$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4481cb2a-dd29-474b-ac62-b782ac1b556d.roa File: 4481cb2a-dd29-474b-ac62-b782ac1b556d.roa (raw, json) Hash identifier: mdppm5a6zqrVTIC/kuu1WywjSzaMtkXAWP0vz83ji/c= Subject key identifier: D9:76:E7:08:B4:AF:A9:83:07:80:1A:B9:88:62:D6:B9:26:B9:95:50 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 47454B18016506C4F0098838C52C8CB9F2A75A07 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4481cb2a-dd29-474b-ac62-b782ac1b556d.roa Signing time: Wed 24 Sep 2025 23:08:48 +0000 ROA not before: Wed 24 Sep 2025 23:08:48 +0000 ROA not after: Wed 29 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.64.128.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:45:4b:18:01:65:06:c4:f0:09:88:38:c5:2c:8c:b9:f2:a7:5a:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 24 23:08:48 2025 GMT Not After : Oct 29 23:59:59 2025 GMT Subject: serialNumber=034b1ff627cfceaf1b5cad459b941ee6c06f109c7e12e6824a5bb91050324c77, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:c9:6d:ba:ea:23:a0:03:d5:1d:7a:4e:0a:aa: b8:94:37:ba:30:71:d2:00:7d:b1:be:fa:10:1e:cd: 5b:32:76:e8:e2:f9:37:68:e1:bf:f0:2a:46:d8:d5: 74:81:ab:9c:bf:bb:f1:86:0c:d3:0e:11:b8:09:a6: 50:db:04:e5:17:0e:a3:2b:42:b4:53:fc:0f:88:98: 97:aa:8d:75:5a:cf:5b:93:4c:01:16:0f:90:ac:0a: a4:9c:72:0c:e2:47:c3:30:26:90:14:ce:ec:00:14: 39:6c:f9:19:ca:ff:e8:25:e8:67:ea:e9:57:a0:01: 60:f7:34:20:d3:07:25:df:c7:41:d5:e7:08:7e:b8: ab:a0:93:37:1b:40:23:64:35:ca:c6:76:16:72:12: 4e:52:9e:5e:75:9f:e4:96:eb:4f:74:1c:cb:28:12: 7b:43:0a:8b:3f:ec:92:ad:6d:ba:ee:6f:d3:f1:b9: 30:b2:3a:71:d4:7d:3a:d7:e6:fd:68:b7:76:e3:aa: 83:07:d1:cf:31:1e:e0:b3:a2:4e:9a:36:f4:1f:35: 29:16:c3:c4:ae:6a:de:61:09:6b:0c:96:70:bd:d4: fc:cf:f4:8c:8e:2e:b3:4a:ff:dd:47:e3:83:b5:d5: 20:93:98:4c:6a:71:76:dc:c0:fb:2d:7e:7a:21:6e: 64:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:76:E7:08:B4:AF:A9:83:07:80:1A:B9:88:62:D6:B9:26:B9:95:50 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4481cb2a-dd29-474b-ac62-b782ac1b556d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.64.128.0/20 Signature Algorithm: sha256WithRSAEncryption 97:da:33:a6:4f:80:e2:b5:7e:14:05:67:11:03:6b:61:91:f8: 1e:27:9b:d9:36:91:cc:b0:64:16:9f:4b:14:46:1d:56:20:d1: 54:7f:d0:c0:13:6d:f3:ce:c3:8e:d1:e8:b6:60:bf:dd:63:0c: e4:8b:33:ae:ff:5b:8f:b5:49:e1:18:4b:4b:34:cf:69:28:bb: ee:9c:1a:11:ab:13:bf:19:d1:63:5a:60:17:af:15:fa:cf:43: 60:ba:a2:36:e0:45:73:35:2a:d7:79:79:a2:e3:60:5f:0e:ec: fe:55:c2:bd:d9:7a:0f:7a:9a:29:be:73:4e:d2:a2:b0:e1:67: 56:8d:1e:98:09:9c:ce:23:6d:73:48:b1:31:5e:5e:0f:be:52: 87:93:5b:ba:f8:40:80:a6:ae:c0:b8:47:2c:05:5e:fd:bb:85: 9d:01:0c:be:57:5c:6d:aa:05:0e:54:79:d2:51:e0:ab:0b:aa: 52:d2:c4:77:a9:38:ee:e6:f7:b2:a3:e8:a5:fd:b0:09:76:71: 06:6c:9b:bb:a3:fe:02:36:9e:a7:cc:07:72:d3:aa:49:97:e9: da:31:eb:1a:42:ba:46:36:ee:29:a0:de:7d:b4:c6:0e:d8:ef: 7c:93:92:5b:d6:4d:5d:ee:b2:9a:c3:73:c5:1c:81:2c:51:e4: ea:1f:16:d8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUR0VLGAFlBsTwCYg4xSyMufKnWgcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTI0MjMwODQ4WhcNMjUxMDI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMzRiMWZmNjI3Y2ZjZWFmMWI1Y2FkNDU5Yjk0MWVlNmMw NmYxMDljN2UxMmU2ODI0YTViYjkxMDUwMzI0Yzc3MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGyW266iOgA9Udek4KqriUN7owcdIAfbG++hAezVsyduji +Tdo4b/wKkbY1XSBq5y/u/GGDNMOEbgJplDbBOUXDqMrQrRT/A+ImJeqjXVaz1uT TAEWD5CsCqSccgziR8MwJpAUzuwAFDls+RnK/+gl6Gfq6VegAWD3NCDTByXfx0HV 5wh+uKugkzcbQCNkNcrGdhZyEk5Snl51n+SW6090HMsoEntDCos/7JKtbbrub9Px uTCyOnHUfTrX5v1ot3bjqoMH0c8xHuCzok6aNvQfNSkWw8Suat5hCWsMlnC91PzP 9IyOLrNK/91H44O11SCTmExqcXbcwPstfnohbmQ9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU2XbnCLSvqYMHgBq5iGLWuSa5lVAwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzQ0ODFjYjJhLWRkMjktNDc0Yi1hYzYyLWI3ODJhYzFiNTU2ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQSQIAwDQYJKoZIhvcNAQELBQADggEBAJfaM6ZPgOK1fhQFZxEDa2GR+B4n m9k2kcywZBafSxRGHVYg0VR/0MATbfPOw47R6LZgv91jDOSLM67/W4+1SeEYS0s0 z2kou+6cGhGrE78Z0WNaYBevFfrPQ2C6ojbgRXM1Ktd5eaLjYF8O7P5Vwr3Zeg96 mim+c07SorDhZ1aNHpgJnM4jbXNIsTFeXg++UoeTW7r4QICmrsC4RywFXv27hZ0B DL5XXG2qBQ5UedJR4KsLqlLSxHepOO7m97Kj6KX9sAl2cQZsm7uj/gI2nqfMB3LT qkmX6dox6xpCukY27img3n20xg7Y73yTklvWTV3usprDc8UcgSxR5OofFtg= -----END CERTIFICATE-----Generated at Sat Oct 18 05:07:07 2025 by rpki-client