$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/503e4ea6-1eb7-413e-af4f-6643fc009258.roa File: 503e4ea6-1eb7-413e-af4f-6643fc009258.roa (raw, json) Hash identifier: pLPh/fC7ClKz0IpLN96jO/Sx5jDPpS5dAeqOesdFZKs= Subject key identifier: 6E:30:50:7F:16:3D:7C:87:DF:3B:1E:38:F5:33:71:F5:5B:92:EF:2E Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 14A69675080046153192E16A2B6414F0AAB2E565 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/503e4ea6-1eb7-413e-af4f-6643fc009258.roa Signing time: Tue 21 Oct 2025 07:02:34 +0000 ROA not before: Tue 21 Oct 2025 07:02:34 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.46.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 04 Nov 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:a6:96:75:08:00:46:15:31:92:e1:6a:2b:64:14:f0:aa:b2:e5:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 21 07:02:34 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=f91f4826117e60039c5e8b68df0a86f390a4856f48c9c91d740e50e267da73e0, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:06:80:48:63:fd:7c:8c:f7:d2:cc:65:2a:94: 85:7f:b3:23:3a:70:8c:c2:32:af:f4:a2:38:d9:af: cf:22:ec:0b:2f:33:d5:4f:d2:d3:cd:3b:61:0d:bb: f6:c1:d9:7c:f7:a9:f1:10:e2:a0:ab:87:62:e7:98: 64:31:71:f5:97:83:6c:67:2a:8c:4f:fa:41:8d:0b: 8a:7c:59:87:90:ca:3b:79:cd:59:b1:70:45:56:0d: 7a:dd:bd:97:ff:2a:fb:13:99:a4:0c:3c:f8:e2:ee: 90:2c:43:8b:e2:3d:77:3c:b3:ef:57:7f:8a:8d:48: ed:4b:cb:58:a6:5e:fc:08:4e:5f:28:da:9e:cf:29: 4d:0e:eb:88:e9:82:ad:14:30:f1:96:41:90:d1:c7: b9:7f:4c:10:f0:22:0a:05:0e:08:94:1e:50:bc:bd: e4:87:d6:36:4a:16:ac:03:bb:9a:3b:ac:94:8f:79: 28:66:f2:79:b9:63:cb:3e:9a:94:0c:c9:67:3a:6e: fb:35:96:8c:18:0d:1e:5b:7c:d0:6c:76:85:02:98: 21:18:5a:1c:d2:d8:4f:1c:db:01:16:05:33:1e:80: 34:b4:54:0a:d3:5c:de:2d:ec:cd:86:c2:67:df:07: d9:b1:ab:e8:28:2b:59:37:67:b1:08:86:29:9a:61: 14:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:30:50:7F:16:3D:7C:87:DF:3B:1E:38:F5:33:71:F5:5B:92:EF:2E X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/503e4ea6-1eb7-413e-af4f-6643fc009258.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.46.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3e:2c:fc:b1:0e:f8:4e:1d:a8:84:85:bb:a9:49:31:68:fe:b2: 88:63:6f:74:c0:8a:db:ea:9e:41:56:7f:16:1e:28:e7:27:6d: eb:ca:66:ba:96:29:06:82:cd:0d:1d:20:72:ba:cf:5f:64:27: d1:a6:87:dc:b6:79:6e:aa:98:dd:a5:b6:78:ba:82:d2:62:59: d9:1c:31:7f:49:cf:52:1f:39:01:fb:73:84:ec:ef:80:db:ab: cd:84:a0:1f:76:9f:f5:6c:81:48:53:41:7f:ce:4c:2e:6e:38: 39:b3:2d:d4:69:39:7c:a1:ae:47:86:87:71:c7:96:4c:71:cd: 75:00:35:57:36:54:c6:92:4a:ff:be:28:6e:95:14:17:cd:2b: 16:21:09:d7:0c:d7:c3:36:31:15:a6:41:35:6f:c3:92:c3:c6: da:59:f7:28:32:15:1a:03:9c:27:a0:16:e3:05:08:4c:44:c4: 99:cb:e1:b0:a6:fd:10:6a:2f:45:08:a6:4f:ce:21:81:88:59: 6f:94:8f:e8:10:af:57:d1:4c:91:1b:7a:66:68:1e:4c:8f:b3: c5:d6:02:0c:d5:70:1f:da:d0:4c:38:7e:88:c1:4c:90:a5:ae: e4:df:d5:b5:e1:55:69:1e:d1:03:96:80:9e:d8:9e:90:66:0a: a7:fb:cb:86 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUFKaWdQgARhUxkuFqK2QU8Kqy5WUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDIxMDcwMjM0WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BmOTFmNDgyNjExN2U2MDAzOWM1ZThiNjhkZjBhODZmMzkw YTQ4NTZmNDhjOWM5MWQ3NDBlNTBlMjY3ZGE3M2UwMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDpBoBIY/18jPfSzGUqlIV/syM6cIzCMq/0ojjZr88i7Asv M9VP0tPNO2ENu/bB2Xz3qfEQ4qCrh2LnmGQxcfWXg2xnKoxP+kGNC4p8WYeQyjt5 zVmxcEVWDXrdvZf/KvsTmaQMPPji7pAsQ4viPXc8s+9Xf4qNSO1Ly1imXvwITl8o 2p7PKU0O64jpgq0UMPGWQZDRx7l/TBDwIgoFDgiUHlC8veSH1jZKFqwDu5o7rJSP eShm8nm5Y8s+mpQMyWc6bvs1lowYDR5bfNBsdoUCmCEYWhzS2E8c2wEWBTMegDS0 VArTXN4t7M2GwmffB9mxq+goK1k3Z7EIhimaYRS5AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUbjBQfxY9fIffOx449TNx9VuS7y4wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzUwM2U0ZWE2LTFlYjctNDEzZS1hZjRmLTY2NDNmYzAwOTI1OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwASLjANBgkqhkiG9w0BAQsFAAOCAQEAPiz8sQ74Th2ohIW7qUkxaP6yiGNv dMCK2+qeQVZ/Fh4o5ydt68pmupYpBoLNDR0gcrrPX2Qn0aaH3LZ5bqqY3aW2eLqC 0mJZ2Rwxf0nPUh85AftzhOzvgNurzYSgH3af9WyBSFNBf85MLm44ObMt1Gk5fKGu R4aHcceWTHHNdQA1VzZUxpJK/74obpUUF80rFiEJ1wzXwzYxFaZBNW/DksPG2ln3 KDIVGgOcJ6AW4wUITETEmcvhsKb9EGovRQimT84hgYhZb5SP6BCvV9FMkRt6Zmge TI+zxdYCDNVwH9rQTDh+iMFMkKWu5N/VteFVaR7RA5aAntiekGYKp/vLhg== -----END CERTIFICATE-----Generated at Sun Nov 2 15:07:42 2025 by rpki-client