$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/21245fa3-23cd-4f9c-b186-acfb531e64e4.roa File: 21245fa3-23cd-4f9c-b186-acfb531e64e4.roa (raw, json) Hash identifier: PIWzr7QKZlncsvfYY9YBppz9JiBYzMQKwK3wc6lW7aI= Subject key identifier: CA:0C:48:00:5C:2A:E4:55:1A:4E:09:02:50:9D:DF:1B:20:A1:C2:D5 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 44F4D2CCC1DFB5130CB9E55485CEE77FFBBA2428 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/21245fa3-23cd-4f9c-b186-acfb531e64e4.roa Signing time: Mon 22 Sep 2025 21:06:52 +0000 ROA not before: Mon 22 Sep 2025 21:06:52 +0000 ROA not after: Mon 27 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.173.218.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:f4:d2:cc:c1:df:b5:13:0c:b9:e5:54:85:ce:e7:7f:fb:ba:24:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 22 21:06:52 2025 GMT Not After : Oct 27 23:59:59 2025 GMT Subject: serialNumber=31f26456eb2682f300d91ae9c9a2806bcab6c0d7f85abd9ae50cdbcd51259cab, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:91:95:54:43:f6:ed:e2:1f:a1:f4:13:74:a6: 83:cd:6e:ae:b5:36:77:2d:3e:a1:2c:fb:06:96:3d: 5f:2a:7d:9d:f4:fa:10:96:2f:6b:e1:41:5f:9d:67: e0:0d:b0:1b:bd:b2:50:f9:16:cc:5b:c2:44:8d:c2: 5b:c4:74:8f:dd:c2:d4:97:1c:d8:83:9f:f9:a8:a2: 4d:3c:d9:8b:9b:b5:46:c1:53:4b:69:0f:0d:c3:00: ca:8d:54:d3:82:80:d9:6c:71:21:86:a2:4b:1a:b9: c4:a9:f1:ee:f6:8f:85:49:87:7a:da:7f:01:65:52: 63:53:b5:3a:9c:db:88:8d:7b:05:33:92:b1:8e:02: 81:f5:91:ad:62:14:a9:66:5d:98:bc:e4:3e:c8:0e: 7d:9e:65:c4:ea:db:1b:f9:e1:53:43:c9:b3:ad:a7: ad:e7:00:29:92:57:1b:33:87:1e:bc:97:da:8d:b5: 87:c2:0e:ed:ce:3b:4a:8e:a8:08:4d:cb:e2:40:03: f1:8a:6e:4b:56:62:da:c4:7c:fa:9e:2b:07:8f:b7: ef:10:8e:35:42:e2:fd:39:9d:3a:d9:a9:16:61:85: c2:a6:72:a9:48:15:ae:55:2c:91:65:fc:dc:df:07: bf:c7:f1:09:9e:b6:ba:74:ed:54:f4:97:00:64:df: 69:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:0C:48:00:5C:2A:E4:55:1A:4E:09:02:50:9D:DF:1B:20:A1:C2:D5 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/21245fa3-23cd-4f9c-b186-acfb531e64e4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.173.218.0/23 Signature Algorithm: sha256WithRSAEncryption 68:df:fa:5c:62:52:6c:34:22:36:33:6a:14:6b:15:51:38:58: 40:6b:cd:08:93:a8:e0:72:e8:df:86:d7:11:78:db:e3:3a:bf: 44:90:3b:c7:ee:9c:97:d5:67:c5:66:6d:c1:4e:70:f0:d2:12: fd:7c:34:74:5d:e5:a5:8f:1e:28:34:a3:04:6b:4b:31:51:94: c2:44:43:86:9e:0a:34:5e:4c:e1:f2:f6:fd:76:aa:4a:30:c9: fe:81:80:64:23:32:63:ce:96:52:d1:a6:46:8e:43:0f:49:d1: 1b:e6:38:97:7f:5a:71:cf:23:51:72:6a:38:64:cf:01:23:aa: 2d:fa:66:46:04:10:1c:31:a6:53:f6:6b:d3:c3:df:00:1e:c9: 3b:86:b6:63:32:d2:c0:10:b2:62:98:55:5a:a0:40:22:4b:f2: 2a:52:e0:d6:14:aa:fc:bf:b7:c9:57:4d:8b:d2:ff:2d:eb:05: 1d:b3:bf:95:7e:f7:cd:3d:15:1d:49:48:0b:8b:53:2a:88:4c: c4:f5:3c:c8:dc:b0:83:78:b6:94:a5:22:8a:24:36:1e:d7:1e: ee:7c:90:19:c5:d6:f2:63:74:f1:f5:6a:12:8b:b6:ae:ee:fb: 75:f6:47:7c:48:b5:54:8b:79:a6:1b:34:f5:9f:27:5d:44:46: 4b:d5:fd:38 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURPTSzMHftRMMueVUhc7nf/u6JCgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTIyMjEwNjUyWhcNMjUxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMWYyNjQ1NmViMjY4MmYzMDBkOTFhZTljOWEyODA2YmNh YjZjMGQ3Zjg1YWJkOWFlNTBjZGJjZDUxMjU5Y2FiMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwkZVUQ/bt4h+h9BN0poPNbq61NnctPqEs+waWPV8qfZ30 +hCWL2vhQV+dZ+ANsBu9slD5FsxbwkSNwlvEdI/dwtSXHNiDn/mook082YubtUbB U0tpDw3DAMqNVNOCgNlscSGGoksaucSp8e72j4VJh3rafwFlUmNTtTqc24iNewUz krGOAoH1ka1iFKlmXZi85D7IDn2eZcTq2xv54VNDybOtp63nACmSVxszhx68l9qN tYfCDu3OO0qOqAhNy+JAA/GKbktWYtrEfPqeKwePt+8QjjVC4v05nTrZqRZhhcKm cqlIFa5VLJFl/NzfB7/H8Qmetrp07VT0lwBk32lNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUygxIAFwq5FUaTgkCUJ3fGyChwtUwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzIxMjQ1ZmEzLTIzY2QtNGY5Yy1iMTg2LWFjZmI1MzFlNjRlNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAESrdowDQYJKoZIhvcNAQELBQADggEBAGjf+lxiUmw0IjYzahRrFVE4WEBr zQiTqOBy6N+G1xF42+M6v0SQO8funJfVZ8VmbcFOcPDSEv18NHRd5aWPHig0owRr SzFRlMJEQ4aeCjReTOHy9v12qkowyf6BgGQjMmPOllLRpkaOQw9J0RvmOJd/WnHP I1FyajhkzwEjqi36ZkYEEBwxplP2a9PD3wAeyTuGtmMy0sAQsmKYVVqgQCJL8ipS 4NYUqvy/t8lXTYvS/y3rBR2zv5V+9809FR1JSAuLUyqITMT1PMjcsIN4tpSlIook Nh7XHu58kBnF1vJjdPH1ahKLtq7u+3X2R3xItVSLeaYbNPWfJ11ERkvV/Tg= -----END CERTIFICATE-----Generated at Sat Oct 18 02:42:44 2025 by rpki-client