$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2fbce0b2-9e9c-466b-9b17-180de53a79ea.roa File: 2fbce0b2-9e9c-466b-9b17-180de53a79ea.roa (raw, json) Hash identifier: o8Lh9sHMz58SIABFwdo5JjYKbPH+f5MMdxIY9bdbeYM= Subject key identifier: 64:B1:B9:1E:9A:1E:33:1A:BD:F3:6D:13:35:C7:F0:0E:18:D1:54:BA Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 1AFE5039222E4EB70B49BD22F836A2D60E6A95A3 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2fbce0b2-9e9c-466b-9b17-180de53a79ea.roa Signing time: Tue 21 Oct 2025 12:02:34 +0000 ROA not before: Tue 21 Oct 2025 12:02:34 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.156.0.0/14 maxlen: 14 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:fe:50:39:22:2e:4e:b7:0b:49:bd:22:f8:36:a2:d6:0e:6a:95:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 21 12:02:34 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=727526e7bb52151c4878bc2723bf2d0051606389d5f7074f9e681617799f99ee, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:88:4f:6b:66:36:3e:76:81:3e:94:7c:84:17: 40:19:19:0b:c0:20:07:33:ed:5e:87:41:53:55:4e: e4:ce:b6:a5:48:8b:9b:8a:c8:31:41:b8:eb:92:60: 7c:95:e6:e5:24:94:81:a6:c2:22:d4:f8:3f:5e:52: c9:41:06:6d:8c:41:06:23:2c:71:1c:09:ba:f4:d6: fd:03:06:b3:ba:29:75:89:a1:27:cb:ea:45:d3:89: d1:71:3e:91:b6:0c:6d:ba:27:17:5f:21:a2:67:0f: 0b:59:56:4d:52:79:41:e7:d7:cc:b9:0d:d5:b1:40: da:12:de:3f:8c:d4:4a:cc:17:f2:27:50:57:0f:92: a7:90:2f:37:90:75:51:49:6f:66:79:94:f6:13:18: c9:15:0f:96:93:78:86:1d:15:37:7d:5c:af:52:b4: 5e:57:9b:10:b4:78:e8:c3:a8:f4:98:9a:58:86:02: ad:72:bb:36:47:97:77:85:d5:9c:57:40:e5:41:25: 73:cc:05:e8:1b:bd:ae:e6:18:84:6b:1d:d4:b6:d3: 02:d1:92:48:9c:9b:c0:ee:c6:bc:a0:d1:04:02:d7: db:62:bd:6d:45:a4:ce:29:af:ad:70:3b:88:c7:da: 85:df:f8:a1:91:2c:3c:8e:bd:cd:27:2c:19:ea:d0: f9:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:B1:B9:1E:9A:1E:33:1A:BD:F3:6D:13:35:C7:F0:0E:18:D1:54:BA X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2fbce0b2-9e9c-466b-9b17-180de53a79ea.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.156.0.0/14 Signature Algorithm: sha256WithRSAEncryption 09:42:eb:b3:b9:87:a8:69:03:cd:b4:8c:85:63:12:2f:2d:14: 85:a2:ce:c6:9f:a7:75:af:4a:c9:42:9d:5a:89:35:9e:f8:6b: 23:79:b8:10:44:4d:a6:5e:05:4b:e5:b7:7e:2f:0e:6d:93:e1: ea:8a:5c:3a:f2:b5:15:d5:cb:bc:fa:34:b7:32:3c:65:8f:c6: 5b:68:7a:25:78:fd:4d:9e:4a:8e:fd:78:6c:ef:f5:d7:03:41: ef:7b:2b:c2:57:fe:6e:99:dc:dd:b5:b2:a7:07:88:71:33:51: a3:4f:8c:43:ec:9a:b0:f0:40:28:63:69:31:40:b2:ec:86:95: bf:f5:e1:49:cf:c1:fe:90:44:e4:9d:5e:5a:4e:db:fc:a7:d4: 3e:5f:1e:c6:81:4f:0e:97:a7:f3:40:f3:95:5c:ec:38:1b:7a: f6:47:61:e3:08:57:5d:42:67:a4:29:66:55:d9:1e:86:fb:3c: ce:7f:35:b1:da:d9:06:7b:44:42:2c:05:50:97:68:75:e0:50: af:68:50:4b:42:fc:02:47:b9:7a:4d:1d:46:12:58:6a:0e:7a: 55:63:db:56:f1:7e:97:38:29:52:7f:4f:e0:4d:9a:2e:07:3b: 1b:d2:f3:ac:93:0d:30:2a:2f:92:2d:fb:10:eb:9c:60:f8:6e: 31:a7:61:80 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUGv5QOSIuTrcLSb0i+Dai1g5qlaMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDIxMTIwMjM0WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A3Mjc1MjZlN2JiNTIxNTFjNDg3OGJjMjcyM2JmMmQwMDUx NjA2Mzg5ZDVmNzA3NGY5ZTY4MTYxNzc5OWY5OWVlMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4iE9rZjY+doE+lHyEF0AZGQvAIAcz7V6HQVNVTuTOtqVI i5uKyDFBuOuSYHyV5uUklIGmwiLU+D9eUslBBm2MQQYjLHEcCbr01v0DBrO6KXWJ oSfL6kXTidFxPpG2DG26JxdfIaJnDwtZVk1SeUHn18y5DdWxQNoS3j+M1ErMF/In UFcPkqeQLzeQdVFJb2Z5lPYTGMkVD5aTeIYdFTd9XK9StF5XmxC0eOjDqPSYmliG Aq1yuzZHl3eF1ZxXQOVBJXPMBegbva7mGIRrHdS20wLRkkicm8Duxryg0QQC19ti vW1FpM4pr61wO4jH2oXf+KGRLDyOvc0nLBnq0PnHAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUZLG5HpoeMxq9820TNcfwDhjRVLowHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzJmYmNlMGIyLTllOWMtNDY2Yi05YjE3LTE4MGRlNTNhNzllYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwISnDANBgkqhkiG9w0BAQsFAAOCAQEACULrs7mHqGkDzbSMhWMSLy0UhaLO xp+nda9KyUKdWok1nvhrI3m4EERNpl4FS+W3fi8ObZPh6opcOvK1FdXLvPo0tzI8 ZY/GW2h6JXj9TZ5Kjv14bO/11wNB73srwlf+bpnc3bWypweIcTNRo0+MQ+yasPBA KGNpMUCy7IaVv/XhSc/B/pBE5J1eWk7b/KfUPl8exoFPDpen80DzlVzsOBt69kdh 4whXXUJnpClmVdkehvs8zn81sdrZBntEQiwFUJdodeBQr2hQS0L8Ake5ek0dRhJY ag56VWPbVvF+lzgpUn9P4E2aLgc7G9LzrJMNMCovki37EOucYPhuMadhgA== -----END CERTIFICATE-----Generated at Wed Nov 5 03:26:38 2025 by rpki-client