$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7df575e3-d205-4504-9aea-5f031ef1798a.roa File: 7df575e3-d205-4504-9aea-5f031ef1798a.roa (raw, json) Hash identifier: sDpck2aeWpQB7SqbJnVnECWrAg6oq7DLWA8Obl1hX2Y= Subject key identifier: D7:FD:8F:E2:76:55:A7:28:F2:DD:98:A8:B0:B6:1C:B2:44:01:37:A1 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 7E22AB89AC77620D3493C6DCCEF9CD3EE5545459 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7df575e3-d205-4504-9aea-5f031ef1798a.roa Signing time: Mon 22 Sep 2025 23:01:48 +0000 ROA not before: Mon 22 Sep 2025 23:01:48 +0000 ROA not after: Mon 27 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.245.98.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:22:ab:89:ac:77:62:0d:34:93:c6:dc:ce:f9:cd:3e:e5:54:54:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 22 23:01:48 2025 GMT Not After : Oct 27 23:59:59 2025 GMT Subject: serialNumber=508d46c9bc72be11f50f232fb2fc1cedba1ce164a388f7ee6258cd410cf1c3e2, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ea:e9:06:7c:90:f3:dc:8b:5e:8c:ef:bd:83: d0:14:73:74:bb:f1:10:6f:b0:20:37:ed:85:27:30: 89:fc:58:1c:f3:17:ed:8a:8e:fa:eb:17:5b:64:0f: b2:31:02:c4:8a:54:22:ba:05:08:b8:34:8e:88:8a: 52:4b:2c:76:d3:0e:a5:b8:1e:9c:ce:0c:3c:2c:f8: fa:10:ac:47:67:8c:5a:13:d6:b2:45:28:0f:8b:d7: 25:96:37:f4:53:6c:43:30:15:30:be:2c:7c:a6:73: 82:c1:6a:d4:2e:e8:e5:ad:1c:53:73:d8:37:3c:76: 69:8f:e1:28:6a:cf:3c:55:03:af:cd:29:cf:87:66: db:e8:09:7e:47:50:62:14:43:e5:0b:f5:76:05:34: fd:36:6d:47:93:a2:40:21:db:74:af:4d:9a:a2:a8: f9:ca:a0:a9:f5:36:a4:0f:f3:ab:c4:9d:07:96:db: 63:4d:1f:3a:9a:74:08:05:ef:ea:78:63:0c:1e:75: 4d:27:50:50:ee:13:20:b1:9d:44:c7:9c:49:49:23: 4b:98:e7:76:89:b8:5b:38:2a:53:35:bf:6d:c6:d1: f2:87:9b:15:1f:c8:1e:8d:3d:a7:88:0c:4c:d6:6b: 01:58:cd:99:3a:e7:10:5b:d3:3f:1d:c5:d0:4a:bd: 66:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:FD:8F:E2:76:55:A7:28:F2:DD:98:A8:B0:B6:1C:B2:44:01:37:A1 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7df575e3-d205-4504-9aea-5f031ef1798a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.245.98.0/24 Signature Algorithm: sha256WithRSAEncryption b4:d3:6a:7b:ad:d9:00:e0:49:8f:9a:ca:cb:01:df:76:07:19: ef:8f:7a:18:2c:b5:95:2a:c7:a0:bb:63:ef:19:fb:9f:16:c7: 69:04:be:6d:c7:3d:87:46:3e:9b:39:56:d7:2f:12:f2:c4:23: 44:d7:70:bc:62:30:00:0a:65:27:79:25:c5:70:1d:18:17:87: 8a:b9:88:1f:a0:78:5b:31:63:70:9b:f6:bf:42:1b:86:d8:ad: 85:d1:fb:45:f6:c5:c3:60:11:c0:ab:3f:67:82:aa:13:67:d3: 0c:01:f5:de:95:6f:ed:eb:83:39:4f:23:df:31:96:10:10:55: 99:d2:49:a6:87:f5:fd:e3:4a:cc:92:89:b7:89:8f:a2:7b:22: 61:d3:59:22:f5:27:e7:2f:0c:a0:57:a7:12:7a:ba:57:69:ac: 97:9b:c3:3a:17:f7:5f:a9:e8:00:d5:06:03:1a:20:71:a7:d4: 67:f6:c2:be:7d:46:9d:4a:44:b9:2a:83:46:c5:f4:59:fa:df: 4d:c6:6b:91:5a:6a:20:f9:42:27:53:df:20:d7:7b:97:8e:a7: 2e:72:48:74:31:6e:a6:80:f1:65:00:d8:0d:27:2e:0d:22:2c: 48:54:e8:af:aa:39:ff:18:c9:00:d3:35:19:c9:ef:b1:54:1d: dd:0a:ba:7c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfiKriax3Yg00k8bczvnNPuVUVFkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTIyMjMwMTQ4WhcNMjUxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A1MDhkNDZjOWJjNzJiZTExZjUwZjIzMmZiMmZjMWNlZGJh MWNlMTY0YTM4OGY3ZWU2MjU4Y2Q0MTBjZjFjM2UyMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDP6ukGfJDz3ItejO+9g9AUc3S78RBvsCA37YUnMIn8WBzz F+2KjvrrF1tkD7IxAsSKVCK6BQi4NI6IilJLLHbTDqW4HpzODDws+PoQrEdnjFoT 1rJFKA+L1yWWN/RTbEMwFTC+LHymc4LBatQu6OWtHFNz2Dc8dmmP4ShqzzxVA6/N Kc+HZtvoCX5HUGIUQ+UL9XYFNP02bUeTokAh23SvTZqiqPnKoKn1NqQP86vEnQeW 22NNHzqadAgF7+p4YwwedU0nUFDuEyCxnUTHnElJI0uY53aJuFs4KlM1v23G0fKH mxUfyB6NPaeIDEzWawFYzZk65xBb0z8dxdBKvWYTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU1/2P4nZVpyjy3ZiosLYcskQBN6EwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzdkZjU3NWUzLWQyMDUtNDUwNC05YWVhLTVmMDMxZWYxNzk4YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAS9WIwDQYJKoZIhvcNAQELBQADggEBALTTanut2QDgSY+ayssB33YHGe+P ehgstZUqx6C7Y+8Z+58Wx2kEvm3HPYdGPps5VtcvEvLEI0TXcLxiMAAKZSd5JcVw HRgXh4q5iB+geFsxY3Cb9r9CG4bYrYXR+0X2xcNgEcCrP2eCqhNn0wwB9d6Vb+3r gzlPI98xlhAQVZnSSaaH9f3jSsySibeJj6J7ImHTWSL1J+cvDKBXpxJ6uldprJeb wzoX91+p6ADVBgMaIHGn1Gf2wr59Rp1KRLkqg0bF9Fn6303Ga5FaaiD5QidT3yDX e5eOpy5ySHQxbqaA8WUA2A0nLg0iLEhU6K+qOf8YyQDTNRnJ77FUHd0Kunw= -----END CERTIFICATE-----Generated at Fri Oct 17 23:56:19 2025 by rpki-client