$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/25eb671c-8744-467e-9d84-fb2d40042737.roa File: 25eb671c-8744-467e-9d84-fb2d40042737.roa (raw, json) Hash identifier: DXDfKx5XfXdVtcxEXanD1HKMDDkiqyAzNeycN6Aeid0= Subject key identifier: A5:5A:23:2A:FD:56:72:59:40:B9:53:96:1A:64:A9:88:7F:C4:C0:C3 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 4C6070BBCB9A254AF61FC0DEE2AA1808A9B8728E Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/25eb671c-8744-467e-9d84-fb2d40042737.roa Signing time: Fri 03 Oct 2025 15:09:05 +0000 ROA not before: Fri 03 Oct 2025 15:09:05 +0000 ROA not after: Fri 07 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.96.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:60:70:bb:cb:9a:25:4a:f6:1f:c0:de:e2:aa:18:08:a9:b8:72:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 3 15:09:05 2025 GMT Not After : Nov 7 23:59:59 2025 GMT Subject: serialNumber=2a3d15d09c2137a8e1ce339b3fd236174cd80051e25a77f97f30f872331de1fb, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:8f:5e:d9:c9:f6:b9:5e:43:af:90:92:b9:83: 6c:54:dd:f9:f0:98:f8:42:d5:a9:fc:54:32:8b:97: 5e:c7:31:98:ea:99:e9:8d:1c:e5:9a:5e:73:a4:6d: c3:2b:68:7e:d7:d4:41:db:31:a6:46:15:fe:8e:7c: f5:7d:7f:fc:6d:b7:95:d2:2d:15:6c:b8:58:7b:76: 42:e3:6e:4f:50:f1:77:2e:5a:db:1d:c8:83:90:e2: 85:35:f1:85:3f:70:1c:63:94:5b:21:5b:3f:a9:48: 21:72:34:5a:a7:8e:d7:17:a0:cd:ba:63:26:30:d6: 7e:c0:49:ed:b4:14:6d:20:84:90:9f:52:5f:29:77: 81:d7:10:b4:d0:1d:5f:3c:81:71:25:62:0e:a1:44: d9:09:9f:2d:9f:23:41:31:e8:10:3a:b8:f5:d0:86: 25:00:63:bc:53:f3:e4:dd:94:21:f4:61:d2:ba:9f: d2:b9:2f:fe:bd:3a:6f:f7:39:8b:c8:f0:38:d0:29: 69:71:5c:cb:45:f1:f5:ba:4d:76:1f:58:bd:c0:09: b1:b9:26:02:a0:f1:c5:36:87:ac:0c:8e:03:85:53: e9:9a:8f:b1:eb:f2:6c:9c:0d:ac:3b:cb:3d:d3:03: fc:be:38:f9:ff:4b:6c:20:cc:53:40:43:5b:46:4d: e0:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:5A:23:2A:FD:56:72:59:40:B9:53:96:1A:64:A9:88:7F:C4:C0:C3 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/25eb671c-8744-467e-9d84-fb2d40042737.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.96.0.0/14 Signature Algorithm: sha256WithRSAEncryption 06:c8:e6:f7:fa:c4:aa:4a:87:ad:79:70:cd:7c:94:60:f1:6d: 30:b0:86:77:b6:4d:5a:8a:9c:80:7b:7b:29:9d:0a:17:f9:32: 93:ac:d1:9a:34:e6:b1:e0:a0:3c:d1:31:46:88:83:c2:55:4d: aa:a4:3d:ab:cb:f1:00:eb:e8:64:87:0f:6f:f9:99:4f:80:54: 62:31:88:41:87:83:f8:38:78:5c:95:be:73:c5:75:ae:23:0e: 53:38:9b:cd:3c:0c:a5:a8:a7:90:68:52:53:d6:6d:24:c9:e1: 43:ac:e4:90:1d:ac:1e:e2:1f:0f:0a:0b:97:78:fd:2a:6f:2f: e8:74:e8:3f:39:03:a7:f0:f2:2a:db:0d:3f:d9:68:80:c8:28: 0b:b4:b2:97:78:ce:cd:2c:d5:2c:0f:81:19:34:33:0d:6c:20: 8b:51:7b:a1:47:e5:e2:47:f3:1f:26:df:b2:a9:b9:c6:2b:ab: 5c:ba:8f:1c:33:1a:1f:e5:b9:a6:1c:71:c8:92:a3:2b:ba:bd: 14:9f:bf:6f:56:68:8f:e5:22:f0:57:a6:a0:57:a3:a6:a2:89: 4d:f7:7d:1e:09:9e:76:d7:a6:63:f9:c4:85:b9:e8:7a:93:10: 40:f4:fd:d1:16:63:4a:77:ee:9b:25:40:98:62:77:66:55:cd: ad:a5:d6:d7 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUTGBwu8uaJUr2H8De4qoYCKm4co4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDAzMTUwOTA1WhcNMjUxMTA3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyYTNkMTVkMDljMjEzN2E4ZTFjZTMzOWIzZmQyMzYxNzRj ZDgwMDUxZTI1YTc3Zjk3ZjMwZjg3MjMzMWRlMWZiMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLj17Zyfa5XkOvkJK5g2xU3fnwmPhC1an8VDKLl17HMZjq memNHOWaXnOkbcMraH7X1EHbMaZGFf6OfPV9f/xtt5XSLRVsuFh7dkLjbk9Q8Xcu WtsdyIOQ4oU18YU/cBxjlFshWz+pSCFyNFqnjtcXoM26YyYw1n7ASe20FG0ghJCf Ul8pd4HXELTQHV88gXElYg6hRNkJny2fI0Ex6BA6uPXQhiUAY7xT8+TdlCH0YdK6 n9K5L/69Om/3OYvI8DjQKWlxXMtF8fW6TXYfWL3ACbG5JgKg8cU2h6wMjgOFU+ma j7Hr8mycDaw7yz3TA/y+OPn/S2wgzFNAQ1tGTeC3AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUpVojKv1WcllAuVOWGmSpiH/EwMMwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzI1ZWI2NzFjLTg3NDQtNDY3ZS05ZDg0LWZiMmQ0MDA0MjczNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwISYDANBgkqhkiG9w0BAQsFAAOCAQEABsjm9/rEqkqHrXlwzXyUYPFtMLCG d7ZNWoqcgHt7KZ0KF/kyk6zRmjTmseCgPNExRoiDwlVNqqQ9q8vxAOvoZIcPb/mZ T4BUYjGIQYeD+Dh4XJW+c8V1riMOUzibzTwMpainkGhSU9ZtJMnhQ6zkkB2sHuIf DwoLl3j9Km8v6HToPzkDp/DyKtsNP9logMgoC7Syl3jOzSzVLA+BGTQzDWwgi1F7 oUfl4kfzHybfsqm5xiurXLqPHDMaH+W5phxxyJKjK7q9FJ+/b1Zoj+Ui8FemoFej pqKJTfd9HgmedtemY/nEhbnoepMQQPT90RZjSnfumyVAmGJ3ZlXNraXW1w== -----END CERTIFICATE-----Generated at Sat Oct 18 00:14:33 2025 by rpki-client