$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8dea9683-64ac-4c9e-890f-dd53972779d9.roa File: 8dea9683-64ac-4c9e-890f-dd53972779d9.roa (raw, json) Hash identifier: Gvc2wh0zStp5Hh/aU189ng938FORBnTrtH/oj80u5iI= Subject key identifier: 69:AA:0A:51:32:AB:30:F7:47:0B:67:CA:8A:9D:38:BE:12:98:53:66 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: BB50D138409C8FBE50DDCD54C6CB46C59D4AD4 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8dea9683-64ac-4c9e-890f-dd53972779d9.roa Signing time: Fri 19 Sep 2025 00:37:10 +0000 ROA not before: Fri 19 Sep 2025 00:37:10 +0000 ROA not after: Fri 24 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.68.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Sep 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: bb:50:d1:38:40:9c:8f:be:50:dd:cd:54:c6:cb:46:c5:9d:4a:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 19 00:37:10 2025 GMT Not After : Oct 24 23:59:59 2025 GMT Subject: serialNumber=3236613a001b38cd33d7a03716a1ed71faa2c5f750ab2793cce8e9346fa6e692, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ef:08:5f:04:7b:0a:43:70:5b:22:ba:cd:77: 4f:53:f9:15:3f:1f:73:65:2d:38:35:a1:39:dd:b0: 35:1f:b8:83:36:e9:c7:41:4b:1d:81:3f:40:5b:ba: 99:6e:1f:31:f7:fe:a8:ec:06:7d:48:4a:fa:80:51: 4f:c9:93:6c:ab:64:38:b7:83:59:df:76:fd:c3:fc: 66:34:c2:b0:4c:d4:9e:15:03:0f:4f:bb:f2:71:a8: a5:c1:f2:30:13:7c:b9:21:57:2f:45:2b:39:01:36: d3:1d:02:86:29:27:91:d2:c7:ed:b3:04:4b:a5:ba: 8f:14:a8:71:12:1e:fd:e8:26:21:40:f4:dd:ad:67: 3f:a1:1d:c3:2f:59:46:55:df:f2:8e:8e:4b:1a:73: 9b:b8:fc:35:17:56:b5:42:d3:39:e4:fe:45:88:93: 51:6c:8e:fd:e7:c8:74:63:13:d8:07:8a:5f:49:97: 15:77:97:02:aa:0b:c7:a7:9a:1a:69:40:4a:7a:be: 3c:22:f4:a6:06:51:ac:e8:9a:f6:ab:2e:0f:33:52: 2d:24:e2:e5:a5:99:3f:ff:94:a9:5c:fb:e3:d8:a2: 2a:f7:25:25:b2:f4:fa:90:ab:f1:82:1b:55:0a:92: b1:e7:39:56:24:43:aa:5a:ef:b5:50:64:5e:6f:7a: 9f:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:AA:0A:51:32:AB:30:F7:47:0B:67:CA:8A:9D:38:BE:12:98:53:66 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8dea9683-64ac-4c9e-890f-dd53972779d9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.68.213.0/24 Signature Algorithm: sha256WithRSAEncryption 66:96:c3:48:ba:a4:da:d3:96:d2:b6:28:b0:99:c7:5a:0e:23: 06:54:b0:71:93:cf:f2:6e:71:74:99:7d:b9:01:29:74:6c:98: 3c:3f:33:a3:29:03:94:fd:e4:ae:d2:97:e6:3d:5a:1c:d1:96: 1d:95:94:5d:61:91:be:55:71:0e:0e:75:10:61:3d:48:05:7b: 6d:ac:a2:a0:92:5a:31:a0:ed:05:ec:86:9b:94:0d:97:69:70: 55:5d:45:02:46:b7:20:6d:99:7c:33:f0:2f:92:72:20:5b:dd: 33:65:1d:7b:51:3c:3f:b2:4e:6f:57:46:6e:9b:e2:d2:40:75: ac:a9:6a:a8:8c:07:86:d2:dd:24:46:7d:2c:95:91:ba:3e:b3: 01:b1:ea:21:62:44:ef:20:89:78:56:2d:06:cc:ec:70:b9:ee: 7e:6c:65:5d:ee:b4:b2:e6:dd:4c:12:3e:d8:80:ed:95:32:d3: 9c:b2:b6:f2:dd:56:c2:48:6e:f3:80:86:25:c2:a4:66:2d:26: 3c:32:15:83:9e:51:2b:bf:28:cb:3a:8a:0d:38:ab:43:dc:49: 1c:b0:f8:30:8f:02:91:0e:f7:87:20:b3:a8:8b:3f:42:e4:d9: 1d:08:44:bb:4e:c1:20:55:79:a1:94:10:9d:80:f9:1d:ef:b3: b3:90:30:38 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUALtQ0ThAnI++UN3NVMbLRsWdStQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTE5MDAzNzEwWhcNMjUxMDI0MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMjM2NjEzYTAwMWIzOGNkMzNkN2EwMzcxNmExZWQ3MWZh YTJjNWY3NTBhYjI3OTNjY2U4ZTkzNDZmYTZlNjkyMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCq7whfBHsKQ3BbIrrNd09T+RU/H3NlLTg1oTndsDUfuIM2 6cdBSx2BP0BbupluHzH3/qjsBn1ISvqAUU/Jk2yrZDi3g1nfdv3D/GY0wrBM1J4V Aw9Pu/JxqKXB8jATfLkhVy9FKzkBNtMdAoYpJ5HSx+2zBEuluo8UqHESHv3oJiFA 9N2tZz+hHcMvWUZV3/KOjksac5u4/DUXVrVC0znk/kWIk1Fsjv3nyHRjE9gHil9J lxV3lwKqC8enmhppQEp6vjwi9KYGUazomvarLg8zUi0k4uWlmT//lKlc++PYoir3 JSWy9PqQq/GCG1UKkrHnOVYkQ6pa77VQZF5vep8lAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUaaoKUTKrMPdHC2fKip04vhKYU2YwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzhkZWE5NjgzLTY0YWMtNGM5ZS04OTBmLWRkNTM5NzI3NzlkOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAASRNUwDQYJKoZIhvcNAQELBQADggEBAGaWw0i6pNrTltK2KLCZx1oOIwZU sHGTz/JucXSZfbkBKXRsmDw/M6MpA5T95K7Sl+Y9WhzRlh2VlF1hkb5VcQ4OdRBh PUgFe22soqCSWjGg7QXshpuUDZdpcFVdRQJGtyBtmXwz8C+SciBb3TNlHXtRPD+y Tm9XRm6b4tJAdaypaqiMB4bS3SRGfSyVkbo+swGx6iFiRO8giXhWLQbM7HC57n5s ZV3utLLm3UwSPtiA7ZUy05yytvLdVsJIbvOAhiXCpGYtJjwyFYOeUSu/KMs6ig04 q0PcSRyw+DCPApEO94cgs6iLP0Lk2R0IRLtOwSBVeaGUEJ2A+R3vs7OQMDg= -----END CERTIFICATE-----Generated at Fri Sep 19 11:16:05 2025 by rpki-client