$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7faf3e98-0d85-4e96-97db-f7d7b9a79bc1.roa File: 7faf3e98-0d85-4e96-97db-f7d7b9a79bc1.roa (raw, json) Hash identifier: 8ivOjfjCr/s1xSryNh/Z9BvsL3i7nAXrXG4xZDBzunw= Subject key identifier: EC:56:06:2B:D6:47:C4:24:E4:F9:6D:54:EA:3D:AE:99:09:E0:47:E6 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 6970CB67920822E9A5325FF4B378C5A7C4D59748 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7faf3e98-0d85-4e96-97db-f7d7b9a79bc1.roa Signing time: Mon 22 Sep 2025 23:22:10 +0000 ROA not before: Mon 22 Sep 2025 23:22:10 +0000 ROA not after: Mon 27 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.244.216.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:70:cb:67:92:08:22:e9:a5:32:5f:f4:b3:78:c5:a7:c4:d5:97:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 22 23:22:10 2025 GMT Not After : Oct 27 23:59:59 2025 GMT Subject: serialNumber=eec28efacc4e24313e159dd3514a9de7c01ecfddad9e2e4b51767699b602e9a6, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:cc:9a:a6:07:d2:3c:a6:46:be:b9:4a:d2:04: 6d:9f:ca:24:fa:d0:38:40:ea:c8:3b:55:a2:8b:d9: 7c:69:a6:a9:96:0f:4a:96:cf:f2:d7:f8:62:8c:28: a9:e2:0a:76:77:80:39:58:c3:f7:78:26:67:06:0f: fb:4c:0a:4b:8d:5d:05:09:95:d9:31:e2:4f:a6:df: 1d:f4:7e:d5:44:e8:f8:92:66:83:a1:7c:57:4b:61: 0c:82:d7:22:14:ca:c8:6c:4f:7b:e6:3e:84:cb:f7: 5d:92:0f:00:47:36:01:07:d6:66:4c:12:ef:09:0e: dc:03:4f:d5:2c:56:3b:15:8d:09:cd:d3:b6:f8:d5: 25:24:53:95:06:eb:58:dc:42:a9:8f:4f:f2:d2:27: df:e6:32:6d:35:8b:fa:59:5c:f8:6c:ef:cd:7e:3e: 5e:26:a8:66:73:1d:d2:4c:97:96:4f:f8:a8:ec:76: 37:b1:19:9a:ea:a5:61:22:38:93:8f:e4:09:a0:7e: d9:06:ce:f7:6b:0b:75:d9:67:13:df:ac:c9:96:4b: c6:81:b0:f2:4c:f3:4f:33:f9:66:d9:a4:92:cd:22: e5:0c:c5:f8:5d:75:40:b5:a7:1c:61:12:dc:1b:67: f9:7c:c2:4c:19:d2:f9:1a:87:9b:13:c4:75:fa:33: 53:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:56:06:2B:D6:47:C4:24:E4:F9:6D:54:EA:3D:AE:99:09:E0:47:E6 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7faf3e98-0d85-4e96-97db-f7d7b9a79bc1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.244.216.0/22 Signature Algorithm: sha256WithRSAEncryption 2a:6e:29:9f:65:3f:83:f0:ea:fe:32:c8:b4:30:18:e3:c1:9c: 85:38:93:b1:d5:57:26:cf:e2:0d:7e:b8:dd:47:d6:a6:4e:90: 75:5f:be:72:67:3c:6a:3f:14:e0:5a:68:39:0c:c2:b6:22:94: 5f:9a:54:c5:d1:61:7c:2c:69:75:20:ca:a9:1f:4b:39:c1:03: 8b:05:e1:20:89:50:8f:2a:89:cc:a9:5a:57:82:97:99:fc:2d: 34:f8:c9:9b:e0:01:8a:49:20:50:08:03:06:63:1e:fd:f5:6a: f4:93:85:ee:58:80:da:ea:8a:e2:91:69:da:04:cc:45:d0:25: 40:12:4d:55:ae:cb:58:49:e1:20:64:98:b7:36:7f:d4:bf:1f: 02:23:92:ee:ee:43:7c:c8:ff:b5:fd:bd:de:49:62:3a:d8:28: aa:4a:9f:93:76:63:7b:db:d9:7e:9d:11:da:6b:cd:3e:98:0b: 64:5f:ce:34:60:4b:b1:9b:92:27:a8:d1:1c:9a:63:84:b2:cf: 17:58:c3:9e:af:39:21:42:5d:b6:cc:43:40:2b:bf:7a:80:56: 48:ef:7f:66:f6:71:87:99:c2:88:54:f4:fd:c0:a5:6b:75:ee: df:cb:da:96:a5:17:0c:03:51:90:1d:3d:e6:69:af:5f:fc:a9: e5:bc:01:1c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaXDLZ5IIIumlMl/0s3jFp8TVl0gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTIyMjMyMjEwWhcNMjUxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlZWMyOGVmYWNjNGUyNDMxM2UxNTlkZDM1MTRhOWRlN2Mw MWVjZmRkYWQ5ZTJlNGI1MTc2NzY5OWI2MDJlOWE2MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDpzJqmB9I8pka+uUrSBG2fyiT60DhA6sg7VaKL2XxppqmW D0qWz/LX+GKMKKniCnZ3gDlYw/d4JmcGD/tMCkuNXQUJldkx4k+m3x30ftVE6PiS ZoOhfFdLYQyC1yIUyshsT3vmPoTL912SDwBHNgEH1mZMEu8JDtwDT9UsVjsVjQnN 07b41SUkU5UG61jcQqmPT/LSJ9/mMm01i/pZXPhs781+Pl4mqGZzHdJMl5ZP+Kjs djexGZrqpWEiOJOP5AmgftkGzvdrC3XZZxPfrMmWS8aBsPJM808z+WbZpJLNIuUM xfhddUC1pxxhEtwbZ/l8wkwZ0vkah5sTxHX6M1NRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU7FYGK9ZHxCTk+W1U6j2umQngR+YwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzdmYWYzZTk4LTBkODUtNGU5Ni05N2RiLWY3ZDdiOWE3OWJjMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIS9NgwDQYJKoZIhvcNAQELBQADggEBACpuKZ9lP4Pw6v4yyLQwGOPBnIU4 k7HVVybP4g1+uN1H1qZOkHVfvnJnPGo/FOBaaDkMwrYilF+aVMXRYXwsaXUgyqkf SznBA4sF4SCJUI8qicypWleCl5n8LTT4yZvgAYpJIFAIAwZjHv31avSThe5YgNrq iuKRadoEzEXQJUASTVWuy1hJ4SBkmLc2f9S/HwIjku7uQ3zI/7X9vd5JYjrYKKpK n5N2Y3vb2X6dEdprzT6YC2RfzjRgS7Gbkieo0RyaY4SyzxdYw56vOSFCXbbMQ0Ar v3qAVkjvf2b2cYeZwohU9P3ApWt17t/L2palFwwDUZAdPeZpr1/8qeW8ARw= -----END CERTIFICATE-----Generated at Fri Oct 17 23:42:09 2025 by rpki-client