$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/056c132e-4148-44cc-b263-a445ceafabdd.roa File: 056c132e-4148-44cc-b263-a445ceafabdd.roa (raw, json) Hash identifier: kbHhNdILi5Bpc0bXR2m+ngzOE3oezVPBoAJhctZJP4Q= Subject key identifier: 35:9E:26:99:F3:1D:40:79:E5:B9:5B:C2:33:60:F4:53:94:36:E3:29 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 57D02DE476FD3A45198C13AA3BEF78983F7C5777 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/056c132e-4148-44cc-b263-a445ceafabdd.roa Signing time: Mon 01 Sep 2025 17:31:39 +0000 ROA not before: Mon 01 Sep 2025 17:31:39 +0000 ROA not after: Mon 06 Oct 2025 23:59:59 +0000 asID: 8987 IP address blocks: 18.253.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 19 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:d0:2d:e4:76:fd:3a:45:19:8c:13:aa:3b:ef:78:98:3f:7c:57:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 1 17:31:39 2025 GMT Not After : Oct 6 23:59:59 2025 GMT Subject: serialNumber=2084c0f1fd05fe6482c20880698277bb082b355268668a943f78028797f1cc5b, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:52:17:42:80:32:b2:94:20:4f:35:13:dc:ef: f0:77:7c:b7:09:6b:5d:6b:1d:cb:4d:a8:b5:51:56: cd:c6:40:6d:4c:ba:fe:d2:d2:fc:0d:7b:f0:f2:5e: 14:f9:37:29:3b:97:ee:83:ab:2e:d0:31:81:86:d5: e8:84:c4:a7:6f:57:a6:0e:f4:eb:1c:1c:24:43:fc: e3:8e:99:0c:22:c6:4e:be:e8:5e:1d:28:b0:a5:ec: ab:7b:c3:44:f9:1a:ab:bc:0c:fd:05:51:4e:69:26: b1:54:8d:bc:2c:7a:4a:47:55:c0:bd:e4:c2:c8:94: b6:56:59:cf:9a:00:8d:d1:3b:11:ea:4f:31:f4:94: 6a:51:88:92:0f:c4:e6:57:c8:4c:37:a5:23:9a:c1: 4b:51:84:63:75:6c:56:7f:f2:f0:11:51:6c:2b:5e: fc:ca:4e:9b:1d:cd:f5:63:eb:c3:75:b1:5a:55:cc: fc:26:18:1e:69:a2:e0:66:50:59:08:e2:bb:d7:2f: d3:7e:fa:ce:d0:d5:aa:13:68:c8:2c:11:d0:1a:fd: 87:38:ab:4e:ed:25:ae:7c:4b:25:d6:9e:07:16:9d: b3:7c:a4:43:c7:a4:09:65:b1:3a:7e:9f:0c:9d:39: 8d:df:8a:32:c8:b4:aa:82:d5:c7:fd:26:dd:3e:df: 5e:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:9E:26:99:F3:1D:40:79:E5:B9:5B:C2:33:60:F4:53:94:36:E3:29 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/056c132e-4148-44cc-b263-a445ceafabdd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.253.64.0/18 Signature Algorithm: sha256WithRSAEncryption 50:27:e4:8d:a7:96:a6:3e:93:d6:97:df:4f:2c:ea:c9:05:74: 1e:2f:aa:5f:92:88:40:d4:cf:fc:72:4c:ed:d2:cf:ae:ed:c4: 8d:c0:3d:52:ee:93:43:fe:68:bf:68:b5:8d:12:0c:82:4e:99: 2f:bd:1a:10:50:c7:13:82:c3:c0:75:17:f6:cb:5f:22:e6:e6: 55:1e:2a:37:97:09:c7:c7:84:cd:96:a0:59:28:a5:73:bf:94: 51:1c:c5:f1:13:62:4c:45:e4:5d:da:f2:36:f4:77:20:a5:e5: cf:33:42:16:bc:94:3a:45:ce:41:25:4a:b2:73:7d:79:7d:1b: 85:54:58:3d:1f:58:50:4f:ca:52:3c:a5:3d:85:79:f7:25:27: b8:52:48:e1:35:a4:de:9b:5c:8d:a5:fa:e9:34:76:5c:06:75: bc:e3:ba:3e:12:b0:43:b9:fb:f9:32:7c:0a:49:20:52:34:9b: 32:86:77:b6:a4:07:fc:26:6a:ea:a9:6a:fe:54:64:e6:7a:1d: de:fa:76:73:bd:0b:3c:a4:55:33:6e:70:7a:45:2f:bf:8a:ec: 4a:e1:bd:e7:74:d2:91:c8:fb:0a:fa:db:e5:26:e0:40:01:64: e5:5e:d0:53:60:c7:1e:27:54:a7:4c:99:1e:60:bb:53:a8:f5: 4f:1c:c1:46 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUV9At5Hb9OkUZjBOqO+94mD98V3cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTAxMTczMTM5WhcNMjUxMDA2MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMDg0YzBmMWZkMDVmZTY0ODJjMjA4ODA2OTgyNzdiYjA4 MmIzNTUyNjg2NjhhOTQzZjc4MDI4Nzk3ZjFjYzViMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqUhdCgDKylCBPNRPc7/B3fLcJa11rHctNqLVRVs3GQG1M uv7S0vwNe/DyXhT5Nyk7l+6Dqy7QMYGG1eiExKdvV6YO9OscHCRD/OOOmQwixk6+ 6F4dKLCl7Kt7w0T5Gqu8DP0FUU5pJrFUjbwsekpHVcC95MLIlLZWWc+aAI3ROxHq TzH0lGpRiJIPxOZXyEw3pSOawUtRhGN1bFZ/8vARUWwrXvzKTpsdzfVj68N1sVpV zPwmGB5pouBmUFkI4rvXL9N++s7Q1aoTaMgsEdAa/Yc4q07tJa58SyXWngcWnbN8 pEPHpAllsTp+nwydOY3fijLItKqC1cf9Jt0+317ZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUNZ4mmfMdQHnluVvCM2D0U5Q24ykwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzA1NmMxMzJlLTQxNDgtNDRjYy1iMjYzLWE0NDVjZWFmYWJkZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYS/UAwDQYJKoZIhvcNAQELBQADggEBAFAn5I2nlqY+k9aX308s6skFdB4v ql+SiEDUz/xyTO3Sz67txI3APVLuk0P+aL9otY0SDIJOmS+9GhBQxxOCw8B1F/bL XyLm5lUeKjeXCcfHhM2WoFkopXO/lFEcxfETYkxF5F3a8jb0dyCl5c8zQha8lDpF zkElSrJzfXl9G4VUWD0fWFBPylI8pT2FefclJ7hSSOE1pN6bXI2l+uk0dlwGdbzj uj4SsEO5+/kyfApJIFI0mzKGd7akB/wmauqpav5UZOZ6Hd76dnO9CzykVTNucHpF L7+K7Erhved00pHI+wr62+Um4EABZOVe0FNgxx4nVKdMmR5gu1Oo9U8cwUY= -----END CERTIFICATE-----Generated at Thu Sep 18 02:47:06 2025 by rpki-client