$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a9a89044-ccc4-428e-ac51-a749e06fae76.roa File: a9a89044-ccc4-428e-ac51-a749e06fae76.roa (raw, json) Hash identifier: KCL4zIPnOAMYwTkcIdtb9t7LJODmdr5d4b+AZ+zST5Q= Subject key identifier: 61:C6:4C:C4:21:AA:1B:5F:B8:EE:4E:A6:F8:4C:14:E1:6A:4A:34:DC Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 6B29EBF69A572610E3D338E53C5E697873954D4A Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a9a89044-ccc4-428e-ac51-a749e06fae76.roa Signing time: Wed 24 Sep 2025 22:12:01 +0000 ROA not before: Wed 24 Sep 2025 22:12:01 +0000 ROA not after: Wed 29 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.67.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:29:eb:f6:9a:57:26:10:e3:d3:38:e5:3c:5e:69:78:73:95:4d:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 24 22:12:01 2025 GMT Not After : Oct 29 23:59:59 2025 GMT Subject: serialNumber=c3347aa2f4c9673695ff4c52b1eb85396ea3d491a5e7d84b4b2545d46b339981, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:42:93:1b:84:e1:a1:f8:cc:63:88:c1:83:d7: b9:5a:c1:4e:e3:76:a0:55:ee:da:4c:17:4d:a2:bf: 1f:26:09:e4:95:76:f8:cd:05:2b:a8:47:62:68:f3: 0f:86:19:e4:dc:47:97:cb:0d:99:80:29:18:09:32: f5:2e:35:16:7c:9e:0d:86:0e:93:46:73:11:a8:90: 5d:9e:eb:cd:09:60:3c:97:65:85:1d:b4:d3:f6:89: df:37:21:e0:11:1c:8f:b1:20:75:55:20:2f:4d:5b: 0d:13:94:b0:26:2e:e7:fa:57:86:32:60:3a:55:da: 42:17:23:ec:2b:9c:8b:76:ba:0d:1a:80:d5:d0:8b: 2a:3d:07:0a:b8:6b:02:6b:84:36:e8:64:f1:96:28: 8a:12:2c:58:63:dd:9b:ab:05:07:c9:f8:3b:8c:b6: 3c:62:1b:26:be:1e:4f:9f:35:88:7c:fd:bd:07:76: 25:a4:20:46:44:27:53:d5:e2:67:64:10:9c:17:37: f6:65:ec:0e:b1:ea:a9:b6:45:89:e2:e8:95:ad:7f: 06:41:c0:d3:00:ad:d1:fb:1b:d0:13:01:04:92:27: 6d:4a:c1:bb:17:b3:82:78:c9:69:3a:39:06:ce:72: 67:ed:a4:c0:c6:f3:c8:34:bc:50:97:52:ef:51:87: 27:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:C6:4C:C4:21:AA:1B:5F:B8:EE:4E:A6:F8:4C:14:E1:6A:4A:34:DC X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a9a89044-ccc4-428e-ac51-a749e06fae76.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.67.9.0/24 Signature Algorithm: sha256WithRSAEncryption 91:39:65:7b:bf:e2:27:d3:70:b0:e6:bc:8f:48:8b:89:0e:b9: 76:06:71:ab:cd:56:cf:3f:2e:df:14:0d:de:ec:59:e8:ba:4e: 73:2b:96:69:07:a9:29:84:f5:62:84:e5:5f:5d:50:38:82:4a: e2:d7:d9:32:04:72:6f:f8:a7:53:78:e8:49:42:62:4d:83:66: 16:64:84:e1:7f:bd:43:f9:20:f8:45:85:29:35:e5:b6:a3:3e: 13:f7:cc:67:4f:f8:28:cd:eb:03:32:ab:ba:35:8f:23:d3:94: 99:20:8b:b4:c2:5e:84:a1:39:5a:13:d4:ef:36:75:a2:89:87: c3:a0:d3:3b:ae:a0:bf:61:35:6f:67:5e:72:b4:db:e2:51:b2: cc:f9:f8:7d:bb:fb:c1:ef:c7:ca:67:ab:14:3f:9e:e6:45:cc: 46:ca:50:a1:ec:0d:38:60:4f:3c:d0:f7:b1:c3:3a:b0:52:ff: 8b:d4:84:c9:72:e9:bb:62:39:7c:3b:98:86:2e:3e:62:54:4a: a4:eb:4d:d2:5c:fd:0e:50:c2:eb:2b:b9:6f:e5:88:75:c9:96: 70:80:bd:02:70:cd:05:8f:fc:c4:43:94:a4:51:54:ec:f1:f6: cf:00:e9:26:8d:88:7e:87:5e:a6:d2:ac:ff:af:52:7f:bb:c6: 1c:f0:b4:3f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaynr9ppXJhDj0zjlPF5peHOVTUowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTI0MjIxMjAxWhcNMjUxMDI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMzM0N2FhMmY0Yzk2NzM2OTVmZjRjNTJiMWViODUzOTZl YTNkNDkxYTVlN2Q4NGI0YjI1NDVkNDZiMzM5OTgxMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGQpMbhOGh+MxjiMGD17lawU7jdqBV7tpMF02ivx8mCeSV dvjNBSuoR2Jo8w+GGeTcR5fLDZmAKRgJMvUuNRZ8ng2GDpNGcxGokF2e680JYDyX ZYUdtNP2id83IeARHI+xIHVVIC9NWw0TlLAmLuf6V4YyYDpV2kIXI+wrnIt2ug0a gNXQiyo9Bwq4awJrhDboZPGWKIoSLFhj3ZurBQfJ+DuMtjxiGya+Hk+fNYh8/b0H diWkIEZEJ1PV4mdkEJwXN/Zl7A6x6qm2RYni6JWtfwZBwNMArdH7G9ATAQSSJ21K wbsXs4J4yWk6OQbOcmftpMDG88g0vFCXUu9RhyfHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUYcZMxCGqG1+47k6m+EwU4WpKNNwwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2E5YTg5MDQ0LWNjYzQtNDI4ZS1hYzUxLWE3NDllMDZmYWU3Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAASQwkwDQYJKoZIhvcNAQELBQADggEBAJE5ZXu/4ifTcLDmvI9Ii4kOuXYG cavNVs8/Lt8UDd7sWei6TnMrlmkHqSmE9WKE5V9dUDiCSuLX2TIEcm/4p1N46ElC Yk2DZhZkhOF/vUP5IPhFhSk15bajPhP3zGdP+CjN6wMyq7o1jyPTlJkgi7TCXoSh OVoT1O82daKJh8Og0zuuoL9hNW9nXnK02+JRssz5+H27+8Hvx8pnqxQ/nuZFzEbK UKHsDThgTzzQ97HDOrBS/4vUhMly6btiOXw7mIYuPmJUSqTrTdJc/Q5QwusruW/l iHXJlnCAvQJwzQWP/MRDlKRRVOzx9s8A6SaNiH6HXqbSrP+vUn+7xhzwtD8= -----END CERTIFICATE-----Generated at Sat Oct 18 04:52:48 2025 by rpki-client