$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1cd54e9b-d8ee-4f1f-999e-0f412217334b.roa File: 1cd54e9b-d8ee-4f1f-999e-0f412217334b.roa (raw, json) Hash identifier: ANDYfntUnE6bLebo/wgq1Jk9Vl6W71Z9imiShR/PCYE= Subject key identifier: B3:63:71:DF:86:8C:F1:B0:39:DF:26:AB:29:8A:B3:CE:BA:0A:18:95 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 0AD685EAA8383EA313FA5BB9E3B93ED8684BC4 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1cd54e9b-d8ee-4f1f-999e-0f412217334b.roa Signing time: Mon 22 Sep 2025 21:10:38 +0000 ROA not before: Mon 22 Sep 2025 21:10:38 +0000 ROA not after: Mon 27 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.172.0.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:d6:85:ea:a8:38:3e:a3:13:fa:5b:b9:e3:b9:3e:d8:68:4b:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 22 21:10:38 2025 GMT Not After : Oct 27 23:59:59 2025 GMT Subject: serialNumber=f783471473f33ff79e0b50969c78a2c280d2f0368544cd318ec494018c130932, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:1b:87:0c:05:cf:8f:42:26:9c:25:b6:ae:22: 45:b3:79:f2:4a:fa:c6:ae:cc:3e:84:73:1f:ab:58: 31:d5:e1:ae:40:aa:35:7c:8a:b5:c4:36:66:f4:e9: 07:a8:f5:a3:ff:a7:d2:05:64:59:76:e0:75:b4:f9: 11:bd:43:4e:41:41:d2:0f:eb:01:d0:42:4a:eb:d1: ac:a0:a3:fb:69:fe:b7:be:91:d4:e1:00:4c:7d:da: 98:99:39:53:76:1e:fe:b6:83:f7:27:07:13:40:1d: 15:bb:2f:d0:7e:8c:25:c7:78:63:f6:e5:97:53:c0: 4a:c8:cc:c2:13:ee:dd:cb:55:4d:54:dc:97:6a:15: ff:0f:99:16:27:24:45:bd:8c:1e:7d:af:b7:3d:63: d2:0f:94:71:71:db:ea:7e:6a:46:94:d9:e2:0d:7a: 3d:74:1e:15:77:7d:10:73:05:ff:d6:62:aa:d2:20: 9a:1d:1b:33:54:41:b6:83:c5:d8:e8:7c:18:24:29: 43:47:dc:79:00:90:90:22:ef:e5:f5:25:11:98:c9: 0e:8c:38:21:43:e0:d0:9d:4a:0e:21:98:f2:45:44: 5d:0d:ae:58:55:59:be:f5:4a:74:4b:bb:10:9e:18: 91:34:b9:da:1e:b5:bb:59:35:ac:78:c2:7a:65:a1: ba:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:63:71:DF:86:8C:F1:B0:39:DF:26:AB:29:8A:B3:CE:BA:0A:18:95 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1cd54e9b-d8ee-4f1f-999e-0f412217334b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.172.0.0/22 Signature Algorithm: sha256WithRSAEncryption 70:fd:8d:ba:1d:a2:24:28:19:ef:b5:58:b9:af:b0:a7:32:8e: 25:5b:ac:33:db:5a:0e:a9:59:f8:00:03:53:c6:12:52:58:50: 67:82:17:20:36:e3:e8:41:59:38:c6:87:99:3e:a8:bf:a0:0a: 26:c3:7b:d2:83:f9:cb:30:26:4d:7a:e1:6b:88:65:84:60:bf: 87:b6:a9:2c:88:86:86:0f:26:33:10:b5:55:7c:aa:83:67:3c: b2:7c:15:55:55:34:4f:98:01:67:65:f1:55:ab:2d:c8:22:f8: 19:0d:48:94:a2:5b:27:5f:5a:8b:b9:17:83:a9:59:7e:ae:c1: d6:c8:8d:a5:94:d8:6b:75:36:a2:7c:c0:60:a5:64:a9:6b:9a: b3:ef:4d:0d:c2:35:78:67:33:62:80:0d:61:48:32:c0:ee:5c: bf:9a:17:72:f3:46:15:1a:c7:56:e6:97:7b:59:09:5d:0e:d8: 10:68:88:b9:48:69:eb:62:09:dd:6f:10:62:9f:c9:87:b9:df: 26:01:12:64:2c:5b:44:40:4f:49:1d:a8:7a:4d:7c:50:ed:9a: 86:13:f1:92:81:ce:0b:92:5f:65:99:c2:e3:8c:19:87:5d:76: db:a2:13:b0:58:6d:30:81:da:3e:95:ff:bf:44:14:a3:05:40: c6:80:af:ca -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITCtaF6qg4PqMT+lu547k+2GhLxDANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzJkZjZmM2IzYTM0YjYzODZkMWEzMmQ4ZjRmYTMxNzhlZjMx ODg3ZDhiNDI4ZGZhYTQ3NjAeFw0yNTA5MjIyMTEwMzhaFw0yNTEwMjcyMzU5NTla MHoxSTBHBgNVBAUTQGY3ODM0NzE0NzNmMzNmZjc5ZTBiNTA5NjljNzhhMmMyODBk MmYwMzY4NTQ0Y2QzMThlYzQ5NDAxOGMxMzA5MzIxLTArBgNVBAMTJDVmMjc2MDQ1 LTViOWYtNDVlZi05MjNkLWYzZmNlMjRhNjIyNTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAN0bhwwFz49CJpwltq4iRbN58kr6xq7MPoRzH6tYMdXhrkCq NXyKtcQ2ZvTpB6j1o/+n0gVkWXbgdbT5Eb1DTkFB0g/rAdBCSuvRrKCj+2n+t76R 1OEATH3amJk5U3Ye/raD9ycHE0AdFbsv0H6MJcd4Y/bll1PASsjMwhPu3ctVTVTc l2oV/w+ZFickRb2MHn2vtz1j0g+UcXHb6n5qRpTZ4g16PXQeFXd9EHMF/9ZiqtIg mh0bM1RBtoPF2Oh8GCQpQ0fceQCQkCLv5fUlEZjJDow4IUPg0J1KDiGY8kVEXQ2u WFVZvvVKdEu7EJ4YkTS52h61u1k1rHjCemWhugMCAwEAAaOCArEwggKtMB0GA1Ud DgQWBBSzY3HfhozxsDnfJqspirPOugoYlTAfBgNVHSMEGDAWgBQlrdNCsB63pY6t GZAmiLVLP4H0uDAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzg1MWNlZjE3LTEz MmEtNDMzNy1iN2QxLWJmMTZhNTJmZmQwMy9kZjZmM2IzYTM0YjYzODZkMWEzMmQ4 ZjRmYTMxNzhlZjMxODg3ZDhiNDI4ZGZhYTQ3Ni5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9mNzAzNjk2ZS1lNDdiLTRjMjAtYmQ5My02Zjgw OTA0ZTQyZDIvMWNkNTRlOWItZDhlZS00ZjFmLTk5OWUtMGY0MTIyMTczMzRiLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMt NmY4MDkwNGU0MmQyL3RqaHRHakxZOVBveGVPOHhpSDJMUW8zNnBIWS5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAhKsADANBgkqhkiG9w0BAQsFAAOCAQEAcP2Nuh2iJCgZ77VYua+wpzKOJVus M9taDqlZ+AADU8YSUlhQZ4IXIDbj6EFZOMaHmT6ov6AKJsN70oP5yzAmTXrha4hl hGC/h7apLIiGhg8mMxC1VXyqg2c8snwVVVU0T5gBZ2XxVastyCL4GQ1IlKJbJ19a i7kXg6lZfq7B1siNpZTYa3U2onzAYKVkqWuas+9NDcI1eGczYoANYUgywO5cv5oX cvNGFRrHVuaXe1kJXQ7YEGiIuUhp62IJ3W8QYp/Jh7nfJgESZCxbREBPSR2oek18 UO2ahhPxkoHOC5JfZZnC44wZh11226ITsFhtMIHaPpX/v0QUowVAxoCvyg== -----END CERTIFICATE-----Generated at Fri Oct 17 22:18:23 2025 by rpki-client