$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c7ad124e-7f48-4da0-aaf0-ebe97559dc80.roa File: c7ad124e-7f48-4da0-aaf0-ebe97559dc80.roa (raw, json) Hash identifier: 36EFGF2Rv91doqEqlhko+7Es8Hj6lhacZcV4za+xDm0= Subject key identifier: 3A:A3:FE:80:DA:2A:45:95:B6:96:58:8B:93:44:06:E2:97:F3:38:C0 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 1D5997889E14C7E8E84E44D78DA358AD7D6F1E50 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c7ad124e-7f48-4da0-aaf0-ebe97559dc80.roa Signing time: Sun 19 Oct 2025 23:32:42 +0000 ROA not before: Sun 19 Oct 2025 23:32:42 +0000 ROA not after: Sun 23 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.64.48.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:59:97:88:9e:14:c7:e8:e8:4e:44:d7:8d:a3:58:ad:7d:6f:1e:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 19 23:32:42 2025 GMT Not After : Nov 23 23:59:59 2025 GMT Subject: serialNumber=1da67edd8b0adbb0ad6edbe8504c6c2f914db3f5af802bdac30789525cd01450, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:c5:67:e1:fb:b0:5f:d2:c1:70:54:3b:4e:60: d9:75:54:fa:ce:de:fe:60:ae:4c:ce:16:2d:c6:4f: 97:50:5d:38:93:38:0f:dc:87:78:29:d6:3a:74:f8: 0b:1f:72:6b:b9:ae:97:b1:0f:f1:4d:77:c8:54:c4: dc:9d:d3:c2:15:83:12:54:d5:af:91:d1:60:77:82: 78:72:f0:ce:93:ca:d9:36:7b:de:4c:96:ac:b1:08: 29:e3:90:00:f2:ad:43:a2:7e:79:f2:51:42:39:11: a4:a5:15:91:0e:85:b6:0a:aa:80:48:66:0f:aa:58: 10:27:d0:0b:09:eb:1a:b9:d6:4b:38:3e:37:ab:03: d3:d8:20:f2:1c:9d:a2:5d:82:13:09:0b:08:c0:4c: 70:f1:fa:cf:f0:53:b7:ae:a7:2a:2f:94:82:12:80: 6d:d5:d7:70:47:db:24:93:c1:5f:64:d5:47:2c:3a: 13:3e:67:8b:06:1b:37:58:ac:19:e7:49:77:91:34: 4f:ea:c1:f8:ee:e1:7c:76:f5:72:71:3a:51:82:08: f1:14:88:4b:9e:b0:ad:3e:e5:b8:53:87:63:6a:2f: bf:d9:74:f1:01:ea:29:ee:62:38:60:f3:6c:2f:a7: 5e:bf:e2:b9:8b:eb:b1:ea:5f:eb:64:c9:74:ed:4e: f1:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:A3:FE:80:DA:2A:45:95:B6:96:58:8B:93:44:06:E2:97:F3:38:C0 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c7ad124e-7f48-4da0-aaf0-ebe97559dc80.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.64.48.0/21 Signature Algorithm: sha256WithRSAEncryption 55:5a:07:a0:c6:aa:9d:5d:c1:c7:d8:b3:3c:10:9d:09:e8:91: 78:f2:02:dd:a1:32:bb:16:02:9b:dd:fe:50:5e:51:91:0b:33: fb:26:cc:46:d4:70:cb:12:09:ec:c2:e8:86:56:c7:16:c5:4a: 75:35:3e:9f:34:c2:28:24:83:54:9f:89:6e:1d:52:c8:4e:0a: bc:61:bb:97:45:db:86:bb:dc:42:cf:27:34:cf:49:f8:90:f5: 85:c0:75:bd:67:37:e5:81:7e:c9:82:02:eb:86:3f:c0:20:7a: 7a:a5:5c:d2:d5:c0:82:eb:e8:42:8f:68:b6:6f:03:76:6b:91: 73:50:37:b9:f1:f0:9e:cc:8d:89:db:24:a5:6e:87:55:61:7e: 8b:de:e1:ae:59:92:3c:4a:ef:c4:6e:db:66:73:0f:cf:5c:19: 10:12:5b:10:4d:52:e9:43:bb:2a:83:38:61:75:ec:1c:e2:ee: d3:ec:f0:a0:2f:44:30:87:37:2e:b9:b8:d0:4b:f9:4c:59:e8: 04:cd:61:82:f4:28:b8:b8:7a:d6:45:d9:c6:23:b8:46:7a:25: 2b:4b:ff:0a:6b:b3:cf:76:7e:cc:c8:99:eb:04:d5:c2:e6:ed: a9:8f:8c:47:9d:2b:61:c6:41:48:6a:38:27:34:50:d9:5e:87: 65:d5:91:9e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHVmXiJ4Ux+joTkTXjaNYrX1vHlAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE5MjMzMjQyWhcNMjUxMTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AxZGE2N2VkZDhiMGFkYmIwYWQ2ZWRiZTg1MDRjNmMyZjkx NGRiM2Y1YWY4MDJiZGFjMzA3ODk1MjVjZDAxNDUwMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDYxWfh+7Bf0sFwVDtOYNl1VPrO3v5grkzOFi3GT5dQXTiT OA/ch3gp1jp0+Asfcmu5rpexD/FNd8hUxNyd08IVgxJU1a+R0WB3gnhy8M6Tytk2 e95MlqyxCCnjkADyrUOifnnyUUI5EaSlFZEOhbYKqoBIZg+qWBAn0AsJ6xq51ks4 PjerA9PYIPIcnaJdghMJCwjATHDx+s/wU7eupyovlIISgG3V13BH2ySTwV9k1Ucs OhM+Z4sGGzdYrBnnSXeRNE/qwfju4Xx29XJxOlGCCPEUiEuesK0+5bhTh2NqL7/Z dPEB6inuYjhg82wvp16/4rmL67HqX+tkyXTtTvHXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUOqP+gNoqRZW2lliLk0QG4pfzOMAwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2M3YWQxMjRlLTdmNDgtNGRhMC1hYWYwLWViZTk3NTU5ZGM4MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMSQDAwDQYJKoZIhvcNAQELBQADggEBAFVaB6DGqp1dwcfYszwQnQnokXjy At2hMrsWApvd/lBeUZELM/smzEbUcMsSCezC6IZWxxbFSnU1Pp80wigkg1SfiW4d UshOCrxhu5dF24a73ELPJzTPSfiQ9YXAdb1nN+WBfsmCAuuGP8AgenqlXNLVwILr 6EKPaLZvA3ZrkXNQN7nx8J7MjYnbJKVuh1Vhfove4a5ZkjxK78Ru22ZzD89cGRAS WxBNUulDuyqDOGF17Bzi7tPs8KAvRDCHNy65uNBL+UxZ6ATNYYL0KLi4etZF2cYj uEZ6JStL/wprs892fszImesE1cLm7amPjEedK2HGQUhqOCc0UNleh2XVkZ4= -----END CERTIFICATE-----Generated at Mon Oct 20 02:58:59 2025 by rpki-client