$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ce5f3661-0ee5-4b61-a462-382d316d875a.roa File: ce5f3661-0ee5-4b61-a462-382d316d875a.roa (raw, json) Hash identifier: sI68+9wbs6SJYo6J8SaFBVuM95WEm7F2nKDqAeQ/T8A= Subject key identifier: F9:6C:1C:99:96:3F:FD:F4:59:5A:1B:47:C4:68:8A:0A:8C:F5:66:52 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 647EEA81B168109B30E099DEC5712A84B2207F72 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ce5f3661-0ee5-4b61-a462-382d316d875a.roa Signing time: Sat 18 Oct 2025 09:11:16 +0000 ROA not before: Sat 18 Oct 2025 09:11:16 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.154.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:7e:ea:81:b1:68:10:9b:30:e0:99:de:c5:71:2a:84:b2:20:7f:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 18 09:11:16 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=c90c4f26bc8b6a275c46699d7b2a7585345a8d2704e7259ea028a62df7164855, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:de:3c:ab:e2:c4:0c:99:1d:ff:53:53:05:5b: cf:2c:5a:d7:be:4a:8a:07:ff:d2:a9:2e:ff:f9:94: 19:b3:7f:62:b2:90:3d:0d:ce:b3:ab:ad:67:2d:6e: 20:76:5c:e2:97:33:c8:c4:25:70:b9:66:81:ea:e7: 65:c5:ce:5e:b5:40:66:10:0e:23:9c:55:89:7a:71: fa:d7:0e:23:60:40:b2:5c:19:13:0b:27:5a:1e:2e: ad:af:bc:db:7d:fa:69:07:4a:4d:82:bf:3a:88:07: 3f:ad:dd:4a:db:7c:7d:e5:af:c6:fa:1b:4b:96:9f: 90:25:d2:2a:b4:df:e4:dd:49:56:52:53:d4:e2:53: 99:ea:68:5a:00:20:4d:88:73:4c:6d:e9:6f:a6:a6: 3f:a2:43:e2:0d:15:d3:e7:7c:f5:54:84:53:c0:56: 7d:f2:42:f7:b9:9a:35:7b:bb:f8:8c:06:8f:48:d0: 17:e3:31:0f:ae:16:c9:34:01:6f:94:f4:72:2c:72: 5d:c0:fd:3e:e8:8a:8e:4d:b4:2c:e5:87:12:34:d8: 9f:d1:7a:af:49:ae:95:ac:e2:6f:fb:ce:a5:3b:d1: 43:9b:f4:03:3b:63:85:ac:f5:94:f6:7f:aa:34:dd: 16:54:c0:02:92:07:5a:48:87:b4:84:ab:f2:03:c7: e3:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:6C:1C:99:96:3F:FD:F4:59:5A:1B:47:C4:68:8A:0A:8C:F5:66:52 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ce5f3661-0ee5-4b61-a462-382d316d875a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.154.236.0/24 Signature Algorithm: sha256WithRSAEncryption 85:ec:2d:db:84:b5:b5:e8:b9:46:aa:e6:86:dc:13:3a:bd:c6: 90:be:02:cf:3a:e5:98:b5:15:2a:95:d3:8e:96:22:a6:3f:de: 40:dd:44:f4:44:96:4f:c5:d3:12:26:41:a5:7e:12:59:5b:46: 0a:94:73:f7:d1:84:b2:6c:6d:fa:2a:98:55:1b:f3:4e:9e:75: 99:6f:1f:0b:6f:8c:eb:f7:21:9d:53:a1:46:80:53:23:51:2b: 1a:0b:ea:97:86:66:7d:f8:03:3a:69:8d:c2:40:1e:c5:aa:c2: c3:ef:12:ed:e0:70:b9:89:5d:e9:cf:a9:aa:08:14:a9:bc:be: a5:bc:30:e8:7d:47:ca:05:16:e4:d5:57:73:b0:47:41:0a:45: 52:e8:0d:2b:c7:ec:a6:49:b5:0f:c1:50:f4:1d:8c:f3:80:49: 4d:c4:fb:d2:c9:ee:0c:a7:a7:78:8b:ca:82:07:64:94:b6:e4: 08:4e:37:9b:b9:51:1b:3e:a5:a9:91:06:d1:96:3f:f3:0c:3f: 1e:4f:39:fd:d3:60:ab:33:e7:c8:82:aa:02:c0:e1:f2:b4:c2: 6e:c6:c7:89:2d:ae:31:f3:95:be:02:fe:fe:1e:e4:21:b0:ab: 0d:26:50:f4:c1:62:9f:e9:58:7d:3c:71:05:01:f7:17:1e:55: bf:ad:82:1d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZH7qgbFoEJsw4JnexXEqhLIgf3IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE4MDkxMTE2WhcNMjUxMTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BjOTBjNGYyNmJjOGI2YTI3NWM0NjY5OWQ3YjJhNzU4NTM0 NWE4ZDI3MDRlNzI1OWVhMDI4YTYyZGY3MTY0ODU1MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC13jyr4sQMmR3/U1MFW88sWte+SooH/9KpLv/5lBmzf2Ky kD0NzrOrrWctbiB2XOKXM8jEJXC5ZoHq52XFzl61QGYQDiOcVYl6cfrXDiNgQLJc GRMLJ1oeLq2vvNt9+mkHSk2CvzqIBz+t3UrbfH3lr8b6G0uWn5Al0iq03+TdSVZS U9TiU5nqaFoAIE2Ic0xt6W+mpj+iQ+INFdPnfPVUhFPAVn3yQve5mjV7u/iMBo9I 0BfjMQ+uFsk0AW+U9HIscl3A/T7oio5NtCzlhxI02J/Req9JrpWs4m/7zqU70UOb 9AM7Y4Ws9ZT2f6o03RZUwAKSB1pIh7SEq/IDx+MHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU+WwcmZY//fRZWhtHxGiKCoz1ZlIwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2NlNWYzNjYxLTBlZTUtNGI2MS1hNDYyLTM4MmQzMTZkODc1YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAASmuwwDQYJKoZIhvcNAQELBQADggEBAIXsLduEtbXouUaq5obcEzq9xpC+ As865Zi1FSqV046WIqY/3kDdRPRElk/F0xImQaV+EllbRgqUc/fRhLJsbfoqmFUb 806edZlvHwtvjOv3IZ1ToUaAUyNRKxoL6peGZn34AzppjcJAHsWqwsPvEu3gcLmJ XenPqaoIFKm8vqW8MOh9R8oFFuTVV3OwR0EKRVLoDSvH7KZJtQ/BUPQdjPOASU3E +9LJ7gynp3iLyoIHZJS25AhON5u5URs+pamRBtGWP/MMPx5POf3TYKsz58iCqgLA 4fK0wm7Gx4ktrjHzlb4C/v4e5CGwqw0mUPTBYp/pWH08cQUB9xceVb+tgh0= -----END CERTIFICATE-----Generated at Mon Oct 20 06:03:55 2025 by rpki-client