$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8ae39f44-b9c5-454b-a2b0-6bf715dbfe21.roa File: 8ae39f44-b9c5-454b-a2b0-6bf715dbfe21.roa (raw, json) Hash identifier: ZwzOHQnSb5zlo/5AnJwwXtu0YbFFSfAMpU+qeS4OcqE= Subject key identifier: CB:21:B3:70:74:73:AD:6E:E8:C9:EC:4B:42:C6:7F:CF:7D:D8:24:FF Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 3840056B342DDA2D123A2F6C94B831E06E348CA3 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8ae39f44-b9c5-454b-a2b0-6bf715dbfe21.roa Signing time: Mon 22 Sep 2025 20:46:50 +0000 ROA not before: Mon 22 Sep 2025 20:46:50 +0000 ROA not after: Mon 27 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.173.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:40:05:6b:34:2d:da:2d:12:3a:2f:6c:94:b8:31:e0:6e:34:8c:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 22 20:46:50 2025 GMT Not After : Oct 27 23:59:59 2025 GMT Subject: serialNumber=826cb73095a61d3340153b92248bea7662d941966e5abcec65b3ca4a796347e1, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:76:5d:b2:20:e1:e9:5e:18:c7:61:3f:61:7f: 7c:04:f3:90:86:71:52:ee:e1:de:26:d0:18:6d:c5: b9:d9:3a:ee:53:a8:ea:98:7d:ec:d1:cf:30:20:ed: 7b:54:6b:6b:5b:0b:30:90:8e:f9:55:09:1a:ed:7a: bd:0d:1a:00:09:2f:47:73:46:90:d4:cc:43:c8:c4: 48:8f:ff:7d:5e:15:96:c6:7f:70:f4:4a:f7:05:a7: 78:6e:41:85:98:75:5d:6c:67:95:cf:5b:15:96:fc: 27:ad:44:26:ce:96:2b:98:32:be:85:d9:cc:cc:57: 0f:8e:52:3c:32:8f:36:2b:eb:a5:66:6f:cf:d8:85: 1c:c9:a1:3b:79:78:8c:b2:b3:68:74:43:5e:cc:7b: d6:05:89:3c:ef:6c:c7:d7:3e:c6:c0:70:d9:6b:fb: 77:af:02:7e:67:50:cd:15:8a:ec:0a:13:07:f9:e1: 7b:6e:54:86:34:12:61:dd:ea:6d:a7:a5:48:71:65: cf:df:31:6a:13:74:ec:1c:22:80:26:ab:12:37:71: fb:46:ac:75:53:40:1d:28:d2:16:e4:87:4f:1b:08: 56:99:43:f8:57:bf:f0:27:7c:59:50:af:c3:a8:2b: 21:30:d0:16:d9:6a:4d:f3:94:5b:b4:70:7d:f2:7d: d1:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:21:B3:70:74:73:AD:6E:E8:C9:EC:4B:42:C6:7F:CF:7D:D8:24:FF X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8ae39f44-b9c5-454b-a2b0-6bf715dbfe21.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.173.238.0/24 Signature Algorithm: sha256WithRSAEncryption 41:f5:a6:2b:24:59:89:1d:db:b5:6c:60:07:90:55:77:c4:5e: 7f:52:6e:58:e7:06:ca:ce:83:3a:64:d2:99:a2:d1:5b:39:97: fe:a6:d6:0e:1e:07:20:51:90:03:2f:d1:58:81:be:f5:3a:2f: 0e:c8:e5:42:91:57:cf:e7:0c:70:7f:c9:27:84:e3:81:e0:53: 9f:f5:aa:04:41:30:9e:ae:56:64:a3:6a:84:ec:b2:d0:ab:86: 53:d7:03:f3:78:31:db:f1:b1:cf:c6:64:5d:77:4f:4f:b0:e9: 4d:8a:6b:74:24:79:1f:21:7d:6d:a4:4e:07:27:4b:59:f9:db: 31:5b:fa:d6:39:53:00:4a:9d:7a:8a:e9:e2:b0:b3:a6:ec:20: aa:cd:40:7c:50:c4:74:cf:83:95:e1:53:1a:dd:6b:d3:61:56: 8a:ee:55:27:3a:6d:c2:de:2a:3f:12:a2:f8:d2:9d:37:b0:b6: d3:5f:9c:f0:54:80:fb:73:39:43:c5:5d:27:18:24:e8:0d:b9: 7d:20:3a:3c:5f:75:02:1c:a3:ab:2a:55:13:dd:58:67:03:f9: 43:99:52:c9:c8:d9:d6:f3:fa:64:30:1d:00:12:68:87:0e:bc: 29:82:74:ad:8f:63:88:c5:8a:c0:b0:76:01:9b:dc:2a:33:de: f0:a0:ee:22 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOEAFazQt2i0SOi9slLgx4G40jKMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTIyMjA0NjUwWhcNMjUxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MjZjYjczMDk1YTYxZDMzNDAxNTNiOTIyNDhiZWE3NjYy ZDk0MTk2NmU1YWJjZWM2NWIzY2E0YTc5NjM0N2UxMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrdl2yIOHpXhjHYT9hf3wE85CGcVLu4d4m0BhtxbnZOu5T qOqYfezRzzAg7XtUa2tbCzCQjvlVCRrter0NGgAJL0dzRpDUzEPIxEiP/31eFZbG f3D0SvcFp3huQYWYdV1sZ5XPWxWW/CetRCbOliuYMr6F2czMVw+OUjwyjzYr66Vm b8/YhRzJoTt5eIyys2h0Q17Me9YFiTzvbMfXPsbAcNlr+3evAn5nUM0ViuwKEwf5 4XtuVIY0EmHd6m2npUhxZc/fMWoTdOwcIoAmqxI3cftGrHVTQB0o0hbkh08bCFaZ Q/hXv/AnfFlQr8OoKyEw0BbZak3zlFu0cH3yfdFPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUyyGzcHRzrW7oyexLQsZ/z33YJP8wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzhhZTM5ZjQ0LWI5YzUtNDU0Yi1hMmIwLTZiZjcxNWRiZmUyMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAASre4wDQYJKoZIhvcNAQELBQADggEBAEH1piskWYkd27VsYAeQVXfEXn9S bljnBsrOgzpk0pmi0Vs5l/6m1g4eByBRkAMv0ViBvvU6Lw7I5UKRV8/nDHB/ySeE 44HgU5/1qgRBMJ6uVmSjaoTsstCrhlPXA/N4Mdvxsc/GZF13T0+w6U2Ka3QkeR8h fW2kTgcnS1n52zFb+tY5UwBKnXqK6eKws6bsIKrNQHxQxHTPg5XhUxrda9NhVoru VSc6bcLeKj8SovjSnTewttNfnPBUgPtzOUPFXScYJOgNuX0gOjxfdQIco6sqVRPd WGcD+UOZUsnI2dbz+mQwHQASaIcOvCmCdK2PY4jFisCwdgGb3Coz3vCg7iI= -----END CERTIFICATE-----Generated at Fri Oct 17 23:43:22 2025 by rpki-client