$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/44c6fbad-1339-4ec1-b4f9-6105db85c70b.roa File: 44c6fbad-1339-4ec1-b4f9-6105db85c70b.roa (raw, json) Hash identifier: xlDdtpGeD2HLaPdnfPNez5JHqDFfB128A5Res7Q96Qk= Subject key identifier: 83:B6:FF:48:ED:F5:EF:C2:DF:D6:1A:B0:56:99:66:5F:94:C8:E9:8D Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 469EF1F2E4C40F152DD861EFB5FB80BF613E254C Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/44c6fbad-1339-4ec1-b4f9-6105db85c70b.roa Signing time: Fri 10 Oct 2025 00:48:23 +0000 ROA not before: Fri 10 Oct 2025 00:48:23 +0000 ROA not after: Fri 14 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.220.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:9e:f1:f2:e4:c4:0f:15:2d:d8:61:ef:b5:fb:80:bf:61:3e:25:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 10 00:48:23 2025 GMT Not After : Nov 14 23:59:59 2025 GMT Subject: serialNumber=c7bde9eea181735e092abb0cfd725ef2d4d6c6d03943a8c7cdf6b902bad55623, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:00:b7:d6:b6:e8:5a:38:e3:51:b0:d0:39:fe: a9:ce:72:50:cb:f4:f5:11:c1:b4:45:ca:52:db:7e: c1:ca:d7:91:f1:2c:4e:79:80:62:70:3f:e1:c5:91: e1:31:1f:38:f9:c8:3c:61:d5:70:ea:a4:73:7a:59: 6e:bc:cf:4d:f5:8a:b0:6c:39:d5:de:e6:72:93:a1: 18:70:e1:42:1d:ef:36:b6:6a:8f:1e:02:db:bc:04: 7f:04:f4:61:a8:bf:65:97:0d:36:41:69:1b:a1:c1: 3f:43:c6:fc:86:8f:f6:65:e4:16:d7:cf:00:90:a7: 52:50:4d:47:25:e7:f3:42:77:c1:e3:17:20:e0:09: 6b:f9:ad:f9:eb:da:ff:fd:89:8b:4c:cc:fa:14:52: 24:64:24:25:e7:37:70:1d:d5:ac:a9:46:17:dc:b5: a4:74:24:94:49:48:3f:26:99:ca:27:2f:b0:ae:b0: 27:9e:09:51:a1:ed:9c:73:68:63:36:7c:9f:fe:86: 4e:48:d7:db:1b:ea:80:94:7a:f6:bc:6c:ee:22:39: 69:81:d3:ba:da:94:47:e9:b2:a5:a2:fd:e0:c1:a8: 93:b7:ff:fd:4d:80:cd:72:b1:22:58:02:7a:c8:3e: 77:67:da:d3:21:d6:93:6e:51:e2:50:4b:9f:61:00: fd:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:B6:FF:48:ED:F5:EF:C2:DF:D6:1A:B0:56:99:66:5F:94:C8:E9:8D X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/44c6fbad-1339-4ec1-b4f9-6105db85c70b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.220.207.0/24 Signature Algorithm: sha256WithRSAEncryption 49:a3:85:67:9e:aa:47:50:cb:d5:1f:32:e0:73:c0:f8:e1:46: 76:32:b8:14:81:ab:eb:45:c2:fe:05:c4:ef:28:89:5d:cf:ca: c1:cb:c0:40:be:84:16:42:cb:a9:23:05:13:4f:4e:1c:d9:46: 90:d0:64:5c:9d:81:e7:4b:28:2b:33:77:d7:79:d7:43:35:ae: 6c:65:60:79:9d:7c:d0:24:fe:05:51:ad:60:07:e6:57:e9:d1: f7:5e:2b:e1:75:a2:2b:6c:30:9a:ec:20:df:1c:29:eb:ab:96: bd:ba:40:19:09:12:f3:e6:b4:74:f6:c3:8c:bd:80:6c:1b:62: 18:d1:3e:15:73:5f:a2:d8:a6:d0:c4:e2:b1:74:23:73:cc:2c: a4:1e:84:26:29:4d:ac:20:f2:a0:0a:ba:73:50:42:67:01:b4: 50:de:e6:73:f3:05:d1:f3:d2:ac:ea:97:17:92:83:14:22:34: 2b:cc:26:b6:f1:cf:55:d0:73:f9:c1:c1:22:bf:41:46:72:69: 57:9e:81:1c:00:f0:9a:f1:0d:52:f6:e8:56:23:c6:bf:ef:21: f6:d6:e0:54:e7:e3:a3:5f:48:78:0b:1a:32:8d:73:62:a5:70: 14:82:90:79:52:fc:28:5e:5a:b7:b8:9f:43:ec:3a:0f:e2:ba: 43:ba:34:46 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURp7x8uTEDxUt2GHvtfuAv2E+JUwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDEwMDA0ODIzWhcNMjUxMTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BjN2JkZTllZWExODE3MzVlMDkyYWJiMGNmZDcyNWVmMmQ0 ZDZjNmQwMzk0M2E4YzdjZGY2YjkwMmJhZDU1NjIzMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCaALfWtuhaOONRsNA5/qnOclDL9PURwbRFylLbfsHK15Hx LE55gGJwP+HFkeExHzj5yDxh1XDqpHN6WW68z031irBsOdXe5nKToRhw4UId7za2 ao8eAtu8BH8E9GGov2WXDTZBaRuhwT9DxvyGj/Zl5BbXzwCQp1JQTUcl5/NCd8Hj FyDgCWv5rfnr2v/9iYtMzPoUUiRkJCXnN3Ad1aypRhfctaR0JJRJSD8mmconL7Cu sCeeCVGh7ZxzaGM2fJ/+hk5I19sb6oCUeva8bO4iOWmB07ralEfpsqWi/eDBqJO3 //1NgM1ysSJYAnrIPndn2tMh1pNuUeJQS59hAP0BAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUg7b/SO3178Lf1hqwVplmX5TI6Y0wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzQ0YzZmYmFkLTEzMzktNGVjMS1iNGY5LTYxMDVkYjg1YzcwYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAP3M8wDQYJKoZIhvcNAQELBQADggEBAEmjhWeeqkdQy9UfMuBzwPjhRnYy uBSBq+tFwv4FxO8oiV3PysHLwEC+hBZCy6kjBRNPThzZRpDQZFydgedLKCszd9d5 10M1rmxlYHmdfNAk/gVRrWAH5lfp0fdeK+F1oitsMJrsIN8cKeurlr26QBkJEvPm tHT2w4y9gGwbYhjRPhVzX6LYptDE4rF0I3PMLKQehCYpTawg8qAKunNQQmcBtFDe 5nPzBdHz0qzqlxeSgxQiNCvMJrbxz1XQc/nBwSK/QUZyaVeegRwA8JrxDVL26FYj xr/vIfbW4FTn46NfSHgLGjKNc2KlcBSCkHlS/CheWre4n0PsOg/iukO6NEY= -----END CERTIFICATE-----Generated at Sat Oct 18 00:18:15 2025 by rpki-client