$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/00ddac45-6ff3-44c5-b626-9a354eb9d483.roa File: 00ddac45-6ff3-44c5-b626-9a354eb9d483.roa (raw, json) Hash identifier: hWOTA7qgXtIOoWhg1b0Pp8TgUDjmKFbgsNXRLyvFqXI= Subject key identifier: 3A:CB:E2:42:21:C2:CA:85:F1:E0:00:51:C2:79:7B:2F:51:CF:2D:D7 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 154698256BBFBAB16CE7298946A124B4AF98116D Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/00ddac45-6ff3-44c5-b626-9a354eb9d483.roa Signing time: Fri 10 Oct 2025 15:34:12 +0000 ROA not before: Fri 10 Oct 2025 15:34:12 +0000 ROA not after: Fri 14 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.248.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:46:98:25:6b:bf:ba:b1:6c:e7:29:89:46:a1:24:b4:af:98:11:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 10 15:34:12 2025 GMT Not After : Nov 14 23:59:59 2025 GMT Subject: serialNumber=f416a8953a425849ab015c935949d2d9fe9ded0d673241b3ba3636721adaa8e7, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:85:a4:9e:c7:d5:c4:33:21:d8:94:e1:66:8f: 2b:b6:e8:51:ba:f7:11:a8:0b:4a:64:13:52:af:5e: a1:54:ea:da:c5:85:8c:46:f6:f6:8a:e1:12:61:d5: 62:6d:fe:77:ff:5e:03:83:e7:e6:33:9a:e1:bd:2e: d1:35:59:2a:3f:31:7d:90:77:22:35:fe:e0:86:1b: 91:ac:77:60:5e:94:fc:1c:49:0e:ad:c5:8e:aa:dc: 8e:5e:e1:39:97:30:03:2e:c0:29:87:97:71:63:32: 91:77:da:c5:8c:fe:92:6b:82:c9:03:af:b4:f2:bb: 42:ce:cc:33:af:8f:5a:09:54:62:82:56:a2:2f:98: 59:ce:45:f6:b4:4a:51:ed:7b:69:7a:24:c8:fa:1e: 94:ce:da:b9:36:87:3b:0f:6b:df:23:b1:e0:c0:98: ce:1c:1c:37:7a:4e:53:14:e8:25:f3:36:1d:b9:cd: 85:51:d4:75:51:04:14:b9:2c:79:99:16:6a:88:dc: d7:b2:b0:a5:90:09:6a:ba:a3:d1:47:b7:78:db:c1: 7b:ff:27:6e:90:8d:2f:4a:9b:d8:73:f2:a8:dd:0b: 0e:31:2b:3a:6e:b0:fe:ba:ca:88:a4:78:e4:70:f2: 3e:46:c1:88:ff:e3:10:3c:4b:71:44:d1:a4:2c:e1: 61:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:CB:E2:42:21:C2:CA:85:F1:E0:00:51:C2:79:7B:2F:51:CF:2D:D7 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/00ddac45-6ff3-44c5-b626-9a354eb9d483.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.248.128.0/18 Signature Algorithm: sha256WithRSAEncryption 64:1f:98:95:b0:ac:25:90:8e:03:73:ba:7e:23:a0:67:ce:8b: 75:ce:61:4b:ba:ef:ba:79:12:e6:ce:c3:77:af:13:b2:2c:84: 04:21:d8:04:26:06:d2:a2:9a:ef:b2:7d:05:81:38:e9:47:2b: 13:f1:1a:80:ee:cb:94:dd:a7:91:14:d5:b1:c3:32:3b:ea:0a: e6:b2:a9:7b:e8:7b:fd:2c:bb:71:d6:0a:75:22:01:53:4d:3d: 6d:9e:8a:8f:e1:6e:7f:37:2b:df:fb:18:39:21:c8:4d:8e:38: 6b:f5:23:a3:6a:12:7b:c3:5e:29:1b:64:5d:59:0e:fc:fb:ea: 4c:13:b2:ad:15:ef:10:2a:8c:09:a9:f0:80:dd:c7:a4:df:94: 03:e6:e5:45:59:cc:fa:aa:e6:5f:2a:48:1e:d7:16:0f:7b:49: d5:6a:6c:44:ff:ce:87:1c:c8:69:fe:d8:d9:04:3c:3c:21:88: 9d:3c:6a:15:7d:f4:7e:9f:c2:c1:ee:03:b6:d1:92:37:ce:9c: c9:41:33:45:21:96:f2:2d:42:9a:df:4f:70:67:b0:66:1f:c9: 2f:ac:3b:ef:cb:7b:82:6e:01:9d:e4:32:6c:f6:8b:43:0c:5b: bb:ca:79:83:98:dc:e4:7a:b2:7e:17:40:03:c1:ed:f2:a1:11: 9e:5d:2c:fd -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFUaYJWu/urFs5ymJRqEktK+YEW0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDEwMTUzNDEyWhcNMjUxMTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNDE2YTg5NTNhNDI1ODQ5YWIwMTVjOTM1OTQ5ZDJkOWZl OWRlZDBkNjczMjQxYjNiYTM2MzY3MjFhZGFhOGU3MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/haSex9XEMyHYlOFmjyu26FG69xGoC0pkE1KvXqFU6trF hYxG9vaK4RJh1WJt/nf/XgOD5+YzmuG9LtE1WSo/MX2QdyI1/uCGG5Gsd2BelPwc SQ6txY6q3I5e4TmXMAMuwCmHl3FjMpF32sWM/pJrgskDr7Tyu0LOzDOvj1oJVGKC VqIvmFnORfa0SlHte2l6JMj6HpTO2rk2hzsPa98jseDAmM4cHDd6TlMU6CXzNh25 zYVR1HVRBBS5LHmZFmqI3NeysKWQCWq6o9FHt3jbwXv/J26QjS9Km9hz8qjdCw4x KzpusP66yoikeORw8j5GwYj/4xA8S3FE0aQs4WHrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUOsviQiHCyoXx4ABRwnl7L1HPLdcwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzAwZGRhYzQ1LTZmZjMtNDRjNS1iNjI2LTlhMzU0ZWI5ZDQ4My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYD+IAwDQYJKoZIhvcNAQELBQADggEBAGQfmJWwrCWQjgNzun4joGfOi3XO YUu677p5EubOw3evE7IshAQh2AQmBtKimu+yfQWBOOlHKxPxGoDuy5Tdp5EU1bHD MjvqCuayqXvoe/0su3HWCnUiAVNNPW2eio/hbn83K9/7GDkhyE2OOGv1I6NqEnvD XikbZF1ZDvz76kwTsq0V7xAqjAmp8IDdx6TflAPm5UVZzPqq5l8qSB7XFg97SdVq bET/zoccyGn+2NkEPDwhiJ08ahV99H6fwsHuA7bRkjfOnMlBM0UhlvItQprfT3Bn sGYfyS+sO+/Le4JuAZ3kMmz2i0MMW7vKeYOY3OR6sn4XQAPB7fKhEZ5dLP0= -----END CERTIFICATE-----Generated at Sat Oct 18 00:18:16 2025 by rpki-client