$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d0d5ea5b-863a-4bfb-ab23-625f8c78f66d.roa File: d0d5ea5b-863a-4bfb-ab23-625f8c78f66d.roa (raw, json) Hash identifier: XNfMNgRAAJViRry5JPFoLACwx23tx0Il0FYpeXi2xPU= Subject key identifier: C1:59:38:AA:47:63:50:09:83:1E:AD:16:CB:67:32:81:F7:A2:6A:14 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 086295CE39DE1ACA5529FE21C1BC3D62DC4E7825 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d0d5ea5b-863a-4bfb-ab23-625f8c78f66d.roa Signing time: Sat 18 Oct 2025 10:32:37 +0000 ROA not before: Sat 18 Oct 2025 10:32:37 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.245.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:62:95:ce:39:de:1a:ca:55:29:fe:21:c1:bc:3d:62:dc:4e:78:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 18 10:32:37 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=16b9d013f0405d120fbd765d02dfca9910df2bc21fb2a2c3996b85eb2f4567f6, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:ed:be:66:17:5a:e9:f9:6f:00:5c:38:41:f3: aa:03:17:27:dd:b9:a0:26:e0:96:e7:e0:55:82:32: 11:16:19:57:2c:6a:77:bc:02:7e:98:95:00:dc:ca: d1:b6:3b:1e:84:8f:57:8e:9e:b4:23:de:d7:dd:49: cf:23:2e:b0:75:80:ed:f7:de:af:4b:52:19:8d:ab: ca:a3:d0:e6:f5:86:05:90:14:f7:67:e0:e2:ac:be: a4:31:49:60:47:09:bd:5a:8e:a0:fe:0a:b2:67:e6: a4:af:55:76:a3:c4:9f:8d:a2:a4:a3:cd:84:2e:24: 48:d6:a1:a8:2c:de:31:3e:35:98:70:88:6b:17:76: 4c:3b:0a:f8:f9:fe:58:fd:3a:56:00:17:ab:8b:cf: 98:c6:37:58:17:c0:74:35:23:f6:3b:b5:fa:cb:59: 08:e7:c7:36:a6:f4:e0:f4:36:0a:96:e3:46:f2:a4: 45:7d:6c:4a:c1:ef:eb:cf:b7:49:a3:b5:00:4e:56: 58:90:7c:0b:43:a0:a5:4b:f2:a6:d1:bd:dc:f2:21: a7:a3:62:ff:09:8b:a5:09:5b:dc:7e:3e:63:cb:7f: 1a:87:af:b7:f0:82:47:31:40:a3:90:a7:db:7d:a7: 2a:8f:f2:a5:93:6e:73:80:ce:e8:e8:e7:f0:75:af: bf:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:59:38:AA:47:63:50:09:83:1E:AD:16:CB:67:32:81:F7:A2:6A:14 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d0d5ea5b-863a-4bfb-ab23-625f8c78f66d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.245.187.0/24 Signature Algorithm: sha256WithRSAEncryption 73:03:fa:12:d4:48:47:85:ed:7f:5c:9e:83:89:5f:e0:36:e3: 01:37:2c:7b:d8:0b:d6:f5:2f:80:27:98:ff:f4:a5:5e:6a:b2: 3f:5d:40:0d:1a:4c:d2:f9:64:b6:f2:c5:6f:6c:f9:d9:1b:65: 0a:ca:b5:6e:3e:0d:eb:f4:71:01:99:6b:3d:dc:ae:16:19:7d: 26:81:13:88:95:1e:50:4a:b4:45:63:7d:12:24:9f:5c:3d:7f: 3a:09:1a:84:46:79:dd:cb:6b:b2:9d:b8:3e:52:37:bc:9e:2f: 48:43:c3:03:cf:cc:0a:cb:63:e5:a7:4b:9a:25:c7:56:a7:2a: 56:b5:9d:58:d9:ab:c5:fc:5d:fc:59:1b:57:e7:7b:93:14:f5: d6:21:db:3c:c2:ee:26:94:79:5d:b8:3e:d9:ff:be:7d:7e:0f: 75:09:44:85:49:4d:22:a8:5e:d3:26:5f:ff:0d:86:11:a0:61: 1f:0b:f9:84:46:1e:57:4a:94:64:fd:db:ae:f8:e4:c2:00:f0: 12:19:83:6e:39:57:4a:25:99:4b:0d:a3:2b:a9:3e:4b:3f:7a: 9b:a0:88:17:c2:9a:08:04:78:66:bc:a3:5a:f4:94:03:01:2f: 81:1a:8c:80:a9:8f:1b:07:e8:2d:65:f4:7b:93:86:9f:70:a0: d4:d3:e4:64 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCGKVzjneGspVKf4hwbw9YtxOeCUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE4MTAzMjM3WhcNMjUxMTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0AxNmI5ZDAxM2YwNDA1ZDEyMGZiZDc2NWQwMmRmY2E5OTEw ZGYyYmMyMWZiMmEyYzM5OTZiODVlYjJmNDU2N2Y2MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCO7b5mF1rp+W8AXDhB86oDFyfduaAm4Jbn4FWCMhEWGVcs ane8An6YlQDcytG2Ox6Ej1eOnrQj3tfdSc8jLrB1gO333q9LUhmNq8qj0Ob1hgWQ FPdn4OKsvqQxSWBHCb1ajqD+CrJn5qSvVXajxJ+NoqSjzYQuJEjWoags3jE+NZhw iGsXdkw7Cvj5/lj9OlYAF6uLz5jGN1gXwHQ1I/Y7tfrLWQjnxzam9OD0NgqW40by pEV9bErB7+vPt0mjtQBOVliQfAtDoKVL8qbRvdzyIaejYv8Ji6UJW9x+PmPLfxqH r7fwgkcxQKOQp9t9pyqP8qWTbnOAzujo5/B1r7+dAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUwVk4qkdjUAmDHq0Wy2cygfeiahQwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2QwZDVlYTViLTg2M2EtNGJmYi1hYjIzLTYyNWY4Yzc4ZjY2ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAS9bswDQYJKoZIhvcNAQELBQADggEBAHMD+hLUSEeF7X9cnoOJX+A24wE3 LHvYC9b1L4AnmP/0pV5qsj9dQA0aTNL5ZLbyxW9s+dkbZQrKtW4+Dev0cQGZaz3c rhYZfSaBE4iVHlBKtEVjfRIkn1w9fzoJGoRGed3La7KduD5SN7yeL0hDwwPPzArL Y+WnS5olx1anKla1nVjZq8X8XfxZG1fne5MU9dYh2zzC7iaUeV24Ptn/vn1+D3UJ RIVJTSKoXtMmX/8NhhGgYR8L+YRGHldKlGT926745MIA8BIZg245V0olmUsNoyup Pks/epugiBfCmggEeGa8o1r0lAMBL4EajICpjxsH6C1l9HuThp9woNTT5GQ= -----END CERTIFICATE-----Generated at Mon Oct 20 02:55:23 2025 by rpki-client