$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3eca21c1-6073-426d-8c6f-6ac9b2fd16cd.roa File: 3eca21c1-6073-426d-8c6f-6ac9b2fd16cd.roa (raw, json) Hash identifier: 0+Q0+rg5hOjXMPcjlz6JgZU/0W+VB63NFK9px9SN5qc= Subject key identifier: D8:47:CB:AE:9E:46:7F:B0:D8:45:1F:88:9E:77:F2:7A:08:B5:EC:B8 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 2AF84D87FD50C17A8168BE476BE5E87F5BA5FE49 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3eca21c1-6073-426d-8c6f-6ac9b2fd16cd.roa Signing time: Mon 22 Sep 2025 19:16:39 +0000 ROA not before: Mon 22 Sep 2025 19:16:39 +0000 ROA not after: Mon 27 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.164.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:f8:4d:87:fd:50:c1:7a:81:68:be:47:6b:e5:e8:7f:5b:a5:fe:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 22 19:16:39 2025 GMT Not After : Oct 27 23:59:59 2025 GMT Subject: serialNumber=cf3df75238919ac3a3d6a0ec057bbe3bfa1063e4a1c59b5117a228cc6c1346b0, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:14:5f:c5:bd:b5:50:fe:b3:63:d3:5e:fb:e3: 9b:de:2c:c7:96:fb:7c:ad:6f:c2:2d:b0:28:00:4c: ce:95:d7:ba:cf:64:d5:74:86:aa:96:c7:83:e9:6e: 72:54:86:7e:93:ba:e7:00:12:5c:82:58:42:de:1c: cf:86:21:b3:28:c1:a7:4b:a3:ae:dc:f8:8b:40:6f: 2b:4f:ef:b6:fc:3b:74:61:8d:c4:46:0f:b6:8e:36: 92:14:bb:f4:83:5e:13:14:04:5b:37:72:d6:9d:41: 81:54:a9:76:53:c0:e7:27:d0:ad:1c:d9:c7:8e:17: 73:0c:d1:5a:34:48:a4:63:51:96:e3:9f:59:ed:25: 1f:0d:57:81:5c:59:50:45:7f:b0:7e:ea:46:8c:7c: 53:89:15:05:be:74:e0:c7:f3:0f:ad:9e:51:38:e2: 0c:63:80:e4:4d:de:f7:0e:6e:1b:e6:8a:19:65:72: 8d:b0:b4:2b:7c:2d:87:ec:7d:62:4a:6a:61:21:1a: 81:43:cf:57:87:cf:21:03:ae:e9:62:d4:69:0e:20: d4:b3:18:69:1a:e2:75:9b:fc:37:69:cc:eb:1b:3c: fb:6f:77:c6:a7:94:92:2b:75:40:76:1e:28:ad:ff: 03:75:aa:bb:76:90:59:32:46:57:fd:10:5f:28:d0: c7:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:47:CB:AE:9E:46:7F:B0:D8:45:1F:88:9E:77:F2:7A:08:B5:EC:B8 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3eca21c1-6073-426d-8c6f-6ac9b2fd16cd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.164.101.0/24 Signature Algorithm: sha256WithRSAEncryption aa:bc:b2:f9:d0:19:88:d6:02:27:a6:da:9c:6f:c4:d9:31:ef: 14:25:d6:c8:08:37:7e:ef:fa:f3:12:36:e9:76:74:52:0c:96: df:c8:ad:1c:56:d3:08:3c:6f:59:9b:5e:ad:35:da:0f:fd:2f: 9f:ef:e4:74:ea:df:1b:fa:7b:17:6a:93:9c:26:b4:3f:f1:7d: aa:13:52:54:67:0a:47:25:7a:42:ae:ef:59:ee:19:79:80:89: 19:67:da:52:75:6a:25:a5:64:07:47:cb:86:48:07:65:0e:ec: 3b:49:02:01:cb:b8:81:04:e2:a8:71:c3:a0:16:b8:4a:dc:b2: 50:58:12:6d:4d:42:fa:a1:b0:10:6c:48:5f:c6:d5:40:61:5a: df:bc:a7:2d:0e:74:86:2f:ef:98:75:c8:06:5c:d2:cf:73:3f: ca:92:4f:50:ea:09:02:d7:7c:4b:c6:2d:21:34:38:fd:c7:56: 0a:20:de:a8:6e:eb:17:a2:06:e6:40:72:07:85:10:d2:25:bf: c3:c4:c4:4d:5b:ff:fd:1d:d8:c0:2e:ea:19:46:10:2e:6c:22: 12:a2:c0:36:70:a3:d3:f2:b7:60:3c:e5:32:1d:41:fc:d2:6b: 1c:ce:41:b0:02:2f:98:09:80:08:3e:8d:ea:15:7a:52:da:ee: e7:f9:ff:4f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKvhNh/1QwXqBaL5Ha+Xof1ul/kkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTIyMTkxNjM5WhcNMjUxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZjNkZjc1MjM4OTE5YWMzYTNkNmEwZWMwNTdiYmUzYmZh MTA2M2U0YTFjNTliNTExN2EyMjhjYzZjMTM0NmIwMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCRFF/FvbVQ/rNj017745veLMeW+3ytb8ItsCgATM6V17rP ZNV0hqqWx4PpbnJUhn6TuucAElyCWELeHM+GIbMowadLo67c+ItAbytP77b8O3Rh jcRGD7aONpIUu/SDXhMUBFs3ctadQYFUqXZTwOcn0K0c2ceOF3MM0Vo0SKRjUZbj n1ntJR8NV4FcWVBFf7B+6kaMfFOJFQW+dODH8w+tnlE44gxjgORN3vcObhvmihll co2wtCt8LYfsfWJKamEhGoFDz1eHzyEDruli1GkOINSzGGka4nWb/DdpzOsbPPtv d8anlJIrdUB2Hiit/wN1qrt2kFkyRlf9EF8o0MflAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU2EfLrp5Gf7DYRR+Innfyegi17LgwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzNlY2EyMWMxLTYwNzMtNDI2ZC04YzZmLTZhYzliMmZkMTZjZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAASpGUwDQYJKoZIhvcNAQELBQADggEBAKq8svnQGYjWAiem2pxvxNkx7xQl 1sgIN37v+vMSNul2dFIMlt/IrRxW0wg8b1mbXq012g/9L5/v5HTq3xv6exdqk5wm tD/xfaoTUlRnCkclekKu71nuGXmAiRln2lJ1aiWlZAdHy4ZIB2UO7DtJAgHLuIEE 4qhxw6AWuErcslBYEm1NQvqhsBBsSF/G1UBhWt+8py0OdIYv75h1yAZc0s9zP8qS T1DqCQLXfEvGLSE0OP3HVgog3qhu6xeiBuZAcgeFENIlv8PExE1b//0d2MAu6hlG EC5sIhKiwDZwo9Pyt2A85TIdQfzSaxzOQbACL5gJgAg+jeoVelLa7uf5/08= -----END CERTIFICATE-----Generated at Sat Oct 18 00:00:09 2025 by rpki-client