$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/dd2856f1-764f-4b52-9c3c-cfcbeadfc479.roa File: dd2856f1-764f-4b52-9c3c-cfcbeadfc479.roa (raw, json) Hash identifier: au32ZUnuE9jNN6Lao5GMXSsm80FJKNUJ9ubrhxa9hrQ= Subject key identifier: 75:7C:18:61:A6:2C:D1:36:E9:88:A8:2B:52:CF:1C:7A:FB:2B:98:5F Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 25F32E6A8B3D33303FA638288475013AC5F50EF7 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/dd2856f1-764f-4b52-9c3c-cfcbeadfc479.roa Signing time: Sat 18 Oct 2025 16:00:05 +0000 ROA not before: Sat 18 Oct 2025 16:00:05 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.154.220.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:f3:2e:6a:8b:3d:33:30:3f:a6:38:28:84:75:01:3a:c5:f5:0e:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 18 16:00:05 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=58b345c34d56e6d91d73805f91dbe7145d1ca4528427464e16a118dcb27f89bd, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:d2:18:5c:7a:9c:96:5e:1e:1d:6d:74:ac:44: b5:78:16:2e:ee:10:32:de:50:a1:70:a0:e8:a4:5f: ec:be:65:23:c6:ca:9f:6b:5c:0d:61:1d:7e:1c:a7: 41:45:b8:bb:4e:e6:4f:01:4b:bf:76:bf:86:04:27: 2e:c7:84:c6:12:33:fe:92:28:99:63:73:31:c2:2e: 1a:0b:4a:b5:89:ad:71:41:2f:31:1b:88:26:c7:64: a7:3b:57:6d:39:ba:7f:22:81:7a:27:7e:3e:49:bd: 3c:a2:00:4b:92:77:23:43:6f:48:ce:46:93:66:5e: 3c:d9:df:fa:3a:25:4b:29:80:ac:6c:00:03:74:e5: f4:d4:0c:51:fe:fe:3b:7e:d3:a1:9c:e8:8c:00:4c: e9:a0:38:07:50:28:dd:aa:23:b4:4d:a3:ad:5a:f7: 60:89:93:08:be:5e:22:ba:f5:24:ee:2f:58:aa:9c: d0:29:85:a2:8f:da:e6:21:16:51:0d:f0:db:f9:21: 0d:8c:a8:30:e3:53:72:49:e3:58:2d:72:3f:0d:f0: 5d:f9:51:9c:8c:c8:fe:83:3a:70:40:e0:2e:36:c5: 9a:12:3a:c6:a1:c6:cd:f4:67:26:e4:24:b1:84:6a: 2f:c4:9a:b6:63:04:f6:98:4b:7c:91:c9:cc:fe:ec: 4f:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:7C:18:61:A6:2C:D1:36:E9:88:A8:2B:52:CF:1C:7A:FB:2B:98:5F X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/dd2856f1-764f-4b52-9c3c-cfcbeadfc479.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.154.220.0/23 Signature Algorithm: sha256WithRSAEncryption 14:cb:c0:1a:8f:2e:33:cd:1f:8e:35:ae:16:9b:1c:02:31:45: 96:0f:b5:99:6a:b1:c6:58:bd:29:dd:2e:fe:d2:90:fc:ac:69: a4:58:90:af:7b:3a:5a:6e:89:19:b5:94:ea:09:b4:40:4c:5b: eb:42:4b:7f:f3:85:4e:09:37:0e:93:a0:ce:09:6f:70:38:3b: 66:89:7a:2d:aa:1f:3a:59:13:77:17:a7:5b:0d:5c:6a:ca:2c: 22:7b:ea:ac:3a:60:e6:88:df:96:4b:8e:32:dd:ea:f7:36:7a: 34:aa:aa:7d:89:97:6b:66:91:4b:bc:e8:ef:f9:b3:8b:ef:bd: 1a:5a:d6:2a:2c:e2:8e:ec:a7:1d:d1:6d:57:e2:31:4d:a8:61: 48:23:0f:f2:09:f8:a9:83:9b:12:8a:94:db:87:2d:75:b1:7e: 92:76:bd:32:40:b5:77:7b:37:bd:d3:e0:ad:d9:09:35:16:c7: d6:43:f0:8a:9c:fd:a3:98:6d:c0:ee:dc:a1:b2:00:93:27:65: ea:f5:08:ec:06:11:09:49:16:f6:d8:09:a3:0e:3e:09:3e:9e: 5d:79:0c:67:fc:1b:4d:28:23:ac:8b:d0:cc:54:90:9b:80:47: 7b:9c:e5:64:94:ca:c9:4f:46:0d:f7:7a:d5:49:1f:4c:2d:5f: 85:97:2c:27 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJfMuaos9MzA/pjgohHUBOsX1DvcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE4MTYwMDA1WhcNMjUxMTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A1OGIzNDVjMzRkNTZlNmQ5MWQ3MzgwNWY5MWRiZTcxNDVk MWNhNDUyODQyNzQ2NGUxNmExMThkY2IyN2Y4OWJkMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDB0hhcepyWXh4dbXSsRLV4Fi7uEDLeUKFwoOikX+y+ZSPG yp9rXA1hHX4cp0FFuLtO5k8BS792v4YEJy7HhMYSM/6SKJljczHCLhoLSrWJrXFB LzEbiCbHZKc7V205un8igXonfj5JvTyiAEuSdyNDb0jORpNmXjzZ3/o6JUspgKxs AAN05fTUDFH+/jt+06Gc6IwATOmgOAdQKN2qI7RNo61a92CJkwi+XiK69STuL1iq nNAphaKP2uYhFlEN8Nv5IQ2MqDDjU3JJ41gtcj8N8F35UZyMyP6DOnBA4C42xZoS Osahxs30ZybkJLGEai/EmrZjBPaYS3yRycz+7E8rAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUdXwYYaYs0TbpiKgrUs8cevsrmF8wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2RkMjg1NmYxLTc2NGYtNGI1Mi05YzNjLWNmY2JlYWRmYzQ3OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAESmtwwDQYJKoZIhvcNAQELBQADggEBABTLwBqPLjPNH441rhabHAIxRZYP tZlqscZYvSndLv7SkPysaaRYkK97OlpuiRm1lOoJtEBMW+tCS3/zhU4JNw6ToM4J b3A4O2aJei2qHzpZE3cXp1sNXGrKLCJ76qw6YOaI35ZLjjLd6vc2ejSqqn2Jl2tm kUu86O/5s4vvvRpa1ios4o7spx3RbVfiMU2oYUgjD/IJ+KmDmxKKlNuHLXWxfpJ2 vTJAtXd7N73T4K3ZCTUWx9ZD8Iqc/aOYbcDu3KGyAJMnZer1COwGEQlJFvbYCaMO Pgk+nl15DGf8G00oI6yL0MxUkJuAR3uc5WSUyslPRg33etVJH0wtX4WXLCc= -----END CERTIFICATE-----Generated at Mon Oct 20 02:55:39 2025 by rpki-client