$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bd73555d-5ed3-4064-bf86-631e2544829a.roa File: bd73555d-5ed3-4064-bf86-631e2544829a.roa (raw, json) Hash identifier: sqtnEymFximI7PCnHbeZrH/Ge5iM1TVOKP1G0GiADkM= Subject key identifier: C3:37:16:C8:17:44:FD:82:15:AD:B3:80:F5:3A:79:E8:85:43:21:C1 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 32847A2C91792BBA9FBBDB07E193F94A6DF50921 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bd73555d-5ed3-4064-bf86-631e2544829a.roa Signing time: Fri 19 Sep 2025 00:42:48 +0000 ROA not before: Fri 19 Sep 2025 00:42:48 +0000 ROA not after: Fri 24 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.68.28.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Sep 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:84:7a:2c:91:79:2b:ba:9f:bb:db:07:e1:93:f9:4a:6d:f5:09:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 19 00:42:48 2025 GMT Not After : Oct 24 23:59:59 2025 GMT Subject: serialNumber=cf3a72e9db35456eb7e8c8a896344cddeeae81e40237a8664ecba26088595a31, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:67:0e:fe:32:03:e2:94:d0:bf:d9:90:a7:39: 5d:83:7b:9d:82:70:22:bd:fd:7b:22:e6:ee:3a:4c: 0e:13:b5:ef:af:d4:91:65:b0:7c:21:06:21:04:1e: 2d:f9:79:ef:d4:85:dc:5e:cc:ca:68:9b:c8:92:04: fc:29:23:97:3b:5f:5f:aa:95:c5:79:e9:47:5d:a7: 47:b4:dd:83:40:1e:92:55:b2:32:93:16:01:bc:bf: 03:cf:c3:5d:f1:fd:29:06:1d:36:f7:57:8a:83:c6: 69:eb:7e:ca:56:71:88:57:5d:0f:62:fb:11:7e:5f: d0:75:1d:32:60:83:88:33:88:33:6f:70:39:0a:ac: 58:a8:16:b9:83:48:fd:4c:c0:a2:67:57:1f:f1:4a: 38:5c:70:05:94:32:7b:c1:80:29:4e:22:ef:66:1a: a2:d0:69:47:fc:e0:58:27:1d:5e:2c:b6:1d:90:bf: 48:8c:c4:73:0f:1e:c4:4d:5d:0b:99:cc:1b:c5:c2: 3b:1d:2c:6e:8c:c9:ea:2b:a4:2f:de:32:d6:46:fb: 09:e4:df:a0:32:c9:6c:0d:79:11:ff:9c:7f:01:89: 2c:af:14:c7:a0:18:ba:7d:cc:d2:aa:31:ee:1a:57: ef:6d:fd:76:80:81:0e:de:0a:41:48:f2:1e:99:17: 44:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:37:16:C8:17:44:FD:82:15:AD:B3:80:F5:3A:79:E8:85:43:21:C1 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bd73555d-5ed3-4064-bf86-631e2544829a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.68.28.0/22 Signature Algorithm: sha256WithRSAEncryption 88:8a:9d:56:db:ec:9f:ff:12:98:2a:dd:b1:39:2a:5b:80:69: bd:e2:dd:9e:7c:8d:f4:88:1c:62:74:38:5c:e4:f0:01:ec:f0: f3:de:e4:7c:3a:33:99:d2:9e:cc:a0:b7:7d:5d:6d:0b:a9:7a: 7f:90:d0:18:c5:d5:c6:1c:57:ed:06:12:ea:75:aa:50:16:d2: cb:09:4f:8c:97:66:ac:2e:a3:76:df:45:e2:80:f6:67:43:9b: c7:9a:6a:9e:62:13:a3:03:a2:30:16:46:60:d6:9a:68:43:d0: 02:ed:dc:64:42:57:2d:fd:2f:db:01:2d:ee:ad:da:e5:c4:9b: 94:56:55:55:d3:3d:cc:bf:61:00:3b:2e:31:be:d2:e6:60:95: 3a:65:25:5d:f4:2d:c6:11:f1:a2:0c:20:b5:e1:3d:f4:b8:24: f2:72:63:b2:79:be:4b:8a:09:1b:a2:a7:73:63:83:03:a5:56: 8a:42:6a:0a:cf:16:37:98:a8:cd:cc:16:4c:3d:74:ab:fa:c5: 50:67:9c:52:b9:fb:c8:55:e7:8c:60:82:d6:fd:d6:c4:76:22: 0c:84:a1:66:5f:36:e7:92:e8:88:dd:14:6d:d8:0a:1a:af:17: 97:9f:85:d7:af:47:54:3d:9f:37:40:bb:92:b9:91:f5:7e:91: d3:ba:6f:54 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMoR6LJF5K7qfu9sH4ZP5Sm31CSEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTE5MDA0MjQ4WhcNMjUxMDI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZjNhNzJlOWRiMzU0NTZlYjdlOGM4YTg5NjM0NGNkZGVl YWU4MWU0MDIzN2E4NjY0ZWNiYTI2MDg4NTk1YTMxMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDNZw7+MgPilNC/2ZCnOV2De52CcCK9/Xsi5u46TA4Tte+v 1JFlsHwhBiEEHi35ee/UhdxezMpom8iSBPwpI5c7X1+qlcV56Uddp0e03YNAHpJV sjKTFgG8vwPPw13x/SkGHTb3V4qDxmnrfspWcYhXXQ9i+xF+X9B1HTJgg4gziDNv cDkKrFioFrmDSP1MwKJnVx/xSjhccAWUMnvBgClOIu9mGqLQaUf84FgnHV4sth2Q v0iMxHMPHsRNXQuZzBvFwjsdLG6MyeorpC/eMtZG+wnk36AyyWwNeRH/nH8BiSyv FMegGLp9zNKqMe4aV+9t/XaAgQ7eCkFI8h6ZF0S1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUwzcWyBdE/YIVrbOA9Tp56IVDIcEwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2JkNzM1NTVkLTVlZDMtNDA2NC1iZjg2LTYzMWUyNTQ0ODI5YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAISRBwwDQYJKoZIhvcNAQELBQADggEBAIiKnVbb7J//Epgq3bE5KluAab3i 3Z58jfSIHGJ0OFzk8AHs8PPe5Hw6M5nSnsygt31dbQupen+Q0BjF1cYcV+0GEup1 qlAW0ssJT4yXZqwuo3bfReKA9mdDm8eaap5iE6MDojAWRmDWmmhD0ALt3GRCVy39 L9sBLe6t2uXEm5RWVVXTPcy/YQA7LjG+0uZglTplJV30LcYR8aIMILXhPfS4JPJy Y7J5vkuKCRuip3NjgwOlVopCagrPFjeYqM3MFkw9dKv6xVBnnFK5+8hV54xggtb9 1sR2IgyEoWZfNueS6IjdFG3YChqvF5efhdevR1Q9nzdAu5K5kfV+kdO6b1Q= -----END CERTIFICATE-----Generated at Fri Sep 19 06:03:43 2025 by rpki-client