$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a713ff65-0c7b-40ee-bbfb-247688b4a7ca.roa File: a713ff65-0c7b-40ee-bbfb-247688b4a7ca.roa (raw, json) Hash identifier: fpUJt+aF5qK2yTLEq7oAsF19+P07yNwZ9gUBVaR56l4= Subject key identifier: 25:1B:2A:5F:B9:84:2F:78:53:65:24:A6:FD:CB:62:11:72:76:BD:BB Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 26E0F6EAB637F0977FD3E449179892D9CC690FAD Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a713ff65-0c7b-40ee-bbfb-247688b4a7ca.roa Signing time: Fri 19 Sep 2025 00:07:25 +0000 ROA not before: Fri 19 Sep 2025 00:07:25 +0000 ROA not after: Fri 24 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.158.40.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Sep 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:e0:f6:ea:b6:37:f0:97:7f:d3:e4:49:17:98:92:d9:cc:69:0f:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 19 00:07:25 2025 GMT Not After : Oct 24 23:59:59 2025 GMT Subject: serialNumber=c3ca1ca95012af519a8cd889c0a14f3c02309967c5e03162862b07ec2b366ad4, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:6f:cb:c5:10:1a:7c:f8:f3:9f:fb:84:59:c2: 7a:3c:50:25:b5:e9:3c:da:19:10:2d:9c:d0:aa:7e: 2c:4b:28:a4:4d:8d:f1:56:36:13:e7:94:bb:5c:88: 64:aa:93:b1:09:4d:9b:4e:1c:7a:cc:ab:53:1e:73: 3c:f0:e1:9b:38:77:52:3c:48:b3:d7:67:65:95:69: 8b:6b:e4:9f:17:04:0b:a5:2d:55:c8:f0:3a:37:ad: f7:7e:bc:9f:9d:4d:eb:2e:51:65:06:f3:ed:fa:e8: 6f:e3:57:b5:0a:c1:71:a6:aa:26:71:58:c9:60:26: 70:74:97:e8:b7:77:fd:8f:b5:68:d1:bc:6a:af:cc: 7a:07:18:76:e6:c2:d2:0d:1f:8e:90:7e:92:c6:cc: 00:aa:9e:7d:ad:46:2e:48:2e:43:b7:54:97:c9:0b: ca:21:41:ad:ee:e7:e6:8a:1f:77:a7:40:0c:84:e5: 1b:27:20:10:d9:26:5c:90:5d:9e:d7:27:c6:65:e2: 5b:c9:d1:09:6e:04:e2:c7:2c:b2:78:bc:85:38:ae: c0:ee:1e:6c:a0:4b:0d:18:46:6a:bf:43:b2:69:d6: f2:47:35:22:d7:e9:48:b7:02:39:d5:15:63:81:7c: 7e:13:82:de:77:e8:fe:23:96:1e:b4:b5:fe:6b:4f: c4:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:1B:2A:5F:B9:84:2F:78:53:65:24:A6:FD:CB:62:11:72:76:BD:BB X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a713ff65-0c7b-40ee-bbfb-247688b4a7ca.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.158.40.0/24 Signature Algorithm: sha256WithRSAEncryption 56:71:fc:ab:8a:49:e0:45:b8:60:53:23:96:b0:c6:61:9c:3a: fa:57:5a:3c:ba:9c:32:35:5b:84:23:93:d4:c0:57:44:f6:76: eb:78:4c:be:de:2f:10:1a:d4:8c:78:de:a3:ee:4b:07:26:52: 6e:77:bd:de:34:d1:99:ed:f6:d4:ae:51:2d:48:c3:09:e8:7e: da:49:7e:f1:5b:21:a6:a6:62:de:85:65:92:01:af:35:31:09: 21:1d:97:52:b8:70:68:86:32:63:66:d2:c6:6b:6e:52:2a:10: 88:03:4f:0b:d9:ba:78:b4:6a:36:4d:3e:cb:c9:3b:2b:e8:09: a4:4b:90:b4:de:ec:83:9e:a6:2c:b1:12:bc:43:4a:aa:c9:22: 98:17:18:6e:c5:f3:37:83:26:cc:f7:77:3f:66:e1:a9:2e:ab: 5e:12:d9:ae:61:1a:bf:45:cf:dc:49:f0:4a:2a:f6:f6:77:70: 01:26:bb:79:29:03:8a:d0:01:60:08:0c:df:62:d0:d6:86:69: a3:08:91:93:7c:3e:35:b2:20:35:12:99:a5:2a:fd:0b:61:b3: 55:c6:b2:cd:5e:22:87:cb:6c:7c:c5:1d:a3:d9:46:ef:12:d3: e0:0c:68:04:8a:19:d8:4d:53:70:3e:c7:bc:56:27:35:31:ed: 88:a1:54:31 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJuD26rY38Jd/0+RJF5iS2cxpD60wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTE5MDAwNzI1WhcNMjUxMDI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BjM2NhMWNhOTUwMTJhZjUxOWE4Y2Q4ODljMGExNGYzYzAy MzA5OTY3YzVlMDMxNjI4NjJiMDdlYzJiMzY2YWQ0MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCcb8vFEBp8+POf+4RZwno8UCW16TzaGRAtnNCqfixLKKRN jfFWNhPnlLtciGSqk7EJTZtOHHrMq1Meczzw4Zs4d1I8SLPXZ2WVaYtr5J8XBAul LVXI8Do3rfd+vJ+dTesuUWUG8+366G/jV7UKwXGmqiZxWMlgJnB0l+i3d/2PtWjR vGqvzHoHGHbmwtINH46QfpLGzACqnn2tRi5ILkO3VJfJC8ohQa3u5+aKH3enQAyE 5RsnIBDZJlyQXZ7XJ8Zl4lvJ0QluBOLHLLJ4vIU4rsDuHmygSw0YRmq/Q7Jp1vJH NSLX6Ui3AjnVFWOBfH4Tgt536P4jlh60tf5rT8QBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUJRsqX7mEL3hTZSSm/ctiEXJ2vbswHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2E3MTNmZjY1LTBjN2ItNDBlZS1iYmZiLTI0NzY4OGI0YTdjYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAPnigwDQYJKoZIhvcNAQELBQADggEBAFZx/KuKSeBFuGBTI5awxmGcOvpX Wjy6nDI1W4Qjk9TAV0T2dut4TL7eLxAa1Ix43qPuSwcmUm53vd400Znt9tSuUS1I wwnoftpJfvFbIaamYt6FZZIBrzUxCSEdl1K4cGiGMmNm0sZrblIqEIgDTwvZuni0 ajZNPsvJOyvoCaRLkLTe7IOepiyxErxDSqrJIpgXGG7F8zeDJsz3dz9m4akuq14S 2a5hGr9Fz9xJ8Eoq9vZ3cAEmu3kpA4rQAWAIDN9i0NaGaaMIkZN8PjWyIDUSmaUq /Qths1XGss1eIofLbHzFHaPZRu8S0+AMaASKGdhNU3A+x7xWJzUx7YihVDE= -----END CERTIFICATE-----Generated at Fri Sep 19 08:00:39 2025 by rpki-client