$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/657626ef-3b55-47b6-80ad-4292313572b0.roa File: 657626ef-3b55-47b6-80ad-4292313572b0.roa (raw, json) Hash identifier: TJwdzVGP0f6F4hnGVuE7iThdccAfTocQ7uCq1NPoqaU= Subject key identifier: 77:B8:1B:37:36:66:E1:F5:6F:3A:D3:F4:11:14:F6:6B:1D:76:9E:13 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 78A5DC6D318467A0FFD85C332602097E000B60 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/657626ef-3b55-47b6-80ad-4292313572b0.roa Signing time: Wed 24 Sep 2025 21:37:07 +0000 ROA not before: Wed 24 Sep 2025 21:37:07 +0000 ROA not after: Wed 29 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.65.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:a5:dc:6d:31:84:67:a0:ff:d8:5c:33:26:02:09:7e:00:0b:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 24 21:37:07 2025 GMT Not After : Oct 29 23:59:59 2025 GMT Subject: serialNumber=e483131f32db01dfa3eaac612584c154cdcdd8702f42e85e38d98882405dd5c1, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:53:7c:38:2a:63:db:8c:67:31:03:d8:9b:09: 3b:8e:02:00:28:da:0c:f2:ab:bb:68:6b:9b:8f:32: c8:67:b8:6a:f6:c0:fc:b3:44:1d:aa:80:be:0f:c2: 7d:12:37:5f:d4:31:a9:5b:66:ef:6a:4c:79:00:ee: c5:8a:54:b2:f4:81:99:bf:2e:03:b9:1d:2a:14:df: b1:c7:57:52:9e:4d:d9:97:de:36:ba:34:09:16:39: 3e:a1:18:ed:3e:ff:2c:3b:e6:a7:a4:35:85:75:b8: 29:c5:2a:e1:73:bd:cc:71:42:80:82:a6:8e:2f:22: 0c:a6:d8:1f:09:9d:d3:d4:df:38:dc:df:93:9d:a7: e0:09:2b:88:b9:db:a4:41:4f:21:f0:5c:ba:1c:1a: 2b:28:44:4d:fa:0f:92:ed:e1:1d:6d:5c:2f:29:68: e1:e7:fd:c7:a9:3b:a3:a7:74:4b:60:81:b1:4f:08: 84:9d:40:b6:02:da:aa:25:63:42:15:09:82:a4:6d: ea:33:bc:53:05:17:57:7e:32:39:2e:8a:60:a6:88: 9d:27:0a:26:ae:10:8f:eb:24:c6:06:26:3b:ef:d3: a2:19:59:c2:59:1d:40:e2:cf:41:63:35:2c:aa:16: 0d:f3:3a:85:61:97:90:10:b5:b7:c7:51:38:3d:b7: 18:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:B8:1B:37:36:66:E1:F5:6F:3A:D3:F4:11:14:F6:6B:1D:76:9E:13 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/657626ef-3b55-47b6-80ad-4292313572b0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.65.43.0/24 Signature Algorithm: sha256WithRSAEncryption 16:68:2b:8c:fd:37:a2:46:62:83:17:ea:9b:0a:55:95:e7:1e: e4:9b:4a:be:a2:f1:b5:c2:ba:71:3a:92:48:62:85:53:07:99: e7:05:6a:9b:34:e7:c7:10:e3:01:ca:b2:42:ee:ae:c2:ba:5b: 3f:ba:ec:b4:77:9a:43:1f:b6:60:5a:8d:9a:3c:7f:c3:f6:de: ee:b5:b8:35:28:d7:67:cb:c9:e4:02:75:92:70:96:0d:2a:80: ba:05:c6:67:05:6e:b3:39:b0:1a:53:ef:41:49:33:30:76:c6: 14:cc:ae:db:2b:0f:92:91:8e:d3:5a:8c:d4:b0:65:7d:cd:a8: 42:36:eb:61:16:62:14:1f:4b:61:cd:94:8e:a2:31:0d:a8:d3: a1:92:00:41:6a:c1:c2:03:72:ea:69:41:b1:62:83:81:b8:e1: 08:91:b7:44:15:29:69:97:40:5a:5e:23:f4:fc:2c:65:da:75: 92:16:53:5b:cf:73:0c:1a:21:9d:ae:20:3b:87:e4:f5:e8:ab: ca:16:79:40:21:11:bd:2f:c4:bf:89:dc:ac:74:9a:84:c4:86: 2c:7d:7c:9f:6b:bd:2e:a9:86:bf:53:74:b3:0b:d9:1d:e2:65: 09:e3:e3:af:72:0a:80:47:f4:3f:4a:16:b6:14:1f:a1:ea:81: 72:32:6a:ba -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITeKXcbTGEZ6D/2FwzJgIJfgALYDANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzJkZjZmM2IzYTM0YjYzODZkMWEzMmQ4ZjRmYTMxNzhlZjMx ODg3ZDhiNDI4ZGZhYTQ3NjAeFw0yNTA5MjQyMTM3MDdaFw0yNTEwMjkyMzU5NTla MHoxSTBHBgNVBAUTQGU0ODMxMzFmMzJkYjAxZGZhM2VhYWM2MTI1ODRjMTU0Y2Rj ZGQ4NzAyZjQyZTg1ZTM4ZDk4ODgyNDA1ZGQ1YzExLTArBgNVBAMTJDVmMjc2MDQ1 LTViOWYtNDVlZi05MjNkLWYzZmNlMjRhNjIyNTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBALVTfDgqY9uMZzED2JsJO44CACjaDPKru2hrm48yyGe4avbA /LNEHaqAvg/CfRI3X9QxqVtm72pMeQDuxYpUsvSBmb8uA7kdKhTfscdXUp5N2Zfe Nro0CRY5PqEY7T7/LDvmp6Q1hXW4KcUq4XO9zHFCgIKmji8iDKbYHwmd09TfONzf k52n4AkriLnbpEFPIfBcuhwaKyhETfoPku3hHW1cLylo4ef9x6k7o6d0S2CBsU8I hJ1AtgLaqiVjQhUJgqRt6jO8UwUXV34yOS6KYKaInScKJq4Qj+skxgYmO+/TohlZ wlkdQOLPQWM1LKoWDfM6hWGXkBC1t8dROD23GP8CAwEAAaOCArEwggKtMB0GA1Ud DgQWBBR3uBs3Nmbh9W860/QRFPZrHXaeEzAfBgNVHSMEGDAWgBQlrdNCsB63pY6t GZAmiLVLP4H0uDAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzg1MWNlZjE3LTEz MmEtNDMzNy1iN2QxLWJmMTZhNTJmZmQwMy9kZjZmM2IzYTM0YjYzODZkMWEzMmQ4 ZjRmYTMxNzhlZjMxODg3ZDhiNDI4ZGZhYTQ3Ni5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9mNzAzNjk2ZS1lNDdiLTRjMjAtYmQ5My02Zjgw OTA0ZTQyZDIvNjU3NjI2ZWYtM2I1NS00N2I2LTgwYWQtNDI5MjMxMzU3MmIwLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMt NmY4MDkwNGU0MmQyL3RqaHRHakxZOVBveGVPOHhpSDJMUW8zNnBIWS5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEABJBKzANBgkqhkiG9w0BAQsFAAOCAQEAFmgrjP03okZigxfqmwpVlece5JtK vqLxtcK6cTqSSGKFUweZ5wVqmzTnxxDjAcqyQu6uwrpbP7rstHeaQx+2YFqNmjx/ w/be7rW4NSjXZ8vJ5AJ1knCWDSqAugXGZwVuszmwGlPvQUkzMHbGFMyu2ysPkpGO 01qM1LBlfc2oQjbrYRZiFB9LYc2UjqIxDajToZIAQWrBwgNy6mlBsWKDgbjhCJG3 RBUpaZdAWl4j9PwsZdp1khZTW89zDBohna4gO4fk9eiryhZ5QCERvS/Ev4ncrHSa hMSGLH18n2u9LqmGv1N0swvZHeJlCePjr3IKgEf0P0oWthQfoeqBcjJqug== -----END CERTIFICATE-----Generated at Fri Oct 17 21:57:44 2025 by rpki-client