$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1b28630c-e0a5-4406-a49f-f965b7110a1e.roa File: 1b28630c-e0a5-4406-a49f-f965b7110a1e.roa (raw, json) Hash identifier: 7SpsfCvy9Qddy5/FJSv8e+qI49zlR+IhtbPXhSt2SU8= Subject key identifier: 92:8C:9A:AE:30:B3:52:86:05:5A:4D:C2:3C:BC:98:FA:6C:93:D9:61 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 13284B1F1BEFEF47786C2E665E0E5902CBDC0C81 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1b28630c-e0a5-4406-a49f-f965b7110a1e.roa Signing time: Mon 22 Sep 2025 18:30:09 +0000 ROA not before: Mon 22 Sep 2025 18:30:09 +0000 ROA not after: Mon 27 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.161.148.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:28:4b:1f:1b:ef:ef:47:78:6c:2e:66:5e:0e:59:02:cb:dc:0c:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 22 18:30:09 2025 GMT Not After : Oct 27 23:59:59 2025 GMT Subject: serialNumber=dcbc6785e592e1a49c4637cfacbcccc90d6c6c6a4f0ba7e65faa94d7599296a4, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a7:84:3c:3b:83:3f:f3:43:9e:9a:c9:61:66: 85:98:8c:f6:e2:35:2b:30:1c:d0:55:4b:50:da:1e: 2d:1f:50:67:c8:3d:b6:1c:91:82:a3:77:1b:5c:06: 78:a4:50:1c:ee:6b:29:9f:df:77:df:80:d7:97:45: 4e:6a:db:4b:14:88:73:96:d7:77:bc:6a:97:2a:cd: f9:d0:80:86:98:d5:95:6f:6f:51:8c:37:1b:ff:8b: 49:e2:3c:10:63:f0:c8:f4:90:d7:34:2f:12:55:d5: 3b:75:08:45:0f:29:4e:e9:32:f5:9c:e7:a0:6b:3f: 05:0d:e3:72:ba:3d:14:78:cb:c5:d8:12:46:f8:09: d3:ee:3b:ab:f9:55:a2:cf:c6:2f:80:3f:11:66:90: 83:f5:c0:ff:0e:91:37:bb:bb:0f:e5:e6:00:2f:1a: d5:21:19:ce:2d:4e:0a:58:20:35:2a:77:00:d0:93: 97:59:22:b1:5b:a2:49:cf:27:c3:17:44:21:7c:7c: db:8c:dc:5a:3f:d9:01:70:8a:c9:4f:a8:d4:89:2e: e8:69:3b:04:8e:1f:d5:dd:cb:5a:c2:8d:87:bf:7e: 3c:cf:b8:d5:ee:88:18:d5:59:58:9e:fd:b2:4c:17: 8f:b1:7c:63:b6:95:71:99:b9:bc:37:4c:30:ea:39: 4a:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:8C:9A:AE:30:B3:52:86:05:5A:4D:C2:3C:BC:98:FA:6C:93:D9:61 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1b28630c-e0a5-4406-a49f-f965b7110a1e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.161.148.0/24 Signature Algorithm: sha256WithRSAEncryption 57:8d:22:a1:82:f2:56:d9:a1:80:69:80:96:38:91:65:58:bd: 1c:36:51:ca:a1:c1:82:a4:a3:56:31:03:55:2b:87:70:7f:3c: 8c:98:d1:e2:ac:40:99:12:3e:9d:3f:6d:c4:0b:c6:25:6c:dd: f5:ce:af:10:ca:17:08:4e:86:9b:c4:10:50:3f:0f:d6:ab:0d: ae:c6:8f:5a:1c:bb:ca:bc:76:fb:76:53:f8:9f:6e:1c:2b:2f: 1a:14:d3:e5:da:18:95:27:90:5a:31:f7:13:e5:93:02:d8:b6: 23:7a:bd:f6:fa:fb:74:00:b9:93:79:d6:d6:b3:42:d2:a3:e2: 6d:c2:fe:71:e0:2f:5c:eb:49:d9:0c:ef:26:5c:da:06:ff:d8: 12:4b:7c:20:f3:fa:74:5f:8e:66:69:b5:af:44:f2:94:8d:9a: cb:2c:70:11:f7:c7:2c:c9:e5:7c:da:69:31:b2:36:c4:8f:74: db:1a:81:c2:0b:42:65:27:f4:89:c5:f4:17:8b:88:6b:1f:bc: 7e:23:d6:b7:86:3f:2a:7d:6b:b8:16:84:d0:a5:fd:1e:d9:d7: cd:a0:f6:9b:25:f9:7c:4e:57:1c:e9:da:32:2e:12:46:bf:3f: 51:82:5c:8b:68:c7:04:4d:5a:1e:01:b2:3a:fa:e0:c9:33:8e: 32:b0:e9:87 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEyhLHxvv70d4bC5mXg5ZAsvcDIEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTIyMTgzMDA5WhcNMjUxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkY2JjNjc4NWU1OTJlMWE0OWM0NjM3Y2ZhY2JjY2NjOTBk NmM2YzZhNGYwYmE3ZTY1ZmFhOTRkNzU5OTI5NmE0MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7p4Q8O4M/80OemslhZoWYjPbiNSswHNBVS1DaHi0fUGfI PbYckYKjdxtcBnikUBzuaymf33ffgNeXRU5q20sUiHOW13e8apcqzfnQgIaY1ZVv b1GMNxv/i0niPBBj8Mj0kNc0LxJV1Tt1CEUPKU7pMvWc56BrPwUN43K6PRR4y8XY Ekb4CdPuO6v5VaLPxi+APxFmkIP1wP8OkTe7uw/l5gAvGtUhGc4tTgpYIDUqdwDQ k5dZIrFboknPJ8MXRCF8fNuM3Fo/2QFwislPqNSJLuhpOwSOH9Xdy1rCjYe/fjzP uNXuiBjVWVie/bJMF4+xfGO2lXGZubw3TDDqOUo5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUkoyarjCzUoYFWk3CPLyY+myT2WEwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzFiMjg2MzBjLWUwYTUtNDQwNi1hNDlmLWY5NjViNzExMGExZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAASoZQwDQYJKoZIhvcNAQELBQADggEBAFeNIqGC8lbZoYBpgJY4kWVYvRw2 UcqhwYKko1YxA1Urh3B/PIyY0eKsQJkSPp0/bcQLxiVs3fXOrxDKFwhOhpvEEFA/ D9arDa7Gj1ocu8q8dvt2U/ifbhwrLxoU0+XaGJUnkFox9xPlkwLYtiN6vfb6+3QA uZN51tazQtKj4m3C/nHgL1zrSdkM7yZc2gb/2BJLfCDz+nRfjmZpta9E8pSNmsss cBH3xyzJ5XzaaTGyNsSPdNsagcILQmUn9InF9BeLiGsfvH4j1reGPyp9a7gWhNCl /R7Z182g9psl+XxOVxzp2jIuEka/P1GCXItoxwRNWh4Bsjr64MkzjjKw6Yc= -----END CERTIFICATE-----Generated at Sat Oct 18 04:15:41 2025 by rpki-client