$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a9270573-81a0-4618-83fd-5e4f691af698.roa File: a9270573-81a0-4618-83fd-5e4f691af698.roa (raw, json) Hash identifier: cuLPd03uH7TqxynCxNiKwj3gQsJrzbv/iRGC1hh/FGU= Subject key identifier: 0A:33:C7:77:8F:80:CF:EE:68:44:1A:5D:F7:D2:0E:54:BF:2A:D2:96 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 0E51061D9BBE0D8566068BA803ADE6B33785C377 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a9270573-81a0-4618-83fd-5e4f691af698.roa Signing time: Fri 26 Sep 2025 15:47:20 +0000 ROA not before: Fri 26 Sep 2025 15:47:20 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 15.230.157.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 11 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:51:06:1d:9b:be:0d:85:66:06:8b:a8:03:ad:e6:b3:37:85:c3:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 26 15:47:20 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=b35b5b0a3b679021361f581297e8f128bb8ba6a9c56ba70791aa1b077839345e, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:77:80:16:e3:c4:04:fe:3a:7f:5a:c7:86:0e: 55:0b:f6:9c:d0:76:ac:e7:5d:51:92:3b:88:49:fb: 3c:3c:ab:cd:4b:06:4b:1b:2f:e5:cc:f4:f3:fe:c4: 97:f9:ea:46:34:80:2e:76:5c:8d:b5:b9:b8:4d:40: 43:6f:03:93:f6:ff:26:de:21:76:9e:4c:e2:ea:f4: 46:a6:3c:32:5c:36:a0:63:50:37:e8:0e:3a:ee:f3: aa:dd:a4:97:cf:62:6e:cf:f4:c1:56:4d:28:44:a0: 60:c1:92:53:40:28:97:47:3f:14:b1:c9:a6:92:72: 9f:9e:ea:44:58:73:65:a8:91:b5:ab:2a:db:ba:c8: cc:88:43:0c:03:a4:32:98:bb:04:14:02:4c:35:9e: 16:68:7f:d8:b6:42:d3:ad:c6:0f:09:0a:4c:8b:ba: 03:f7:cc:7c:36:a9:15:28:d0:65:6f:9e:e1:75:9b: 07:8f:9f:e0:d1:09:a7:17:3f:04:b1:50:5c:ff:56: a8:1c:72:3c:61:f2:04:ce:8e:67:c1:c3:54:ef:ca: 97:77:3a:31:ec:9c:76:00:3f:51:53:81:47:96:23: ed:2c:0b:33:e2:1a:a6:47:b5:7a:03:be:bf:93:53: 50:99:b7:98:f3:ca:77:cf:e7:db:6d:b4:e5:ea:07: d2:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:33:C7:77:8F:80:CF:EE:68:44:1A:5D:F7:D2:0E:54:BF:2A:D2:96 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a9270573-81a0-4618-83fd-5e4f691af698.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.230.157.0/24 Signature Algorithm: sha256WithRSAEncryption a1:4b:30:a2:9b:27:91:11:7d:43:69:ee:e1:93:37:50:b9:bd: 9c:b5:98:44:0a:f8:e9:bb:44:c3:de:29:04:d4:29:3f:3b:26: 63:c4:74:52:e0:a3:d9:65:ec:e4:92:f9:e1:1f:34:c4:96:68: 15:bd:41:6f:c7:48:a0:aa:57:46:1b:35:00:d1:da:6c:31:c6: 75:58:a9:86:79:e3:1f:b0:4e:46:1b:51:c6:8f:f5:14:20:71: 10:10:0b:0a:58:5d:77:8d:bd:ee:c2:7c:b1:82:e8:02:d2:66: 63:97:03:44:a2:21:93:a3:b0:4f:52:3c:2e:b6:fb:1c:be:a8: 1b:df:9f:ac:31:b6:2b:a4:fb:ab:e5:d4:09:e2:d3:0d:03:bb: e7:9c:d4:8f:53:1f:a0:92:87:28:9a:ad:ea:80:4d:39:c1:a9: e3:48:9c:9f:78:d2:7e:fe:c0:c9:5d:d8:bf:9e:bc:80:91:c8: ca:34:7d:b7:17:6b:54:e9:97:f0:3e:1a:21:e9:06:72:c8:7f: d4:9d:d0:a8:c3:a5:32:3b:f0:fc:ae:fe:0a:33:5d:90:b1:1a: f8:7b:f7:51:ba:aa:e8:c8:2b:bf:9e:ed:25:6f:ff:f5:e4:7d: 51:6c:7b:02:9c:9f:e3:ef:d9:df:87:f9:41:4d:7c:cb:50:09: c4:f2:af:c0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDlEGHZu+DYVmBouoA63mszeFw3cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTI2MTU0NzIwWhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0BiMzViNWIwYTNiNjc5MDIxMzYxZjU4MTI5N2U4ZjEyOGJi OGJhNmE5YzU2YmE3MDc5MWFhMWIwNzc4MzkzNDVlMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDpd4AW48QE/jp/WseGDlUL9pzQdqznXVGSO4hJ+zw8q81L BksbL+XM9PP+xJf56kY0gC52XI21ubhNQENvA5P2/ybeIXaeTOLq9EamPDJcNqBj UDfoDjru86rdpJfPYm7P9MFWTShEoGDBklNAKJdHPxSxyaaScp+e6kRYc2WokbWr Ktu6yMyIQwwDpDKYuwQUAkw1nhZof9i2QtOtxg8JCkyLugP3zHw2qRUo0GVvnuF1 mwePn+DRCacXPwSxUFz/Vqgccjxh8gTOjmfBw1Tvypd3OjHsnHYAP1FTgUeWI+0s CzPiGqZHtXoDvr+TU1CZt5jzynfP59tttOXqB9IpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUCjPHd4+Az+5oRBpd99IOVL8q0pYwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2E5MjcwNTczLTgxYTAtNDYxOC04M2ZkLTVlNGY2OTFhZjY5OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAP5p0wDQYJKoZIhvcNAQELBQADggEBAKFLMKKbJ5ERfUNp7uGTN1C5vZy1 mEQK+Om7RMPeKQTUKT87JmPEdFLgo9ll7OSS+eEfNMSWaBW9QW/HSKCqV0YbNQDR 2mwxxnVYqYZ54x+wTkYbUcaP9RQgcRAQCwpYXXeNve7CfLGC6ALSZmOXA0SiIZOj sE9SPC62+xy+qBvfn6wxtiuk+6vl1Ani0w0Du+ec1I9TH6CShyiareqATTnBqeNI nJ940n7+wMld2L+evICRyMo0fbcXa1Tpl/A+GiHpBnLIf9Sd0KjDpTI78Pyu/goz XZCxGvh791G6qujIK7+e7SVv//XkfVFsewKcn+Pv2d+H+UFNfMtQCcTyr8A= -----END CERTIFICATE-----Generated at Wed Oct 8 21:17:00 2025 by rpki-client