$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/684bd014-a7cf-443a-8e50-645202b35d6f.roa File: 684bd014-a7cf-443a-8e50-645202b35d6f.roa (raw, json) Hash identifier: 5crsN8TdJROUKIUM5CwTWLNs/cdA2S1tJPqjfBbrn2c= Subject key identifier: 29:88:77:55:79:E5:1F:FF:79:EA:5A:CE:03:6D:4A:95:B5:93:9C:C4 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 1DEB39A31040A693C8622D183BE9A968917C0F54 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/684bd014-a7cf-443a-8e50-645202b35d6f.roa Signing time: Mon 22 Sep 2025 18:47:06 +0000 ROA not before: Mon 22 Sep 2025 18:47:06 +0000 ROA not after: Mon 27 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.160.200.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:eb:39:a3:10:40:a6:93:c8:62:2d:18:3b:e9:a9:68:91:7c:0f:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 22 18:47:06 2025 GMT Not After : Oct 27 23:59:59 2025 GMT Subject: serialNumber=5b17ba36d75d7061ef459c8eed3067cded8c2b3754231c79032d6068528de40d, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:e3:18:be:6c:5a:62:04:55:d5:9c:36:f1:f2: b8:c7:86:4e:4e:26:9c:b3:15:56:22:21:02:f3:31: 93:fd:c5:30:06:9a:db:60:87:4f:14:f4:2f:ea:46: 28:dc:2c:ce:79:6f:b8:6e:6a:7e:d4:7a:cc:28:8c: 90:80:c8:97:87:0a:05:37:64:50:7d:cc:9c:ce:06: 1f:fb:e2:a8:ca:09:44:f4:52:bb:be:7d:1e:12:25: 73:82:75:be:47:e0:f0:6c:8d:07:b3:5b:5a:c9:75: a0:03:16:5f:c1:2f:57:b5:78:0e:35:fb:7e:dd:8b: 18:63:14:91:43:60:4a:09:4b:60:f7:99:b9:5f:e5: c7:03:1b:ed:0c:77:7e:6f:b6:92:d6:da:e2:84:89: f4:90:22:84:e2:33:c7:10:06:0c:15:b7:0e:fb:91: dc:4c:3d:d3:2b:03:bc:f1:83:91:ce:33:d3:42:e4: 76:d1:56:bf:1e:eb:f4:06:05:84:6a:b1:f2:de:9b: c7:d6:42:6d:ca:f7:df:7d:1f:93:ef:ed:4a:48:19: 74:a5:94:ee:ee:d7:c0:3a:6b:8b:f2:ad:6b:ac:9f: 9c:8d:97:ef:2f:b6:7a:ec:22:12:ac:76:7c:1a:09: 2b:99:a9:cb:1d:f9:8d:14:24:e4:17:69:7c:0f:ec: d0:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:88:77:55:79:E5:1F:FF:79:EA:5A:CE:03:6D:4A:95:B5:93:9C:C4 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/684bd014-a7cf-443a-8e50-645202b35d6f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.160.200.0/23 Signature Algorithm: sha256WithRSAEncryption 92:96:15:ff:92:9f:2f:54:26:5a:c5:4f:f0:96:02:90:d8:29: 8c:b3:23:65:3f:72:ef:73:20:0b:a5:1a:3d:e4:8a:37:f6:5b: eb:12:d5:0d:2f:10:01:8f:fe:1f:cf:b5:82:4a:4e:24:ba:85: 4d:cb:f9:bd:67:ed:aa:47:b6:08:89:f0:62:6e:f8:d2:45:f5: b0:6c:0a:34:38:0e:ff:31:5e:cb:dd:f7:ab:84:12:0b:e4:9b: 87:6f:db:88:70:11:43:75:32:15:c1:e1:15:9c:69:00:9c:1c: ff:9e:d0:2a:86:e9:51:47:49:39:ed:d0:29:d7:7c:b6:f1:29: 2b:68:4f:d4:87:58:05:99:c9:42:04:3f:b9:f7:99:d2:a5:0d: 2c:07:c7:f7:1d:42:77:ca:c2:85:ff:ff:92:57:60:7d:6f:c7: a1:c7:f2:0a:62:39:db:d8:f7:66:b8:89:7a:fd:78:80:75:6f: 39:c0:87:4f:1f:fb:c5:56:6b:4b:dd:a5:6d:56:5d:30:29:16: 0b:de:6c:7d:53:b8:73:b6:c8:39:e2:85:9a:35:07:46:bd:86: 39:39:47:09:c1:9c:95:18:79:a7:6a:df:ae:04:89:f4:c9:82: 3e:96:2e:7f:2a:28:de:d2:c3:04:7b:0a:8f:a5:ab:01:9a:f6: b3:91:b8:cd -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHes5oxBAppPIYi0YO+mpaJF8D1QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTIyMTg0NzA2WhcNMjUxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A1YjE3YmEzNmQ3NWQ3MDYxZWY0NTljOGVlZDMwNjdjZGVk OGMyYjM3NTQyMzFjNzkwMzJkNjA2ODUyOGRlNDBkMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDB4xi+bFpiBFXVnDbx8rjHhk5OJpyzFVYiIQLzMZP9xTAG mttgh08U9C/qRijcLM55b7huan7UeswojJCAyJeHCgU3ZFB9zJzOBh/74qjKCUT0 Uru+fR4SJXOCdb5H4PBsjQezW1rJdaADFl/BL1e1eA41+37dixhjFJFDYEoJS2D3 mblf5ccDG+0Md35vtpLW2uKEifSQIoTiM8cQBgwVtw77kdxMPdMrA7zxg5HOM9NC 5HbRVr8e6/QGBYRqsfLem8fWQm3K9999H5Pv7UpIGXSllO7u18A6a4vyrWusn5yN l+8vtnrsIhKsdnwaCSuZqcsd+Y0UJOQXaXwP7NDxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUKYh3VXnlH/956lrOA21KlbWTnMQwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzY4NGJkMDE0LWE3Y2YtNDQzYS04ZTUwLTY0NTIwMmIzNWQ2Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAESoMgwDQYJKoZIhvcNAQELBQADggEBAJKWFf+Sny9UJlrFT/CWApDYKYyz I2U/cu9zIAulGj3kijf2W+sS1Q0vEAGP/h/PtYJKTiS6hU3L+b1n7apHtgiJ8GJu +NJF9bBsCjQ4Dv8xXsvd96uEEgvkm4dv24hwEUN1MhXB4RWcaQCcHP+e0CqG6VFH STnt0CnXfLbxKStoT9SHWAWZyUIEP7n3mdKlDSwHx/cdQnfKwoX//5JXYH1vx6HH 8gpiOdvY92a4iXr9eIB1bznAh08f+8VWa0vdpW1WXTApFgvebH1TuHO2yDnihZo1 B0a9hjk5RwnBnJUYeadq364EifTJgj6WLn8qKN7SwwR7Co+lqwGa9rORuM0= -----END CERTIFICATE-----Generated at Fri Oct 17 23:50:13 2025 by rpki-client