$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/579d6356-6c1b-49a7-9807-d0a1d6c88ef2.roa File: 579d6356-6c1b-49a7-9807-d0a1d6c88ef2.roa (raw, json) Hash identifier: YL9m2Luiaie7ygsPUILyW7w3ruI+msMDd/4Cu1pG9A8= Subject key identifier: 63:31:94:BD:76:BB:05:12:02:F4:DE:A5:84:FC:0A:48:FC:46:5E:47 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 351724EAD55489EEE072C257B6FCAA91AB9C4F4D Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/579d6356-6c1b-49a7-9807-d0a1d6c88ef2.roa Signing time: Fri 26 Sep 2025 15:29:30 +0000 ROA not before: Fri 26 Sep 2025 15:29:30 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 15.181.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 11 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:17:24:ea:d5:54:89:ee:e0:72:c2:57:b6:fc:aa:91:ab:9c:4f:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 26 15:29:30 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=4e70228467eee2f427cd6e382c5af0dc3f8f8ac157cb19eb960a2a3e582b5538, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:ea:7b:8d:4a:97:b4:82:b6:4d:cf:8b:43:20: fb:54:43:93:f3:e7:5e:3e:d7:67:fb:16:9c:4c:96: 58:58:13:66:92:44:2a:58:24:7a:21:70:03:06:86: fa:b1:b0:6c:5c:18:79:36:03:07:48:c6:be:06:ba: a4:7a:04:c2:6e:61:5c:d1:14:17:66:da:29:b4:04: 10:25:c4:ea:f9:cd:ca:96:f5:2c:77:65:70:03:6b: 28:cf:fd:45:96:6d:c8:04:e4:81:db:fc:83:57:19: b0:eb:eb:ec:35:ee:67:d0:55:5b:9e:78:a5:04:89: 03:f5:80:5d:a8:39:d8:d2:6a:ac:df:3f:ff:83:df: cb:c3:00:88:cb:9f:e4:18:c0:de:ad:30:62:23:34: 46:e9:28:8e:af:2a:ec:6f:fb:2e:bd:2e:56:3c:8a: 1f:41:54:6c:63:ce:cc:bf:ec:e6:97:51:cb:e8:79: e5:9a:3c:3b:81:86:db:29:e6:59:a0:5e:8d:3d:fd: 9f:5d:f3:08:a7:00:6b:f9:87:5f:3d:26:d6:d9:c3: 43:fc:05:59:d3:d5:71:f0:9e:fe:8d:c0:93:03:27: 89:d1:5d:8d:4a:7d:25:97:35:94:08:6e:e9:5a:7f: 51:32:dd:10:3b:cc:cc:88:72:13:34:4b:ee:d2:8c: b0:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:31:94:BD:76:BB:05:12:02:F4:DE:A5:84:FC:0A:48:FC:46:5E:47 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/579d6356-6c1b-49a7-9807-d0a1d6c88ef2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.181.249.0/24 Signature Algorithm: sha256WithRSAEncryption 22:8d:b6:b3:21:29:f5:78:b7:6d:7a:3a:61:83:82:a9:e4:79: d9:b9:2e:03:82:64:59:bd:7c:5d:22:0e:fc:b8:53:5e:27:d2: cf:5d:de:b8:6a:35:c2:ca:11:8b:41:a4:d0:64:11:0c:6e:76: 38:73:5d:79:2c:b1:44:8a:78:30:c5:92:27:a5:04:c3:87:01: 23:13:ac:13:bb:79:24:6a:2a:4e:39:a8:1e:af:ed:64:a9:0e: d8:0c:b7:55:29:b5:b8:5f:ab:9f:e1:63:24:b7:2b:4c:0c:23: cb:34:02:11:bf:ec:16:14:6b:f9:2f:38:4a:65:b2:47:1f:12: f7:16:76:ce:4d:ae:51:56:ce:b4:d6:42:93:6b:52:3f:76:c6: 71:91:fa:e4:69:a5:b8:bc:f0:f6:f2:0b:9f:32:51:cb:7b:b1: 83:d3:46:07:ee:61:6a:b2:81:94:bf:2c:3e:49:90:c3:0a:2e: 04:ad:09:aa:18:6a:d1:f0:8a:24:0e:30:fa:bd:23:64:a8:a7: 35:cd:1c:76:64:9a:de:fd:d9:7e:c7:43:0f:13:b4:45:df:2c: ac:fd:9f:46:d6:cd:92:9e:65:be:33:96:68:46:ad:95:ff:ce: bd:ac:8d:7c:b4:ee:5d:a1:c2:68:d7:8b:6e:9b:ac:4c:dc:c8: be:8f:62:22 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNRck6tVUie7gcsJXtvyqkaucT00wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTI2MTUyOTMwWhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZTcwMjI4NDY3ZWVlMmY0MjdjZDZlMzgyYzVhZjBkYzNm OGY4YWMxNTdjYjE5ZWI5NjBhMmEzZTU4MmI1NTM4MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCm6nuNSpe0grZNz4tDIPtUQ5Pz514+12f7FpxMllhYE2aS RCpYJHohcAMGhvqxsGxcGHk2AwdIxr4GuqR6BMJuYVzRFBdm2im0BBAlxOr5zcqW 9Sx3ZXADayjP/UWWbcgE5IHb/INXGbDr6+w17mfQVVueeKUEiQP1gF2oOdjSaqzf P/+D38vDAIjLn+QYwN6tMGIjNEbpKI6vKuxv+y69LlY8ih9BVGxjzsy/7OaXUcvo eeWaPDuBhtsp5lmgXo09/Z9d8winAGv5h189JtbZw0P8BVnT1XHwnv6NwJMDJ4nR XY1KfSWXNZQIbulaf1Ey3RA7zMyIchM0S+7SjLBvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUYzGUvXa7BRIC9N6lhPwKSPxGXkcwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzU3OWQ2MzU2LTZjMWItNDlhNy05ODA3LWQwYTFkNmM4OGVmMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAPtfkwDQYJKoZIhvcNAQELBQADggEBACKNtrMhKfV4t216OmGDgqnkedm5 LgOCZFm9fF0iDvy4U14n0s9d3rhqNcLKEYtBpNBkEQxudjhzXXkssUSKeDDFkiel BMOHASMTrBO7eSRqKk45qB6v7WSpDtgMt1Uptbhfq5/hYyS3K0wMI8s0AhG/7BYU a/kvOEplskcfEvcWds5NrlFWzrTWQpNrUj92xnGR+uRppbi88PbyC58yUct7sYPT RgfuYWqygZS/LD5JkMMKLgStCaoYatHwiiQOMPq9I2SopzXNHHZkmt792X7HQw8T tEXfLKz9n0bWzZKeZb4zlmhGrZX/zr2sjXy07l2hwmjXi26brEzcyL6PYiI= -----END CERTIFICATE-----Generated at Wed Oct 8 23:10:22 2025 by rpki-client