$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a876c195-e9a8-44b0-8bcc-f2e579ff9355.roa File: a876c195-e9a8-44b0-8bcc-f2e579ff9355.roa (raw, json) Hash identifier: V1ZcGjoyVx7poZ+ayPjlKEt8fhAeGkCznkAQ5SJq5jA= Subject key identifier: A4:D3:4A:E3:24:93:50:F3:94:1A:AA:10:FC:0E:3F:86:83:85:FE:DD Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 1E7097E55D9968F5991AEEE5C79F9CBB8FF85297 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a876c195-e9a8-44b0-8bcc-f2e579ff9355.roa Signing time: Mon 22 Sep 2025 17:56:08 +0000 ROA not before: Mon 22 Sep 2025 17:56:08 +0000 ROA not after: Mon 27 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.154.200.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:70:97:e5:5d:99:68:f5:99:1a:ee:e5:c7:9f:9c:bb:8f:f8:52:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 22 17:56:08 2025 GMT Not After : Oct 27 23:59:59 2025 GMT Subject: serialNumber=43000c8e50d70ead780959a1a819b4471caeae0ac701cce7027841584f2065d3, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:1b:33:62:e1:57:1b:a6:b6:ab:ae:cb:fc:f3: cf:bc:03:5f:48:f9:0d:e5:05:d0:f1:9f:cb:dc:a5: e7:cb:f4:06:32:22:d4:43:35:15:6d:57:99:bd:84: 05:fd:87:03:0f:88:04:e5:36:a6:f8:03:23:a0:07: 72:72:d6:d4:dc:56:26:ca:ed:68:12:ba:d1:59:72: 04:dd:9f:1c:35:da:16:fc:8d:f6:c3:97:29:cb:68: 32:92:97:2f:01:10:c6:6c:b5:fe:9f:ee:fe:06:60: 6b:23:6c:13:3e:b3:bc:dd:0f:1f:23:78:62:2f:b0: 18:63:0d:3a:5b:35:25:b9:5b:16:15:b1:db:07:45: 34:17:5d:0f:06:39:a9:a0:1b:32:4b:84:5f:75:6b: 4a:45:50:5e:d3:73:bf:61:f9:80:18:79:1b:98:41: 6b:f8:22:f0:f3:98:6f:54:30:81:4c:50:df:dc:6d: e9:52:be:51:3d:df:a3:66:9b:16:29:2b:03:42:70: ee:c1:95:0a:86:94:d1:2f:fb:15:43:8b:ce:11:9e: 29:eb:b3:28:33:a8:e5:c2:01:fb:61:6b:c2:8f:dd: bc:4a:a0:6f:cc:b4:34:10:57:65:61:bf:25:84:46: c0:df:06:3e:5a:b3:fd:ab:27:ab:95:71:e3:bf:f3: a2:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:D3:4A:E3:24:93:50:F3:94:1A:AA:10:FC:0E:3F:86:83:85:FE:DD X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a876c195-e9a8-44b0-8bcc-f2e579ff9355.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.154.200.0/22 Signature Algorithm: sha256WithRSAEncryption 77:c1:ca:62:e8:45:6f:48:35:22:b0:22:1c:98:3a:8e:04:c9: 88:02:1f:f9:c4:3c:8a:16:92:98:1f:d1:0b:d5:49:28:f5:77: 81:70:12:fd:58:6d:36:95:1e:18:99:4a:04:7c:31:b6:31:72: c9:01:18:10:3b:c2:3f:e7:91:b0:1c:0e:59:7b:a5:56:5e:02: d5:bb:e9:0f:f4:f1:06:dc:11:6e:fd:34:16:3c:02:f3:bc:ad: f6:82:3b:18:11:a1:2d:78:d4:a0:b7:7a:d1:dd:f1:4e:6d:3d: 3f:a7:95:17:bb:b6:86:cd:1e:d0:4b:0a:b9:73:ea:5d:bd:66: a7:f2:ed:2c:39:d3:eb:71:b1:8c:fb:8e:0a:97:fd:19:b6:63: 89:74:d8:ad:24:46:e4:11:c3:4d:d1:f5:12:16:a5:11:06:0f: f5:ce:b6:dd:86:1f:61:9b:74:4f:74:75:9f:29:18:f5:ec:4c: 3a:18:a6:8d:de:ca:69:8a:f5:2d:f8:51:dc:7b:8f:9e:36:e5: ef:36:14:cd:eb:f9:49:e0:90:0f:1f:9a:0e:b8:8a:88:d8:56: 6f:34:de:a6:11:90:9f:0e:5d:ce:3d:8e:a3:52:05:50:68:30: 4e:14:bc:7e:20:c3:dc:a4:c7:04:1b:55:b5:44:55:91:9f:f9: 83:50:a9:f4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHnCX5V2ZaPWZGu7lx5+cu4/4UpcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTIyMTc1NjA4WhcNMjUxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MzAwMGM4ZTUwZDcwZWFkNzgwOTU5YTFhODE5YjQ0NzFj YWVhZTBhYzcwMWNjZTcwMjc4NDE1ODRmMjA2NWQzMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMGzNi4Vcbprarrsv888+8A19I+Q3lBdDxn8vcpefL9AYy ItRDNRVtV5m9hAX9hwMPiATlNqb4AyOgB3Jy1tTcVibK7WgSutFZcgTdnxw12hb8 jfbDlynLaDKSly8BEMZstf6f7v4GYGsjbBM+s7zdDx8jeGIvsBhjDTpbNSW5WxYV sdsHRTQXXQ8GOamgGzJLhF91a0pFUF7Tc79h+YAYeRuYQWv4IvDzmG9UMIFMUN/c belSvlE936NmmxYpKwNCcO7BlQqGlNEv+xVDi84RninrsygzqOXCAftha8KP3bxK oG/MtDQQV2VhvyWERsDfBj5as/2rJ6uVceO/86LzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUpNNK4ySTUPOUGqoQ/A4/hoOF/t0wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2E4NzZjMTk1LWU5YTgtNDRiMC04YmNjLWYyZTU3OWZmOTM1NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAISmsgwDQYJKoZIhvcNAQELBQADggEBAHfBymLoRW9INSKwIhyYOo4EyYgC H/nEPIoWkpgf0QvVSSj1d4FwEv1YbTaVHhiZSgR8MbYxcskBGBA7wj/nkbAcDll7 pVZeAtW76Q/08QbcEW79NBY8AvO8rfaCOxgRoS141KC3etHd8U5tPT+nlRe7tobN HtBLCrlz6l29Zqfy7Sw50+txsYz7jgqX/Rm2Y4l02K0kRuQRw03R9RIWpREGD/XO tt2GH2GbdE90dZ8pGPXsTDoYpo3eymmK9S34Udx7j5425e82FM3r+UngkA8fmg64 iojYVm803qYRkJ8OXc49jqNSBVBoME4UvH4gw9ykxwQbVbVEVZGf+YNQqfQ= -----END CERTIFICATE-----Generated at Fri Oct 17 22:02:05 2025 by rpki-client