$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/73bc1116-9ced-4e7f-8ea8-4d0dc8847fca.roa File: 73bc1116-9ced-4e7f-8ea8-4d0dc8847fca.roa (raw, json) Hash identifier: qR1zDXyHZmNqr8rnCGESrjYevKWoGAD6SqaC8EgtkN4= Subject key identifier: 6C:69:A6:D1:74:7A:BB:73:6C:68:D1:47:67:06:4B:C5:AB:63:EE:F9 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 52179CC92C2DC23EAA23B06EEFC248025557EEB4 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/73bc1116-9ced-4e7f-8ea8-4d0dc8847fca.roa Signing time: Tue 21 Oct 2025 06:51:33 +0000 ROA not before: Tue 21 Oct 2025 06:51:33 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.162.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:17:9c:c9:2c:2d:c2:3e:aa:23:b0:6e:ef:c2:48:02:55:57:ee:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 21 06:51:33 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=9b5a11cfc5dcfad3e41c582167fc4afca22e0ce8c3ffb91a0eea795a1df4b3be, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:d2:23:42:f4:18:fc:1c:10:ed:24:3b:16:7f: 5f:15:08:e2:88:d2:36:b9:34:41:9a:e7:26:1f:f1: ec:83:4e:7f:5d:a8:3b:89:ea:ad:f4:5f:ff:37:d4: 52:ab:14:61:ca:6a:aa:e5:f1:d3:c8:df:56:68:6b: 7f:b3:92:e1:cd:9e:17:6f:03:82:b2:ac:6a:3c:b0: c0:20:bc:d8:a9:0a:7a:39:ee:4d:5e:ce:96:ba:22: 25:7b:1f:5b:6d:41:62:81:fa:94:fb:6e:d0:86:7e: 29:18:16:8a:44:77:6f:4d:02:a1:78:d7:c8:d4:1b: ea:ee:38:5a:68:cf:01:58:b9:d5:ea:95:b7:30:35: 8e:0a:f6:b6:fa:bd:62:b1:2a:b8:8d:a4:71:a0:a7: c7:d7:e7:60:8d:e7:75:87:02:2b:15:5a:5b:1d:7d: 6c:9c:14:4c:89:41:06:63:a6:fa:cd:03:03:27:81: f0:88:ad:8a:de:dc:d4:01:86:02:a6:48:70:7c:b1: 52:6b:2e:30:48:41:d4:45:03:f8:44:d0:b6:c4:69: ba:f1:02:29:8f:3a:e4:6a:bc:70:6e:8a:cd:47:1b: d5:40:56:68:da:77:06:7d:ca:6b:3d:e3:e4:64:6c: 59:e2:41:e3:49:3d:44:b5:8a:fa:20:e3:d6:24:c9: e7:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:69:A6:D1:74:7A:BB:73:6C:68:D1:47:67:06:4B:C5:AB:63:EE:F9 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/73bc1116-9ced-4e7f-8ea8-4d0dc8847fca.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.162.1.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:a4:35:ed:2f:00:b3:61:e5:14:4c:13:6b:d4:f4:49:b8:4a: 75:d2:e2:89:7f:bb:33:60:f9:56:95:4b:40:2f:bb:2a:a2:6f: 0d:8a:4c:a8:ee:27:5a:80:44:6e:c4:7a:ce:d5:fb:72:7e:9e: cb:7e:d4:5f:67:9d:3e:e1:ec:1d:e5:75:93:1f:24:33:b4:16: 93:f4:15:21:ef:d2:39:76:e3:2a:5d:11:6d:72:35:58:9c:1c: 14:e2:12:83:2c:08:65:6a:65:56:0b:6a:0b:5d:54:59:53:a9: 74:0a:23:db:7d:f5:3a:e9:ff:0a:13:19:78:1f:59:a0:fe:ed: 00:7e:9d:d0:3a:fc:6c:48:b8:af:a9:83:c5:69:25:66:d3:1a: 41:72:44:28:15:05:31:4d:17:77:ad:ec:21:70:90:ba:2a:19: b4:53:0e:5f:e2:e4:00:86:e0:63:27:51:5c:a7:de:d6:b8:9b: 5b:8f:93:57:34:5a:1f:d5:16:49:c0:61:08:69:75:4e:5d:37: 77:dd:a2:25:87:56:7c:d1:98:31:0a:3d:bd:52:f0:b8:e3:c6: bf:65:cc:30:b7:d9:6c:de:4d:9b:26:75:e3:55:eb:84:8b:5b: 9f:77:76:51:fd:7b:af:c0:30:7d:ef:34:ae:f4:f5:95:47:33: 02:0d:c6:f3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUhecySwtwj6qI7Bu78JIAlVX7rQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDIxMDY1MTMzWhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A5YjVhMTFjZmM1ZGNmYWQzZTQxYzU4MjE2N2ZjNGFmY2Ey MmUwY2U4YzNmZmI5MWEwZWVhNzk1YTFkZjRiM2JlMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJ0iNC9Bj8HBDtJDsWf18VCOKI0ja5NEGa5yYf8eyDTn9d qDuJ6q30X/831FKrFGHKaqrl8dPI31Zoa3+zkuHNnhdvA4KyrGo8sMAgvNipCno5 7k1ezpa6IiV7H1ttQWKB+pT7btCGfikYFopEd29NAqF418jUG+ruOFpozwFYudXq lbcwNY4K9rb6vWKxKriNpHGgp8fX52CN53WHAisVWlsdfWycFEyJQQZjpvrNAwMn gfCIrYre3NQBhgKmSHB8sVJrLjBIQdRFA/hE0LbEabrxAimPOuRqvHBuis1HG9VA VmjadwZ9yms94+RkbFniQeNJPUS1ivog49Ykyed9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUbGmm0XR6u3NsaNFHZwZLxatj7vkwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzczYmMxMTE2LTljZWQtNGU3Zi04ZWE4LTRkMGRjODg0N2ZjYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAASogEwDQYJKoZIhvcNAQELBQADggEBAF2kNe0vALNh5RRME2vU9Em4SnXS 4ol/uzNg+VaVS0Avuyqibw2KTKjuJ1qARG7Ees7V+3J+nst+1F9nnT7h7B3ldZMf JDO0FpP0FSHv0jl24ypdEW1yNVicHBTiEoMsCGVqZVYLagtdVFlTqXQKI9t99Trp /woTGXgfWaD+7QB+ndA6/GxIuK+pg8VpJWbTGkFyRCgVBTFNF3et7CFwkLoqGbRT Dl/i5ACG4GMnUVyn3ta4m1uPk1c0Wh/VFknAYQhpdU5dN3fdoiWHVnzRmDEKPb1S 8Ljjxr9lzDC32WzeTZsmdeNV64SLW593dlH9e6/AMH3vNK709ZVHMwINxvM= -----END CERTIFICATE-----Generated at Wed Nov 5 18:22:00 2025 by rpki-client