$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f7afe46e-d204-4085-8f1a-274ddf10143c.roa File: f7afe46e-d204-4085-8f1a-274ddf10143c.roa (raw, json) Hash identifier: oa43QgF4t37u/mfXDISNxxkqjBGa4yQxkXcn5Xhfsfo= Subject key identifier: 47:37:A4:65:89:13:C7:D3:78:0B:8F:A6:DC:98:01:71:06:17:12:07 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 3A12405DBE09E97601B3968296384C2927756B29 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f7afe46e-d204-4085-8f1a-274ddf10143c.roa Signing time: Sun 19 Oct 2025 16:22:30 +0000 ROA not before: Sun 19 Oct 2025 16:22:30 +0000 ROA not after: Sun 23 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.66.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:12:40:5d:be:09:e9:76:01:b3:96:82:96:38:4c:29:27:75:6b:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 19 16:22:30 2025 GMT Not After : Nov 23 23:59:59 2025 GMT Subject: serialNumber=761b492f3d8b5414ef61bf95280fbbf877ad2c5388588e3ce8b8e06264382722, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:6a:12:e5:86:82:7d:1d:14:74:44:6f:6e:c3: 52:95:40:38:3e:ba:61:5a:e7:7f:57:63:20:f6:e7: 90:f1:ff:b8:1d:31:46:38:78:37:96:9d:a8:bc:d7: 76:cb:ff:6d:cf:8c:6b:e9:b6:5b:61:1b:cc:ad:9a: 02:b3:52:69:66:39:85:05:c5:7a:e3:57:5e:97:36: 82:eb:42:79:f2:60:49:7c:46:8a:f2:ab:c2:9a:ce: 9e:f0:6c:2d:73:2c:32:9a:ad:c9:57:f5:a4:cc:b4: d6:5a:ca:9e:32:71:14:75:e4:19:7f:3b:99:c8:1e: 2e:94:da:e4:b4:37:e4:39:4d:ac:0f:63:7b:b9:f2: e0:81:a3:16:99:be:ff:0d:75:be:51:90:a0:04:81: 27:9f:9c:70:74:b7:55:7c:ba:11:fa:2b:e5:83:39: 51:4e:7b:bd:54:51:87:be:07:34:6f:e7:94:0f:86: 95:80:64:ba:c6:e7:f4:8e:2d:d4:f9:2b:e5:5b:5a: 8b:b8:41:a0:dc:a7:91:74:49:8f:67:47:c1:f7:08: 1e:a3:89:7f:1e:6e:0c:99:ff:7d:2f:dc:fb:f8:71: 08:41:c3:96:74:5d:e2:1f:26:19:c3:40:03:a5:21: d5:0b:f8:ab:38:bd:57:41:8c:f0:4d:ef:09:d0:cd: e2:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:37:A4:65:89:13:C7:D3:78:0B:8F:A6:DC:98:01:71:06:17:12:07 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f7afe46e-d204-4085-8f1a-274ddf10143c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.66.184.0/24 Signature Algorithm: sha256WithRSAEncryption 06:57:a1:2e:33:d7:67:11:9d:94:45:25:8a:7c:19:c4:bd:a0: 65:d1:c2:df:74:f7:ca:4f:fb:5e:63:b8:d9:df:dd:4f:d0:70: fd:a7:e7:2a:0d:f0:4d:6a:78:86:ac:eb:c8:b7:eb:57:b3:85: 42:43:ed:80:f6:e4:b8:31:c2:20:0d:82:03:7a:d4:c4:f5:3c: 87:be:c5:77:51:13:82:46:3c:d4:8f:8f:ee:7a:ec:01:93:db: ac:63:10:6b:54:b8:ff:5b:a2:fd:8f:be:6d:58:cb:57:fa:aa: d3:54:67:5c:4a:7d:15:73:f7:a7:d6:02:1a:34:22:18:ea:e5: fc:ba:c3:b9:02:20:fc:5f:8e:d7:08:f4:c5:a2:0d:47:ad:8d: 79:91:a3:17:33:4d:bc:6a:53:aa:09:b0:36:a9:5c:1a:1f:9d: 00:21:8e:95:ba:8a:44:70:e6:6d:09:29:12:30:b2:30:81:87: 2a:ee:61:55:c8:45:42:98:e5:a8:0d:0e:ed:5a:37:36:00:d3: 1d:60:5e:a5:ae:b5:a5:4e:b7:17:59:9f:1f:17:8c:af:d8:98: f2:aa:f6:3e:12:65:11:ae:33:db:f0:b1:1d:fd:2d:e8:74:8d: b2:4b:6a:db:cd:eb:6b:0e:c2:41:92:dd:e0:07:cd:ad:82:c4: 2a:d5:6e:a9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOhJAXb4J6XYBs5aCljhMKSd1aykwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE5MTYyMjMwWhcNMjUxMTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A3NjFiNDkyZjNkOGI1NDE0ZWY2MWJmOTUyODBmYmJmODc3 YWQyYzUzODg1ODhlM2NlOGI4ZTA2MjY0MzgyNzIyMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnahLlhoJ9HRR0RG9uw1KVQDg+umFa539XYyD255Dx/7gd MUY4eDeWnai813bL/23PjGvptlthG8ytmgKzUmlmOYUFxXrjV16XNoLrQnnyYEl8 Roryq8Kazp7wbC1zLDKarclX9aTMtNZayp4ycRR15Bl/O5nIHi6U2uS0N+Q5TawP Y3u58uCBoxaZvv8Ndb5RkKAEgSefnHB0t1V8uhH6K+WDOVFOe71UUYe+BzRv55QP hpWAZLrG5/SOLdT5K+VbWou4QaDcp5F0SY9nR8H3CB6jiX8ebgyZ/30v3Pv4cQhB w5Z0XeIfJhnDQAOlIdUL+Ks4vVdBjPBN7wnQzeI5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQURzekZYkTx9N4C4+m3JgBcQYXEgcwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2Y3YWZlNDZlLWQyMDQtNDA4NS04ZjFhLTI3NGRkZjEwMTQzYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAASQrgwDQYJKoZIhvcNAQELBQADggEBAAZXoS4z12cRnZRFJYp8GcS9oGXR wt9098pP+15juNnf3U/QcP2n5yoN8E1qeIas68i361ezhUJD7YD25LgxwiANggN6 1MT1PIe+xXdRE4JGPNSPj+567AGT26xjEGtUuP9bov2Pvm1Yy1f6qtNUZ1xKfRVz 96fWAho0Ihjq5fy6w7kCIPxfjtcI9MWiDUetjXmRoxczTbxqU6oJsDapXBofnQAh jpW6ikRw5m0JKRIwsjCBhyruYVXIRUKY5agNDu1aNzYA0x1gXqWutaVOtxdZnx8X jK/YmPKq9j4SZRGuM9vwsR39Leh0jbJLatvN62sOwkGS3eAHza2CxCrVbqk= -----END CERTIFICATE-----Generated at Mon Oct 20 11:08:26 2025 by rpki-client