$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/fb52c03f-4ca2-41b2-8d9f-99ff6dcaaa6d.roa File: fb52c03f-4ca2-41b2-8d9f-99ff6dcaaa6d.roa (raw, json) Hash identifier: YSKdDiML4xZo+Gj+ijPtHqrrGqGNNjgUBHG9VdMMB2g= Subject key identifier: 1B:C3:CA:13:51:B9:1D:55:10:77:D3:3C:23:0A:47:55:D3:9C:93:D5 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 5367BB4B3F89810359EB224855E1BD5D2524A9D7 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/fb52c03f-4ca2-41b2-8d9f-99ff6dcaaa6d.roa Signing time: Sat 18 Oct 2025 22:00:06 +0000 ROA not before: Sat 18 Oct 2025 22:00:06 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.155.250.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:67:bb:4b:3f:89:81:03:59:eb:22:48:55:e1:bd:5d:25:24:a9:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 18 22:00:06 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=d27f1db5da220c73ab5dffc3c4e21fcab8f286261c19eb3c8d29e2a8a96783ff, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:6e:51:d5:10:f6:cb:8f:1a:71:5b:da:5b:e1: 34:3b:28:62:3c:85:af:e4:16:5f:07:a6:1c:1b:ce: d3:b7:95:58:c0:12:e3:07:cd:07:22:6e:a6:29:0b: 7c:1d:67:dd:e2:f1:a9:ed:0c:cf:a3:44:3b:29:fd: 74:7b:2b:eb:63:58:b2:94:c2:56:c7:7b:30:b9:54: 94:2b:71:fa:4a:8a:51:5c:9d:16:91:71:03:01:c0: 21:5b:58:0c:7c:dd:79:f3:1b:9f:7f:cd:40:16:87: 63:e3:f6:31:89:02:8f:34:9b:80:db:eb:01:08:99: ed:83:b0:1c:8d:62:75:c8:2a:5a:1b:4f:c7:f7:b0: a7:89:ca:1e:b1:4a:cc:61:36:d9:19:71:fd:66:b6: 1d:87:f5:d1:a5:1d:c3:19:c4:f8:1b:ce:d1:6d:14: be:ea:be:9c:c8:9a:61:68:5e:9d:76:89:32:ec:1d: 3e:34:84:a8:19:36:0c:90:dc:e9:8c:bb:8f:65:b0: 86:d6:74:0d:84:83:04:66:e7:72:76:0a:f3:c0:5f: eb:94:7f:f7:59:72:74:ee:3f:bf:e0:10:f2:95:6a: 2b:0b:ef:d0:fd:0d:1f:27:09:e5:ec:88:cb:bb:eb: 61:69:cb:fc:79:fd:ca:71:e7:b0:d5:c1:9a:96:fa: 1a:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:C3:CA:13:51:B9:1D:55:10:77:D3:3C:23:0A:47:55:D3:9C:93:D5 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/fb52c03f-4ca2-41b2-8d9f-99ff6dcaaa6d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.155.250.0/23 Signature Algorithm: sha256WithRSAEncryption a9:fc:2b:29:aa:a8:64:f3:9f:92:ef:75:72:a4:14:8b:3b:89: 80:c5:14:18:1c:ee:17:a1:ec:59:ae:1e:e3:5d:82:4a:e2:63: e1:f6:f1:fc:e9:53:20:6e:41:e3:3c:3b:31:19:9d:5a:db:36: 60:bc:a9:28:96:9b:a1:b8:7f:77:86:8e:47:e6:1e:ff:a8:8f: 8c:c3:94:ee:34:50:27:f1:b6:7b:73:5e:11:ca:9c:11:90:c1: 93:4e:af:39:94:2a:09:c9:64:39:d0:3a:6a:25:a8:bb:d4:e6: 49:38:33:49:c8:a0:6e:4d:15:d8:34:18:e9:ad:07:2f:68:82: 9e:51:1e:8d:b8:56:df:3c:7c:0a:92:a8:c8:35:4d:e6:87:29: 20:51:18:41:3f:c4:eb:38:cc:0e:44:33:48:8c:b2:d7:cb:80: 0d:b6:d8:7f:2d:91:7a:be:ee:1b:cd:40:11:ee:b7:36:cc:e3: 21:49:ce:0e:ff:42:1d:cf:23:2c:a7:9f:f6:8b:8c:fe:33:8b: 72:43:eb:c1:32:5c:9c:85:53:8e:96:0a:6f:47:b3:7e:5d:a1: 56:05:b4:31:14:32:54:7d:ed:30:25:03:33:72:0a:cd:19:de: 05:38:3c:94:3a:7c:f0:bf:a6:1d:fe:4b:3d:b8:be:6b:69:f4: 39:4a:c4:fc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUU2e7Sz+JgQNZ6yJIVeG9XSUkqdcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE4MjIwMDA2WhcNMjUxMTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BkMjdmMWRiNWRhMjIwYzczYWI1ZGZmYzNjNGUyMWZjYWI4 ZjI4NjI2MWMxOWViM2M4ZDI5ZTJhOGE5Njc4M2ZmMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCUblHVEPbLjxpxW9pb4TQ7KGI8ha/kFl8HphwbztO3lVjA EuMHzQcibqYpC3wdZ93i8antDM+jRDsp/XR7K+tjWLKUwlbHezC5VJQrcfpKilFc nRaRcQMBwCFbWAx83XnzG59/zUAWh2Pj9jGJAo80m4Db6wEIme2DsByNYnXIKlob T8f3sKeJyh6xSsxhNtkZcf1mth2H9dGlHcMZxPgbztFtFL7qvpzImmFoXp12iTLs HT40hKgZNgyQ3OmMu49lsIbWdA2EgwRm53J2CvPAX+uUf/dZcnTuP7/gEPKVaisL 79D9DR8nCeXsiMu762Fpy/x5/cpx57DVwZqW+hofAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUG8PKE1G5HVUQd9M8IwpHVdOck9UwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2ZiNTJjMDNmLTRjYTItNDFiMi04ZDlmLTk5ZmY2ZGNhYWE2ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAESm/owDQYJKoZIhvcNAQELBQADggEBAKn8KymqqGTzn5LvdXKkFIs7iYDF FBgc7heh7FmuHuNdgkriY+H28fzpUyBuQeM8OzEZnVrbNmC8qSiWm6G4f3eGjkfm Hv+oj4zDlO40UCfxtntzXhHKnBGQwZNOrzmUKgnJZDnQOmolqLvU5kk4M0nIoG5N Fdg0GOmtBy9ogp5RHo24Vt88fAqSqMg1TeaHKSBRGEE/xOs4zA5EM0iMstfLgA22 2H8tkXq+7hvNQBHutzbM4yFJzg7/Qh3PIyynn/aLjP4zi3JD68EyXJyFU46WCm9H s35doVYFtDEUMlR97TAlAzNyCs0Z3gU4PJQ6fPC/ph3+Sz24vmtp9DlKxPw= -----END CERTIFICATE-----Generated at Mon Oct 20 18:12:08 2025 by rpki-client