$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d063438e-9117-4d36-b39c-ef9dde5906d3.roa File: d063438e-9117-4d36-b39c-ef9dde5906d3.roa (raw, json) Hash identifier: I+zdkDNJW0AtmtnSPBIrPaXA0xKavcu1MHLJ+YcPsxU= Subject key identifier: 72:A6:2A:55:B0:35:D9:FA:1E:B9:17:FC:B4:B0:FC:A5:20:76:8C:E9 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 302890AA833FF5A687341A2122571A97481054B5 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d063438e-9117-4d36-b39c-ef9dde5906d3.roa Signing time: Sun 19 Oct 2025 19:42:37 +0000 ROA not before: Sun 19 Oct 2025 19:42:37 +0000 ROA not after: Sun 23 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.65.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:28:90:aa:83:3f:f5:a6:87:34:1a:21:22:57:1a:97:48:10:54:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 19 19:42:37 2025 GMT Not After : Nov 23 23:59:59 2025 GMT Subject: serialNumber=c283873df0ac42459a9d83abb559168e9b51e0405a1b244c1f375928458f4ea5, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:2f:04:e5:1f:68:fb:81:29:82:e5:40:81:5a: c6:5c:32:e0:7e:33:95:de:49:00:42:34:df:35:3e: 6e:86:ad:41:8c:05:b1:ed:d4:2b:23:80:10:82:95: 06:0e:99:56:36:ae:80:48:d9:35:27:aa:8e:35:a3: b4:1a:07:d7:21:ab:41:d7:f1:93:b1:cf:47:cf:7a: 7a:9e:a4:19:bb:76:65:2b:a7:42:ed:79:fa:bf:b1: d3:21:6f:73:9c:af:a8:4c:69:4e:9a:ef:5f:07:19: 96:b9:fd:ab:4b:e8:ba:e1:7e:27:e8:b1:c1:f4:50: 84:54:7d:45:cd:84:8c:74:d3:8a:f8:eb:a2:35:76: ca:4f:e8:f2:d3:dd:9f:9f:b3:3f:cb:74:ec:62:be: dc:f8:2d:c6:47:03:40:00:13:a1:e0:8c:98:df:97: 8d:ea:34:71:0d:c6:3b:16:1b:cb:d5:47:ec:bc:12: 2b:3c:e7:29:c2:d3:03:b4:24:f4:ad:61:85:54:aa: 35:b0:83:00:51:cf:8c:dd:b6:cd:40:e7:c4:c9:d6: f7:ee:82:33:4e:4c:91:be:f2:18:b2:ef:7c:7a:29: 29:a9:c5:87:3b:8a:17:5a:f8:4a:c7:71:a3:36:93: c8:37:67:98:1e:17:1c:1e:0f:30:1b:ce:8c:19:23: 70:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:A6:2A:55:B0:35:D9:FA:1E:B9:17:FC:B4:B0:FC:A5:20:76:8C:E9 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d063438e-9117-4d36-b39c-ef9dde5906d3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.65.159.0/24 Signature Algorithm: sha256WithRSAEncryption 57:34:1c:55:d1:6a:2d:ab:9c:7f:43:a4:1f:c7:9a:c7:90:56: 24:bc:a6:ca:51:bd:a8:4f:ac:19:05:d6:88:ba:2a:b6:60:01: 2d:3a:01:3c:96:ec:16:b7:d7:b7:ed:90:5a:1a:b2:00:d1:69: d5:53:0c:68:52:1f:9f:03:9b:28:b9:9c:65:34:3b:10:7a:d8: dc:8f:89:07:a7:5d:c8:2c:2a:41:31:0f:b7:d9:c8:a8:ad:cb: 3b:09:32:1a:df:d8:81:9c:37:62:cc:18:1b:9d:ab:f9:3c:4d: ee:6a:11:bb:03:ad:74:7c:05:23:b7:da:2e:41:df:26:41:1f: d9:10:29:9c:ba:58:63:c5:34:77:4b:68:5f:1a:ad:11:a9:fc: f7:1f:a2:ac:5d:3e:6b:b6:1a:dc:10:e6:e7:2b:7a:12:7c:1e: 95:0b:a4:66:8e:93:49:e9:1e:e7:3f:fb:a9:01:08:c2:68:cb: eb:f8:e6:ee:e1:59:99:22:9e:31:cb:99:59:98:90:de:0d:2c: 76:59:2b:d0:7e:7d:91:6e:49:25:1a:06:4e:3d:7f:3f:55:8c: f5:02:dc:5b:af:8e:43:4f:9e:b4:2d:a7:83:03:bf:e3:9a:45: 78:89:11:f5:52:aa:07:9e:3d:64:a5:ca:11:dc:ce:3d:89:8e: 7d:38:96:94 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMCiQqoM/9aaHNBohIlcal0gQVLUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE5MTk0MjM3WhcNMjUxMTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BjMjgzODczZGYwYWM0MjQ1OWE5ZDgzYWJiNTU5MTY4ZTli NTFlMDQwNWExYjI0NGMxZjM3NTkyODQ1OGY0ZWE1MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuLwTlH2j7gSmC5UCBWsZcMuB+M5XeSQBCNN81Pm6GrUGM BbHt1CsjgBCClQYOmVY2roBI2TUnqo41o7QaB9chq0HX8ZOxz0fPenqepBm7dmUr p0Ltefq/sdMhb3Ocr6hMaU6a718HGZa5/atL6LrhfifoscH0UIRUfUXNhIx004r4 66I1dspP6PLT3Z+fsz/LdOxivtz4LcZHA0AAE6HgjJjfl43qNHENxjsWG8vVR+y8 Eis85ynC0wO0JPStYYVUqjWwgwBRz4zdts1A58TJ1vfugjNOTJG+8hiy73x6KSmp xYc7ihda+ErHcaM2k8g3Z5geFxweDzAbzowZI3BLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUcqYqVbA12foeuRf8tLD8pSB2jOkwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2QwNjM0MzhlLTkxMTctNGQzNi1iMzljLWVmOWRkZTU5MDZkMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAASQZ8wDQYJKoZIhvcNAQELBQADggEBAFc0HFXRai2rnH9DpB/HmseQViS8 pspRvahPrBkF1oi6KrZgAS06ATyW7Ba317ftkFoasgDRadVTDGhSH58Dmyi5nGU0 OxB62NyPiQenXcgsKkExD7fZyKityzsJMhrf2IGcN2LMGBudq/k8Te5qEbsDrXR8 BSO32i5B3yZBH9kQKZy6WGPFNHdLaF8arRGp/PcfoqxdPmu2GtwQ5ucrehJ8HpUL pGaOk0npHuc/+6kBCMJoy+v45u7hWZkinjHLmVmYkN4NLHZZK9B+fZFuSSUaBk49 fz9VjPUC3FuvjkNPnrQtp4MDv+OaRXiJEfVSqgeePWSlyhHczj2Jjn04lpQ= -----END CERTIFICATE-----Generated at Mon Oct 20 03:01:19 2025 by rpki-client