$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/060c3a31-6262-4815-9858-22d05c6eae57.roa File: 060c3a31-6262-4815-9858-22d05c6eae57.roa (raw, json) Hash identifier: xHR7pgnovFY37SassH3VdmIUi4NF4RqsV3OkroTrJeg= Subject key identifier: 98:07:A9:14:F5:15:1D:7D:2F:1F:7F:F0:CC:9C:AA:6A:98:03:44:BE Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 20A5CF7DC56DE0FF4C491FA968BD97D4761FFDCC Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/060c3a31-6262-4815-9858-22d05c6eae57.roa Signing time: Wed 24 Sep 2025 21:26:19 +0000 ROA not before: Wed 24 Sep 2025 21:26:19 +0000 ROA not after: Wed 29 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.65.142.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:a5:cf:7d:c5:6d:e0:ff:4c:49:1f:a9:68:bd:97:d4:76:1f:fd:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 24 21:26:19 2025 GMT Not After : Oct 29 23:59:59 2025 GMT Subject: serialNumber=9ebf96f0177bed7ffdfa3479ab0125e9a306efea38ccc309fb71e1edde36d562, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:8e:a8:44:9c:3f:13:5b:0f:3a:90:8d:86:56: 94:d5:6b:cf:be:82:8d:cb:a6:26:2d:40:a2:e0:30: ea:53:fe:af:2b:78:5c:ae:b6:0c:97:a2:da:57:99: bb:7a:dc:8b:c9:94:fb:73:7d:ff:5b:7b:79:94:77: f8:3b:0c:87:c0:b7:23:83:3b:e5:d6:e8:da:3c:37: 97:f4:a7:c3:56:24:82:c8:f8:bb:24:05:c4:17:ed: 1e:62:2c:d7:04:77:d6:fa:93:c7:f1:82:bb:14:06: a6:e9:9f:05:65:66:25:19:ba:4d:75:af:ed:20:b1: 2e:2c:4c:01:eb:22:37:e5:1c:10:fa:3b:8b:1e:d2: e6:db:99:38:3f:06:6f:76:62:a9:ca:38:6c:a6:82: ad:db:8f:53:58:60:ed:ce:f7:10:c4:b0:07:75:9d: 1f:41:22:26:76:ff:6a:53:71:c3:b5:58:1a:fb:dc: 3c:9b:70:9c:80:10:b0:d2:d0:86:7a:01:d8:cb:26: af:d8:0a:3b:5f:ed:ba:a7:f5:5a:63:54:c0:2b:85: e6:0d:71:71:cd:69:d9:5e:47:cf:26:96:60:b1:34: 9f:d6:63:0c:44:89:3d:6f:43:10:84:86:5c:35:e0: 6a:c4:95:53:fc:8d:84:76:27:c5:a2:b0:3d:6e:7f: 80:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:07:A9:14:F5:15:1D:7D:2F:1F:7F:F0:CC:9C:AA:6A:98:03:44:BE X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/060c3a31-6262-4815-9858-22d05c6eae57.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.65.142.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:2f:48:69:41:c7:fc:b4:4e:cd:1a:4d:ae:04:4c:e7:20:3f: fe:11:a4:de:a6:c0:0d:46:2c:08:85:9d:c4:a6:db:c2:b8:22: 1b:c6:9c:a6:6a:85:fb:ab:c9:c3:c3:96:d0:02:7a:be:b0:3c: e6:74:90:f1:0f:23:1a:77:40:1c:b8:47:63:75:5a:f4:92:8f: f7:86:27:b5:29:95:ff:73:49:d1:c8:8e:53:02:df:4b:21:bc: 0f:c2:28:4f:c6:5e:33:ad:6c:e7:3c:65:34:fb:54:77:f6:89: db:5f:bb:7e:4a:e5:f7:7e:da:04:15:8a:a0:b3:d8:1d:e0:94: b2:b9:21:61:84:e9:00:6e:cc:6f:49:f7:83:5d:d1:8c:0c:0d: 69:c4:6c:62:1b:45:56:0d:d9:19:ce:2e:3a:9a:d2:b0:e2:ee: 79:79:44:8a:e2:fb:4d:ab:1a:3f:34:26:80:a2:2b:19:74:5d: e7:68:31:1e:01:84:c0:c1:d0:34:27:e4:33:73:92:66:12:66: 68:68:dd:a7:24:b3:c0:21:7f:da:97:f8:80:e0:fb:d8:4e:52: 49:c6:f1:23:96:19:c5:21:c7:12:53:22:01:bd:ea:a9:f7:cc: 34:ef:3a:31:2b:2f:df:bb:64:cd:43:6a:65:c7:86:57:dc:62: f6:58:a4:8b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIKXPfcVt4P9MSR+paL2X1HYf/cwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTI0MjEyNjE5WhcNMjUxMDI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZWJmOTZmMDE3N2JlZDdmZmRmYTM0NzlhYjAxMjVlOWEz MDZlZmVhMzhjY2MzMDlmYjcxZTFlZGRlMzZkNTYyMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCSjqhEnD8TWw86kI2GVpTVa8++go3LpiYtQKLgMOpT/q8r eFyutgyXotpXmbt63IvJlPtzff9be3mUd/g7DIfAtyODO+XW6No8N5f0p8NWJILI +LskBcQX7R5iLNcEd9b6k8fxgrsUBqbpnwVlZiUZuk11r+0gsS4sTAHrIjflHBD6 O4se0ubbmTg/Bm92YqnKOGymgq3bj1NYYO3O9xDEsAd1nR9BIiZ2/2pTccO1WBr7 3DybcJyAELDS0IZ6AdjLJq/YCjtf7bqn9VpjVMArheYNcXHNadleR88mlmCxNJ/W YwxEiT1vQxCEhlw14GrElVP8jYR2J8WisD1uf4BJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUmAepFPUVHX0vH3/wzJyqapgDRL4wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzA2MGMzYTMxLTYyNjItNDgxNS05ODU4LTIyZDA1YzZlYWU1Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAASQY4wDQYJKoZIhvcNAQELBQADggEBAJ0vSGlBx/y0Ts0aTa4ETOcgP/4R pN6mwA1GLAiFncSm28K4IhvGnKZqhfurycPDltACer6wPOZ0kPEPIxp3QBy4R2N1 WvSSj/eGJ7Uplf9zSdHIjlMC30shvA/CKE/GXjOtbOc8ZTT7VHf2idtfu35K5fd+ 2gQViqCz2B3glLK5IWGE6QBuzG9J94Nd0YwMDWnEbGIbRVYN2RnOLjqa0rDi7nl5 RIri+02rGj80JoCiKxl0XedoMR4BhMDB0DQn5DNzkmYSZmho3acks8Ahf9qX+IDg +9hOUknG8SOWGcUhxxJTIgG96qn3zDTvOjErL9+7ZM1DamXHhlfcYvZYpIs= -----END CERTIFICATE-----Generated at Sat Oct 18 05:10:14 2025 by rpki-client