$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1fcc8930-4351-45ef-b892-4882c9f0f24c.roa File: 1fcc8930-4351-45ef-b892-4882c9f0f24c.roa (raw, json) Hash identifier: Rz6pq5uKSY91AzH/MR14bcnuHTpIoCf3ESEUgdksoLU= Subject key identifier: C1:FF:82:15:F0:04:A9:F5:B7:A4:09:33:93:31:E9:48:BA:BE:76:15 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 490153807FCC4EA18ABEF31C237AC1AB95A29319 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1fcc8930-4351-45ef-b892-4882c9f0f24c.roa Signing time: Mon 22 Sep 2025 23:32:21 +0000 ROA not before: Mon 22 Sep 2025 23:32:21 +0000 ROA not after: Mon 27 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.245.48.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:01:53:80:7f:cc:4e:a1:8a:be:f3:1c:23:7a:c1:ab:95:a2:93:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 22 23:32:21 2025 GMT Not After : Oct 27 23:59:59 2025 GMT Subject: serialNumber=eeb2f472bf90b567dc58e48f51806f71db6830dd6338f41284c1df934a3b4a28, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:52:82:8f:4a:3b:ef:8e:cf:5d:72:dd:4a:49: 05:3e:ee:c0:8c:a2:0d:5d:e9:4b:0e:16:97:eb:ac: 5c:e2:f5:1c:bf:e5:41:af:aa:a1:6c:e9:35:10:0c: db:50:2a:ca:83:21:05:ee:6f:c4:ec:8d:3b:3a:25: a2:70:64:36:40:99:04:c9:99:8f:4e:23:91:d4:04: 63:23:06:b3:d1:e0:76:cd:64:e3:b5:c2:5d:5e:9d: 04:5d:2d:85:a5:e8:92:a5:4a:a0:8a:4d:65:37:e1: 0a:55:86:2b:2b:2b:d0:5f:ec:67:f1:d5:fa:cf:90: 22:e0:68:cc:f2:d8:89:91:0a:05:69:0f:56:37:be: 96:6c:11:11:2e:99:27:cc:46:15:05:b1:46:9d:79: 83:9e:62:51:f2:20:07:09:71:ca:a8:19:cb:74:3d: 1a:af:0a:77:ab:b1:e8:70:f0:e7:aa:eb:18:25:52: 9d:6c:ea:a8:f1:73:eb:0f:68:ec:4c:d0:20:f8:d6: 94:0a:33:79:ba:3e:f6:92:5a:27:1d:52:b4:fc:93: 42:08:0d:26:58:bd:8b:f8:c6:6a:89:e6:f7:f3:24: 78:d9:ad:e5:eb:9a:0b:f5:29:68:d5:59:02:c7:ea: 24:18:07:d4:a1:fc:cd:92:5f:a0:f1:bb:67:7c:36: 85:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:FF:82:15:F0:04:A9:F5:B7:A4:09:33:93:31:E9:48:BA:BE:76:15 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1fcc8930-4351-45ef-b892-4882c9f0f24c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.245.48.0/20 Signature Algorithm: sha256WithRSAEncryption 3b:64:4e:50:10:eb:7a:89:a7:25:32:53:fb:d7:fa:e2:6c:5f: a0:2e:9b:13:5e:dd:f1:40:28:84:26:e5:d6:92:f2:59:a9:d3: 28:96:cf:2f:bf:c2:01:e2:56:e5:dd:34:ce:f6:ac:97:52:bc: ec:b4:ac:a3:95:71:f3:4d:5c:fa:24:eb:93:67:e2:cd:c2:ba: 3f:56:fd:0e:ca:a6:57:46:7c:d9:86:40:18:c7:45:c4:14:04: 38:0c:9c:b6:11:51:58:eb:57:37:72:95:bc:56:97:d6:ae:13: 24:65:fc:2b:57:88:28:04:7f:4b:5d:63:51:61:91:1b:35:76: f8:ed:17:58:57:e7:0d:97:53:a7:62:b8:0d:0d:b7:ae:f4:0f: d1:c9:f6:d5:7a:85:24:65:78:df:04:eb:3d:c7:9a:6a:8b:71: 63:59:c8:57:ef:b7:b6:e6:e4:9f:4d:2b:d5:52:26:7e:82:aa: 12:6e:f1:3c:6d:51:dd:77:4a:47:d9:f0:50:a6:d4:16:ea:db: 9d:76:7c:16:e8:92:1e:dd:e9:b9:21:b6:62:05:a3:38:3c:dc: 0b:d7:1c:c8:2f:f1:fe:70:58:79:c5:8b:69:88:76:7d:df:5e: b4:68:c4:38:aa:b2:b2:04:08:2c:37:6a:d4:8a:6e:0f:bb:0c: d0:94:32:31 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSQFTgH/MTqGKvvMcI3rBq5WikxkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTIyMjMzMjIxWhcNMjUxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlZWIyZjQ3MmJmOTBiNTY3ZGM1OGU0OGY1MTgwNmY3MWRi NjgzMGRkNjMzOGY0MTI4NGMxZGY5MzRhM2I0YTI4MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAUoKPSjvvjs9dct1KSQU+7sCMog1d6UsOFpfrrFzi9Ry/ 5UGvqqFs6TUQDNtQKsqDIQXub8TsjTs6JaJwZDZAmQTJmY9OI5HUBGMjBrPR4HbN ZOO1wl1enQRdLYWl6JKlSqCKTWU34QpVhisrK9Bf7Gfx1frPkCLgaMzy2ImRCgVp D1Y3vpZsEREumSfMRhUFsUadeYOeYlHyIAcJccqoGct0PRqvCnersehw8Oeq6xgl Up1s6qjxc+sPaOxM0CD41pQKM3m6PvaSWicdUrT8k0IIDSZYvYv4xmqJ5vfzJHjZ reXrmgv1KWjVWQLH6iQYB9Sh/M2SX6Dxu2d8NoXPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUwf+CFfAEqfW3pAkzkzHpSLq+dhUwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzFmY2M4OTMwLTQzNTEtNDVlZi1iODkyLTQ4ODJjOWYwZjI0Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQS9TAwDQYJKoZIhvcNAQELBQADggEBADtkTlAQ63qJpyUyU/vX+uJsX6Au mxNe3fFAKIQm5daS8lmp0yiWzy+/wgHiVuXdNM72rJdSvOy0rKOVcfNNXPok65Nn 4s3Cuj9W/Q7KpldGfNmGQBjHRcQUBDgMnLYRUVjrVzdylbxWl9auEyRl/CtXiCgE f0tdY1FhkRs1dvjtF1hX5w2XU6diuA0Nt670D9HJ9tV6hSRleN8E6z3HmmqLcWNZ yFfvt7bm5J9NK9VSJn6CqhJu8TxtUd13SkfZ8FCm1Bbq2512fBbokh7d6bkhtmIF ozg83AvXHMgv8f5wWHnFi2mIdn3fXrRoxDiqsrIECCw3atSKbg+7DNCUMjE= -----END CERTIFICATE-----Generated at Fri Oct 17 22:18:18 2025 by rpki-client