$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/e2781400-f6a7-47fa-82d7-c983a27e83b9.roa File: e2781400-f6a7-47fa-82d7-c983a27e83b9.roa (raw, json) Hash identifier: HQBTd5u6KZbV/XwzdsnW02W7sV8o0UULJ/5i3rGVxto= Subject key identifier: 92:14:2E:C0:F5:4B:31:58:9C:36:23:BC:C6:36:70:6B:C0:A4:E4:73 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 11D7C5A64F1E5278DFCBF048EAEECB4FAD8EAA9C Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/e2781400-f6a7-47fa-82d7-c983a27e83b9.roa Signing time: Sat 18 Oct 2025 22:43:42 +0000 ROA not before: Sat 18 Oct 2025 22:43:42 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.172.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:d7:c5:a6:4f:1e:52:78:df:cb:f0:48:ea:ee:cb:4f:ad:8e:aa:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 18 22:43:42 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=d4932c7ddb8bd379f4681bc7b3cf2af2ed698b1c1802e3627e4d85be2e2306ef, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:33:6d:41:44:dc:9e:8e:36:e9:1f:76:b2:7f: a0:fc:c7:07:ab:08:1b:ff:fb:db:6e:3f:65:9b:c2: f6:26:e6:9a:0e:b0:1f:66:e7:69:a6:f7:f6:36:c1: 37:05:31:a5:4e:1b:9d:eb:7e:7c:7c:92:40:52:6f: 0d:14:da:2e:31:d2:19:4a:79:a4:3c:34:5f:1f:1a: b5:28:f8:9b:da:75:19:3d:af:3e:1a:d9:5c:93:6a: a0:fe:9d:0e:a8:3a:14:e9:cb:45:d2:f3:ca:38:05: a0:8d:6d:e9:7e:5d:eb:a5:05:be:85:73:f0:81:fd: 87:4e:40:6e:df:d3:63:86:8e:e6:fd:19:72:89:e6: 8f:64:80:48:dd:d0:76:38:fc:bb:04:eb:16:32:5f: 02:a7:6d:02:bf:18:14:5e:94:10:df:9a:ce:50:ac: 8b:9f:0f:3a:df:6a:7a:3c:53:9f:03:dc:c3:93:de: 36:97:e4:44:e5:d7:24:6c:77:88:ff:d5:c7:da:84: 78:cd:17:40:47:c6:6a:62:dc:11:e1:b0:71:58:2b: 08:1f:3b:8e:25:73:19:65:09:9b:82:1f:a0:28:82: 50:c0:bf:76:d7:f0:91:8a:6d:3b:26:f3:a2:38:58: ad:c3:5e:7b:7a:b7:f6:9d:b3:9f:70:d2:16:52:86: 0c:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:14:2E:C0:F5:4B:31:58:9C:36:23:BC:C6:36:70:6B:C0:A4:E4:73 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/e2781400-f6a7-47fa-82d7-c983a27e83b9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.172.139.0/24 Signature Algorithm: sha256WithRSAEncryption aa:3a:f5:2f:98:18:64:81:cf:56:2a:54:42:50:c5:b9:6d:6e: d1:d9:9a:65:a5:21:f5:60:34:58:10:a3:dc:68:a9:41:75:44: 9d:02:88:8e:03:93:5f:93:47:d0:9a:25:1c:ae:2b:a5:fb:f4: 0d:fd:55:17:c8:36:26:c3:20:02:3b:b2:9f:ff:ed:40:30:82: 71:5d:58:ac:92:76:d0:0c:a9:43:06:4f:fc:ff:80:8f:c5:86: a3:22:36:4a:a0:c7:97:d0:b5:58:72:29:3e:16:93:eb:c2:57: 87:1b:52:ee:0d:d7:24:4a:bd:15:50:8f:1b:96:90:d3:3e:0f: f6:98:1d:69:55:4f:9c:ef:fc:04:12:5c:88:89:8a:42:3d:aa: 2d:ed:4d:5b:50:f7:56:5a:ff:b8:0e:4a:c6:7d:8c:97:ef:5a: 4c:a8:07:29:84:9c:03:8e:cc:33:5f:11:13:4a:d6:0d:21:4f: 2c:6e:d4:0b:7e:06:f3:5f:dc:31:0a:e8:1c:25:8f:63:a1:89: 9c:59:5b:48:a1:bb:43:34:19:b7:8c:b4:bf:0f:84:56:d7:c5: d6:83:55:30:54:b7:0f:de:44:f0:7c:0d:4f:45:78:e6:b7:b9: 21:8e:08:e8:01:33:26:a1:8b:de:b4:0f:e4:a7:22:f9:38:04: 0e:f0:fd:39 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEdfFpk8eUnjfy/BI6u7LT62OqpwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE4MjI0MzQyWhcNMjUxMTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BkNDkzMmM3ZGRiOGJkMzc5ZjQ2ODFiYzdiM2NmMmFmMmVk Njk4YjFjMTgwMmUzNjI3ZTRkODViZTJlMjMwNmVmMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6M21BRNyejjbpH3ayf6D8xwerCBv/+9tuP2WbwvYm5poO sB9m52mm9/Y2wTcFMaVOG53rfnx8kkBSbw0U2i4x0hlKeaQ8NF8fGrUo+JvadRk9 rz4a2VyTaqD+nQ6oOhTpy0XS88o4BaCNbel+XeulBb6Fc/CB/YdOQG7f02OGjub9 GXKJ5o9kgEjd0HY4/LsE6xYyXwKnbQK/GBRelBDfms5QrIufDzrfano8U58D3MOT 3jaX5ETl1yRsd4j/1cfahHjNF0BHxmpi3BHhsHFYKwgfO44lcxllCZuCH6AoglDA v3bX8JGKbTsm86I4WK3DXnt6t/ads59w0hZShgytAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUkhQuwPVLMVicNiO8xjZwa8Ck5HMwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2UyNzgxNDAwLWY2YTctNDdmYS04MmQ3LWM5ODNhMjdlODNiOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAASrIswDQYJKoZIhvcNAQELBQADggEBAKo69S+YGGSBz1YqVEJQxbltbtHZ mmWlIfVgNFgQo9xoqUF1RJ0CiI4Dk1+TR9CaJRyuK6X79A39VRfINibDIAI7sp// 7UAwgnFdWKySdtAMqUMGT/z/gI/FhqMiNkqgx5fQtVhyKT4Wk+vCV4cbUu4N1yRK vRVQjxuWkNM+D/aYHWlVT5zv/AQSXIiJikI9qi3tTVtQ91Za/7gOSsZ9jJfvWkyo BymEnAOOzDNfERNK1g0hTyxu1At+BvNf3DEK6Bwlj2OhiZxZW0ihu0M0GbeMtL8P hFbXxdaDVTBUtw/eRPB8DU9FeOa3uSGOCOgBMyahi960D+SnIvk4BA7w/Tk= -----END CERTIFICATE-----Generated at Mon Oct 20 10:59:16 2025 by rpki-client