$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f21e32b6-e1ea-4ba8-9e50-0e74512f24dc.roa File: f21e32b6-e1ea-4ba8-9e50-0e74512f24dc.roa (raw, json) Hash identifier: opkH+FrHfJhFBDQ2fOkdMwB+bW5GQhGl4MW085G4dgo= Subject key identifier: 82:46:C0:D8:1B:66:A1:FD:C2:78:F7:E2:37:02:E5:CE:C9:EF:A0:19 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 47DA8C0D5CEE35774783AF682FA675FFC04C4557 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f21e32b6-e1ea-4ba8-9e50-0e74512f24dc.roa Signing time: Fri 19 Sep 2025 00:25:43 +0000 ROA not before: Fri 19 Sep 2025 00:25:43 +0000 ROA not after: Fri 24 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.68.161.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Sep 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:da:8c:0d:5c:ee:35:77:47:83:af:68:2f:a6:75:ff:c0:4c:45:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 19 00:25:43 2025 GMT Not After : Oct 24 23:59:59 2025 GMT Subject: serialNumber=4f3e5e9cbc1174015720470f573ede8b2b58ce2f20de1d2fccb1b7c7f21cf173, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:4d:47:71:b9:3e:ca:53:e9:d5:eb:b0:cb:e4: 1b:5d:0c:5d:e2:45:2b:85:43:b2:1a:2f:d5:8f:12: f8:7c:8d:bd:e0:1d:42:a0:c4:50:26:bc:59:50:f6: 73:3d:f6:85:54:12:99:c1:a4:90:07:5c:3b:f3:7e: 79:20:d8:5b:55:54:c6:d4:8f:d0:dc:4c:49:db:70: 3d:d3:95:8a:45:b0:7c:af:4e:d0:7b:e3:f9:68:a0: b7:2d:ce:77:d5:54:49:44:33:b8:73:f8:38:dc:82: 27:59:52:40:c3:e4:d6:44:db:ee:8a:49:5a:c9:59: 1b:9a:b3:5c:a8:69:35:dd:80:d3:91:7a:13:7c:83: 38:b7:70:36:08:55:6c:f4:b7:e3:bb:1c:14:99:f4: 3a:fd:fd:9f:22:c4:c2:07:22:b4:fc:9d:35:db:de: 66:a8:99:e3:a2:31:48:70:da:c6:67:c1:4b:93:1d: e0:0a:06:3d:00:c4:a2:50:e3:f8:59:ce:3b:aa:22: 1c:aa:99:12:73:47:d2:bc:fa:e2:2a:19:97:09:15: 22:20:b0:cb:5e:12:9b:bc:9c:89:3d:ad:3b:f3:db: 85:76:4a:41:57:5f:d5:95:3d:00:fe:9f:fd:1a:1e: 8e:bd:9c:29:cb:0a:2c:61:f4:eb:39:77:e7:2c:4c: c5:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:46:C0:D8:1B:66:A1:FD:C2:78:F7:E2:37:02:E5:CE:C9:EF:A0:19 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f21e32b6-e1ea-4ba8-9e50-0e74512f24dc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.68.161.0/24 Signature Algorithm: sha256WithRSAEncryption 32:74:7c:40:d8:4d:87:28:45:9f:fc:ca:05:f6:8b:1b:e8:9a: 21:78:d4:b5:1a:3d:41:84:5e:f1:8b:bb:70:bd:b9:a0:46:da: 74:65:30:6c:ac:3f:69:ec:62:b4:74:ba:4f:a1:62:45:8b:b4: 1e:a6:82:7e:91:84:a5:7a:f6:65:9d:82:3a:a9:42:d4:cb:d6: 21:54:90:08:b4:44:a4:aa:bd:69:11:0f:67:13:8c:09:c5:e8: 98:0a:4e:c3:cf:63:b6:7f:b8:52:79:da:4c:df:ef:47:70:3d: 39:29:26:b9:c2:9f:6e:2a:46:b7:96:1e:df:98:78:21:6e:23: 47:a6:42:da:75:c5:9c:d3:74:ab:dc:15:5a:90:c5:6a:e0:ac: ca:2d:fd:d4:2d:ea:2f:02:17:0d:c7:e3:cb:cb:9c:a6:48:bf: 96:1b:3b:78:9e:1a:75:ca:ce:c7:b6:26:84:0f:a1:a6:29:fe: 1d:23:63:1f:88:64:5d:cf:14:0a:64:d3:9a:e5:d5:79:aa:bb: bd:df:25:ea:a0:ce:a0:f2:4e:6e:c0:b9:18:f9:c8:53:45:04: c4:e7:bf:69:12:d5:23:3d:b7:6b:78:8f:92:17:2b:5c:f0:82: f3:e8:fa:23:83:0d:00:c5:6f:fd:8e:c8:ac:ad:53:17:42:1f: 2a:d4:77:d1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUR9qMDVzuNXdHg69oL6Z1/8BMRVcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTE5MDAyNTQzWhcNMjUxMDI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZjNlNWU5Y2JjMTE3NDAxNTcyMDQ3MGY1NzNlZGU4YjJi NThjZTJmMjBkZTFkMmZjY2IxYjdjN2YyMWNmMTczMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDTUdxuT7KU+nV67DL5BtdDF3iRSuFQ7IaL9WPEvh8jb3g HUKgxFAmvFlQ9nM99oVUEpnBpJAHXDvzfnkg2FtVVMbUj9DcTEnbcD3TlYpFsHyv TtB74/looLctznfVVElEM7hz+DjcgidZUkDD5NZE2+6KSVrJWRuas1yoaTXdgNOR ehN8gzi3cDYIVWz0t+O7HBSZ9Dr9/Z8ixMIHIrT8nTXb3maomeOiMUhw2sZnwUuT HeAKBj0AxKJQ4/hZzjuqIhyqmRJzR9K8+uIqGZcJFSIgsMteEpu8nIk9rTvz24V2 SkFXX9WVPQD+n/0aHo69nCnLCixh9Os5d+csTMVBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUgkbA2Btmof3CePfiNwLlzsnvoBkwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2YyMWUzMmI2LWUxZWEtNGJhOC05ZTUwLTBlNzQ1MTJmMjRkYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAASRKEwDQYJKoZIhvcNAQELBQADggEBADJ0fEDYTYcoRZ/8ygX2ixvomiF4 1LUaPUGEXvGLu3C9uaBG2nRlMGysP2nsYrR0uk+hYkWLtB6mgn6RhKV69mWdgjqp QtTL1iFUkAi0RKSqvWkRD2cTjAnF6JgKTsPPY7Z/uFJ52kzf70dwPTkpJrnCn24q RreWHt+YeCFuI0emQtp1xZzTdKvcFVqQxWrgrMot/dQt6i8CFw3H48vLnKZIv5Yb O3ieGnXKzse2JoQPoaYp/h0jYx+IZF3PFApk05rl1Xmqu73fJeqgzqDyTm7AuRj5 yFNFBMTnv2kS1SM9t2t4j5IXK1zwgvPo+iODDQDFb/2OyKytUxdCHyrUd9E= -----END CERTIFICATE-----Generated at Fri Sep 19 12:41:47 2025 by rpki-client