$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4f49d1fb-d98e-4641-b213-73b5743839e1.roa File: 4f49d1fb-d98e-4641-b213-73b5743839e1.roa (raw, json) Hash identifier: pxNg7Zn3FIo7DAMKkU6ZWnr3kiWcEEhEz2W09/Pwsk4= Subject key identifier: 1E:5C:72:1E:3E:2C:A7:08:30:82:FD:8B:DA:EA:AD:68:8A:98:0C:70 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 404E6F22C66EB242904F8AA5043EA16D8E28B1DD Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4f49d1fb-d98e-4641-b213-73b5743839e1.roa Signing time: Mon 22 Sep 2025 17:55:39 +0000 ROA not before: Mon 22 Sep 2025 17:55:39 +0000 ROA not after: Mon 27 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.154.112.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:4e:6f:22:c6:6e:b2:42:90:4f:8a:a5:04:3e:a1:6d:8e:28:b1:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 22 17:55:39 2025 GMT Not After : Oct 27 23:59:59 2025 GMT Subject: serialNumber=aa5305f0988a21680e155f61dd7554a7983382d6be42353a193cff93f995e2ec, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:98:20:ca:1c:30:ea:9a:e2:8a:a2:83:bc:99: 2c:c7:1d:f8:b6:fe:de:ac:59:29:3e:07:f6:2f:11: d6:29:e1:41:63:7d:4c:82:89:7e:4c:5c:1c:64:d5: de:9c:7f:f8:b0:ed:ef:e4:75:38:e0:3a:fe:e1:9a: 3b:67:5c:de:a7:16:cc:fb:37:9a:97:a5:4a:8e:f9: 71:61:f9:59:78:01:d6:d7:13:a6:71:a7:81:17:b6: 21:3d:a0:92:d0:b2:d3:3b:57:79:12:d8:88:c8:f8: 52:d7:96:71:99:94:17:88:a3:2b:58:b2:7e:3e:6d: 5e:47:9b:26:ea:0b:ce:87:12:a2:9a:b5:e5:5e:ce: 70:58:6d:67:ea:d5:8c:8f:79:18:8e:a5:f2:08:2a: e3:6b:b5:7e:2b:46:e3:91:75:b6:7a:d2:64:89:bb: 66:5c:5e:cf:97:14:38:29:82:6f:72:be:0c:77:5e: ea:6f:ba:58:fd:53:d6:37:56:63:4b:9c:9f:07:4f: 3b:82:5f:43:b3:0a:55:c2:d1:a3:44:be:3e:d4:eb: 74:ea:35:6f:cf:43:e7:17:6f:70:18:14:33:89:17: 32:b7:a6:22:9e:f5:22:8e:01:22:74:d9:c3:ac:65: b1:bb:82:dd:0b:ed:1f:40:9d:72:08:9a:1c:50:4e: c0:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:5C:72:1E:3E:2C:A7:08:30:82:FD:8B:DA:EA:AD:68:8A:98:0C:70 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4f49d1fb-d98e-4641-b213-73b5743839e1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.154.112.0/22 Signature Algorithm: sha256WithRSAEncryption 6b:c7:cd:a3:ae:cd:e5:20:b1:b2:f1:ad:fb:be:37:2d:c0:1a: 20:83:f4:1e:bf:fb:44:a3:ff:8c:11:ff:82:15:35:76:f5:6e: 3e:9f:67:01:09:9b:28:00:a5:e3:ac:a7:41:ca:e3:d4:18:3b: d2:67:a6:1a:30:2c:5e:c6:e2:29:8c:c1:24:51:1a:a7:9a:40: 60:12:d8:63:c3:9d:ef:3d:14:c6:c4:c0:6b:f1:ee:99:92:64: 5e:75:0f:78:42:10:93:fb:18:68:72:a9:da:c7:29:a2:b5:5d: ee:e2:7d:4a:05:13:cf:d5:d1:41:71:23:86:69:50:e4:94:71: 7f:0f:3e:39:60:44:c5:d4:93:da:12:86:77:8b:42:61:d7:38: ac:90:58:5d:ae:3a:49:06:57:e0:84:c7:db:48:cc:8c:21:ed: f3:76:46:f6:38:cc:8e:8c:06:dc:a0:a8:7a:b3:88:9f:b8:8d: c9:07:2f:92:46:41:b7:35:4b:b0:d0:a5:15:45:53:08:38:23: 7c:68:9b:0a:6b:59:1b:48:03:99:73:41:30:70:57:b7:d3:e3: 48:1b:f6:43:2e:4a:7f:23:c6:a7:da:d3:02:58:62:a1:21:67: f1:1b:e5:47:43:4b:47:2c:38:75:ab:4d:0a:35:94:ac:01:3e: 44:d5:64:b5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQE5vIsZuskKQT4qlBD6hbY4osd0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTIyMTc1NTM5WhcNMjUxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYTUzMDVmMDk4OGEyMTY4MGUxNTVmNjFkZDc1NTRhNzk4 MzM4MmQ2YmU0MjM1M2ExOTNjZmY5M2Y5OTVlMmVjMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4mCDKHDDqmuKKooO8mSzHHfi2/t6sWSk+B/YvEdYp4UFj fUyCiX5MXBxk1d6cf/iw7e/kdTjgOv7hmjtnXN6nFsz7N5qXpUqO+XFh+Vl4AdbX E6Zxp4EXtiE9oJLQstM7V3kS2IjI+FLXlnGZlBeIoytYsn4+bV5HmybqC86HEqKa teVeznBYbWfq1YyPeRiOpfIIKuNrtX4rRuORdbZ60mSJu2ZcXs+XFDgpgm9yvgx3 Xupvulj9U9Y3VmNLnJ8HTzuCX0OzClXC0aNEvj7U63TqNW/PQ+cXb3AYFDOJFzK3 piKe9SKOASJ02cOsZbG7gt0L7R9AnXIImhxQTsADAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUHlxyHj4spwgwgv2L2uqtaIqYDHAwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzRmNDlkMWZiLWQ5OGUtNDY0MS1iMjEzLTczYjU3NDM4MzllMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAISmnAwDQYJKoZIhvcNAQELBQADggEBAGvHzaOuzeUgsbLxrfu+Ny3AGiCD 9B6/+0Sj/4wR/4IVNXb1bj6fZwEJmygApeOsp0HK49QYO9JnphowLF7G4imMwSRR GqeaQGAS2GPDne89FMbEwGvx7pmSZF51D3hCEJP7GGhyqdrHKaK1Xe7ifUoFE8/V 0UFxI4ZpUOSUcX8PPjlgRMXUk9oShneLQmHXOKyQWF2uOkkGV+CEx9tIzIwh7fN2 RvY4zI6MBtygqHqziJ+4jckHL5JGQbc1S7DQpRVFUwg4I3xomwprWRtIA5lzQTBw V7fT40gb9kMuSn8jxqfa0wJYYqEhZ/Eb5UdDS0csOHWrTQo1lKwBPkTVZLU= -----END CERTIFICATE-----Generated at Sat Oct 18 02:12:00 2025 by rpki-client