$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/07cf1277-2658-470f-8803-b87dbd0d7dce.roa File: 07cf1277-2658-470f-8803-b87dbd0d7dce.roa (raw, json) Hash identifier: X1X07iJ97tFiRMFngEXIJzsVlrwIqpIf7L3O3qbl7jU= Subject key identifier: 7E:0F:71:AA:0C:5F:A6:54:82:C7:2A:20:49:64:C7:D7:8E:AB:8B:7B Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 172B5E620579C7C29CAC4EE9EC0687FB87C5EB Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/07cf1277-2658-470f-8803-b87dbd0d7dce.roa Signing time: Wed 24 Sep 2025 21:14:51 +0000 ROA not before: Wed 24 Sep 2025 21:14:51 +0000 ROA not after: Wed 29 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.64.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:2b:5e:62:05:79:c7:c2:9c:ac:4e:e9:ec:06:87:fb:87:c5:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 24 21:14:51 2025 GMT Not After : Oct 29 23:59:59 2025 GMT Subject: serialNumber=04d8a0370dd383a93fbfda0c86b1aa54ff3b7994ee3984e8cac3350eee77434b, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:f4:48:3a:3d:6d:6e:6c:de:fe:3e:6e:87:ae: b8:1f:db:c9:b0:1e:ef:d3:76:13:b8:4c:8a:f8:f6: e9:34:22:03:49:bc:f8:ce:89:18:0f:f6:4a:9f:e9: f2:cf:9f:a4:2c:6b:ab:3c:d7:52:e0:c0:c2:46:ab: 9e:c7:b1:ad:cc:2c:50:61:fb:81:2f:33:c6:d4:fb: 9a:f4:3d:b5:90:7c:88:cc:e7:92:72:26:b3:a2:78: 6a:34:ce:e5:4a:13:04:40:b0:96:94:57:9d:e3:a5: f6:1d:7c:b8:d1:dd:04:29:c9:16:9d:6e:7c:26:ef: 1d:d6:69:35:e1:a9:74:c7:d2:8b:0f:9e:f6:76:ec: 7b:cf:c7:d5:29:eb:10:6c:38:3c:87:e7:0e:03:09: 8c:21:1d:28:a1:6d:16:d4:f3:ce:a6:59:e8:01:60: 30:3e:0f:12:ba:ba:a4:8b:62:22:90:27:49:68:b7: 22:10:da:de:af:84:ae:e3:78:6f:47:6b:14:ff:22: 06:72:69:ac:f9:f8:29:95:82:b4:96:24:65:5c:a0: c6:aa:19:c0:94:0f:a3:cf:7e:a7:ec:90:8c:5e:6f: ef:bc:f0:eb:fb:11:58:20:8c:5e:15:9a:9a:5a:3e: eb:f9:0e:53:64:ab:71:eb:dc:4b:84:7a:b0:1d:a2: c4:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:0F:71:AA:0C:5F:A6:54:82:C7:2A:20:49:64:C7:D7:8E:AB:8B:7B X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/07cf1277-2658-470f-8803-b87dbd0d7dce.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.64.23.0/24 Signature Algorithm: sha256WithRSAEncryption ac:21:25:26:7d:8d:ea:de:af:41:8c:92:ce:8b:fb:31:f2:75: 99:2e:b5:85:dc:e8:28:f9:57:84:8e:0d:3e:8e:8e:d8:ca:a8: 27:e3:d7:84:65:36:d8:dd:72:f6:77:75:a6:79:22:81:72:18: 79:fd:0e:94:93:83:7e:a3:f6:e4:da:98:a4:7c:91:58:a2:cf: 2d:ef:58:80:32:cd:90:c9:3a:82:63:57:c9:4d:d4:4b:37:eb: d2:1b:31:df:2f:47:b6:59:a3:e5:0d:9b:f1:98:d8:82:38:e6: 0a:4f:51:42:07:87:dd:66:bb:96:a7:f2:05:24:0a:f9:aa:ca: 5b:d7:4e:37:c3:eb:7f:63:63:8b:9d:d4:df:b4:26:3d:b2:95: 23:dc:96:24:19:4f:71:5d:9f:65:93:b7:38:b1:13:7d:3b:6a: c6:47:5e:37:08:9e:84:bd:a8:17:a4:82:27:5a:7f:3e:fe:5b: 88:af:c0:4c:99:a3:f8:9c:42:20:98:47:50:03:e2:86:4d:86: e4:37:08:98:19:64:be:e8:96:75:3a:b2:1d:02:5e:e4:80:ec: 61:09:4c:ba:fe:55:eb:5e:08:df:b2:1c:26:54:9c:e3:be:8d: 02:0d:22:30:3b:36:bd:15:27:80:f7:09:32:05:4d:e5:03:4f: 49:c6:f7:52 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITFyteYgV5x8KcrE7p7AaH+4fF6zANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzJkZjZmM2IzYTM0YjYzODZkMWEzMmQ4ZjRmYTMxNzhlZjMx ODg3ZDhiNDI4ZGZhYTQ3NjAeFw0yNTA5MjQyMTE0NTFaFw0yNTEwMjkyMzU5NTla MHoxSTBHBgNVBAUTQDA0ZDhhMDM3MGRkMzgzYTkzZmJmZGEwYzg2YjFhYTU0ZmYz Yjc5OTRlZTM5ODRlOGNhYzMzNTBlZWU3NzQzNGIxLTArBgNVBAMTJDVmMjc2MDQ1 LTViOWYtNDVlZi05MjNkLWYzZmNlMjRhNjIyNTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAMj0SDo9bW5s3v4+boeuuB/bybAe79N2E7hMivj26TQiA0m8 +M6JGA/2Sp/p8s+fpCxrqzzXUuDAwkarnsexrcwsUGH7gS8zxtT7mvQ9tZB8iMzn knIms6J4ajTO5UoTBECwlpRXneOl9h18uNHdBCnJFp1ufCbvHdZpNeGpdMfSiw+e 9nbse8/H1SnrEGw4PIfnDgMJjCEdKKFtFtTzzqZZ6AFgMD4PErq6pItiIpAnSWi3 IhDa3q+EruN4b0drFP8iBnJprPn4KZWCtJYkZVygxqoZwJQPo89+p+yQjF5v77zw 6/sRWCCMXhWamlo+6/kOU2SrcevcS4R6sB2ixD8CAwEAAaOCArEwggKtMB0GA1Ud DgQWBBR+D3GqDF+mVILHKiBJZMfXjquLezAfBgNVHSMEGDAWgBQlrdNCsB63pY6t GZAmiLVLP4H0uDAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzg1MWNlZjE3LTEz MmEtNDMzNy1iN2QxLWJmMTZhNTJmZmQwMy9kZjZmM2IzYTM0YjYzODZkMWEzMmQ4 ZjRmYTMxNzhlZjMxODg3ZDhiNDI4ZGZhYTQ3Ni5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9mNzAzNjk2ZS1lNDdiLTRjMjAtYmQ5My02Zjgw OTA0ZTQyZDIvMDdjZjEyNzctMjY1OC00NzBmLTg4MDMtYjg3ZGJkMGQ3ZGNlLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMt NmY4MDkwNGU0MmQyL3RqaHRHakxZOVBveGVPOHhpSDJMUW8zNnBIWS5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEABJAFzANBgkqhkiG9w0BAQsFAAOCAQEArCElJn2N6t6vQYySzov7MfJ1mS61 hdzoKPlXhI4NPo6O2MqoJ+PXhGU22N1y9nd1pnkigXIYef0OlJODfqP25NqYpHyR WKLPLe9YgDLNkMk6gmNXyU3USzfr0hsx3y9Htlmj5Q2b8ZjYgjjmCk9RQgeH3Wa7 lqfyBSQK+arKW9dON8Prf2Nji53U37QmPbKVI9yWJBlPcV2fZZO3OLETfTtqxkde NwiehL2oF6SCJ1p/Pv5biK/ATJmj+JxCIJhHUAPihk2G5DcImBlkvuiWdTqyHQJe 5IDsYQlMuv5V614I37IcJlSc476NAg0iMDs2vRUngPcJMgVN5QNPScb3Ug== -----END CERTIFICATE-----Generated at Fri Oct 17 22:18:39 2025 by rpki-client