$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/25ff07f6-b538-4064-b0a2-c44d6aa11273.roa File: 25ff07f6-b538-4064-b0a2-c44d6aa11273.roa (raw, json) Hash identifier: mODi0yZs4GESNkfkmdQmRsec07rzbsdNSd53DgtT5ys= Subject key identifier: E8:8A:3E:6D:C6:AA:39:E7:D1:62:FC:65:C8:E9:81:5B:17:49:F5:77 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 48EB090C610A5082B808555AA99C7968A03B4F17 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/25ff07f6-b538-4064-b0a2-c44d6aa11273.roa Signing time: Mon 22 Sep 2025 23:15:22 +0000 ROA not before: Mon 22 Sep 2025 23:15:22 +0000 ROA not after: Mon 27 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.245.188.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:eb:09:0c:61:0a:50:82:b8:08:55:5a:a9:9c:79:68:a0:3b:4f:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 22 23:15:22 2025 GMT Not After : Oct 27 23:59:59 2025 GMT Subject: serialNumber=2ac138bc13d35a32272a1cece0b2093078a832436ebbc6dd883381b262be8ec9, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:b7:57:09:cb:7d:1c:be:e5:c1:11:5c:c6:81: 08:64:b5:d7:5d:44:39:e6:17:c0:7d:bd:ef:ec:dc: 76:30:5a:48:c0:23:1d:6e:b6:5c:40:ab:83:52:ac: 82:6b:94:12:e4:f5:39:0d:91:8a:47:78:cf:82:32: d0:80:2c:c5:2b:af:e1:24:26:57:96:03:b3:5d:15: d4:2c:93:d3:0c:12:65:2c:04:4f:ec:45:51:0b:6e: 2f:dc:3f:73:87:c2:60:9f:c2:19:f2:44:0c:13:92: 01:9d:43:2b:4d:e4:1e:d6:e1:d4:b1:70:ff:60:92: 9e:50:7b:95:f4:f1:35:32:bb:8a:5e:a3:d2:6f:59: 93:16:60:ce:81:6d:a7:e6:e1:8b:1a:14:44:2f:59: 30:7f:bd:a2:e1:57:61:a4:04:6c:ff:fb:4e:60:70: f5:32:ef:4a:09:5a:2b:0c:bf:cc:a3:64:b9:6c:2d: da:92:c1:98:1f:0c:48:67:44:fe:4f:0d:8c:27:42: 73:71:e1:98:7a:7a:9b:86:ee:5d:9f:a6:59:d5:5f: 6b:5f:b0:52:1e:4f:65:ef:70:91:42:b0:c1:05:6e: 53:bf:c4:60:89:e3:be:8b:b9:dc:c5:5e:e8:36:bb: e5:34:63:53:64:16:f2:92:cc:9b:ea:a0:cf:d7:30: 61:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:8A:3E:6D:C6:AA:39:E7:D1:62:FC:65:C8:E9:81:5B:17:49:F5:77 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/25ff07f6-b538-4064-b0a2-c44d6aa11273.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.245.188.0/23 Signature Algorithm: sha256WithRSAEncryption 5d:23:b9:3e:7d:63:70:2a:91:f5:a6:b4:36:e5:db:e3:08:30: 34:23:c9:17:33:b3:0e:b2:3b:17:4a:60:88:5c:14:14:9f:fb: a9:80:67:06:18:c6:43:ab:4d:d4:33:e3:3c:19:21:9c:d3:1b: 57:b1:e3:f9:05:71:bd:99:2f:c1:83:74:5d:b3:05:7c:92:3b: 46:2f:43:dd:2d:b7:4c:38:dc:b2:58:27:ac:cd:53:02:d4:d2: 27:c9:c0:ea:20:d3:b3:de:a6:29:0e:1f:61:fb:0b:a6:5f:3c: 2c:87:b0:da:45:f0:a8:21:8b:20:be:43:24:ad:c7:5b:a8:8e: 5e:28:4b:e9:a5:b2:82:0a:0b:fd:c8:60:7f:81:eb:1a:a8:2a: c8:d0:8c:a8:45:f3:ff:bb:9e:4c:78:73:d4:09:40:c6:13:99: db:ad:c3:75:d1:c7:6d:22:e1:6c:58:dd:0f:50:1c:ea:a7:8e: a9:ae:71:c7:c8:3b:e2:14:2c:10:50:8c:35:67:3b:8d:ed:4a: b1:b5:61:17:9d:58:cf:b5:c0:83:fe:82:ee:d2:c9:c4:9f:63: 54:cc:52:c4:d4:6e:d8:8d:e2:bd:9d:28:a0:49:6b:1b:c6:d1: b4:3b:4c:5a:c1:5e:4c:39:c5:2b:38:dd:9e:3d:0e:39:14:70: 76:07:5b:46 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSOsJDGEKUIK4CFVaqZx5aKA7TxcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTIyMjMxNTIyWhcNMjUxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyYWMxMzhiYzEzZDM1YTMyMjcyYTFjZWNlMGIyMDkzMDc4 YTgzMjQzNmViYmM2ZGQ4ODMzODFiMjYyYmU4ZWM5MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/t1cJy30cvuXBEVzGgQhktdddRDnmF8B9ve/s3HYwWkjA Ix1utlxAq4NSrIJrlBLk9TkNkYpHeM+CMtCALMUrr+EkJleWA7NdFdQsk9MMEmUs BE/sRVELbi/cP3OHwmCfwhnyRAwTkgGdQytN5B7W4dSxcP9gkp5Qe5X08TUyu4pe o9JvWZMWYM6Bbafm4YsaFEQvWTB/vaLhV2GkBGz/+05gcPUy70oJWisMv8yjZLls LdqSwZgfDEhnRP5PDYwnQnNx4Zh6epuG7l2fplnVX2tfsFIeT2XvcJFCsMEFblO/ xGCJ476LudzFXug2u+U0Y1NkFvKSzJvqoM/XMGFJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU6Io+bcaqOefRYvxlyOmBWxdJ9XcwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzI1ZmYwN2Y2LWI1MzgtNDA2NC1iMGEyLWM0NGQ2YWExMTI3My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAES9bwwDQYJKoZIhvcNAQELBQADggEBAF0juT59Y3AqkfWmtDbl2+MIMDQj yRczsw6yOxdKYIhcFBSf+6mAZwYYxkOrTdQz4zwZIZzTG1ex4/kFcb2ZL8GDdF2z BXySO0YvQ90tt0w43LJYJ6zNUwLU0ifJwOog07PepikOH2H7C6ZfPCyHsNpF8Kgh iyC+QyStx1uojl4oS+mlsoIKC/3IYH+B6xqoKsjQjKhF8/+7nkx4c9QJQMYTmdut w3XRx20i4WxY3Q9QHOqnjqmuccfIO+IULBBQjDVnO43tSrG1YRedWM+1wIP+gu7S ycSfY1TMUsTUbtiN4r2dKKBJaxvG0bQ7TFrBXkw5xSs43Z49DjkUcHYHW0Y= -----END CERTIFICATE-----Generated at Sat Oct 18 02:42:52 2025 by rpki-client