$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4b068fd6-438c-4750-898b-4010fd3c02fb.roa File: 4b068fd6-438c-4750-898b-4010fd3c02fb.roa (raw, json) Hash identifier: c/XSaKy9/sU+j5zchoGRBbRpZvxevo6eeRzlb5i+Mpk= Subject key identifier: 25:7B:21:D0:F9:08:BB:05:17:C8:7E:62:AE:A5:CC:C5:B1:8D:48:A6 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 8FE1300DAF27A42A313BCE895B050377B6A221 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4b068fd6-438c-4750-898b-4010fd3c02fb.roa Signing time: Wed 15 Oct 2025 23:33:39 +0000 ROA not before: Wed 15 Oct 2025 23:33:39 +0000 ROA not after: Wed 19 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 144.220.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8f:e1:30:0d:af:27:a4:2a:31:3b:ce:89:5b:05:03:77:b6:a2:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 15 23:33:39 2025 GMT Not After : Nov 19 23:59:59 2025 GMT Subject: serialNumber=0af6854ea0b950562d2079a2fd4a48e54547160da9afd5d1f686ca1e040622a3, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:30:8b:6d:5e:55:42:33:7c:da:2d:72:83:a3: c6:10:71:74:ee:57:21:72:35:1c:63:a2:72:30:e6: 1a:cd:f7:33:31:69:37:d3:97:4d:49:a1:6a:46:bb: 9b:1d:e0:98:49:b1:5b:02:9a:e4:94:56:f8:56:93: 65:ea:20:13:68:02:10:b7:7f:14:22:f8:10:15:9c: 7a:8b:94:20:10:2d:0e:0a:7e:a7:e5:92:be:3c:4a: c9:fc:4d:fd:2e:a3:ac:31:79:f4:ca:26:4e:a0:fa: ec:b5:c1:c9:ee:b9:a4:28:34:51:ed:f5:6e:61:58: 56:ee:40:a3:ea:67:9e:e3:93:19:57:67:52:85:3f: d2:10:77:d8:52:54:8c:ec:00:29:35:03:7f:cf:39: d3:11:54:81:96:d5:66:df:d5:55:f7:2e:c5:5c:6c: da:56:43:d8:b0:63:2a:ba:db:b8:54:a7:33:49:f1: 3d:44:7f:ff:cc:8e:90:ba:10:21:08:2b:b2:06:f6: 7d:21:d3:76:33:54:31:a1:8c:b7:53:b8:70:20:68: b7:2d:80:51:fc:3f:d9:d7:08:60:09:72:16:cc:f7: f7:04:37:ce:94:44:4d:0c:29:1d:b4:51:88:bd:0c: 46:33:06:78:42:e1:d0:ee:4e:7c:a0:54:e5:ad:9f: 8a:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:7B:21:D0:F9:08:BB:05:17:C8:7E:62:AE:A5:CC:C5:B1:8D:48:A6 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4b068fd6-438c-4750-898b-4010fd3c02fb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 144.220.71.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:96:18:2f:e7:21:f5:6a:e9:85:6b:33:b4:fd:aa:1a:4f:bd: d2:73:0f:2e:17:cd:13:43:45:b0:ed:64:17:b5:c1:df:21:a8: d1:9c:68:25:6d:9d:79:15:fe:eb:1a:20:e6:fc:b2:31:00:e8: 9c:5c:ac:9f:80:f9:b8:73:39:ae:5c:27:54:aa:ff:8c:70:22: 82:9b:51:66:9c:f2:4a:91:a9:7b:1c:d9:91:90:1f:e0:86:7f: bf:15:0b:4a:c7:f3:3c:c5:24:2d:ba:69:e3:9f:4e:a2:9c:fd: f4:27:78:68:a6:33:2d:f9:9b:ab:1d:d3:20:36:76:08:97:a7: b1:2f:df:57:16:d1:e1:39:4f:1f:09:11:8e:81:ca:43:54:22: bc:19:f6:e5:56:9e:e8:30:6e:e3:66:bb:27:0c:44:be:c0:ce: 5e:8e:5c:97:e7:1c:51:22:2b:5a:f8:8d:8a:70:b3:1b:2f:91: ab:57:4a:8a:12:98:2d:c2:57:71:4f:6a:f4:0d:71:68:e0:93: 4f:61:a8:0b:1f:7f:0b:c5:7d:ce:76:61:96:a8:61:5e:88:5d: 09:a1:60:32:36:02:36:09:96:44:dc:c5:d1:c8:b2:6d:30:7f: 87:bf:9a:9e:37:50:84:ed:0d:21:38:72:e7:a5:c4:1e:10:66: eb:b1:01:03 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAI/hMA2vJ6QqMTvOiVsFA3e2oiEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE1MjMzMzM5WhcNMjUxMTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0AwYWY2ODU0ZWEwYjk1MDU2MmQyMDc5YTJmZDRhNDhlNTQ1 NDcxNjBkYTlhZmQ1ZDFmNjg2Y2ExZTA0MDYyMmEzMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+MIttXlVCM3zaLXKDo8YQcXTuVyFyNRxjonIw5hrN9zMx aTfTl01JoWpGu5sd4JhJsVsCmuSUVvhWk2XqIBNoAhC3fxQi+BAVnHqLlCAQLQ4K fqflkr48Ssn8Tf0uo6wxefTKJk6g+uy1wcnuuaQoNFHt9W5hWFbuQKPqZ57jkxlX Z1KFP9IQd9hSVIzsACk1A3/POdMRVIGW1Wbf1VX3LsVcbNpWQ9iwYyq627hUpzNJ 8T1Ef//MjpC6ECEIK7IG9n0h03YzVDGhjLdTuHAgaLctgFH8P9nXCGAJchbM9/cE N86URE0MKR20UYi9DEYzBnhC4dDuTnygVOWtn4q9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUJXsh0PkIuwUXyH5irqXMxbGNSKYwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzRiMDY4ZmQ2LTQzOGMtNDc1MC04OThiLTQwMTBmZDNjMDJmYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACQ3EcwDQYJKoZIhvcNAQELBQADggEBAEyWGC/nIfVq6YVrM7T9qhpPvdJz Dy4XzRNDRbDtZBe1wd8hqNGcaCVtnXkV/usaIOb8sjEA6JxcrJ+A+bhzOa5cJ1Sq /4xwIoKbUWac8kqRqXsc2ZGQH+CGf78VC0rH8zzFJC26aeOfTqKc/fQneGimMy35 m6sd0yA2dgiXp7Ev31cW0eE5Tx8JEY6BykNUIrwZ9uVWnugwbuNmuycMRL7Azl6O XJfnHFEiK1r4jYpwsxsvkatXSooSmC3CV3FPavQNcWjgk09hqAsffwvFfc52YZao YV6IXQmhYDI2AjYJlkTcxdHIsm0wf4e/mp43UITtDSE4cuelxB4QZuuxAQM= -----END CERTIFICATE-----Generated at Sat Oct 18 02:42:41 2025 by rpki-client