$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8f027776-7c4a-4de0-8faa-73184afe56d5.roa File: 8f027776-7c4a-4de0-8faa-73184afe56d5.roa (raw, json) Hash identifier: dhjzE15x4J+4CVfzy5g7VKrkm7DrB7AWT30wmVplJjY= Subject key identifier: CB:34:AE:63:C1:F8:ED:75:34:6A:42:26:7A:AB:3B:E8:0F:69:26:42 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 52A03C80667FA9FC1EF4995918E6CC67121C80 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8f027776-7c4a-4de0-8faa-73184afe56d5.roa Signing time: Mon 22 Sep 2025 17:57:49 +0000 ROA not before: Mon 22 Sep 2025 17:57:49 +0000 ROA not after: Mon 27 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.154.32.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:a0:3c:80:66:7f:a9:fc:1e:f4:99:59:18:e6:cc:67:12:1c:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 22 17:57:49 2025 GMT Not After : Oct 27 23:59:59 2025 GMT Subject: serialNumber=69e3e42c4ddd5f59b0c9231236955c18c6303671f0ef3cf68d4045e728e629ca, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:2c:49:8f:73:e3:1a:58:82:e7:3b:26:e5:90: 86:59:74:19:a5:d5:7c:eb:18:4c:40:5f:e4:89:dc: ac:9e:af:34:62:c9:85:f6:54:9d:33:ea:c8:38:b1: 79:6b:51:09:51:44:fc:09:1c:8f:cb:e3:f8:9e:a1: 0b:7b:e5:29:a3:5e:1b:ca:e5:b3:a7:5a:96:05:80: 33:56:3c:fe:77:ea:4a:b4:4f:9b:2d:a1:af:c2:73: 32:ec:c8:74:22:2b:a8:db:f6:3a:d0:a7:78:bf:9b: 79:ad:73:af:f8:1c:b6:62:15:f7:2d:f5:20:3b:e4: cd:47:11:f0:f2:27:6d:5a:67:58:97:da:87:88:bf: 04:8d:e9:bf:06:dd:ba:98:bb:24:29:6d:e9:fd:b4: 46:f8:79:a1:06:ff:76:01:e7:87:e1:be:1f:3a:6a: b1:d3:a9:f4:22:c7:61:f1:47:77:cf:7a:84:3f:33: a0:66:b9:67:07:1a:08:1d:8f:27:9e:ee:7b:06:46: 59:f0:1d:0b:55:5a:af:00:45:de:46:ea:03:e3:b3: 00:11:74:b0:fc:07:ea:16:1f:d4:7b:06:43:be:44: 45:b3:78:e2:1e:64:50:0e:a1:0f:74:79:71:2e:35: 2b:75:04:2a:7e:1c:20:a4:b4:c7:b8:6b:ef:b9:2c: 1c:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:34:AE:63:C1:F8:ED:75:34:6A:42:26:7A:AB:3B:E8:0F:69:26:42 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8f027776-7c4a-4de0-8faa-73184afe56d5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.154.32.0/22 Signature Algorithm: sha256WithRSAEncryption 04:30:5a:39:b6:f5:a5:d9:91:d5:55:67:ea:2b:c7:4f:98:99: bd:f3:e5:51:9e:70:3c:6f:d8:b6:0d:ac:f1:43:5e:65:75:14: 1f:d0:65:48:97:b0:d3:18:1d:bb:97:5f:53:0b:2b:1d:ba:a0: b5:5a:63:c4:d4:60:28:9e:fa:31:17:6d:00:b0:c4:1f:c2:36: 80:34:f5:e6:77:3c:09:4b:95:b5:89:2d:88:d4:89:34:0a:aa: 16:3f:30:3e:b9:d4:99:47:e0:9c:7a:3f:3c:b9:b3:90:ca:9b: 28:05:13:76:d8:44:0d:4b:ea:b9:4e:65:0f:92:56:1c:7c:26: fa:49:e4:93:0e:00:cc:a3:70:7e:8a:0c:03:71:e1:98:72:8a: 4d:89:85:1c:d0:3e:b1:32:f3:f0:b6:6e:aa:1b:90:60:5d:6a: 49:79:4c:aa:9c:0a:45:fc:46:14:8e:53:4e:36:19:71:d6:ab: f2:6f:e7:5b:f7:f9:ad:36:28:cb:a5:b4:78:21:6c:73:be:d6: 63:bc:b0:b9:fa:3a:5f:66:e7:bb:a9:c3:ce:c1:ba:e2:57:ac: df:e8:61:89:df:ad:59:6b:73:e6:ee:00:94:d8:5a:5a:b2:d7: fc:0f:cd:6c:24:9e:e8:90:c4:49:5a:5a:8d:88:6b:ad:7c:b1: 47:b8:f2:95 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITUqA8gGZ/qfwe9JlZGObMZxIcgDANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzJkZjZmM2IzYTM0YjYzODZkMWEzMmQ4ZjRmYTMxNzhlZjMx ODg3ZDhiNDI4ZGZhYTQ3NjAeFw0yNTA5MjIxNzU3NDlaFw0yNTEwMjcyMzU5NTla MHoxSTBHBgNVBAUTQDY5ZTNlNDJjNGRkZDVmNTliMGM5MjMxMjM2OTU1YzE4YzYz MDM2NzFmMGVmM2NmNjhkNDA0NWU3MjhlNjI5Y2ExLTArBgNVBAMTJDVmMjc2MDQ1 LTViOWYtNDVlZi05MjNkLWYzZmNlMjRhNjIyNTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAM8sSY9z4xpYguc7JuWQhll0GaXVfOsYTEBf5IncrJ6vNGLJ hfZUnTPqyDixeWtRCVFE/Akcj8vj+J6hC3vlKaNeG8rls6dalgWAM1Y8/nfqSrRP my2hr8JzMuzIdCIrqNv2OtCneL+bea1zr/gctmIV9y31IDvkzUcR8PInbVpnWJfa h4i/BI3pvwbdupi7JClt6f20Rvh5oQb/dgHnh+G+HzpqsdOp9CLHYfFHd896hD8z oGa5ZwcaCB2PJ57uewZGWfAdC1VarwBF3kbqA+OzABF0sPwH6hYf1HsGQ75ERbN4 4h5kUA6hD3R5cS41K3UEKn4cIKS0x7hr77ksHAUCAwEAAaOCArEwggKtMB0GA1Ud DgQWBBTLNK5jwfjtdTRqQiZ6qzvoD2kmQjAfBgNVHSMEGDAWgBQlrdNCsB63pY6t GZAmiLVLP4H0uDAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzg1MWNlZjE3LTEz MmEtNDMzNy1iN2QxLWJmMTZhNTJmZmQwMy9kZjZmM2IzYTM0YjYzODZkMWEzMmQ4 ZjRmYTMxNzhlZjMxODg3ZDhiNDI4ZGZhYTQ3Ni5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9mNzAzNjk2ZS1lNDdiLTRjMjAtYmQ5My02Zjgw OTA0ZTQyZDIvOGYwMjc3NzYtN2M0YS00ZGUwLThmYWEtNzMxODRhZmU1NmQ1LnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMt NmY4MDkwNGU0MmQyL3RqaHRHakxZOVBveGVPOHhpSDJMUW8zNnBIWS5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAhKaIDANBgkqhkiG9w0BAQsFAAOCAQEABDBaObb1pdmR1VVn6ivHT5iZvfPl UZ5wPG/Ytg2s8UNeZXUUH9BlSJew0xgdu5dfUwsrHbqgtVpjxNRgKJ76MRdtALDE H8I2gDT15nc8CUuVtYktiNSJNAqqFj8wPrnUmUfgnHo/PLmzkMqbKAUTdthEDUvq uU5lD5JWHHwm+knkkw4AzKNwfooMA3HhmHKKTYmFHNA+sTLz8LZuqhuQYF1qSXlM qpwKRfxGFI5TTjYZcdar8m/nW/f5rTYoy6W0eCFsc77WY7ywufo6X2bnu6nDzsG6 4les3+hhid+tWWtz5u4AlNhaWrLX/A/NbCSe6JDESVpajYhrrXyxR7jylQ== -----END CERTIFICATE-----Generated at Fri Oct 17 22:00:21 2025 by rpki-client