$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f25180ae-177c-4145-9dae-f056be8e689b.roa File: f25180ae-177c-4145-9dae-f056be8e689b.roa (raw, json) Hash identifier: ENJ12v/dvcLOT358rKPuP46MYsmio806q8NGJPJGvTs= Subject key identifier: 0A:16:B3:6F:A1:7F:22:7B:E7:52:67:DB:1C:74:0D:3B:DF:BE:A0:EB Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 3BC30AB8139508395D3C09E4CD6C9E6032E3D48C Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f25180ae-177c-4145-9dae-f056be8e689b.roa Signing time: Sun 19 Oct 2025 11:04:34 +0000 ROA not before: Sun 19 Oct 2025 11:04:34 +0000 ROA not after: Sun 23 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.66.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:c3:0a:b8:13:95:08:39:5d:3c:09:e4:cd:6c:9e:60:32:e3:d4:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 19 11:04:34 2025 GMT Not After : Nov 23 23:59:59 2025 GMT Subject: serialNumber=df8c7a19fbdcf4dced183229757198eeea6bed73dc9e378e3fd5e3346c9cc61e, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:27:3b:69:46:d0:78:11:5a:3e:7e:83:e3:85: 53:c5:31:ca:a9:f2:f6:5c:fb:ec:a6:a6:de:3b:62: 91:17:54:80:b0:a4:5a:07:04:0d:5b:ed:66:4d:0b: 64:91:19:04:6f:d2:c6:23:20:af:9c:cb:60:14:02: 50:f4:a4:58:e4:b3:93:6e:00:e4:cc:72:64:24:9c: cf:87:71:28:ab:75:7d:1c:1d:76:ef:10:67:b5:18: 28:13:e3:57:ae:5c:fb:7e:78:c1:97:ef:49:16:4d: 03:65:13:b1:a0:55:94:76:99:1b:9f:89:6f:8f:b4: f8:fd:87:f8:cc:34:35:08:74:6b:24:ab:90:40:bb: 05:1a:ea:ff:16:39:02:1c:64:37:27:dc:13:3e:9e: ae:3e:67:23:f7:a5:14:11:6c:7a:68:b4:b0:8a:a5: e2:91:6e:d1:86:9e:d9:3a:aa:98:cd:40:ae:79:8f: d1:b6:6f:05:07:2a:b3:d2:c5:d0:95:54:c3:58:15: 36:c1:65:89:be:29:e6:15:7e:80:23:db:80:e6:5e: 8b:98:c2:9e:93:a4:44:15:20:be:56:86:3a:6e:47: 07:3c:b3:6e:5d:e3:b7:4b:4c:15:2c:cc:f2:4a:df: bb:0e:d0:22:33:1a:2c:9d:c5:13:8a:ee:10:a3:d6: 49:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:16:B3:6F:A1:7F:22:7B:E7:52:67:DB:1C:74:0D:3B:DF:BE:A0:EB X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f25180ae-177c-4145-9dae-f056be8e689b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.66.67.0/24 Signature Algorithm: sha256WithRSAEncryption a4:f2:7b:d4:da:64:96:6d:f0:1d:7d:5c:ba:24:80:ab:05:cc: 42:33:c7:b8:be:e0:d4:c3:df:26:9b:e0:72:6b:f5:46:f6:08: 4b:1a:2c:69:58:4f:5c:cd:61:34:ba:23:1f:06:83:37:8a:38: c1:5f:db:da:6a:5b:25:37:d1:d2:57:8a:18:d4:8c:90:07:e3: 8c:e1:ee:19:73:8b:76:14:0a:b3:f9:f5:cf:15:9f:d1:29:49: 8e:51:39:d0:57:85:c3:69:b8:d6:b3:0b:20:03:30:b7:03:ba: a1:b9:ac:73:9e:df:c8:5d:73:b0:b6:11:99:1f:d9:8e:67:bd: 0f:0d:72:81:d9:2a:b6:f7:96:47:ca:5d:ab:47:86:bb:ad:1c: f4:63:ab:fe:2f:1e:e5:4a:13:2e:d8:59:4e:33:d3:0d:b9:2f: b7:bf:ea:9d:14:b8:77:f7:a2:57:55:14:4a:b4:ab:32:aa:18: 8c:9d:a1:12:43:3f:d2:a0:7f:db:26:53:75:21:1e:57:6a:3c: 60:37:43:ef:a2:56:41:59:3c:03:cb:0d:cc:29:50:73:ec:d7: 08:ff:dc:4d:96:be:db:05:b7:31:f9:1f:4a:05:e1:d8:05:d6: 11:39:3b:ee:31:38:c0:f4:2f:66:7a:25:2c:56:4f:d5:a5:93: 0c:5b:d6:ca -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUO8MKuBOVCDldPAnkzWyeYDLj1IwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE5MTEwNDM0WhcNMjUxMTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BkZjhjN2ExOWZiZGNmNGRjZWQxODMyMjk3NTcxOThlZWVh NmJlZDczZGM5ZTM3OGUzZmQ1ZTMzNDZjOWNjNjFlMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4JztpRtB4EVo+foPjhVPFMcqp8vZc++ympt47YpEXVICw pFoHBA1b7WZNC2SRGQRv0sYjIK+cy2AUAlD0pFjks5NuAOTMcmQknM+HcSirdX0c HXbvEGe1GCgT41euXPt+eMGX70kWTQNlE7GgVZR2mRufiW+PtPj9h/jMNDUIdGsk q5BAuwUa6v8WOQIcZDcn3BM+nq4+ZyP3pRQRbHpotLCKpeKRbtGGntk6qpjNQK55 j9G2bwUHKrPSxdCVVMNYFTbBZYm+KeYVfoAj24DmXouYwp6TpEQVIL5WhjpuRwc8 s25d47dLTBUszPJK37sO0CIzGiydxROK7hCj1knvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUChazb6F/InvnUmfbHHQNO9++oOswHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2YyNTE4MGFlLTE3N2MtNDE0NS05ZGFlLWYwNTZiZThlNjg5Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAASQkMwDQYJKoZIhvcNAQELBQADggEBAKTye9TaZJZt8B19XLokgKsFzEIz x7i+4NTD3yab4HJr9Ub2CEsaLGlYT1zNYTS6Ix8GgzeKOMFf29pqWyU30dJXihjU jJAH44zh7hlzi3YUCrP59c8Vn9EpSY5ROdBXhcNpuNazCyADMLcDuqG5rHOe38hd c7C2EZkf2Y5nvQ8NcoHZKrb3lkfKXatHhrutHPRjq/4vHuVKEy7YWU4z0w25L7e/ 6p0UuHf3oldVFEq0qzKqGIydoRJDP9Kgf9smU3UhHldqPGA3Q++iVkFZPAPLDcwp UHPs1wj/3E2WvtsFtzH5H0oF4dgF1hE5O+4xOMD0L2Z6JSxWT9Wlkwxb1so= -----END CERTIFICATE-----Generated at Mon Oct 20 08:42:11 2025 by rpki-client