$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b27996e5-0864-4cea-82b3-b0235d5c9f5e.roa File: b27996e5-0864-4cea-82b3-b0235d5c9f5e.roa (raw, json) Hash identifier: Zc/nAwi/xMgrJw0d1KyedMHYNE8oXLyla+ze7bkcY58= Subject key identifier: D3:13:AC:1C:05:C3:5A:04:3B:82:87:57:2E:5F:03:A3:49:57:11:72 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 77249C62DA03A014A2A9A7736A268056142048D9 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b27996e5-0864-4cea-82b3-b0235d5c9f5e.roa Signing time: Mon 22 Sep 2025 19:06:56 +0000 ROA not before: Mon 22 Sep 2025 19:06:56 +0000 ROA not after: Mon 27 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.161.20.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:24:9c:62:da:03:a0:14:a2:a9:a7:73:6a:26:80:56:14:20:48:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 22 19:06:56 2025 GMT Not After : Oct 27 23:59:59 2025 GMT Subject: serialNumber=5715ea54829595bad36d01c048e9ebd728d98cac46ab24b6e1548bbc257d49c5, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:e0:15:82:ee:fb:c3:88:88:34:a3:e1:da:1b: c2:f8:c5:4e:65:a1:b6:de:e2:76:9d:fa:6d:65:e0: 50:d9:d8:34:b6:be:39:68:aa:61:95:a4:69:a2:a4: 89:16:b4:56:db:0f:50:df:0b:cc:dd:52:98:b9:d2: fd:96:1b:ed:e0:d3:b1:04:af:49:b2:ac:b5:4a:26: be:5a:11:db:47:83:c6:05:c0:22:f9:6e:88:a2:72: dd:a0:1b:9a:a5:51:5d:e5:0b:38:10:3b:50:82:73: 3d:ea:02:28:b0:ce:56:44:34:5b:9b:b8:80:fc:d4: 38:90:ba:b3:3b:ba:9d:3f:7b:c1:97:aa:43:fe:0d: 28:2b:0f:d2:92:4c:85:68:d5:d7:dd:25:73:35:3e: b2:e4:f1:e9:0b:55:d7:65:4d:bc:9c:77:1f:6e:ea: 5e:cc:d1:dc:1f:51:2c:a2:d7:e0:37:c5:6f:38:b3: d2:8a:e1:7b:84:28:59:42:b4:d5:d3:7e:4e:c0:52: eb:1e:2d:39:27:18:24:8b:fc:57:ff:10:bf:09:03: e0:59:91:86:58:41:64:ab:56:c5:04:73:40:88:57: 03:b7:98:9a:2a:b8:0c:50:d6:78:f0:68:1e:4e:78: 5a:e6:c2:f1:13:f2:7a:15:82:5a:bc:50:ed:50:0f: 9b:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:13:AC:1C:05:C3:5A:04:3B:82:87:57:2E:5F:03:A3:49:57:11:72 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b27996e5-0864-4cea-82b3-b0235d5c9f5e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.161.20.0/22 Signature Algorithm: sha256WithRSAEncryption 7e:f4:d2:5f:ee:0b:e9:05:e9:8d:d6:0e:d2:46:94:36:fb:d7: 35:e0:1b:c4:7f:b8:d1:d6:0d:e8:fc:2f:49:84:0e:19:91:01: fe:5b:8c:d3:90:ca:be:5d:3d:0a:38:59:bb:f4:85:b6:97:e0: 0e:ff:8a:89:2a:76:85:b4:57:9c:45:67:09:f5:56:12:37:43: 51:96:9c:a5:61:e6:29:b3:8f:fa:9b:06:e6:23:18:7f:a3:1d: 16:6b:e2:a6:e2:5f:c4:b7:fa:36:9e:2a:7d:9f:a0:44:0d:35: 08:cd:13:3a:8d:fc:29:1e:63:71:81:4e:7a:d3:2f:93:a5:63: b7:31:88:ee:f6:2e:7e:6d:1e:f0:fa:a7:9a:fb:02:ca:99:e8: 30:d2:5d:62:26:ff:0c:b8:c2:b4:31:ee:f5:d0:bc:48:ca:fd: 87:b3:b0:50:0c:d6:11:1a:8c:42:3e:4f:f6:45:d2:65:a6:f2: 0a:45:38:49:2c:9a:e2:d9:68:47:74:09:3e:73:c4:9f:2f:79: 04:92:23:17:9a:b7:bb:b4:db:9d:3c:00:0e:e5:eb:19:fb:4a: d9:ab:ee:ba:91:0a:0f:81:0c:a6:aa:ea:a0:53:fe:19:c3:3d: df:da:78:13:b6:d5:fe:36:82:58:44:60:68:42:e8:08:e0:7d: 2b:e2:b1:f1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdyScYtoDoBSiqadzaiaAVhQgSNkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTIyMTkwNjU2WhcNMjUxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NzE1ZWE1NDgyOTU5NWJhZDM2ZDAxYzA0OGU5ZWJkNzI4 ZDk4Y2FjNDZhYjI0YjZlMTU0OGJiYzI1N2Q0OWM1MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCJ4BWC7vvDiIg0o+HaG8L4xU5lobbe4nad+m1l4FDZ2DS2 vjloqmGVpGmipIkWtFbbD1DfC8zdUpi50v2WG+3g07EEr0myrLVKJr5aEdtHg8YF wCL5boiict2gG5qlUV3lCzgQO1CCcz3qAiiwzlZENFubuID81DiQurM7up0/e8GX qkP+DSgrD9KSTIVo1dfdJXM1PrLk8ekLVddlTbycdx9u6l7M0dwfUSyi1+A3xW84 s9KK4XuEKFlCtNXTfk7AUuseLTknGCSL/Ff/EL8JA+BZkYZYQWSrVsUEc0CIVwO3 mJoquAxQ1njwaB5OeFrmwvET8noVglq8UO1QD5vbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU0xOsHAXDWgQ7godXLl8Do0lXEXIwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2IyNzk5NmU1LTA4NjQtNGNlYS04MmIzLWIwMjM1ZDVjOWY1ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAISoRQwDQYJKoZIhvcNAQELBQADggEBAH700l/uC+kF6Y3WDtJGlDb71zXg G8R/uNHWDej8L0mEDhmRAf5bjNOQyr5dPQo4Wbv0hbaX4A7/iokqdoW0V5xFZwn1 VhI3Q1GWnKVh5imzj/qbBuYjGH+jHRZr4qbiX8S3+jaeKn2foEQNNQjNEzqN/Cke Y3GBTnrTL5OlY7cxiO72Ln5tHvD6p5r7AsqZ6DDSXWIm/wy4wrQx7vXQvEjK/Yez sFAM1hEajEI+T/ZF0mWm8gpFOEksmuLZaEd0CT5zxJ8veQSSIxeat7u02508AA7l 6xn7Stmr7rqRCg+BDKaq6qBT/hnDPd/aeBO21f42glhEYGhC6AjgfSvisfE= -----END CERTIFICATE-----Generated at Fri Oct 17 22:03:11 2025 by rpki-client