$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/71894964-5033-47ae-8835-e61580ff03b8.roa File: 71894964-5033-47ae-8835-e61580ff03b8.roa (raw, json) Hash identifier: lB5RkPhZfRhSjm0jVlIaV9ALxu/q/nQhePVSOzbxp14= Subject key identifier: B3:86:78:86:1B:4D:11:9C:E3:03:37:5A:9B:A7:45:EC:F1:08:21:AE Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 22ECE4B0322B850EC26B98A572C6DDA975C65E74 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/71894964-5033-47ae-8835-e61580ff03b8.roa Signing time: Mon 22 Sep 2025 20:38:59 +0000 ROA not before: Mon 22 Sep 2025 20:38:59 +0000 ROA not after: Mon 27 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.173.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:ec:e4:b0:32:2b:85:0e:c2:6b:98:a5:72:c6:dd:a9:75:c6:5e:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 22 20:38:59 2025 GMT Not After : Oct 27 23:59:59 2025 GMT Subject: serialNumber=885ff17ff041fd933013f67ed931e404bb18a984c6eecf2d6f6d557051f15f96, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:6d:74:ff:61:00:7d:06:c7:34:7c:2b:37:49: 66:f7:ee:67:a3:f5:52:b8:c4:5b:c0:f6:3e:cc:64: bc:ef:8d:bd:0b:b6:08:f7:87:57:f6:6e:0e:25:72: 75:f3:6e:f0:7f:e7:b4:00:8b:ff:1a:12:e1:d6:63: a5:61:a6:a7:51:a0:b0:e1:0c:d3:6a:fd:ba:48:96: 88:e4:c9:1c:b2:80:81:1e:ea:0f:74:71:32:27:32: 7f:c4:b1:63:0a:9c:bf:ca:fc:26:26:a8:51:1b:8e: d4:ff:18:6e:42:00:61:bd:2c:e0:90:1f:cc:ed:93: e0:c7:56:97:f2:9b:90:0e:f7:7f:41:07:37:cd:cb: e9:65:fb:05:7d:01:be:5b:10:11:0a:9c:0f:4e:91: 5a:59:36:3e:c0:fd:40:4c:34:f8:15:5b:43:ba:3f: 35:1b:fd:de:00:47:33:c6:ed:1a:ed:94:d9:3c:fe: 2a:76:86:01:73:9e:ec:a9:20:80:51:b9:4f:fe:3d: 54:81:c1:09:5d:10:67:bd:c3:52:b7:c8:25:c7:26: 7b:58:fb:56:f9:28:44:ac:94:e7:37:ba:67:04:04: 62:34:89:79:f6:db:a2:67:4a:cb:75:dd:6e:a6:a9: 23:f5:8a:94:c7:7b:54:f8:e3:a6:fc:73:91:ad:a5: dd:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:86:78:86:1B:4D:11:9C:E3:03:37:5A:9B:A7:45:EC:F1:08:21:AE X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/71894964-5033-47ae-8835-e61580ff03b8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.173.112.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:14:2f:bd:25:d4:ed:38:79:0d:91:20:db:0e:35:cf:19:52: dc:88:47:94:ad:99:44:c2:a9:9b:4e:bf:eb:a7:7d:81:f1:b5: 90:2c:53:58:16:58:b5:8a:f5:51:2a:a9:4d:d0:49:42:c7:f9: 49:c4:d5:b9:04:89:b2:3f:1e:0f:a0:ad:af:17:6c:d7:a2:22: 2d:38:47:c6:8e:6b:ba:7b:27:f4:38:27:76:3e:03:1f:39:20: ec:6d:8f:6f:11:9f:d9:d3:33:58:c8:88:09:23:28:0b:97:9d: ed:e2:60:e5:2c:36:f8:c0:55:4f:36:f4:38:af:eb:25:50:97: 7d:d4:28:05:7d:b7:9f:be:b3:a9:ec:1b:36:bc:64:87:b0:22: 3c:40:fd:e5:5a:20:78:39:ad:93:cd:9d:5b:04:29:04:24:1e: 0b:61:07:52:ee:07:c7:b3:19:e5:a9:cd:a5:e4:72:67:0e:6b: bb:1e:01:53:0f:22:f5:f7:be:d5:1f:96:db:b8:66:61:f0:d5: ac:d2:76:0e:e8:45:f9:01:54:bb:88:b5:86:88:f6:03:80:de: 25:3a:56:0f:91:3d:64:0f:8f:b2:99:6d:43:2e:0e:ae:59:a6: 16:de:b2:2c:71:45:3f:ff:12:8c:42:6a:24:99:fa:ff:a6:d4: ee:57:3d:cb -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIuzksDIrhQ7Ca5ilcsbdqXXGXnQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTIyMjAzODU5WhcNMjUxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A4ODVmZjE3ZmYwNDFmZDkzMzAxM2Y2N2VkOTMxZTQwNGJi MThhOTg0YzZlZWNmMmQ2ZjZkNTU3MDUxZjE1Zjk2MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4bXT/YQB9Bsc0fCs3SWb37mej9VK4xFvA9j7MZLzvjb0L tgj3h1f2bg4lcnXzbvB/57QAi/8aEuHWY6VhpqdRoLDhDNNq/bpIlojkyRyygIEe 6g90cTInMn/EsWMKnL/K/CYmqFEbjtT/GG5CAGG9LOCQH8ztk+DHVpfym5AO939B BzfNy+ll+wV9Ab5bEBEKnA9OkVpZNj7A/UBMNPgVW0O6PzUb/d4ARzPG7RrtlNk8 /ip2hgFznuypIIBRuU/+PVSBwQldEGe9w1K3yCXHJntY+1b5KESslOc3umcEBGI0 iXn226JnSst13W6mqSP1ipTHe1T446b8c5Gtpd1HAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUs4Z4hhtNEZzjAzdam6dF7PEIIa4wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzcxODk0OTY0LTUwMzMtNDdhZS04ODM1LWU2MTU4MGZmMDNiOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAASrXAwDQYJKoZIhvcNAQELBQADggEBAGsUL70l1O04eQ2RINsONc8ZUtyI R5StmUTCqZtOv+unfYHxtZAsU1gWWLWK9VEqqU3QSULH+UnE1bkEibI/Hg+gra8X bNeiIi04R8aOa7p7J/Q4J3Y+Ax85IOxtj28Rn9nTM1jIiAkjKAuXne3iYOUsNvjA VU829Div6yVQl33UKAV9t5++s6nsGza8ZIewIjxA/eVaIHg5rZPNnVsEKQQkHgth B1LuB8ezGeWpzaXkcmcOa7seAVMPIvX3vtUfltu4ZmHw1azSdg7oRfkBVLuItYaI 9gOA3iU6Vg+RPWQPj7KZbUMuDq5ZphbesixxRT//EoxCaiSZ+v+m1O5XPcs= -----END CERTIFICATE-----Generated at Fri Oct 17 23:54:02 2025 by rpki-client