$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/e1054a9c-ca9b-4758-8d7f-1c080d16e848.roa File: e1054a9c-ca9b-4758-8d7f-1c080d16e848.roa (raw, json) Hash identifier: ESOdm4hn6eEjYommtWhrFyzNByHgj4mqVJ0ZK7QjKBg= Subject key identifier: 16:E9:70:F2:FE:69:2B:EB:80:28:68:CC:F7:ED:C2:73:0F:EA:77:9F Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 2234D24CCE692CD4DE176BFCFE155FF3C31465C4 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/e1054a9c-ca9b-4758-8d7f-1c080d16e848.roa Signing time: Sat 18 Oct 2025 23:40:08 +0000 ROA not before: Sat 18 Oct 2025 23:40:08 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.154.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:34:d2:4c:ce:69:2c:d4:de:17:6b:fc:fe:15:5f:f3:c3:14:65:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 18 23:40:08 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=a89009e5d1e747a39b798297427cc7a440ca6beaeb2855590bdb62f3a17e1b27, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:dd:0a:b8:d9:39:23:12:7b:0d:06:0b:eb:b3: e5:db:62:c2:c5:d1:c9:1b:0a:25:91:60:72:0c:80: de:e8:72:6b:23:58:9c:ed:6d:6d:b4:fd:66:8b:51: e1:18:55:3c:ee:7e:ef:ae:5d:31:a9:bc:55:a0:ae: a8:d0:ee:38:8d:fd:71:3a:32:ec:db:c4:5e:1d:15: 12:8b:85:8d:d3:5a:5d:52:bb:f5:a0:51:cf:ce:b6: 42:0f:d9:97:8a:6d:4f:7c:e4:6a:44:14:64:6d:f6: ac:eb:a4:cb:8e:d3:d9:5a:bd:f7:d3:33:1c:e4:7f: c9:96:59:e1:9d:44:ed:1f:8e:07:7f:4f:67:6b:4e: 92:e2:0c:8b:68:50:ec:4a:cf:d6:93:7c:73:64:0e: 93:eb:87:2d:5f:5a:e0:d9:06:68:f3:ef:97:79:71: da:a0:fa:f4:bf:06:7a:15:fd:08:ab:96:83:c0:c5: dd:88:27:b1:28:32:1f:e0:51:52:14:5c:ae:31:51: 51:56:cc:36:05:02:c1:fa:a1:c2:8f:09:e5:17:33: 84:7e:34:f0:07:cc:bf:97:dc:8f:06:47:8e:b3:fb: 5a:e9:4e:18:80:f9:09:76:2b:75:18:02:b5:c5:28: 42:c5:07:fa:58:ef:3d:33:b5:87:f9:31:28:ad:72: 3b:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:E9:70:F2:FE:69:2B:EB:80:28:68:CC:F7:ED:C2:73:0F:EA:77:9F X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/e1054a9c-ca9b-4758-8d7f-1c080d16e848.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.154.118.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:76:84:95:5a:fa:5f:bb:92:27:25:27:d8:77:a5:26:3c:59: 02:4e:bf:a6:1f:11:75:b2:ba:23:bf:2e:12:a2:55:fd:f0:fe: 65:61:de:8f:f8:95:74:5e:66:fe:c3:28:a0:8a:ec:56:91:c4: 81:21:d3:8e:f6:82:bc:5f:42:18:ed:03:2a:63:d9:19:83:d9: 11:b2:8a:d9:2d:ba:07:31:e6:73:ec:e2:d9:bb:b5:51:4f:1a: 86:30:b9:40:05:7b:43:91:78:16:2e:60:f0:53:34:2e:61:97: fa:da:fe:a8:14:3c:dc:04:6e:8d:23:34:08:d8:dd:bf:89:f0: 38:e6:d0:f6:c5:53:46:82:af:1e:83:fc:cd:7d:ab:0a:37:9c: 83:a0:03:5c:cf:1f:9a:e2:e8:30:bd:bc:be:c5:23:d4:6c:74: f0:95:08:ce:9f:a1:b1:7e:31:54:af:c2:c3:2a:08:31:dc:68: ef:ba:d4:5e:16:8c:cc:9d:c0:65:ce:7f:c9:bd:0b:da:79:7a: 35:a7:73:76:db:9c:76:58:c7:9c:dc:17:9b:16:fb:c9:7a:9d: b5:15:af:a2:bc:77:00:19:4c:47:71:6a:1a:25:f5:ea:f6:73: ad:18:b9:e7:21:fc:47:06:66:71:78:13:13:65:1f:27:78:a8: b8:84:96:e0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIjTSTM5pLNTeF2v8/hVf88MUZcQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE4MjM0MDA4WhcNMjUxMTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BhODkwMDllNWQxZTc0N2EzOWI3OTgyOTc0MjdjYzdhNDQw Y2E2YmVhZWIyODU1NTkwYmRiNjJmM2ExN2UxYjI3MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDg3Qq42TkjEnsNBgvrs+XbYsLF0ckbCiWRYHIMgN7ocmsj WJztbW20/WaLUeEYVTzufu+uXTGpvFWgrqjQ7jiN/XE6MuzbxF4dFRKLhY3TWl1S u/WgUc/OtkIP2ZeKbU985GpEFGRt9qzrpMuO09lavffTMxzkf8mWWeGdRO0fjgd/ T2drTpLiDItoUOxKz9aTfHNkDpPrhy1fWuDZBmjz75d5cdqg+vS/BnoV/QirloPA xd2IJ7EoMh/gUVIUXK4xUVFWzDYFAsH6ocKPCeUXM4R+NPAHzL+X3I8GR46z+1rp ThiA+Ql2K3UYArXFKELFB/pY7z0ztYf5MSitcjv7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUFulw8v5pK+uAKGjM9+3Ccw/qd58wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2UxMDU0YTljLWNhOWItNDc1OC04ZDdmLTFjMDgwZDE2ZTg0OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAASmnYwDQYJKoZIhvcNAQELBQADggEBAA12hJVa+l+7kiclJ9h3pSY8WQJO v6YfEXWyuiO/LhKiVf3w/mVh3o/4lXReZv7DKKCK7FaRxIEh0472grxfQhjtAypj 2RmD2RGyitktugcx5nPs4tm7tVFPGoYwuUAFe0OReBYuYPBTNC5hl/ra/qgUPNwE bo0jNAjY3b+J8Djm0PbFU0aCrx6D/M19qwo3nIOgA1zPH5ri6DC9vL7FI9RsdPCV CM6fobF+MVSvwsMqCDHcaO+61F4WjMydwGXOf8m9C9p5ejWnc3bbnHZYx5zcF5sW +8l6nbUVr6K8dwAZTEdxahol9er2c60Yuech/EcGZnF4ExNlHyd4qLiEluA= -----END CERTIFICATE-----Generated at Mon Oct 20 18:12:04 2025 by rpki-client