$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6d380ee2-1b52-4d82-b5a3-ee2fe211eb06.roa File: 6d380ee2-1b52-4d82-b5a3-ee2fe211eb06.roa (raw, json) Hash identifier: EjV07AXMk1AJYhxMmiRD9jQxbMbKTaGNUgMpSc4po2M= Subject key identifier: 40:E2:8A:4C:1E:92:9D:89:1C:81:49:64:B2:66:57:F8:4B:8B:D3:8A Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 424514E143BA34F422B07ACA0C0CD12C6642FA7E Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6d380ee2-1b52-4d82-b5a3-ee2fe211eb06.roa Signing time: Tue 21 Oct 2025 08:02:39 +0000 ROA not before: Tue 21 Oct 2025 08:02:39 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.87.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:45:14:e1:43:ba:34:f4:22:b0:7a:ca:0c:0c:d1:2c:66:42:fa:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 21 08:02:39 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=6dd023014773ef57918a079880857894431890ec057a6f2b4416fc4f845fda70, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:09:b7:f5:8a:cd:a1:40:82:9a:03:10:f7:33: dc:85:ad:f0:5c:4f:5b:e6:ea:57:b1:f6:e6:ba:4f: 59:83:46:33:8c:5c:21:49:66:b8:15:04:41:7e:d5: 12:19:eb:19:2a:84:4f:8c:61:1f:a6:09:ff:a1:7a: a3:40:79:31:b4:d8:e2:14:19:f9:1f:07:81:6a:92: b3:72:a7:88:55:1c:23:0a:78:b3:71:93:1b:54:c1: 33:20:dc:a9:22:ef:54:4a:06:63:90:8d:ea:92:06: 3c:ee:03:7d:34:c6:b5:16:06:57:bf:78:ba:38:03: 87:a7:9a:2a:c9:d7:05:89:44:cb:d1:07:9c:d2:c1: 6c:62:4b:7d:5d:43:a4:f5:54:74:fe:00:ca:6e:35: 28:5e:39:db:7a:f9:48:30:ef:79:00:60:b7:f4:cc: d1:63:7d:4b:18:87:aa:07:af:87:c7:d1:9c:8a:11: 47:0f:ec:9f:fa:78:ed:db:81:24:fc:88:4b:5d:8b: b6:2a:05:bc:09:f5:e4:b4:ab:60:c1:a7:88:b3:51: 80:73:b7:22:45:d9:0a:c6:f8:17:7e:18:9b:67:03: 3d:40:92:9f:0d:c8:27:ec:52:f9:f6:9a:87:e0:9e: fb:86:16:38:89:4d:d7:1b:41:5d:00:22:dc:2d:0e: 33:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:E2:8A:4C:1E:92:9D:89:1C:81:49:64:B2:66:57:F8:4B:8B:D3:8A X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6d380ee2-1b52-4d82-b5a3-ee2fe211eb06.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.87.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3c:11:17:e8:e4:2d:3e:27:b7:5d:f4:78:d4:8b:fe:45:58:c7: e0:df:fa:a7:2b:44:fa:40:d5:62:fd:15:e2:d0:5f:3a:20:5a: 96:55:28:f3:5d:19:8c:5e:e3:2b:c5:fa:ae:3f:27:91:95:8d: 04:68:d4:35:36:db:fb:d3:5a:ae:4e:83:2b:a0:bc:b5:c5:8b: ca:f9:8f:ee:b0:ca:8c:69:ea:d0:2d:7c:04:a4:7c:a4:c4:1b: 8f:b8:fa:da:b8:4f:c9:eb:2a:16:30:52:de:b8:68:58:d0:fd: ed:f0:d7:d3:f0:4f:0f:1f:db:0c:25:1f:d2:ee:11:00:b6:52: a5:44:54:15:0d:7b:3a:b2:ad:5d:d6:01:1f:95:ca:8d:bb:02: fd:94:cb:8a:fb:af:b4:4c:33:78:c1:dc:59:bf:e2:b7:50:2b: f5:82:b0:6a:f6:87:3f:a7:a6:e0:70:af:ce:ff:42:05:e3:b3: 6a:b9:3f:5e:d9:73:02:da:72:7b:a0:b8:af:3f:df:de:fa:d0: 3d:a2:52:c6:5a:b0:8e:8a:a6:ee:e4:66:9b:10:b4:f0:f7:7b: f8:bd:dc:47:c8:c9:52:cb:20:4a:a5:88:d9:ac:f6:23:2c:6b: d8:70:1f:88:fb:75:fb:7a:75:a3:82:11:8f:07:39:13:f8:c4: a8:6a:0f:c8 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUQkUU4UO6NPQisHrKDAzRLGZC+n4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDIxMDgwMjM5WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZGQwMjMwMTQ3NzNlZjU3OTE4YTA3OTg4MDg1Nzg5NDQz MTg5MGVjMDU3YTZmMmI0NDE2ZmM0Zjg0NWZkYTcwMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1Cbf1is2hQIKaAxD3M9yFrfBcT1vm6lex9ua6T1mDRjOM XCFJZrgVBEF+1RIZ6xkqhE+MYR+mCf+heqNAeTG02OIUGfkfB4FqkrNyp4hVHCMK eLNxkxtUwTMg3Kki71RKBmOQjeqSBjzuA300xrUWBle/eLo4A4enmirJ1wWJRMvR B5zSwWxiS31dQ6T1VHT+AMpuNSheOdt6+Ugw73kAYLf0zNFjfUsYh6oHr4fH0ZyK EUcP7J/6eO3bgST8iEtdi7YqBbwJ9eS0q2DBp4izUYBztyJF2QrG+Bd+GJtnAz1A kp8NyCfsUvn2mofgnvuGFjiJTdcbQV0AItwtDjN7AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUQOKKTB6SnYkcgUlksmZX+EuL04owHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzZkMzgwZWUyLTFiNTItNGQ4Mi1iNWEzLWVlMmZlMjExZWIwNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwASVzANBgkqhkiG9w0BAQsFAAOCAQEAPBEX6OQtPie3XfR41Iv+RVjH4N/6 pytE+kDVYv0V4tBfOiBallUo810ZjF7jK8X6rj8nkZWNBGjUNTbb+9Nark6DK6C8 tcWLyvmP7rDKjGnq0C18BKR8pMQbj7j62rhPyesqFjBS3rhoWND97fDX0/BPDx/b DCUf0u4RALZSpURUFQ17OrKtXdYBH5XKjbsC/ZTLivuvtEwzeMHcWb/it1Ar9YKw avaHP6em4HCvzv9CBeOzark/XtlzAtpye6C4rz/f3vrQPaJSxlqwjoqm7uRmmxC0 8Pd7+L3cR8jJUssgSqWI2az2Iyxr2HAfiPt1+3p1o4IRjwc5E/jEqGoPyA== -----END CERTIFICATE-----Generated at Wed Nov 5 01:54:24 2025 by rpki-client