNuhaUCAwEAAaOCArEwggKtMB0GA1Ud DgQWBBSzC55qP5zhR07mkJsqCOsWwDSiITAfBgNVHSMEGDAWgBQlrdNCsB63pY6t GZAmiLVLP4H0uDAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzg1MWNlZjE3LTEz MmEtNDMzNy1iN2QxLWJmMTZhNTJmZmQwMy9kZjZmM2IzYTM0YjYzODZkMWEzMmQ4 ZjRmYTMxNzhlZjMxODg3ZDhiNDI4ZGZhYTQ3Ni5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9mNzAzNjk2ZS1lNDdiLTRjMjAtYmQ5My02Zjgw OTA0ZTQyZDIvYzcwNjhlYTAtZmM3NC00OTYxLTkxMGEtMTcxNzgwMDE3MjE3LnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMt NmY4MDkwNGU0MmQyL3RqaHRHakxZOVBveGVPOHhpSDJMUW8zNnBIWS5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAA+eqTANBgkqhkiG9w0BAQsFAAOCAQEArAOLBs8sLhMdPKPJxoOVQYDjWPas tk0yESjRFDNoGdRQVvYjPTo+ej+hYGnsT/x+bSzz5tgK9GZxKhQTZwQr2tKUVTtX /dpIlxnVWVj0oM+8Lk197EwZe/GkOtusZzkXraGtHsiv8C42MM30yQurZ6ykUECZ 5yViwy8f1xAqClQL+LcktzCKfzkCvp+0BXhbQE+WgMcSawBCS2bM/SozhPHY52Kl COHhCY+zI0sYhhi4FisyHdpIiqkmu1KRyd5wQs2+5hpJ+ttgJPcZKKhsDFgdH/8j IYdgrwHe2ZZX3K5pcJ7iXrLZtcNKLUFKZ1Klhzr7Oy1F+rseEVe7TwaAOA== -----END CERTIFICATE-----Generated at Mon Oct 20 06:07:22 2025 by rpki-client