$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/36745708-a031-4ec0-b5c4-cd79935fd0ab.roa File: 36745708-a031-4ec0-b5c4-cd79935fd0ab.roa (raw, json) Hash identifier: E+vGS1SxTJkaq2mK9hEgzv9snIJsNaBenxLC5UMtXBU= Subject key identifier: 63:0D:21:DA:20:14:26:11:EA:1F:EB:07:FE:22:EE:D5:57:BB:38:06 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 1B55FEDE479F7E71BF950A864D3A1CE9EB48BD96 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/36745708-a031-4ec0-b5c4-cd79935fd0ab.roa Signing time: Mon 22 Sep 2025 18:01:44 +0000 ROA not before: Mon 22 Sep 2025 18:01:44 +0000 ROA not after: Mon 27 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.155.88.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:55:fe:de:47:9f:7e:71:bf:95:0a:86:4d:3a:1c:e9:eb:48:bd:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 22 18:01:44 2025 GMT Not After : Oct 27 23:59:59 2025 GMT Subject: serialNumber=beee47b4f367f67434bcc6bf9341cc35bb975d01dce0c5846efffa6eaa74b736, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:6a:33:46:4a:45:9d:cb:0c:14:02:d0:56:cc: 52:11:fd:4e:83:30:5e:e5:35:a7:7f:e0:c6:2f:42: 24:35:35:1c:11:6f:c4:a0:64:77:1a:77:6d:08:f0: 23:e3:63:1d:ed:ef:7b:51:2a:9e:14:d9:de:cd:1f: 72:83:77:65:0b:ce:72:0e:d2:39:c8:15:9c:28:00: 64:18:c9:66:db:13:f7:bd:d3:cf:f9:ce:3f:49:8c: 19:4b:b8:be:65:f3:d3:ec:e8:c9:43:2f:f4:5e:63: 14:78:24:7c:8b:1f:71:e2:32:9e:53:52:7e:5d:bb: 8d:b6:6f:b2:97:2e:ff:05:4b:8f:20:b1:3e:2b:bb: 26:89:ff:ca:8a:bf:f2:ac:45:0b:83:ca:71:3b:6c: 90:43:5a:44:4f:7d:d1:6a:c1:c3:3f:dc:1b:10:67: 90:4f:bc:29:f8:e7:f0:dd:a1:86:b6:0c:0a:6e:65: 76:06:80:44:30:6a:dc:49:9b:22:14:d8:78:ed:65: ac:f5:57:7b:a2:0c:73:d7:ad:1a:cd:b4:0b:ab:f7: ab:e5:1a:04:2b:3e:a0:66:f4:f5:6d:a0:55:84:6b: 7d:23:f1:8d:e7:ce:99:42:5b:2d:55:89:d5:bd:dd: f2:e3:da:ab:08:7c:5c:92:d0:12:4f:11:bf:cc:3d: 23:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:0D:21:DA:20:14:26:11:EA:1F:EB:07:FE:22:EE:D5:57:BB:38:06 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/36745708-a031-4ec0-b5c4-cd79935fd0ab.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.155.88.0/22 Signature Algorithm: sha256WithRSAEncryption 98:b2:69:ac:da:39:14:64:49:26:35:e9:49:0a:a7:5a:b7:89: 79:ba:5e:77:f1:48:43:2b:2f:b1:01:8c:ff:ac:29:3e:29:6a: 46:9e:b1:82:79:26:1b:e2:eb:c3:53:b1:9d:24:91:31:b9:8b: 0e:49:48:63:c1:b3:38:82:47:cc:bc:96:7b:2f:d3:7c:06:0b: 1f:ce:3c:59:a2:02:8a:de:68:15:c4:c2:e6:1f:da:c1:ed:62: 11:a0:59:f3:9b:8c:ae:50:93:b0:d7:4f:16:db:5f:17:47:bd: d7:52:f4:37:17:00:5f:1a:c9:fd:52:fb:cd:4b:8d:81:a9:47: b7:d5:48:c0:6c:8d:e1:fd:12:fe:b2:84:23:7b:f8:32:c8:72: 0f:46:00:c6:dc:2e:c6:c9:81:0e:34:74:ef:f2:42:a5:6d:69: 07:8e:59:49:54:18:97:3e:16:fe:f5:b7:3d:75:50:07:97:f0: 9e:d9:ca:dc:4d:e8:f9:c5:9d:b1:9e:a9:7b:98:1c:51:97:ee: da:d3:27:ff:df:2b:34:8f:e1:b0:22:4f:7d:1f:d8:f8:8f:ac: 35:f4:24:69:c7:63:bf:f6:a7:0a:61:ab:a1:22:4f:c6:47:60: 63:85:2d:47:9d:05:ad:3d:4e:d1:53:1d:b5:d3:ee:ff:a6:11: d2:2c:8e:c2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUG1X+3keffnG/lQqGTToc6etIvZYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTIyMTgwMTQ0WhcNMjUxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiZWVlNDdiNGYzNjdmNjc0MzRiY2M2YmY5MzQxY2MzNWJi OTc1ZDAxZGNlMGM1ODQ2ZWZmZmE2ZWFhNzRiNzM2MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQajNGSkWdywwUAtBWzFIR/U6DMF7lNad/4MYvQiQ1NRwR b8SgZHcad20I8CPjYx3t73tRKp4U2d7NH3KDd2ULznIO0jnIFZwoAGQYyWbbE/e9 08/5zj9JjBlLuL5l89Ps6MlDL/ReYxR4JHyLH3HiMp5TUn5du422b7KXLv8FS48g sT4ruyaJ/8qKv/KsRQuDynE7bJBDWkRPfdFqwcM/3BsQZ5BPvCn45/DdoYa2DApu ZXYGgEQwatxJmyIU2HjtZaz1V3uiDHPXrRrNtAur96vlGgQrPqBm9PVtoFWEa30j 8Y3nzplCWy1VidW93fLj2qsIfFyS0BJPEb/MPSObAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUYw0h2iAUJhHqH+sH/iLu1Ve7OAYwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzM2NzQ1NzA4LWEwMzEtNGVjMC1iNWM0LWNkNzk5MzVmZDBhYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAISm1gwDQYJKoZIhvcNAQELBQADggEBAJiyaazaORRkSSY16UkKp1q3iXm6 XnfxSEMrL7EBjP+sKT4pakaesYJ5Jhvi68NTsZ0kkTG5iw5JSGPBsziCR8y8lnsv 03wGCx/OPFmiAoreaBXEwuYf2sHtYhGgWfObjK5Qk7DXTxbbXxdHvddS9DcXAF8a yf1S+81LjYGpR7fVSMBsjeH9Ev6yhCN7+DLIcg9GAMbcLsbJgQ40dO/yQqVtaQeO WUlUGJc+Fv71tz11UAeX8J7ZytxN6PnFnbGeqXuYHFGX7trTJ//fKzSP4bAiT30f 2PiPrDX0JGnHY7/2pwphq6EiT8ZHYGOFLUedBa09TtFTHbXT7v+mEdIsjsI= -----END CERTIFICATE-----Generated at Sat Oct 18 00:13:01 2025 by rpki-client