$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/fa242b33-cbff-4900-adde-f462ee3272af.roa File: fa242b33-cbff-4900-adde-f462ee3272af.roa (raw, json) Hash identifier: linGWUll5MBEwJdF1wOjN6CYcIHgsSe0Gw9z8MdZ/zw= Subject key identifier: 1C:B1:70:D8:50:55:CC:0B:ED:C3:35:C1:AF:4C:41:FA:6C:DD:73:4C Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 6B85A3B8904642E2F97F4506784F0C60E9DEAFFA Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/fa242b33-cbff-4900-adde-f462ee3272af.roa Signing time: Fri 26 Sep 2025 15:47:23 +0000 ROA not before: Fri 26 Sep 2025 15:47:23 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.230.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:85:a3:b8:90:46:42:e2:f9:7f:45:06:78:4f:0c:60:e9:de:af:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 26 15:47:23 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=ed26c410fe2614290a95443b0b1797df36a083358fa42f3db2cd1a86af927cf3, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:42:64:96:27:09:d0:a0:41:ec:f6:fe:6f:14: 7d:e0:dc:f3:47:15:85:64:2f:41:96:33:b4:94:15: b8:10:17:f1:f0:cf:6a:40:72:80:9c:79:d5:63:65: 1b:a7:ed:76:e8:99:f6:38:4f:56:04:1b:f8:3a:3e: 25:07:31:98:b2:00:ea:f4:36:da:56:cd:3c:f3:77: 20:9a:4c:62:23:50:c3:8e:04:c1:10:9b:b9:a9:69: 4e:8e:ba:ae:f3:30:92:3e:b6:fe:33:a5:5e:e3:07: ea:4d:1d:75:c2:26:4d:e5:93:a3:17:a6:5a:6f:3d: 0f:76:56:2a:e6:e1:0c:b0:ae:ed:d1:fb:05:48:24: a3:96:e4:ba:91:3e:20:77:18:cb:cf:57:56:87:94: a1:f3:ba:c2:4f:1f:7f:db:7f:60:8b:c3:f2:dd:36: 83:0d:41:19:35:a0:fa:88:eb:53:20:9e:7c:39:30: c2:97:b4:6c:4e:c8:fa:48:d2:9f:12:cf:f1:28:69: 39:6a:cf:0f:75:d3:6e:87:0f:e3:4f:6f:6b:c6:12: e2:a0:ef:8e:5e:25:3c:f3:5f:b6:bc:66:dd:e6:5e: 51:ee:8f:e8:89:b3:cb:7a:b8:61:93:e3:68:3d:4d: 66:0f:94:5e:cc:d1:90:1d:5a:9a:8f:0c:d3:c8:a0: 8b:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:B1:70:D8:50:55:CC:0B:ED:C3:35:C1:AF:4C:41:FA:6C:DD:73:4C X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/fa242b33-cbff-4900-adde-f462ee3272af.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.230.18.0/24 Signature Algorithm: sha256WithRSAEncryption b2:01:55:23:c1:d4:0f:62:01:38:56:c0:ef:27:d8:d8:a2:69: 0b:24:74:42:6c:1c:d4:ac:18:2a:65:77:36:88:34:f9:6f:af: 77:96:26:f8:1a:3b:a8:e2:3a:a3:2d:2c:dd:26:e9:20:b9:d2: 6f:5d:3d:01:26:52:9e:e5:ad:97:63:3f:0b:ed:d9:a2:ad:3c: b9:23:7c:27:01:8f:0d:3b:2d:3b:73:80:19:83:b4:8e:2f:d5: 6d:8f:82:d4:b4:b2:cc:fb:37:6c:27:d1:c5:95:54:ce:37:d4: 9b:94:72:d2:79:ed:70:34:f9:95:ca:2b:72:2e:26:5c:0d:85: bf:73:23:87:d2:7e:be:3b:4f:f2:e1:c7:8a:c8:d0:84:78:3c: 77:3a:53:33:99:ed:4e:4f:67:89:3d:d3:e6:4a:35:21:11:b6: 0e:19:5d:90:51:a6:05:68:94:1c:df:8e:bc:fe:14:d5:68:a6: 3d:48:b7:15:02:04:a7:f3:18:20:aa:2d:58:ec:79:99:60:ac: dd:cf:4a:1e:a4:2a:bb:e8:63:09:e6:53:c3:17:77:00:9a:c4: 2d:e0:b5:a7:df:e4:56:12:2d:5a:9d:74:1b:72:58:b7:c6:7e: da:d4:06:22:b3:80:ef:d6:0e:d7:ef:a4:01:c3:73:a9:65:ee: 66:29:58:dd -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUa4WjuJBGQuL5f0UGeE8MYOner/owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTI2MTU0NzIzWhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0BlZDI2YzQxMGZlMjYxNDI5MGE5NTQ0M2IwYjE3OTdkZjM2 YTA4MzM1OGZhNDJmM2RiMmNkMWE4NmFmOTI3Y2YzMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDQmSWJwnQoEHs9v5vFH3g3PNHFYVkL0GWM7SUFbgQF/Hw z2pAcoCcedVjZRun7XbomfY4T1YEG/g6PiUHMZiyAOr0NtpWzTzzdyCaTGIjUMOO BMEQm7mpaU6Ouq7zMJI+tv4zpV7jB+pNHXXCJk3lk6MXplpvPQ92Virm4Qywru3R +wVIJKOW5LqRPiB3GMvPV1aHlKHzusJPH3/bf2CLw/LdNoMNQRk1oPqI61Mgnnw5 MMKXtGxOyPpI0p8Sz/EoaTlqzw91026HD+NPb2vGEuKg745eJTzzX7a8Zt3mXlHu j+iJs8t6uGGT42g9TWYPlF7M0ZAdWpqPDNPIoIt9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUHLFw2FBVzAvtwzXBr0xB+mzdc0wwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2ZhMjQyYjMzLWNiZmYtNDkwMC1hZGRlLWY0NjJlZTMyNzJhZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAP5hIwDQYJKoZIhvcNAQELBQADggEBALIBVSPB1A9iAThWwO8n2NiiaQsk dEJsHNSsGCpldzaINPlvr3eWJvgaO6jiOqMtLN0m6SC50m9dPQEmUp7lrZdjPwvt 2aKtPLkjfCcBjw07LTtzgBmDtI4v1W2PgtS0ssz7N2wn0cWVVM431JuUctJ57XA0 +ZXKK3IuJlwNhb9zI4fSfr47T/Lhx4rI0IR4PHc6UzOZ7U5PZ4k90+ZKNSERtg4Z XZBRpgVolBzfjrz+FNVopj1ItxUCBKfzGCCqLVjseZlgrN3PSh6kKrvoYwnmU8MX dwCaxC3gtaff5FYSLVqddBtyWLfGftrUBiKzgO/WDtfvpAHDc6ll7mYpWN0= -----END CERTIFICATE-----Generated at Mon Oct 20 06:23:00 2025 by rpki-client