$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7c78201b-ee95-4a53-8f4f-cb2028b36c26.roa File: 7c78201b-ee95-4a53-8f4f-cb2028b36c26.roa (raw, json) Hash identifier: TJvx79yoP9v+lZIfXSht2Q/JhqnNh2bURLZEAdWTKUQ= Subject key identifier: BD:90:FA:45:A2:4F:EA:10:00:5F:C8:84:6F:EF:46:74:0D:E0:BC:21 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 660B308AAB5114D717978D667EF6710005DC08D4 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7c78201b-ee95-4a53-8f4f-cb2028b36c26.roa Signing time: Fri 19 Sep 2025 00:09:14 +0000 ROA not before: Fri 19 Sep 2025 00:09:14 +0000 ROA not after: Fri 24 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.158.78.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Sep 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:0b:30:8a:ab:51:14:d7:17:97:8d:66:7e:f6:71:00:05:dc:08:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 19 00:09:14 2025 GMT Not After : Oct 24 23:59:59 2025 GMT Subject: serialNumber=1a62d7ce218f027d175b95729935eb19aa226f27377ef9aa51a5ed795b31eef9, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:80:d7:eb:e0:05:35:1f:6d:99:04:9c:11:d9:63: 1f:17:f7:4d:4b:6d:2c:ad:0a:7a:79:56:c8:14:9e: 38:89:21:a8:92:93:7b:b3:12:64:d8:0f:a3:5c:d9: 23:d3:8e:03:62:95:9f:4e:4c:d0:af:e6:49:d3:ca: ea:89:d4:7e:4c:79:42:0d:d4:6c:5e:72:a5:55:f3: 74:34:29:a6:bb:5a:6f:d6:c2:0b:11:d3:ac:aa:70: 12:c5:21:c0:51:88:00:e4:0d:98:ba:b1:b3:dd:5a: b5:21:34:dd:ef:91:b8:9f:ff:eb:3f:91:cb:4e:59: b1:3f:c2:77:c2:f7:af:54:80:82:92:05:66:d3:ab: ec:80:93:42:bc:86:9a:9b:f7:88:10:9e:69:24:0f: ac:53:ea:8e:bc:ff:6c:55:26:36:6c:78:ab:36:e4: 06:40:b2:b1:91:33:03:17:fa:1c:94:7b:3f:3c:76: 20:c3:94:55:69:25:cf:a0:5f:64:f6:e4:7e:d2:ef: 2d:5d:40:b2:3b:17:db:a2:fd:5c:ea:a0:97:09:6a: 0f:75:55:f7:80:0d:e3:94:3a:fc:3d:6c:24:6a:48: 5e:ea:91:23:d0:64:e1:b2:6c:65:dc:e3:4c:e6:26: 87:75:f4:0a:28:12:1a:b9:a5:4b:43:a1:ba:6a:9c: 4f:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:90:FA:45:A2:4F:EA:10:00:5F:C8:84:6F:EF:46:74:0D:E0:BC:21 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7c78201b-ee95-4a53-8f4f-cb2028b36c26.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.158.78.0/24 Signature Algorithm: sha256WithRSAEncryption 10:b3:54:58:38:cf:8f:61:26:1d:36:3f:40:93:3d:de:52:f5: 39:31:63:e3:11:40:e3:f0:57:e3:0b:dc:a2:1d:47:1b:06:d4: cc:ff:c3:d2:9a:98:a6:29:80:7f:0f:77:3a:c5:33:11:c6:72: fe:50:9a:9d:fc:84:a2:d6:ee:c1:f1:fc:a0:39:e7:bd:76:f6: a0:2e:47:e4:bd:4f:45:3b:92:6a:13:b9:c5:5c:45:ff:ca:ef: d5:72:85:1a:c0:84:70:bb:fd:aa:00:4e:95:ca:72:a4:b1:ed: 76:0a:cd:99:a1:c5:36:a8:ab:76:89:5f:61:48:09:80:28:c7: 88:8f:2a:36:34:e3:a7:6d:74:00:e8:a0:ef:44:64:78:6e:83: 0a:5b:1d:61:3f:a5:a8:87:f4:5f:ed:63:d8:7d:c0:3a:d9:16: f9:fa:0b:12:2c:93:1b:c3:64:31:9f:8d:d7:29:e5:17:6b:25: bf:41:d6:00:94:da:9d:fb:a3:9f:a0:73:28:75:1e:6c:15:8a: ce:d6:9d:d3:57:bb:ab:ec:09:76:86:92:90:2d:cc:78:1d:30: 7d:42:72:fe:11:89:f9:81:be:83:48:17:9f:24:98:c5:b5:eb: a8:50:70:8e:cb:06:61:d2:86:1e:f7:e6:0b:86:48:14:d2:b5: bd:cc:49:11 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZgswiqtRFNcXl41mfvZxAAXcCNQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTE5MDAwOTE0WhcNMjUxMDI0MjM1OTU5 WjB6MUkwRwYDVQQFE0AxYTYyZDdjZTIxOGYwMjdkMTc1Yjk1NzI5OTM1ZWIxOWFh MjI2ZjI3Mzc3ZWY5YWE1MWE1ZWQ3OTViMzFlZWY5MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCA1+vgBTUfbZkEnBHZYx8X901LbSytCnp5VsgUnjiJIaiS k3uzEmTYD6Nc2SPTjgNilZ9OTNCv5knTyuqJ1H5MeUIN1GxecqVV83Q0Kaa7Wm/W wgsR06yqcBLFIcBRiADkDZi6sbPdWrUhNN3vkbif/+s/kctOWbE/wnfC969UgIKS BWbTq+yAk0K8hpqb94gQnmkkD6xT6o68/2xVJjZseKs25AZAsrGRMwMX+hyUez88 diDDlFVpJc+gX2T25H7S7y1dQLI7F9ui/VzqoJcJag91VfeADeOUOvw9bCRqSF7q kSPQZOGybGXc40zmJod19AooEhq5pUtDobpqnE+nAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUvZD6RaJP6hAAX8iEb+9GdA3gvCEwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzdjNzgyMDFiLWVlOTUtNGE1My04ZjRmLWNiMjAyOGIzNmMyNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAPnk4wDQYJKoZIhvcNAQELBQADggEBABCzVFg4z49hJh02P0CTPd5S9Tkx Y+MRQOPwV+ML3KIdRxsG1Mz/w9KamKYpgH8PdzrFMxHGcv5Qmp38hKLW7sHx/KA5 57129qAuR+S9T0U7kmoTucVcRf/K79VyhRrAhHC7/aoATpXKcqSx7XYKzZmhxTao q3aJX2FICYAox4iPKjY046dtdADooO9EZHhugwpbHWE/paiH9F/tY9h9wDrZFvn6 CxIskxvDZDGfjdcp5RdrJb9B1gCU2p37o5+gcyh1HmwVis7WndNXu6vsCXaGkpAt zHgdMH1Ccv4RifmBvoNIF58kmMW166hQcI7LBmHShh735guGSBTStb3MSRE= -----END CERTIFICATE-----Generated at Fri Sep 19 11:16:53 2025 by rpki-client