$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7a646f96-4a9b-46a9-94c1-bbb932606506.roa File: 7a646f96-4a9b-46a9-94c1-bbb932606506.roa (raw, json) Hash identifier: hgvpNDIH3EKE/Fe4uNuIIKTX4BWpYTl/TNezYhBtV54= Subject key identifier: 1F:03:EB:73:28:4B:72:E8:A6:AF:E1:B5:B6:0D:DA:1E:DD:84:8E:10 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 2181BF52231E6E80CB1E36FE2E306EDEFE859565 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7a646f96-4a9b-46a9-94c1-bbb932606506.roa Signing time: Tue 21 Oct 2025 01:02:28 +0000 ROA not before: Tue 21 Oct 2025 01:02:28 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.201.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:81:bf:52:23:1e:6e:80:cb:1e:36:fe:2e:30:6e:de:fe:85:95:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 21 01:02:28 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=1453e1adeda28337b23a2c076ad2ce4abf7f79d6b32af62acb93d9f8b41ec8bd, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:79:9a:e5:6f:6c:ae:d2:9e:1d:a1:01:b0:56: 52:b1:69:9f:54:e3:78:f1:d7:55:d1:58:16:47:91: c5:a5:82:4c:86:cb:a8:97:d2:d2:5a:00:b6:01:24: a7:7c:63:fb:60:0d:64:1a:da:db:ad:6d:aa:0d:56: 63:b6:74:46:f7:50:a7:86:55:71:3c:ea:bd:0d:e5: de:b7:bf:ff:36:26:07:50:96:dc:a4:fd:f6:67:d8: 80:82:99:9c:dd:0e:9b:fb:06:da:09:dd:5e:7d:d8: 15:65:8e:2c:54:56:d8:c9:d2:45:a7:8d:b3:42:37: ed:b2:a7:31:db:27:d9:c9:e2:f0:41:fc:e3:7f:f2: 39:a6:50:43:c8:6d:ac:28:b9:f8:1f:84:b9:7f:b6: 99:c6:84:e2:06:71:fc:51:02:7e:10:ae:6c:4b:96: 99:ef:11:03:a5:c4:57:63:9b:3e:35:2d:34:43:11: 69:98:61:a0:a7:50:21:42:12:7e:26:ad:70:99:e5: 6b:07:15:06:36:ea:4c:22:ab:95:e8:02:04:61:f9: f3:66:2d:88:1f:ba:4a:3b:86:5f:3a:97:3f:62:41: bd:cb:01:b3:44:73:77:97:43:8c:d6:f5:49:ab:da: 7b:34:77:1c:e6:66:fb:b2:f0:8c:35:53:b1:61:f4: bd:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:03:EB:73:28:4B:72:E8:A6:AF:E1:B5:B6:0D:DA:1E:DD:84:8E:10 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7a646f96-4a9b-46a9-94c1-bbb932606506.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.201.0.0/16 Signature Algorithm: sha256WithRSAEncryption 62:84:47:93:5a:54:f5:34:58:1d:e0:e8:71:9d:e9:4b:b9:14: 12:be:e4:b4:38:da:aa:92:45:17:1f:2f:d0:51:ad:94:62:22: 83:6c:b8:24:3f:67:03:ec:2a:42:11:fd:f6:ba:e2:d6:12:14: 23:9d:49:95:8d:32:4b:87:0c:30:1b:0a:b2:7b:5f:81:6d:5e: fe:5e:fb:6f:01:23:f4:cd:20:09:e5:5f:00:7e:69:9a:12:b7: 34:20:dc:59:75:df:de:84:0d:52:bb:33:3b:58:cc:c7:3f:c7: 74:98:13:cf:ae:0d:45:34:09:68:b6:e6:1d:be:58:55:d0:0c: d6:66:2a:08:fc:b6:eb:27:82:9a:58:83:37:69:8e:2a:d9:23: c2:bd:c6:3d:69:2a:d8:97:17:02:ed:c9:9a:6b:4a:d6:ff:f6: ff:81:11:1e:96:a3:6d:d6:6a:81:10:d7:23:d2:c5:10:b1:50: 5a:f8:7f:71:87:15:06:d2:ba:78:11:04:84:14:0e:19:03:f7: bf:a9:56:39:9f:29:97:ca:f5:b0:83:85:60:85:33:7f:41:50: df:d9:91:d1:d5:bf:72:e6:86:4b:a8:8c:65:4a:ee:16:27:b7: e8:5c:50:e4:02:e7:e4:73:1f:87:46:5b:f1:3f:2b:9e:04:61: 05:bb:4c:0d -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUIYG/UiMeboDLHjb+LjBu3v6FlWUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDIxMDEwMjI4WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNDUzZTFhZGVkYTI4MzM3YjIzYTJjMDc2YWQyY2U0YWJm N2Y3OWQ2YjMyYWY2MmFjYjkzZDlmOGI0MWVjOGJkMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDxeZrlb2yu0p4doQGwVlKxaZ9U43jx11XRWBZHkcWlgkyG y6iX0tJaALYBJKd8Y/tgDWQa2tutbaoNVmO2dEb3UKeGVXE86r0N5d63v/82JgdQ ltyk/fZn2ICCmZzdDpv7BtoJ3V592BVljixUVtjJ0kWnjbNCN+2ypzHbJ9nJ4vBB /ON/8jmmUEPIbawoufgfhLl/tpnGhOIGcfxRAn4QrmxLlpnvEQOlxFdjmz41LTRD EWmYYaCnUCFCEn4mrXCZ5WsHFQY26kwiq5XoAgRh+fNmLYgfuko7hl86lz9iQb3L AbNEc3eXQ4zW9Umr2ns0dxzmZvuy8Iw1U7Fh9L1RAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUHwPrcyhLcuimr+G1tg3aHt2EjhAwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzdhNjQ2Zjk2LTRhOWItNDZhOS05NGMxLWJiYjkzMjYwNjUwNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwASyTANBgkqhkiG9w0BAQsFAAOCAQEAYoRHk1pU9TRYHeDocZ3pS7kUEr7k tDjaqpJFFx8v0FGtlGIig2y4JD9nA+wqQhH99rri1hIUI51JlY0yS4cMMBsKsntf gW1e/l77bwEj9M0gCeVfAH5pmhK3NCDcWXXf3oQNUrszO1jMxz/HdJgTz64NRTQJ aLbmHb5YVdAM1mYqCPy26yeCmliDN2mOKtkjwr3GPWkq2JcXAu3JmmtK1v/2/4ER HpajbdZqgRDXI9LFELFQWvh/cYcVBtK6eBEEhBQOGQP3v6lWOZ8pl8r1sIOFYIUz f0FQ39mR0dW/cuaGS6iMZUruFie36FxQ5ALn5HMfh0Zb8T8rngRhBbtMDQ== -----END CERTIFICATE-----Generated at Wed Nov 5 01:56:49 2025 by rpki-client