$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/af19c9a2-7587-4686-92ac-6e23d93f5cb4.roa File: af19c9a2-7587-4686-92ac-6e23d93f5cb4.roa (raw, json) Hash identifier: n507seqiI9oEzus3QiSN9Qg0r9Yf0kZe8hlJAWm1NBo= Subject key identifier: B2:E5:25:B1:D4:1C:C4:96:6D:9A:C2:DF:C3:78:97:24:FD:8E:55:8F Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 59D58E90CD1BDF3CC47ABE544D75ED001C870E0A Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/af19c9a2-7587-4686-92ac-6e23d93f5cb4.roa Signing time: Mon 22 Sep 2025 23:24:00 +0000 ROA not before: Mon 22 Sep 2025 23:24:00 +0000 ROA not after: Mon 27 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.244.56.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:d5:8e:90:cd:1b:df:3c:c4:7a:be:54:4d:75:ed:00:1c:87:0e:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 22 23:24:00 2025 GMT Not After : Oct 27 23:59:59 2025 GMT Subject: serialNumber=28bcd1b390ab6a74a350c99641e82aea41a22e7c1003e126a13968992e5e72a2, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:5d:76:9e:e5:7c:24:19:c8:ee:1c:04:0c:01: 3a:c5:6c:e2:81:9a:b9:22:a9:70:38:9d:08:ea:da: e0:30:ba:53:c4:3f:5e:ff:9d:76:46:d9:ba:37:af: 36:05:a8:be:65:14:e2:cd:77:14:ef:d3:d8:56:3c: 19:4c:5e:ea:10:5a:27:0e:bf:ed:bb:e5:1d:2b:63: b0:1d:31:2d:c5:21:d8:75:9e:83:92:f3:af:b1:5f: d2:7e:79:58:43:8b:d2:e2:65:36:41:12:72:55:98: 40:fa:01:67:19:2a:e8:96:1b:43:bb:78:56:97:b0: 33:ef:f3:cf:c3:4e:fe:9a:94:72:21:5d:8c:4b:ae: d5:88:95:20:77:1b:f4:5a:41:7d:c0:e4:de:7d:5b: 34:93:1c:b4:de:3c:d0:27:4b:10:51:27:88:ee:d7: 66:38:82:0d:98:e2:28:da:cc:ed:4b:b8:ca:74:4d: 65:74:98:ef:53:04:8d:29:76:5e:6d:68:23:95:a9: e7:c8:a5:a4:e5:be:43:25:9f:5a:56:ee:14:62:4f: b5:ed:31:53:53:50:7c:c5:c2:54:ce:4b:55:a2:6f: cc:e9:68:72:19:1d:ad:fb:60:91:d1:03:36:cb:1e: ec:2f:30:75:66:52:40:e6:b1:d0:d6:f3:ea:32:1f: bd:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:E5:25:B1:D4:1C:C4:96:6D:9A:C2:DF:C3:78:97:24:FD:8E:55:8F X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/af19c9a2-7587-4686-92ac-6e23d93f5cb4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.244.56.0/22 Signature Algorithm: sha256WithRSAEncryption b2:60:2a:93:d6:1c:13:b7:b2:56:87:8e:32:7b:75:3c:f0:d6: e2:e7:33:5c:1a:c3:99:5a:b4:e9:2e:8e:f8:6a:5e:fa:df:68: 7f:c9:f5:83:6b:32:f1:3e:8b:a8:d3:9b:0e:93:ad:d9:82:ba: 98:e0:29:29:36:af:db:58:00:db:1b:8f:f0:35:d4:dd:a3:6b: 37:7b:a0:12:0d:6c:95:75:7c:d7:42:33:79:70:fb:f9:39:38: 12:c3:bb:09:0b:91:87:31:a0:d6:e6:75:ba:e7:97:65:90:90: 78:ea:8b:c4:b4:96:8e:c3:b5:d1:02:b5:7b:15:67:d4:05:d7: a4:a0:4c:53:af:ed:96:29:d7:be:1d:61:71:ff:fe:96:e9:d6: d6:c9:8c:87:bb:7d:7e:bd:fd:bc:b3:cf:40:e6:10:e0:f9:74: f9:27:42:db:96:55:14:19:5a:df:13:64:b8:18:c5:21:e5:d7: 0d:1b:ac:19:03:8b:08:d8:b6:40:61:bb:69:cb:47:12:0c:7a: 3e:c3:59:b5:8f:b8:08:42:07:bb:df:b3:94:93:37:df:b6:39: ce:e5:0c:3e:6c:ba:ee:06:a1:50:2f:40:87:81:bf:f1:f8:af: bf:01:49:32:5c:69:06:ce:f8:85:45:ca:bd:fd:37:1a:23:ae: e4:63:74:b5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWdWOkM0b3zzEer5UTXXtAByHDgowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTIyMjMyNDAwWhcNMjUxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyOGJjZDFiMzkwYWI2YTc0YTM1MGM5OTY0MWU4MmFlYTQx YTIyZTdjMTAwM2UxMjZhMTM5Njg5OTJlNWU3MmEyMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLXXae5XwkGcjuHAQMATrFbOKBmrkiqXA4nQjq2uAwulPE P17/nXZG2bo3rzYFqL5lFOLNdxTv09hWPBlMXuoQWicOv+275R0rY7AdMS3FIdh1 noOS86+xX9J+eVhDi9LiZTZBEnJVmED6AWcZKuiWG0O7eFaXsDPv88/DTv6alHIh XYxLrtWIlSB3G/RaQX3A5N59WzSTHLTePNAnSxBRJ4ju12Y4gg2Y4ijazO1LuMp0 TWV0mO9TBI0pdl5taCOVqefIpaTlvkMln1pW7hRiT7XtMVNTUHzFwlTOS1Wib8zp aHIZHa37YJHRAzbLHuwvMHVmUkDmsdDW8+oyH71fAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUsuUlsdQcxJZtmsLfw3iXJP2OVY8wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2FmMTljOWEyLTc1ODctNDY4Ni05MmFjLTZlMjNkOTNmNWNiNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIS9DgwDQYJKoZIhvcNAQELBQADggEBALJgKpPWHBO3slaHjjJ7dTzw1uLn M1waw5latOkujvhqXvrfaH/J9YNrMvE+i6jTmw6TrdmCupjgKSk2r9tYANsbj/A1 1N2jazd7oBINbJV1fNdCM3lw+/k5OBLDuwkLkYcxoNbmdbrnl2WQkHjqi8S0lo7D tdECtXsVZ9QF16SgTFOv7ZYp174dYXH//pbp1tbJjIe7fX69/byzz0DmEOD5dPkn QtuWVRQZWt8TZLgYxSHl1w0brBkDiwjYtkBhu2nLRxIMej7DWbWPuAhCB7vfs5ST N9+2Oc7lDD5suu4GoVAvQIeBv/H4r78BSTJcaQbO+IVFyr39NxojruRjdLU= -----END CERTIFICATE-----Generated at Fri Oct 17 23:56:16 2025 by rpki-client