$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8633f478-f461-40f5-806d-e4ccd85bd5b0.roa File: 8633f478-f461-40f5-806d-e4ccd85bd5b0.roa (raw, json) Hash identifier: 2sOd/k2pJ4cOmONJc3MJSngLtzCnnlHrcVP2/61yMoY= Subject key identifier: 02:66:65:D5:BB:77:AF:4F:6B:F0:A0:62:F1:17:7A:31:8E:6E:BC:F0 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 2B7CEEAFE3444624F1B3D683BC10D170CAA9C7AF Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8633f478-f461-40f5-806d-e4ccd85bd5b0.roa Signing time: Mon 22 Sep 2025 21:55:36 +0000 ROA not before: Mon 22 Sep 2025 21:55:36 +0000 ROA not after: Mon 27 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.239.42.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:7c:ee:af:e3:44:46:24:f1:b3:d6:83:bc:10:d1:70:ca:a9:c7:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 22 21:55:36 2025 GMT Not After : Oct 27 23:59:59 2025 GMT Subject: serialNumber=bb8ddd7aa2567aa8204272c3a861e5a371e00ab425a8ee5888654f088029146b, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:4b:cc:be:79:17:77:cd:32:7f:ef:94:ff:32: bc:f7:90:d3:f8:ef:f1:a5:2a:b1:36:5a:d8:83:fa: 4f:1a:cd:c8:e2:f7:75:72:e5:7b:ad:a1:d1:d2:1c: 48:92:c4:0c:49:ad:f0:e6:e5:d2:7b:b1:5b:6b:12: 65:0b:27:e6:f4:ad:c7:61:86:f3:3b:52:3c:84:5e: 96:a3:4d:4f:a2:84:b1:00:59:e2:7f:d9:d0:28:06: 2c:aa:ba:e3:b7:2f:36:23:6a:92:61:c5:54:8c:e8: 05:ff:af:eb:c7:3c:b8:09:bf:42:2f:30:35:75:7c: be:a9:3c:c9:89:55:3c:30:4b:80:ca:b7:61:f5:41: e7:26:de:e6:f0:40:36:bd:88:68:87:91:df:eb:fc: 77:00:e4:7c:d3:81:57:c0:65:b9:07:0d:18:5e:f9: 6b:4d:7c:3f:df:48:d3:78:3c:1d:18:0a:17:90:18: ef:76:9e:f6:0c:b9:f4:65:c7:4d:5b:76:6b:16:c0: 24:9f:1d:aa:af:b3:47:23:8e:13:4d:01:f8:a7:8f: c3:a5:0c:b1:37:ca:05:11:b6:a5:c8:4b:2e:1e:b5: 5b:52:ca:e0:a6:dd:f2:0b:e5:f5:c6:70:fe:13:a1: 65:de:0b:ed:93:a3:3c:da:27:05:1a:c8:38:e7:94: cd:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:66:65:D5:BB:77:AF:4F:6B:F0:A0:62:F1:17:7A:31:8E:6E:BC:F0 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8633f478-f461-40f5-806d-e4ccd85bd5b0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.239.42.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:81:e4:1f:66:9f:66:45:91:7c:cc:05:ac:31:c0:0b:7e:96: f6:cc:53:97:66:b6:ba:58:b0:cb:06:21:71:54:7d:b5:50:7d: 48:39:18:61:03:79:f4:1a:13:c0:bf:f6:6a:94:86:ac:cd:0c: 98:4c:9c:6f:f0:83:4c:2a:2f:64:cb:ad:95:fa:82:ae:f7:65: 71:da:fb:b9:8f:c3:c3:31:05:ae:e6:71:e6:8a:2c:66:e0:20: b7:3e:9a:96:ec:0d:2f:bc:33:84:ab:b2:46:dc:18:78:64:1e: c8:88:c0:0d:fe:77:04:bc:9b:8c:bb:24:ae:c2:71:c6:f5:04: 7d:2d:72:27:3f:ba:91:f2:09:e7:01:ca:46:5a:2c:5a:5a:74: d4:1b:5a:33:ba:75:4d:24:46:51:b0:9d:d4:39:12:78:5a:9d: 0d:18:db:75:13:76:9d:21:02:16:ba:52:c8:42:cd:74:ab:40: ea:34:2b:08:d8:7d:86:3b:83:12:b1:67:de:c0:8e:eb:4c:7f: 05:55:fc:f0:af:fb:75:d4:33:0b:d6:2c:1b:9b:30:5a:cc:62: 23:a9:1b:da:b3:73:37:e4:84:3d:40:3d:8b:42:3d:9d:2a:a4: 5a:6c:64:e9:a0:e9:30:f0:24:00:17:24:ae:53:3f:c4:91:8d: 98:1c:62:aa -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUK3zur+NERiTxs9aDvBDRcMqpx68wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTIyMjE1NTM2WhcNMjUxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiYjhkZGQ3YWEyNTY3YWE4MjA0MjcyYzNhODYxZTVhMzcx ZTAwYWI0MjVhOGVlNTg4ODY1NGYwODgwMjkxNDZiMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCSS8y+eRd3zTJ/75T/Mrz3kNP47/GlKrE2WtiD+k8azcji 93Vy5XutodHSHEiSxAxJrfDm5dJ7sVtrEmULJ+b0rcdhhvM7UjyEXpajTU+ihLEA WeJ/2dAoBiyquuO3LzYjapJhxVSM6AX/r+vHPLgJv0IvMDV1fL6pPMmJVTwwS4DK t2H1Qecm3ubwQDa9iGiHkd/r/HcA5HzTgVfAZbkHDRhe+WtNfD/fSNN4PB0YCheQ GO92nvYMufRlx01bdmsWwCSfHaqvs0cjjhNNAfinj8OlDLE3ygURtqXISy4etVtS yuCm3fIL5fXGcP4ToWXeC+2TozzaJwUayDjnlM0zAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUAmZl1bt3r09r8KBi8Rd6MY5uvPAwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzg2MzNmNDc4LWY0NjEtNDBmNS04MDZkLWU0Y2NkODViZDViMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAS7yowDQYJKoZIhvcNAQELBQADggEBAF6B5B9mn2ZFkXzMBawxwAt+lvbM U5dmtrpYsMsGIXFUfbVQfUg5GGEDefQaE8C/9mqUhqzNDJhMnG/wg0wqL2TLrZX6 gq73ZXHa+7mPw8MxBa7mceaKLGbgILc+mpbsDS+8M4SrskbcGHhkHsiIwA3+dwS8 m4y7JK7Cccb1BH0tcic/upHyCecBykZaLFpadNQbWjO6dU0kRlGwndQ5EnhanQ0Y 23UTdp0hAha6UshCzXSrQOo0KwjYfYY7gxKxZ97AjutMfwVV/PCv+3XUMwvWLBub MFrMYiOpG9qzczfkhD1APYtCPZ0qpFpsZOmg6TDwJAAXJK5TP8SRjZgcYqo= -----END CERTIFICATE-----Generated at Fri Oct 17 23:47:58 2025 by rpki-client