$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f20c26f7-aaa1-41f3-b4bc-63b6b4cdc7b7.roa File: f20c26f7-aaa1-41f3-b4bc-63b6b4cdc7b7.roa (raw, json) Hash identifier: z2QbAzsEmmnhiAQTz7BM+kSZrXqwRP3aZTfdYdau0+I= Subject key identifier: B0:1F:3C:73:F9:D8:5B:4C:88:64:D9:49:AB:42:AA:0E:6A:87:E3:FA Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 0F13A50581BDE50818FAC11A5087A9C54B73B2E6 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f20c26f7-aaa1-41f3-b4bc-63b6b4cdc7b7.roa Signing time: Sat 18 Oct 2025 19:01:21 +0000 ROA not before: Sat 18 Oct 2025 19:01:21 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.245.110.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:13:a5:05:81:bd:e5:08:18:fa:c1:1a:50:87:a9:c5:4b:73:b2:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 18 19:01:21 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=0fb267dbe4a9cf84240242ff20beab0b41e89490943741fa9be410c6051bf758, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:67:81:81:cf:99:b1:97:7c:63:07:9d:2c:ab: d2:7b:a6:6e:f0:f0:db:56:3f:e3:3a:f7:34:58:54: ad:8c:f8:48:4f:aa:91:eb:78:49:a6:8a:1a:c0:b9: 71:34:f5:fe:a3:0b:fc:f1:75:91:0d:df:0f:4f:04: b0:17:99:b9:47:c0:e8:be:d3:3b:a4:e0:58:49:8b: 8d:65:f5:e2:28:58:06:02:83:dd:22:42:23:5e:0c: 0c:63:ff:b5:7e:47:c8:c2:19:9b:cd:65:86:87:02: db:90:1e:4b:09:71:1c:fe:df:d2:f2:6c:bd:c0:0e: df:c3:2f:f7:df:a3:86:c6:c1:00:35:6c:cd:b0:fe: c5:a9:08:30:95:fd:39:73:ce:0a:93:65:d1:7a:9e: 8d:c8:aa:86:ad:ae:85:38:4d:33:67:78:eb:b0:52: 9d:4b:fe:95:6a:5b:80:c6:96:aa:5f:9a:80:57:8a: a5:0f:03:49:32:6b:a4:38:08:e7:eb:e4:91:3d:5e: c8:ff:0e:f2:8d:67:9d:90:cf:a7:76:48:4c:3f:10: ce:a7:a1:32:59:71:c8:89:90:db:a6:33:01:60:68: 93:fa:09:61:2c:a0:bb:3f:32:16:b6:c1:d5:08:2a: a1:41:c4:50:1d:9a:b1:ab:a8:a0:e1:82:d8:92:a6: 53:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:1F:3C:73:F9:D8:5B:4C:88:64:D9:49:AB:42:AA:0E:6A:87:E3:FA X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f20c26f7-aaa1-41f3-b4bc-63b6b4cdc7b7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.245.110.0/24 Signature Algorithm: sha256WithRSAEncryption a5:48:c6:da:c5:0c:c4:e1:19:44:ea:09:3f:cd:56:b8:e3:5e: cc:45:d5:12:bb:84:71:b5:da:8c:54:b8:7e:9c:91:fb:06:2d: c6:e3:cd:cd:d2:17:ec:6f:bb:61:ff:1c:f9:2e:b1:85:bd:2a: eb:15:28:ec:cf:ab:d8:d8:ff:b8:83:1c:79:41:d0:03:28:33: a0:36:8f:ef:40:be:90:1b:27:24:ee:b7:7e:77:77:50:49:6c: db:70:b2:04:7f:16:7a:37:f7:31:38:ff:78:a4:49:7f:d4:f2: 44:92:b0:0a:49:6b:93:62:8c:9b:ac:b2:fb:70:86:b2:28:73: 6d:51:ec:33:26:dc:cf:b4:8b:8a:f0:78:05:5f:a1:80:6f:10: f0:e2:3d:68:d2:8a:97:35:e4:22:5a:20:62:78:a5:97:83:6a: e3:da:74:e5:df:9a:c0:44:b4:d0:1d:56:76:73:4c:77:ee:88: 3c:db:5d:7f:48:92:75:a1:d5:68:77:5a:48:94:70:a2:35:7d: 41:fb:67:03:d0:0c:ff:43:55:f3:e7:02:37:3a:eb:b3:0f:5d: 56:61:51:25:c1:e2:d9:09:7d:6a:2b:dc:b2:52:f1:c2:a5:b6: 5e:e0:27:3a:7d:55:f1:d0:1f:80:08:f9:91:6b:0b:61:4f:2a: 3a:ec:ac:cb -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDxOlBYG95QgY+sEaUIepxUtzsuYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE4MTkwMTIxWhcNMjUxMTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0AwZmIyNjdkYmU0YTljZjg0MjQwMjQyZmYyMGJlYWIwYjQx ZTg5NDkwOTQzNzQxZmE5YmU0MTBjNjA1MWJmNzU4MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2Z4GBz5mxl3xjB50sq9J7pm7w8NtWP+M69zRYVK2M+EhP qpHreEmmihrAuXE09f6jC/zxdZEN3w9PBLAXmblHwOi+0zuk4FhJi41l9eIoWAYC g90iQiNeDAxj/7V+R8jCGZvNZYaHAtuQHksJcRz+39LybL3ADt/DL/ffo4bGwQA1 bM2w/sWpCDCV/TlzzgqTZdF6no3IqoatroU4TTNneOuwUp1L/pVqW4DGlqpfmoBX iqUPA0kya6Q4COfr5JE9Xsj/DvKNZ52Qz6d2SEw/EM6noTJZcciJkNumMwFgaJP6 CWEsoLs/Mha2wdUIKqFBxFAdmrGrqKDhgtiSplNBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUsB88c/nYW0yIZNlJq0KqDmqH4/owHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2YyMGMyNmY3LWFhYTEtNDFmMy1iNGJjLTYzYjZiNGNkYzdiNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAS9W4wDQYJKoZIhvcNAQELBQADggEBAKVIxtrFDMThGUTqCT/NVrjjXsxF 1RK7hHG12oxUuH6ckfsGLcbjzc3SF+xvu2H/HPkusYW9KusVKOzPq9jY/7iDHHlB 0AMoM6A2j+9AvpAbJyTut353d1BJbNtwsgR/Fno39zE4/3ikSX/U8kSSsApJa5Ni jJussvtwhrIoc21R7DMm3M+0i4rweAVfoYBvEPDiPWjSipc15CJaIGJ4pZeDauPa dOXfmsBEtNAdVnZzTHfuiDzbXX9IknWh1Wh3WkiUcKI1fUH7ZwPQDP9DVfPnAjc6 67MPXVZhUSXB4tkJfWor3LJS8cKltl7gJzp9VfHQH4AI+ZFrC2FPKjrsrMs= -----END CERTIFICATE-----Generated at Mon Oct 20 02:59:56 2025 by rpki-client