$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6d54f6ca-1175-4454-9f47-f101ffa12e6d.roa File: 6d54f6ca-1175-4454-9f47-f101ffa12e6d.roa (raw, json) Hash identifier: GVguU3dMOsfzdYWDBg6vCjsz9Q05LRvlDNm+nHVjTAs= Subject key identifier: C3:EF:33:F1:47:B5:F6:0C:59:01:54:34:5B:66:77:5E:93:E3:F8:61 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 4B1C4DEB45EF517F53FBC919236A043C0D1198CE Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6d54f6ca-1175-4454-9f47-f101ffa12e6d.roa Signing time: Tue 04 Nov 2025 02:40:56 +0000 ROA not before: Tue 04 Nov 2025 02:40:56 +0000 ROA not after: Tue 09 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.88.0.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:1c:4d:eb:45:ef:51:7f:53:fb:c9:19:23:6a:04:3c:0d:11:98:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Nov 4 02:40:56 2025 GMT Not After : Dec 9 23:59:59 2025 GMT Subject: serialNumber=bb43007f389741570959d29a2b42f1d706b621f96f867c28b9cde2c757334514, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:04:4b:d6:f6:d3:85:56:a8:bd:46:f3:77:a5: 8b:17:13:87:45:f1:06:de:28:40:4c:f7:54:b7:f1: b9:03:04:38:90:b7:36:e4:66:e9:06:a9:2b:c2:32: 4f:8b:b7:aa:d4:66:07:6b:14:da:60:cb:d5:76:0b: ab:dc:dd:92:94:9f:cf:df:2b:c3:73:f5:9e:65:47: 55:cf:73:b0:ad:da:95:79:5a:f7:95:29:a4:4d:70: 6e:fb:7a:85:de:a4:76:32:34:e7:cf:1e:05:d2:45: 0f:78:15:c6:8e:12:b5:29:ff:77:a0:3f:da:07:ea: a0:fc:44:71:bb:51:fe:98:71:bf:27:8e:93:d9:c3: 19:7a:f6:31:62:c9:91:5b:91:f8:02:d0:e1:64:c5: 31:c6:db:2f:4d:ab:a9:de:25:74:09:0e:2c:6c:59: 95:3e:45:57:4e:15:ea:5b:bb:62:3c:c8:70:84:3e: 95:05:a2:a1:50:7a:c5:81:f2:f3:54:b8:31:3e:4f: 36:0b:83:9e:08:37:8c:6c:4b:46:7c:4e:8d:7a:67: 16:e5:af:69:60:7b:4f:08:40:6a:ed:4f:ee:ac:64: 49:17:aa:31:e9:a5:1b:3f:e8:3f:5a:4b:3c:de:ed: f5:96:32:0f:44:15:a5:0b:7e:9e:c3:d1:55:2d:a0: d5:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:EF:33:F1:47:B5:F6:0C:59:01:54:34:5B:66:77:5E:93:E3:F8:61 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6d54f6ca-1175-4454-9f47-f101ffa12e6d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.88.0.0/19 Signature Algorithm: sha256WithRSAEncryption 3c:1a:52:c8:e3:6b:dd:59:b9:fe:2f:5c:e2:62:5b:d7:05:b9: cc:48:63:13:3a:5c:77:e0:7e:e9:be:6f:dd:bd:af:4c:43:f5: 7c:bd:54:2c:ac:e2:d3:b0:56:fc:c4:53:a5:4f:43:eb:3a:09: 00:bb:03:b0:e9:9c:53:b4:f0:0f:ee:57:71:57:fc:bb:ca:53: 0e:ff:60:49:a7:23:7a:9b:6c:07:8a:56:d2:77:61:85:0d:1e: a9:ab:0c:2f:95:9b:bd:95:82:22:02:5a:45:f9:73:b0:8a:7d: cb:3c:fb:d3:bd:ee:2b:5e:7b:cd:1c:ad:7e:51:4b:7c:5d:4e: 42:ba:8b:bd:c1:c7:8a:61:38:12:77:e9:5c:e5:7a:12:9b:8e: 6f:19:11:8b:1e:59:fb:1d:17:10:a7:45:2f:e6:55:7d:63:6c: c9:f5:6d:26:0c:5b:36:73:0c:3a:d0:a3:21:bb:d8:d6:06:a1: 04:4f:11:1f:0e:f8:53:0e:df:57:e9:ce:6e:cb:b9:9a:40:ad: d1:73:0b:48:40:66:6a:8a:37:e0:05:92:b1:1a:69:68:d0:99: e3:ea:67:28:40:f2:34:b8:f8:3e:57:06:30:b4:e9:c1:e5:4f: b0:8c:de:75:af:20:25:e6:df:2f:e3:74:d6:8f:0e:47:a4:18: 48:c4:69:43 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSxxN60XvUX9T+8kZI2oEPA0RmM4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMTA0MDI0MDU2WhcNMjUxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BiYjQzMDA3ZjM4OTc0MTU3MDk1OWQyOWEyYjQyZjFkNzA2 YjYyMWY5NmY4NjdjMjhiOWNkZTJjNzU3MzM0NTE0MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDEBEvW9tOFVqi9RvN3pYsXE4dF8QbeKEBM91S38bkDBDiQ tzbkZukGqSvCMk+Lt6rUZgdrFNpgy9V2C6vc3ZKUn8/fK8Nz9Z5lR1XPc7Ct2pV5 WveVKaRNcG77eoXepHYyNOfPHgXSRQ94FcaOErUp/3egP9oH6qD8RHG7Uf6Ycb8n jpPZwxl69jFiyZFbkfgC0OFkxTHG2y9Nq6neJXQJDixsWZU+RVdOFepbu2I8yHCE PpUFoqFQesWB8vNUuDE+TzYLg54IN4xsS0Z8To16Zxblr2lge08IQGrtT+6sZEkX qjHppRs/6D9aSzze7fWWMg9EFaULfp7D0VUtoNXLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUw+8z8Ue19gxZAVQ0W2Z3XpPj+GEwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzZkNTRmNmNhLTExNzUtNDQ1NC05ZjQ3LWYxMDFmZmExMmU2ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUSWAAwDQYJKoZIhvcNAQELBQADggEBADwaUsjja91Zuf4vXOJiW9cFucxI YxM6XHfgfum+b929r0xD9Xy9VCys4tOwVvzEU6VPQ+s6CQC7A7DpnFO08A/uV3FX /LvKUw7/YEmnI3qbbAeKVtJ3YYUNHqmrDC+Vm72VgiICWkX5c7CKfcs8+9O97ite e80crX5RS3xdTkK6i73Bx4phOBJ36VzlehKbjm8ZEYseWfsdFxCnRS/mVX1jbMn1 bSYMWzZzDDrQoyG72NYGoQRPER8O+FMO31fpzm7LuZpArdFzC0hAZmqKN+AFkrEa aWjQmePqZyhA8jS4+D5XBjC06cHlT7CM3nWvICXm3y/jdNaPDkekGEjEaUM= -----END CERTIFICATE-----Generated at Wed Nov 5 01:56:11 2025 by rpki-client