$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d8103359-bba9-478d-a9d7-79e35e48424d.roa File: d8103359-bba9-478d-a9d7-79e35e48424d.roa (raw, json) Hash identifier: pxx+vR/RZCBFswkx2xuUW8kqHcbPlopba6i6EMiq270= Subject key identifier: 9B:80:D2:53:C6:0E:4A:6E:E5:3E:E7:BF:9D:69:77:0F:AF:90:BC:27 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 1F1AF0B1855195A7F94F2C6BA1B874B25EC54F9F Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d8103359-bba9-478d-a9d7-79e35e48424d.roa Signing time: Fri 26 Sep 2025 16:25:00 +0000 ROA not before: Fri 26 Sep 2025 16:25:00 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.253.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 23 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:1a:f0:b1:85:51:95:a7:f9:4f:2c:6b:a1:b8:74:b2:5e:c5:4f:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 26 16:25:00 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=9abba0c932b06b3b39990bf6ce0b6d34e8fc06ec29c27c3f50f004fea098f07b, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:68:88:f3:3b:ae:26:4a:d0:86:f1:c7:80:44: d5:77:42:be:5e:63:0d:5e:76:b8:93:fa:b1:89:e8: 65:9c:b1:63:b4:61:65:b6:e4:7f:4b:02:11:13:33: e2:8d:f8:70:cc:4f:07:f7:91:b0:91:84:32:d5:e3: f0:63:89:65:1d:03:7c:0f:8b:ea:5b:5d:b3:9b:b0: 7a:83:59:f0:9d:e8:fc:0b:10:88:10:23:52:2b:62: 9f:82:14:c3:15:0a:34:b8:d6:73:ad:93:2a:90:17: 4f:1a:04:97:81:6a:9f:73:2c:ba:51:9d:08:3c:f7: cc:75:7c:36:13:ae:8b:6c:c8:81:0b:88:b3:a8:70: ff:85:a9:cf:12:18:be:84:ee:31:e5:24:75:de:2c: 06:00:e4:89:a1:45:27:a6:ec:f6:3f:ed:1e:6c:84: 33:9f:07:b9:93:c9:2a:18:b2:01:a1:3e:fa:44:eb: 35:d4:03:ea:89:7e:e8:1d:46:bb:00:7e:a8:16:76: 3c:59:1e:f6:65:71:10:47:9b:96:c0:1d:99:8c:7b: 76:b1:7a:2f:66:9e:f8:5b:bb:23:31:5f:93:5b:ff: ee:c6:d1:46:33:69:16:df:5a:cf:16:39:75:cf:22: 0b:f4:6a:b6:db:3c:e2:b0:94:59:a5:9b:c1:e0:77: b7:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:80:D2:53:C6:0E:4A:6E:E5:3E:E7:BF:9D:69:77:0F:AF:90:BC:27 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d8103359-bba9-478d-a9d7-79e35e48424d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.253.0.0/24 Signature Algorithm: sha256WithRSAEncryption 90:44:28:84:bf:3e:3f:2e:e1:8e:28:3b:52:e1:4a:1f:30:a2: 94:8a:b3:b5:30:e6:78:df:35:2e:75:df:58:a0:ec:5c:2f:82: 6a:51:42:7c:73:bf:01:c9:02:ab:9d:87:21:ae:d3:a0:74:2a: 37:59:ae:ef:1d:2a:16:c1:b4:82:ff:6d:ce:15:11:0b:05:37: 4e:3e:16:4d:96:67:86:0d:35:88:b9:a9:7e:32:c3:da:f4:da: e4:1e:26:39:91:56:07:2d:60:75:ed:c2:0a:ce:5b:3b:4d:5b: 13:c6:9b:db:7d:6b:ce:a7:e7:9f:09:28:c7:67:ec:42:bd:03: a1:ca:f8:4a:fc:9c:30:df:19:c2:6e:57:de:5f:fa:b1:20:04: 19:e5:cc:f9:9a:47:ed:3f:d2:7d:3e:f7:4e:83:74:7b:5b:07: c8:ac:9e:ca:cc:30:d9:7c:d3:76:ba:bf:33:08:9b:19:97:d2: 7f:66:84:4c:3a:d5:0e:48:2b:3b:b6:db:ea:a3:a8:99:73:f4: 25:0e:84:70:ad:f0:ef:91:dc:e3:1b:9d:66:ee:cd:82:36:cb: 1e:68:24:c8:4e:f8:5c:40:a4:38:63:7f:17:47:22:3c:46:02: 43:79:3b:32:36:ee:f9:a3:c9:35:7c:e3:85:0e:3a:de:49:38: e7:75:f9:ec -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHxrwsYVRlaf5Tyxrobh0sl7FT58wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTI2MTYyNTAwWhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0A5YWJiYTBjOTMyYjA2YjNiMzk5OTBiZjZjZTBiNmQzNGU4 ZmMwNmVjMjljMjdjM2Y1MGYwMDRmZWEwOThmMDdiMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCXaIjzO64mStCG8ceARNV3Qr5eYw1edriT+rGJ6GWcsWO0 YWW25H9LAhETM+KN+HDMTwf3kbCRhDLV4/BjiWUdA3wPi+pbXbObsHqDWfCd6PwL EIgQI1IrYp+CFMMVCjS41nOtkyqQF08aBJeBap9zLLpRnQg898x1fDYTrotsyIEL iLOocP+Fqc8SGL6E7jHlJHXeLAYA5ImhRSem7PY/7R5shDOfB7mTySoYsgGhPvpE 6zXUA+qJfugdRrsAfqgWdjxZHvZlcRBHm5bAHZmMe3axei9mnvhbuyMxX5Nb/+7G 0UYzaRbfWs8WOXXPIgv0arbbPOKwlFmlm8Hgd7dnAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUm4DSU8YOSm7lPue/nWl3D6+QvCcwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2Q4MTAzMzU5LWJiYTktNDc4ZC1hOWQ3LTc5ZTM1ZTQ4NDI0ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAS/QAwDQYJKoZIhvcNAQELBQADggEBAJBEKIS/Pj8u4Y4oO1LhSh8wopSK s7Uw5njfNS5131ig7FwvgmpRQnxzvwHJAqudhyGu06B0KjdZru8dKhbBtIL/bc4V EQsFN04+Fk2WZ4YNNYi5qX4yw9r02uQeJjmRVgctYHXtwgrOWztNWxPGm9t9a86n 558JKMdn7EK9A6HK+Er8nDDfGcJuV95f+rEgBBnlzPmaR+0/0n0+906DdHtbB8is nsrMMNl803a6vzMImxmX0n9mhEw61Q5IKzu22+qjqJlz9CUOhHCt8O+R3OMbnWbu zYI2yx5oJMhO+FxApDhjfxdHIjxGAkN5OzI27vmjyTV844UOOt5JOOd1+ew= -----END CERTIFICATE-----Generated at Tue Oct 21 01:34:20 2025 by rpki-client