$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1bc220cd-5ec6-403e-a8e6-e3bdca297f5c.roa File: 1bc220cd-5ec6-403e-a8e6-e3bdca297f5c.roa (raw, json) Hash identifier: 8khZU3hPt0rukbmA/LTaZrdKYMRX+kmYdIFvsi0amv4= Subject key identifier: 48:CB:BB:DF:42:6E:D9:AC:96:BA:46:0E:A8:80:5F:EB:AC:3C:95:BD Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 10164BAE2B2DDDDDCF323A27655AC7FD69392945 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1bc220cd-5ec6-403e-a8e6-e3bdca297f5c.roa Signing time: Mon 22 Sep 2025 18:43:10 +0000 ROA not before: Mon 22 Sep 2025 18:43:10 +0000 ROA not after: Mon 27 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.161.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:16:4b:ae:2b:2d:dd:dd:cf:32:3a:27:65:5a:c7:fd:69:39:29:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 22 18:43:10 2025 GMT Not After : Oct 27 23:59:59 2025 GMT Subject: serialNumber=a121660d5209fb937f192cb9a7d472fb7565362e53702cb47e11ce3032321275, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:e4:65:27:c4:2c:30:94:8a:9c:7d:02:9b:e1: ed:09:34:66:73:b4:73:79:ef:41:94:7e:36:ef:0a: 0b:c3:3f:b3:82:9e:00:12:12:01:4b:fc:bb:09:06: fb:f2:ec:d5:74:da:71:bd:56:5a:25:b1:48:73:9d: 9d:be:9c:8a:c7:03:b6:80:19:e9:1a:34:89:00:fa: 88:de:f0:ab:55:46:dd:46:3d:c4:6e:75:0a:ff:08: 90:7b:2e:c3:8b:0a:2e:01:22:b1:c9:e4:7b:bc:63: 40:65:9d:6a:08:cd:a3:2c:3e:f0:dd:fe:a2:71:72: 2d:f4:63:9a:ba:88:1e:c2:68:6d:7c:db:f9:f5:03: 54:5a:21:93:50:4d:31:a2:b9:9c:30:41:3b:3d:88: 3c:ef:78:a1:10:13:4d:c5:d2:a4:d8:76:58:11:bc: a1:45:73:3b:fb:a1:6d:09:ee:e8:54:f1:51:37:fa: ae:6d:b7:aa:03:58:d1:73:13:2e:4a:fe:4e:3b:e9: 38:ae:10:bd:58:83:49:9e:0a:0a:bc:8c:79:34:76: a6:cc:8b:22:d1:96:c1:40:32:01:4d:0c:15:69:55: 47:6b:bb:c6:8f:cb:c6:1c:b8:73:e6:86:2d:32:36: 45:fa:dc:11:28:de:99:d4:04:dc:d0:46:4e:da:98: 40:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:CB:BB:DF:42:6E:D9:AC:96:BA:46:0E:A8:80:5F:EB:AC:3C:95:BD X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1bc220cd-5ec6-403e-a8e6-e3bdca297f5c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.161.85.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:6f:01:29:78:e6:33:f7:3d:69:78:3e:a5:c7:0c:76:1e:a3: 01:4e:20:2d:fe:02:93:a3:5b:18:1c:c3:ee:8b:6b:91:34:5f: 67:f1:75:ad:a6:74:65:99:2b:ab:2d:68:81:ea:15:2c:32:87: 15:d0:1d:42:38:c5:c6:f0:ac:7b:ca:db:44:24:de:89:44:cd: 99:bf:a0:37:43:94:3f:d1:9f:ef:23:ee:f7:24:ab:0c:df:b2: d8:e5:08:4f:32:24:cf:7c:1d:1b:4c:1b:d9:60:cd:cf:f9:31: 7e:f3:6a:e7:e6:d1:6f:08:8c:67:60:a4:4c:4e:ff:9b:68:b0: 98:7f:ad:6c:92:b2:e8:ea:d7:47:47:a8:d4:da:4a:63:b1:4a: 86:56:dc:64:34:2f:ba:47:a8:43:a5:6d:a3:f2:4b:9b:d5:9f: 4c:60:c3:92:25:3d:a0:26:2f:ce:78:18:04:ae:ac:ed:c4:ca: 83:f4:03:81:02:34:a4:9b:8d:8a:47:10:ed:3d:14:25:9e:b5: e5:7e:c7:de:dc:5b:cb:fc:45:f0:57:ea:94:3e:e1:e3:ea:06: 7b:9d:bf:87:55:dc:a1:16:e2:cc:c8:a9:04:e9:33:8b:b7:ff: 9c:9d:36:ed:74:aa:91:8f:b8:85:56:c5:6e:42:c6:97:d5:a0: 73:d9:49:c0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEBZLrist3d3PMjonZVrH/Wk5KUUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTIyMTg0MzEwWhcNMjUxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMTIxNjYwZDUyMDlmYjkzN2YxOTJjYjlhN2Q0NzJmYjc1 NjUzNjJlNTM3MDJjYjQ3ZTExY2UzMDMyMzIxMjc1MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDj5GUnxCwwlIqcfQKb4e0JNGZztHN570GUfjbvCgvDP7OC ngASEgFL/LsJBvvy7NV02nG9VlolsUhznZ2+nIrHA7aAGekaNIkA+oje8KtVRt1G PcRudQr/CJB7LsOLCi4BIrHJ5Hu8Y0BlnWoIzaMsPvDd/qJxci30Y5q6iB7CaG18 2/n1A1RaIZNQTTGiuZwwQTs9iDzveKEQE03F0qTYdlgRvKFFczv7oW0J7uhU8VE3 +q5tt6oDWNFzEy5K/k476TiuEL1Yg0meCgq8jHk0dqbMiyLRlsFAMgFNDBVpVUdr u8aPy8YcuHPmhi0yNkX63BEo3pnUBNzQRk7amEC7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUSMu730Ju2ayWukYOqIBf66w8lb0wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzFiYzIyMGNkLTVlYzYtNDAzZS1hOGU2LWUzYmRjYTI5N2Y1Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAASoVUwDQYJKoZIhvcNAQELBQADggEBACpvASl45jP3PWl4PqXHDHYeowFO IC3+ApOjWxgcw+6La5E0X2fxda2mdGWZK6staIHqFSwyhxXQHUI4xcbwrHvK20Qk 3olEzZm/oDdDlD/Rn+8j7vckqwzfstjlCE8yJM98HRtMG9lgzc/5MX7zaufm0W8I jGdgpExO/5tosJh/rWySsujq10dHqNTaSmOxSoZW3GQ0L7pHqEOlbaPyS5vVn0xg w5IlPaAmL854GASurO3EyoP0A4ECNKSbjYpHEO09FCWeteV+x97cW8v8RfBX6pQ+ 4ePqBnudv4dV3KEW4szIqQTpM4u3/5ydNu10qpGPuIVWxW5CxpfVoHPZScA= -----END CERTIFICATE-----Generated at Sat Oct 18 02:16:41 2025 by rpki-client