$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2e20362f-674b-48ec-bea9-51383186f5d8.roa File: 2e20362f-674b-48ec-bea9-51383186f5d8.roa (raw, json) Hash identifier: HrFq+uRzU/iEHwfmSFqIdvdLsBtNXn+IamiLV+oeOTA= Subject key identifier: EC:31:4A:A2:61:15:AB:EF:DB:42:E1:2D:58:74:A3:BF:BC:1F:6E:DE Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 2211A57CF516512CA9C7C369C589F669009B39 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2e20362f-674b-48ec-bea9-51383186f5d8.roa Signing time: Mon 22 Sep 2025 20:54:06 +0000 ROA not before: Mon 22 Sep 2025 20:54:06 +0000 ROA not after: Mon 27 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.173.80.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:11:a5:7c:f5:16:51:2c:a9:c7:c3:69:c5:89:f6:69:00:9b:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 22 20:54:06 2025 GMT Not After : Oct 27 23:59:59 2025 GMT Subject: serialNumber=d90ad4edb973369c83f4739d10b2a10f11856d05b309fb555534b7e999214b19, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:14:5f:05:fe:6d:99:28:78:06:24:12:7d:ac: 51:8e:7c:05:c2:31:a7:bc:f9:cf:50:49:cd:fd:78: 79:bb:0e:95:74:93:69:c0:47:82:03:4d:b2:9f:be: af:c8:bf:e6:6e:a4:93:1b:d7:97:82:d6:67:8b:86: fc:50:b3:e3:fe:8e:f0:4c:8d:2c:b1:0b:f1:1a:c1: ee:21:1d:40:f0:1b:b4:4f:b0:6a:b6:e0:fb:be:7b: f3:77:16:c0:48:cb:c6:06:e0:0a:9d:06:cb:db:8f: 9c:9b:73:d6:80:99:97:61:25:24:e2:3f:67:86:c3: c4:55:35:54:0c:53:02:c6:24:4f:37:a3:4c:39:fa: 43:41:76:5f:4f:22:2a:cc:6f:32:79:a5:33:e2:22: 05:5f:f8:58:87:be:79:aa:3e:46:3e:e0:06:9a:02: 5d:b6:8b:5e:72:f8:76:0a:15:43:b6:58:5a:71:10: 74:91:5c:10:de:64:6a:8e:5d:d9:c5:7a:5a:1c:7c: 81:d0:04:b0:0e:20:2c:af:1c:79:5e:28:29:ae:a4: eb:5a:9d:9b:10:a3:e4:15:eb:10:58:d4:4d:78:77: fe:eb:82:2b:ea:f0:37:d0:a2:42:c9:97:48:55:6f: 7a:aa:5d:f9:f2:5d:c4:67:e1:30:a9:61:98:42:74: a2:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:31:4A:A2:61:15:AB:EF:DB:42:E1:2D:58:74:A3:BF:BC:1F:6E:DE X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2e20362f-674b-48ec-bea9-51383186f5d8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.173.80.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:b5:44:2c:b6:1d:07:40:c4:f1:f1:ca:18:19:79:75:f4:59: 6e:fc:66:25:54:0a:34:93:ef:10:ff:b9:77:cf:e8:c7:7a:26: c0:fe:5b:00:40:8c:0a:cc:4b:bb:15:77:e0:b5:f9:cd:e9:99: 5d:1e:f4:7e:15:80:20:b6:d3:a4:80:db:31:12:ca:b7:a3:1a: cd:a5:ec:2b:0f:17:0b:ba:a5:2b:52:b9:c7:53:ea:ba:33:51: 5b:f4:a8:21:47:92:d7:eb:7d:6c:92:ba:6b:0f:6d:85:44:05: e9:44:58:b5:ed:97:74:c1:ad:74:29:0a:d2:63:10:04:9f:1b: 8b:a0:7e:5b:59:b6:c7:af:e6:1e:61:27:92:aa:24:24:76:4e: 1e:9b:87:b0:a8:93:09:67:ac:a0:7d:d3:44:be:7b:39:6e:75: dd:8e:4c:f6:cd:d9:d3:94:10:29:b8:7c:33:85:53:82:46:17: 08:e3:2b:46:eb:d5:56:5b:a7:58:15:53:09:b7:4e:d8:c5:31: fb:ae:b2:9f:b6:74:9a:15:af:c3:a5:7c:5d:96:3b:e1:1f:a4: f3:70:00:41:2e:40:5d:30:b7:a2:b3:91:6d:2f:80:48:2e:dc: 61:a4:52:30:30:01:ac:d7:77:3e:ec:13:87:3e:36:cc:67:99: d6:41:52:fb -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITIhGlfPUWUSypx8NpxYn2aQCbOTANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzJkZjZmM2IzYTM0YjYzODZkMWEzMmQ4ZjRmYTMxNzhlZjMx ODg3ZDhiNDI4ZGZhYTQ3NjAeFw0yNTA5MjIyMDU0MDZaFw0yNTEwMjcyMzU5NTla MHoxSTBHBgNVBAUTQGQ5MGFkNGVkYjk3MzM2OWM4M2Y0NzM5ZDEwYjJhMTBmMTE4 NTZkMDViMzA5ZmI1NTU1MzRiN2U5OTkyMTRiMTkxLTArBgNVBAMTJDVmMjc2MDQ1 LTViOWYtNDVlZi05MjNkLWYzZmNlMjRhNjIyNTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAOEUXwX+bZkoeAYkEn2sUY58BcIxp7z5z1BJzf14ebsOlXST acBHggNNsp++r8i/5m6kkxvXl4LWZ4uG/FCz4/6O8EyNLLEL8RrB7iEdQPAbtE+w arbg+75783cWwEjLxgbgCp0Gy9uPnJtz1oCZl2ElJOI/Z4bDxFU1VAxTAsYkTzej TDn6Q0F2X08iKsxvMnmlM+IiBV/4WIe+eao+Rj7gBpoCXbaLXnL4dgoVQ7ZYWnEQ dJFcEN5kao5d2cV6Whx8gdAEsA4gLK8ceV4oKa6k61qdmxCj5BXrEFjUTXh3/uuC K+rwN9CiQsmXSFVveqpd+fJdxGfhMKlhmEJ0ojsCAwEAAaOCArEwggKtMB0GA1Ud DgQWBBTsMUqiYRWr79tC4S1YdKO/vB9u3jAfBgNVHSMEGDAWgBQlrdNCsB63pY6t GZAmiLVLP4H0uDAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzg1MWNlZjE3LTEz MmEtNDMzNy1iN2QxLWJmMTZhNTJmZmQwMy9kZjZmM2IzYTM0YjYzODZkMWEzMmQ4 ZjRmYTMxNzhlZjMxODg3ZDhiNDI4ZGZhYTQ3Ni5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9mNzAzNjk2ZS1lNDdiLTRjMjAtYmQ5My02Zjgw OTA0ZTQyZDIvMmUyMDM2MmYtNjc0Yi00OGVjLWJlYTktNTEzODMxODZmNWQ4LnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMt NmY4MDkwNGU0MmQyL3RqaHRHakxZOVBveGVPOHhpSDJMUW8zNnBIWS5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEABKtUDANBgkqhkiG9w0BAQsFAAOCAQEASrVELLYdB0DE8fHKGBl5dfRZbvxm JVQKNJPvEP+5d8/ox3omwP5bAECMCsxLuxV34LX5zemZXR70fhWAILbTpIDbMRLK t6MazaXsKw8XC7qlK1K5x1PqujNRW/SoIUeS1+t9bJK6aw9thUQF6URYte2XdMGt dCkK0mMQBJ8bi6B+W1m2x6/mHmEnkqokJHZOHpuHsKiTCWesoH3TRL57OW513Y5M 9s3Z05QQKbh8M4VTgkYXCOMrRuvVVlunWBVTCbdO2MUx+66yn7Z0mhWvw6V8XZY7 4R+k83AAQS5AXTC3orORbS+ASC7cYaRSMDABrNd3PuwThz42zGeZ1kFS+w== -----END CERTIFICATE-----Generated at Sat Oct 18 02:35:32 2025 by rpki-client