$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/43497d86-2a73-436c-9fba-ab67eabd6c20.roa File: 43497d86-2a73-436c-9fba-ab67eabd6c20.roa (raw, json) Hash identifier: fzUCKm2D7dX6x5tPay0zDhGFO1Quhgo4PduXK5E/Wa8= Subject key identifier: D5:65:60:54:13:6C:FC:1A:43:93:29:9C:D3:88:85:AD:83:5F:DB:E5 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 5E41615D6F58995A894FEF3F2948AD3535205994 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/43497d86-2a73-436c-9fba-ab67eabd6c20.roa Signing time: Wed 24 Sep 2025 23:09:10 +0000 ROA not before: Wed 24 Sep 2025 23:09:10 +0000 ROA not after: Wed 29 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.65.192.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:41:61:5d:6f:58:99:5a:89:4f:ef:3f:29:48:ad:35:35:20:59:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 24 23:09:10 2025 GMT Not After : Oct 29 23:59:59 2025 GMT Subject: serialNumber=489f61a59c43e8b713c67555ee866edfb795a82b6b71f5f2bd2a4ff723c17364, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:f1:46:39:c0:f5:de:f0:06:ed:cc:a5:68:81: c7:e6:c9:63:18:09:f9:15:bd:49:1d:34:eb:8f:d3: 4f:a5:7e:95:23:23:77:35:00:43:a5:9e:e6:8c:7c: ab:62:25:2e:d0:e9:be:5f:e1:dd:98:ff:ef:dd:2f: 33:f0:f0:89:71:d5:c8:db:63:04:ef:52:71:59:84: bb:f0:ff:25:e8:29:fb:5c:91:8f:ae:1a:a6:d6:12: 40:07:a8:de:e5:48:a9:bf:ba:c5:f1:71:36:8f:72: 4c:34:44:59:4b:1f:03:6f:5b:75:9b:a4:ba:12:f0: 9b:fa:b4:89:da:cf:98:26:6b:89:80:c4:59:2a:11: 59:f1:96:65:12:9b:b0:05:b8:f6:ef:8e:e4:8c:0e: f3:d1:8d:0a:c7:6e:f5:3c:d6:d2:d2:78:04:ba:24: 1c:23:e4:e9:fe:ff:74:4a:9c:bb:ef:29:59:0a:e9: 4b:30:8e:ca:34:01:d8:57:52:7d:db:9d:41:55:5e: c2:91:78:04:c5:de:5d:4d:da:fe:9b:4b:3c:76:70: 07:52:7a:ab:62:52:a0:46:e0:2c:b6:c9:10:99:c7: 0d:3a:7b:8a:7d:de:c3:e2:2b:42:d3:e0:e7:6d:10: d8:45:9a:3d:36:1e:79:4f:9c:46:0b:8d:5d:3e:7e: bd:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:65:60:54:13:6C:FC:1A:43:93:29:9C:D3:88:85:AD:83:5F:DB:E5 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/43497d86-2a73-436c-9fba-ab67eabd6c20.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.65.192.0/20 Signature Algorithm: sha256WithRSAEncryption 0b:60:47:16:a1:13:cc:a1:71:7d:cf:f5:0f:95:7b:7d:58:7e: 75:10:d3:aa:18:9a:21:5f:6a:11:60:b3:50:37:a0:3e:34:53: 11:42:96:cf:86:35:3d:6f:27:e6:c2:69:18:11:0f:8f:80:c2: 17:4b:5d:0d:89:6e:0c:53:96:02:c3:dc:41:65:f6:a3:8d:d1: a0:14:48:63:03:e9:62:69:e1:10:60:13:b3:bc:4b:17:88:e0: 80:01:6e:91:c4:45:51:00:8f:6a:96:1f:43:32:dc:ff:63:92: 97:22:cf:ca:6f:55:76:7f:77:bc:52:67:13:ba:e5:83:0f:5e: 9c:3d:f2:92:1d:fd:ee:3f:cb:12:1b:6e:95:c8:d6:d0:bc:c8: 9c:51:83:93:de:4e:1f:02:57:c5:d9:50:5f:d5:fd:19:91:d2: b3:a6:ff:e8:99:78:19:3f:64:b0:48:3f:52:b3:c1:20:1e:01: 30:de:95:e3:f8:2f:f7:3c:fa:02:f5:58:ce:10:b5:98:5e:58: c3:11:4b:48:9f:13:c0:ca:81:af:79:a8:97:ad:73:dc:ca:db: b8:5d:fc:01:d4:29:6d:4c:6a:e6:e9:af:d4:7d:74:b6:6c:95: b2:db:99:37:da:ce:7f:23:b1:61:35:7a:e6:27:bc:d8:8d:60: 48:6b:7e:e0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXkFhXW9YmVqJT+8/KUitNTUgWZQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTI0MjMwOTEwWhcNMjUxMDI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ODlmNjFhNTljNDNlOGI3MTNjNjc1NTVlZTg2NmVkZmI3 OTVhODJiNmI3MWY1ZjJiZDJhNGZmNzIzYzE3MzY0MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDZ8UY5wPXe8AbtzKVogcfmyWMYCfkVvUkdNOuP00+lfpUj I3c1AEOlnuaMfKtiJS7Q6b5f4d2Y/+/dLzPw8Ilx1cjbYwTvUnFZhLvw/yXoKftc kY+uGqbWEkAHqN7lSKm/usXxcTaPckw0RFlLHwNvW3WbpLoS8Jv6tInaz5gma4mA xFkqEVnxlmUSm7AFuPbvjuSMDvPRjQrHbvU81tLSeAS6JBwj5On+/3RKnLvvKVkK 6Uswjso0AdhXUn3bnUFVXsKReATF3l1N2v6bSzx2cAdSeqtiUqBG4Cy2yRCZxw06 e4p93sPiK0LT4OdtENhFmj02HnlPnEYLjV0+fr2dAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU1WVgVBNs/BpDkymc04iFrYNf2+UwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzQzNDk3ZDg2LTJhNzMtNDM2Yy05ZmJhLWFiNjdlYWJkNmMyMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQSQcAwDQYJKoZIhvcNAQELBQADggEBAAtgRxahE8yhcX3P9Q+Ve31YfnUQ 06oYmiFfahFgs1A3oD40UxFCls+GNT1vJ+bCaRgRD4+AwhdLXQ2JbgxTlgLD3EFl 9qON0aAUSGMD6WJp4RBgE7O8SxeI4IABbpHERVEAj2qWH0My3P9jkpciz8pvVXZ/ d7xSZxO65YMPXpw98pId/e4/yxIbbpXI1tC8yJxRg5PeTh8CV8XZUF/V/RmR0rOm /+iZeBk/ZLBIP1KzwSAeATDeleP4L/c8+gL1WM4QtZheWMMRS0ifE8DKga95qJet c9zK27hd/AHUKW1Maubpr9R9dLZslbLbmTfazn8jsWE1euYnvNiNYEhrfuA= -----END CERTIFICATE-----Generated at Fri Oct 17 22:14:53 2025 by rpki-client