$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/142ce907-aedc-4605-8862-c3d7f5104b02.roa File: 142ce907-aedc-4605-8862-c3d7f5104b02.roa (raw, json) Hash identifier: TGtF7OGWivgZZsA1IFxjPv+ziAsvrxxwhiHUFXkJz/M= Subject key identifier: 88:F7:18:E3:F6:00:81:A6:0D:E0:43:80:18:7F:F9:8F:57:6A:79:5E Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 5B5A03422DC4CBEAFD1BDE370376CCED4912A767 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/142ce907-aedc-4605-8862-c3d7f5104b02.roa Signing time: Fri 03 Oct 2025 15:10:08 +0000 ROA not before: Fri 03 Oct 2025 15:10:08 +0000 ROA not after: Fri 07 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.177.104.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:5a:03:42:2d:c4:cb:ea:fd:1b:de:37:03:76:cc:ed:49:12:a7:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 3 15:10:08 2025 GMT Not After : Nov 7 23:59:59 2025 GMT Subject: serialNumber=293af4922ae95a4da56b159b4d84612462ee0953ff6237dbfabfab45971ab506, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:99:18:c2:a8:c3:1e:10:6b:56:66:a3:d0:2e: ad:f8:32:9f:77:09:4b:97:9f:fb:d5:e2:93:21:10: 70:90:1d:c8:e1:ee:6a:d9:3c:c0:9c:52:d1:cc:bd: d6:d6:d1:c1:a9:a9:4e:c4:b7:f8:7b:00:fd:76:d1: 01:49:f4:be:2c:d9:ff:ed:ea:7f:00:42:99:fa:f3: a4:1d:49:0c:9f:b1:5d:3d:1f:19:1c:75:d6:96:98: 24:24:30:12:83:83:7f:47:62:92:b3:61:cd:8d:88: d9:80:22:b5:20:e0:7b:cf:59:6f:e9:eb:81:14:73: 42:84:29:28:b2:e7:40:db:1d:ff:1a:af:43:5b:ed: 74:fa:a3:dd:8e:37:ae:50:99:57:f1:54:8a:75:09: a1:e2:f6:a6:30:ba:48:aa:5c:f6:16:90:f5:47:eb: 93:40:60:f6:cb:a2:c0:7a:10:35:43:01:f7:35:ef: 44:de:76:61:a1:e9:9a:2d:28:ee:a6:c6:1f:2b:fc: c9:8b:04:f2:eb:a3:52:63:f8:b1:79:98:de:3d:c3: 92:42:ad:28:e6:22:c2:46:f5:b9:2d:29:39:cf:6e: 2b:ae:7b:c9:d1:d2:98:d3:c8:a4:d2:aa:8d:11:a7: e2:d3:f4:05:09:9b:82:bd:f1:e7:50:29:6f:9c:13: 13:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:F7:18:E3:F6:00:81:A6:0D:E0:43:80:18:7F:F9:8F:57:6A:79:5E X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/142ce907-aedc-4605-8862-c3d7f5104b02.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.177.104.0/24 Signature Algorithm: sha256WithRSAEncryption 21:f0:20:34:2d:26:76:66:a5:34:0a:e5:f2:12:b5:1a:bf:5a: 63:2f:2e:da:c8:9a:e2:ce:ac:18:77:ea:ca:1d:4d:43:cc:d9: f3:99:9e:51:83:05:79:6c:16:15:63:cb:46:97:b3:2b:4f:eb: c0:11:21:05:44:7e:89:be:ae:5e:69:6d:c0:41:06:76:2a:3b: 72:63:c7:8a:5d:59:c0:13:0b:4f:31:bd:df:bd:76:e2:67:ec: 0f:62:12:b2:0a:af:59:cd:53:08:84:31:01:d2:89:40:fd:a5: 7e:a8:5e:1c:32:81:49:d3:3e:92:96:bf:ef:e0:7e:ae:8a:34: e2:1d:d4:6b:0c:52:e4:fe:aa:8f:40:88:ec:3a:07:35:e0:af: 2b:ce:56:24:08:4d:11:1e:d0:64:b3:21:51:88:a5:27:79:8b: d4:77:f2:dd:59:88:8a:42:96:46:2c:e1:53:f0:5c:7b:09:9a: 83:ef:8e:70:a7:70:13:3c:a8:6c:87:59:ba:9b:23:03:b1:1a: a3:59:73:7b:74:22:3f:44:14:99:5f:8d:91:69:8e:f1:66:92: 7d:2a:28:05:29:d4:02:b5:0b:c3:48:91:ed:91:b1:e5:98:48: 03:c7:92:40:01:d9:9e:80:3d:9f:4c:c9:f3:60:59:c9:3f:2c: dc:81:e1:d9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUW1oDQi3Ey+r9G943A3bM7UkSp2cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDAzMTUxMDA4WhcNMjUxMTA3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyOTNhZjQ5MjJhZTk1YTRkYTU2YjE1OWI0ZDg0NjEyNDYy ZWUwOTUzZmY2MjM3ZGJmYWJmYWI0NTk3MWFiNTA2MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDfmRjCqMMeEGtWZqPQLq34Mp93CUuXn/vV4pMhEHCQHcjh 7mrZPMCcUtHMvdbW0cGpqU7Et/h7AP120QFJ9L4s2f/t6n8AQpn686QdSQyfsV09 HxkcddaWmCQkMBKDg39HYpKzYc2NiNmAIrUg4HvPWW/p64EUc0KEKSiy50DbHf8a r0Nb7XT6o92ON65QmVfxVIp1CaHi9qYwukiqXPYWkPVH65NAYPbLosB6EDVDAfc1 70TedmGh6ZotKO6mxh8r/MmLBPLro1Jj+LF5mN49w5JCrSjmIsJG9bktKTnPbiuu e8nR0pjTyKTSqo0Rp+LT9AUJm4K98edQKW+cExOjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUiPcY4/YAgaYN4EOAGH/5j1dqeV4wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzE0MmNlOTA3LWFlZGMtNDYwNS04ODYyLWMzZDdmNTEwNGIwMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAPsWgwDQYJKoZIhvcNAQELBQADggEBACHwIDQtJnZmpTQK5fIStRq/WmMv LtrImuLOrBh36sodTUPM2fOZnlGDBXlsFhVjy0aXsytP68ARIQVEfom+rl5pbcBB BnYqO3Jjx4pdWcATC08xvd+9duJn7A9iErIKr1nNUwiEMQHSiUD9pX6oXhwygUnT PpKWv+/gfq6KNOId1GsMUuT+qo9AiOw6BzXgryvOViQITREe0GSzIVGIpSd5i9R3 8t1ZiIpClkYs4VPwXHsJmoPvjnCncBM8qGyHWbqbIwOxGqNZc3t0Ij9EFJlfjZFp jvFmkn0qKAUp1AK1C8NIke2RseWYSAPHkkAB2Z6APZ9MyfNgWck/LNyB4dk= -----END CERTIFICATE-----Generated at Sat Oct 18 02:42:10 2025 by rpki-client