$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6a0c482b-167d-4a41-8b1b-3ff9ff52a314.roa File: 6a0c482b-167d-4a41-8b1b-3ff9ff52a314.roa (raw, json) Hash identifier: 2g663RmWndPJxyaA/Gg6o3vQtF/3QxK0nLSVPuZnGmc= Subject key identifier: 89:3B:8C:45:AB:95:2D:B1:9E:3C:E7:BC:8C:9D:6F:71:E5:14:F6:62 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 1D5E5B24E25E1A1DCB183A22DF0FDDD855F5B3B3 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6a0c482b-167d-4a41-8b1b-3ff9ff52a314.roa Signing time: Wed 15 Oct 2025 20:02:37 +0000 ROA not before: Wed 15 Oct 2025 20:02:37 +0000 ROA not after: Wed 19 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 143.204.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:5e:5b:24:e2:5e:1a:1d:cb:18:3a:22:df:0f:dd:d8:55:f5:b3:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 15 20:02:37 2025 GMT Not After : Nov 19 23:59:59 2025 GMT Subject: serialNumber=02e435cd3d4a265943808b29e4fb9adb2477c0002f04df8556809f47071a268b, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:17:61:1a:0e:19:e4:a7:7a:8b:68:40:00:b4: 37:51:07:f0:6b:46:4d:b9:c5:63:22:9c:46:5d:02: 1d:1a:9e:8d:07:ab:4a:96:c7:a9:ca:40:8d:9e:0d: f5:41:86:96:8d:12:d0:0f:27:6c:27:ef:c8:ed:78: 0a:49:4c:70:2a:01:c5:a8:a6:3c:ed:43:51:d9:af: 7a:45:31:a4:06:59:f5:d6:5d:3f:14:a5:46:8c:6e: 6d:7d:eb:03:fc:17:f0:35:0d:e9:d2:fb:dc:82:4f: bd:46:a2:16:bf:ff:85:15:d1:01:7e:23:87:23:db: 2b:ee:75:bc:9b:ee:b6:6e:cc:a7:44:b1:e8:68:d7: c0:db:73:5b:72:80:77:f2:7a:e7:ee:93:b1:0c:4a: 27:3e:18:dc:93:0b:51:26:77:ad:74:9b:c6:4e:6a: 22:09:0e:05:6e:84:ff:d1:cc:74:18:ad:5b:ad:60: ca:28:ac:96:a0:6b:71:1a:b5:ac:bb:fe:8c:d8:f0: 77:f1:c2:27:fb:6a:78:5f:00:9c:99:58:fa:bf:77: 28:53:67:95:e0:e0:d2:87:24:48:ea:36:e2:ff:3c: 1a:2d:be:d6:5a:71:7a:6c:0b:dc:70:dc:f7:04:00: 63:42:3f:21:0a:d7:99:92:d3:28:22:67:00:64:92: b0:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:3B:8C:45:AB:95:2D:B1:9E:3C:E7:BC:8C:9D:6F:71:E5:14:F6:62 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6a0c482b-167d-4a41-8b1b-3ff9ff52a314.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 143.204.68.0/24 Signature Algorithm: sha256WithRSAEncryption 94:1d:b6:31:75:da:68:ea:d9:3e:25:ac:26:96:c0:17:e7:0b: 15:9d:6a:48:a6:7a:95:ac:9e:16:7f:fe:56:90:99:dc:be:1a: d4:51:f3:dc:89:d3:48:a6:7d:30:70:c4:17:df:64:48:b9:d6: 15:04:9e:61:0a:aa:64:aa:17:ce:9f:32:87:2c:4c:14:0e:9c: ff:53:8d:ca:70:52:f5:37:87:84:cb:12:69:2f:08:40:45:43: 35:cd:df:66:cc:50:67:4c:53:43:2c:ec:9b:2b:3c:e6:73:e4: 7b:d9:00:b5:f8:9b:e0:89:0b:86:e3:6b:1b:22:2a:0c:d0:ce: 75:6d:97:b0:46:a4:fc:08:7c:b0:0f:53:ea:e6:db:78:3f:2f: 45:6d:11:d9:5f:d6:82:a8:9d:7a:a7:bc:d8:a7:1b:1f:ed:4d: 1e:32:be:00:fe:86:94:a3:8c:eb:cb:64:35:43:be:54:0f:6d: 09:bb:98:55:13:51:50:33:a5:f9:e1:aa:84:f6:9e:fb:4d:4a: 59:b4:6c:ae:85:98:07:f3:7f:95:ff:b5:00:85:93:22:5c:66: 55:59:4a:38:14:65:4a:5e:2e:31:c2:bb:d3:79:da:70:90:de: ea:d6:40:4c:02:f2:9e:6d:4c:49:3c:af:d8:38:b0:2d:a0:a8: b3:6a:13:78 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHV5bJOJeGh3LGDoi3w/d2FX1s7MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE1MjAwMjM3WhcNMjUxMTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMmU0MzVjZDNkNGEyNjU5NDM4MDhiMjllNGZiOWFkYjI0 NzdjMDAwMmYwNGRmODU1NjgwOWY0NzA3MWEyNjhiMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1F2EaDhnkp3qLaEAAtDdRB/BrRk25xWMinEZdAh0ano0H q0qWx6nKQI2eDfVBhpaNEtAPJ2wn78jteApJTHAqAcWopjztQ1HZr3pFMaQGWfXW XT8UpUaMbm196wP8F/A1DenS+9yCT71Goha//4UV0QF+I4cj2yvudbyb7rZuzKdE seho18Dbc1tygHfyeufuk7EMSic+GNyTC1Emd610m8ZOaiIJDgVuhP/RzHQYrVut YMoorJaga3Eatay7/ozY8Hfxwif7anhfAJyZWPq/dyhTZ5Xg4NKHJEjqNuL/PBot vtZacXpsC9xw3PcEAGNCPyEK15mS0ygiZwBkkrDnAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUiTuMRauVLbGePOe8jJ1vceUU9mIwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzZhMGM0ODJiLTE2N2QtNGE0MS04YjFiLTNmZjlmZjUyYTMxNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACPzEQwDQYJKoZIhvcNAQELBQADggEBAJQdtjF12mjq2T4lrCaWwBfnCxWd akimepWsnhZ//laQmdy+GtRR89yJ00imfTBwxBffZEi51hUEnmEKqmSqF86fMocs TBQOnP9TjcpwUvU3h4TLEmkvCEBFQzXN32bMUGdMU0Ms7JsrPOZz5HvZALX4m+CJ C4bjaxsiKgzQznVtl7BGpPwIfLAPU+rm23g/L0VtEdlf1oKonXqnvNinGx/tTR4y vgD+hpSjjOvLZDVDvlQPbQm7mFUTUVAzpfnhqoT2nvtNSlm0bK6FmAfzf5X/tQCF kyJcZlVZSjgUZUpeLjHCu9N52nCQ3urWQEwC8p5tTEk8r9g4sC2gqLNqE3g= -----END CERTIFICATE-----Generated at Fri Oct 17 23:47:34 2025 by rpki-client