$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/e0570f34-0e7b-4ea7-9e7b-841b7fca364d.roa File: e0570f34-0e7b-4ea7-9e7b-841b7fca364d.roa (raw, json) Hash identifier: HJarQZZM0rYZ1XDFyCdUKJanYENNnNJg27wn80ZERYQ= Subject key identifier: C2:B6:77:4C:26:4D:30:F9:13:3F:8B:F5:0A:FF:DE:0B:B3:53:37:02 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 586DA4F7185348EDF0EABA0E9171B271D4899D0C Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/e0570f34-0e7b-4ea7-9e7b-841b7fca364d.roa Signing time: Sat 18 Oct 2025 13:23:52 +0000 ROA not before: Sat 18 Oct 2025 13:23:52 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.161.0.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:6d:a4:f7:18:53:48:ed:f0:ea:ba:0e:91:71:b2:71:d4:89:9d:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 18 13:23:52 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=e5c23deaedb751ed186f31de9e461529bc263cba2128ca02014cd5d097f966af, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:6b:9f:d5:ef:58:06:cf:7c:d1:47:65:92:21: 65:61:23:84:3a:b8:71:fc:7e:72:17:1b:01:f8:d6: c7:33:7f:e8:3f:49:34:ad:53:7b:4f:6f:7e:7d:e9: bd:6c:41:85:18:b3:18:62:ec:4b:af:11:b6:22:f4: 63:36:cb:5f:15:f4:41:43:59:45:25:4f:f1:7d:18: 5a:03:85:d5:d8:bb:45:4c:33:0a:09:ca:17:2d:38: 1e:b7:eb:6b:b1:4d:89:7e:9a:f2:57:fc:c2:12:ef: 23:b7:65:bd:bf:a2:83:06:3a:16:9c:b5:44:77:47: 8f:0e:2b:0c:af:f5:9c:2c:40:76:8a:6b:0d:61:ef: d5:f8:19:f0:82:8e:d6:66:d0:c6:c0:d8:5e:d3:a9: 92:95:fe:f8:9a:46:4c:fa:20:9a:81:96:0d:e3:30: 1e:7c:56:f9:dc:31:57:27:3c:d2:ad:04:3f:c3:9d: 33:f9:c2:5d:28:44:f6:32:12:38:fc:80:76:8d:51: d0:b1:fe:d8:01:db:fd:90:59:a2:ab:fc:19:2c:24: 83:9b:00:2e:05:63:db:17:8c:24:1c:56:66:5a:85: ba:99:6a:b5:25:c0:66:98:d2:7d:95:15:73:1f:c1: 5c:9a:af:6e:3a:de:3b:98:0b:d8:2c:2e:f8:e6:a6: 84:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:B6:77:4C:26:4D:30:F9:13:3F:8B:F5:0A:FF:DE:0B:B3:53:37:02 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/e0570f34-0e7b-4ea7-9e7b-841b7fca364d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.161.0.0/19 Signature Algorithm: sha256WithRSAEncryption 8d:01:e7:ca:30:76:a5:cc:ed:74:5b:64:ef:c1:a1:5f:09:2d: d9:d9:60:26:98:fe:3a:7d:3b:18:9b:1c:32:78:48:14:bf:cd: b8:26:fb:49:30:cc:58:df:8d:be:93:34:ac:bc:ee:36:7b:31: 1c:c3:47:54:b8:a0:bc:ce:a9:ff:b8:db:b0:06:e5:30:9c:3a: e6:af:d7:18:ad:7e:59:45:fb:87:9d:59:61:63:2a:01:60:4e: 5e:7f:b2:42:68:45:3d:6d:1b:99:c2:5b:1d:04:86:f8:48:51: c6:6d:bf:8a:6d:73:ab:79:23:03:41:6b:b3:46:2e:cf:8c:f4: 97:59:12:9c:03:a6:e7:ed:3a:c3:92:0e:ca:25:f4:6f:c5:be: 72:9d:8c:f4:d5:da:28:3c:e4:e7:f0:35:88:f7:d9:19:51:97: 84:74:27:44:85:62:c9:6a:8e:04:84:5a:83:c7:4f:fc:8f:c6: 64:95:16:3f:f5:98:ca:05:a9:ab:a0:6a:90:03:88:fb:6d:70: 97:5a:e4:80:19:d0:06:a1:7a:f9:e6:ec:72:62:e5:35:67:4e: 8d:a7:4b:73:a7:7a:8b:ea:7c:bb:42:a5:06:f6:e5:74:5a:5b: 66:d8:96:93:40:ad:1e:f5:d2:01:b0:02:a5:b2:f3:cf:10:8a: 11:99:00:b1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWG2k9xhTSO3w6roOkXGycdSJnQwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE4MTMyMzUyWhcNMjUxMTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BlNWMyM2RlYWVkYjc1MWVkMTg2ZjMxZGU5ZTQ2MTUyOWJj MjYzY2JhMjEyOGNhMDIwMTRjZDVkMDk3Zjk2NmFmMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGa5/V71gGz3zRR2WSIWVhI4Q6uHH8fnIXGwH41sczf+g/ STStU3tPb3596b1sQYUYsxhi7EuvEbYi9GM2y18V9EFDWUUlT/F9GFoDhdXYu0VM MwoJyhctOB6362uxTYl+mvJX/MIS7yO3Zb2/ooMGOhactUR3R48OKwyv9ZwsQHaK aw1h79X4GfCCjtZm0MbA2F7TqZKV/viaRkz6IJqBlg3jMB58VvncMVcnPNKtBD/D nTP5wl0oRPYyEjj8gHaNUdCx/tgB2/2QWaKr/BksJIObAC4FY9sXjCQcVmZahbqZ arUlwGaY0n2VFXMfwVyar2463juYC9gsLvjmpoTLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUwrZ3TCZNMPkTP4v1Cv/eC7NTNwIwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2UwNTcwZjM0LTBlN2ItNGVhNy05ZTdiLTg0MWI3ZmNhMzY0ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUSoQAwDQYJKoZIhvcNAQELBQADggEBAI0B58owdqXM7XRbZO/BoV8JLdnZ YCaY/jp9OxibHDJ4SBS/zbgm+0kwzFjfjb6TNKy87jZ7MRzDR1S4oLzOqf+427AG 5TCcOuav1xitfllF+4edWWFjKgFgTl5/skJoRT1tG5nCWx0EhvhIUcZtv4ptc6t5 IwNBa7NGLs+M9JdZEpwDpuftOsOSDsol9G/FvnKdjPTV2ig85OfwNYj32RlRl4R0 J0SFYslqjgSEWoPHT/yPxmSVFj/1mMoFqaugapADiPttcJda5IAZ0Aahevnm7HJi 5TVnTo2nS3OneovqfLtCpQb25XRaW2bYlpNArR710gGwAqWy888QihGZALE= -----END CERTIFICATE-----Generated at Mon Oct 20 02:58:00 2025 by rpki-client