$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/e3d6fa8c-831e-4812-9c4d-2f8efe43ebbb.roa File: e3d6fa8c-831e-4812-9c4d-2f8efe43ebbb.roa (raw, json) Hash identifier: E8GCa+jV+Q9JFY9zMYayeK9L45AHE+nS4Xg6T8M3eCw= Subject key identifier: E0:2A:3B:68:9A:6C:4F:55:33:C9:AC:45:E9:24:F3:9A:21:48:80:73 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 37C8BD192610C3252FD0F4B1B839BD6A2FA955C9 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/e3d6fa8c-831e-4812-9c4d-2f8efe43ebbb.roa Signing time: Sat 18 Oct 2025 15:30:16 +0000 ROA not before: Sat 18 Oct 2025 15:30:16 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.165.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:c8:bd:19:26:10:c3:25:2f:d0:f4:b1:b8:39:bd:6a:2f:a9:55:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 18 15:30:16 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=070019bf853c70126bb2b211ef284ad9a70878a0d939e1082a09c6756df2df32, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:0c:29:46:fe:65:53:18:4a:52:a4:90:ea:ee: 78:58:ca:25:05:d3:fe:c3:0f:69:51:5b:f2:55:42: 31:60:f4:5a:4d:7e:95:71:47:2f:f4:65:64:bc:8d: f5:e3:ce:02:f5:ef:54:d4:03:47:67:55:56:ea:c3: 75:23:ce:13:fe:ec:2b:7c:26:2b:66:3f:79:bc:31: 9f:7a:10:86:61:c4:7a:6d:18:a4:7f:fd:6d:8d:ba: fc:61:fb:97:e7:a2:7a:bd:13:8d:7b:f5:1c:60:0b: 13:33:1f:66:ec:06:47:af:c1:6b:89:05:19:d6:8e: aa:7f:a2:c5:9c:e8:36:f0:49:e2:ad:61:f5:34:73: bd:43:2f:56:47:1a:60:99:5e:a4:ce:1d:79:03:cb: 2e:be:7c:77:16:27:61:64:98:90:58:78:c1:7b:1d: 30:e4:61:5c:21:7f:ea:f2:7b:4b:8b:dc:5e:d2:0e: 6e:31:cd:e2:38:42:1b:93:09:01:53:63:18:32:e6: 1d:82:d7:d6:54:53:94:3d:5a:37:aa:72:ab:02:06: 1a:dc:a9:38:50:a7:8c:07:6b:ff:f8:a5:30:95:cc: bc:3d:4f:8a:29:bc:9c:9c:bb:a4:bb:55:5d:f2:b0: 88:26:9e:ac:fc:bc:7f:80:82:3c:48:cd:32:f2:42: e1:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:2A:3B:68:9A:6C:4F:55:33:C9:AC:45:E9:24:F3:9A:21:48:80:73 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/e3d6fa8c-831e-4812-9c4d-2f8efe43ebbb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.165.61.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:c7:a3:48:ca:0c:b9:55:f1:62:b6:57:7d:07:9b:df:02:25: 20:75:97:a4:5b:11:91:a7:a4:d8:19:44:08:7e:22:94:fb:f9: 52:37:a2:c5:e0:4e:5e:73:b0:64:b5:85:4d:c3:4f:a7:c5:e7: 62:dc:9c:08:28:dc:3c:c4:ba:78:2e:ea:fa:5d:90:5f:52:2e: a7:e2:fe:8e:26:48:9a:0b:dc:9d:09:f0:7a:58:c2:ad:b7:42: f4:c8:d8:6d:ac:04:a3:17:7a:ce:77:10:05:9b:68:32:0a:4c: a9:9b:85:ff:39:00:23:99:1f:59:e6:95:fd:ae:7b:88:a6:7a: eb:d3:46:39:f4:4b:0c:db:5c:c7:f0:47:09:77:98:2a:6c:44: ca:63:0b:22:8d:4d:73:4c:bf:c1:21:62:1a:d9:e2:60:3f:89: 0e:c0:69:8d:51:4f:6d:ac:4b:7e:2c:24:f9:2a:0d:19:ed:d0: bc:1b:f0:56:09:5e:c3:8c:44:7e:02:35:0c:9a:89:bb:f3:f1: 76:8f:6d:f9:5f:db:9b:3d:dd:c4:4b:96:e2:7a:d6:7f:8d:43: fe:10:b5:b5:f0:b4:8f:d0:23:a4:79:50:08:c4:a2:25:34:8e: 76:85:a8:a9:5a:d9:02:9c:96:ff:86:ba:76:98:bc:c4:92:07: a8:b5:84:85 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUN8i9GSYQwyUv0PSxuDm9ai+pVckwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE4MTUzMDE2WhcNMjUxMTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0AwNzAwMTliZjg1M2M3MDEyNmJiMmIyMTFlZjI4NGFkOWE3 MDg3OGEwZDkzOWUxMDgyYTA5YzY3NTZkZjJkZjMyMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDnDClG/mVTGEpSpJDq7nhYyiUF0/7DD2lRW/JVQjFg9FpN fpVxRy/0ZWS8jfXjzgL171TUA0dnVVbqw3UjzhP+7Ct8JitmP3m8MZ96EIZhxHpt GKR//W2Nuvxh+5fnonq9E4179RxgCxMzH2bsBkevwWuJBRnWjqp/osWc6DbwSeKt YfU0c71DL1ZHGmCZXqTOHXkDyy6+fHcWJ2FkmJBYeMF7HTDkYVwhf+rye0uL3F7S Dm4xzeI4QhuTCQFTYxgy5h2C19ZUU5Q9WjeqcqsCBhrcqThQp4wHa//4pTCVzLw9 T4opvJycu6S7VV3ysIgmnqz8vH+AgjxIzTLyQuH3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU4Co7aJpsT1UzyaxF6STzmiFIgHMwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2UzZDZmYThjLTgzMWUtNDgxMi05YzRkLTJmOGVmZTQzZWJiYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAASpT0wDQYJKoZIhvcNAQELBQADggEBAJ/Ho0jKDLlV8WK2V30Hm98CJSB1 l6RbEZGnpNgZRAh+IpT7+VI3osXgTl5zsGS1hU3DT6fF52LcnAgo3DzEungu6vpd kF9SLqfi/o4mSJoL3J0J8HpYwq23QvTI2G2sBKMXes53EAWbaDIKTKmbhf85ACOZ H1nmlf2ue4imeuvTRjn0SwzbXMfwRwl3mCpsRMpjCyKNTXNMv8EhYhrZ4mA/iQ7A aY1RT22sS34sJPkqDRnt0Lwb8FYJXsOMRH4CNQyaibvz8XaPbflf25s93cRLluJ6 1n+NQ/4QtbXwtI/QI6R5UAjEoiU0jnaFqKla2QKclv+GunaYvMSSB6i1hIU= -----END CERTIFICATE-----Generated at Mon Oct 20 15:48:38 2025 by rpki-client