$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/06859551-844f-4e9b-bd83-8887082e2cad.roa File: 06859551-844f-4e9b-bd83-8887082e2cad.roa (raw, json) Hash identifier: 1Nqe1HuLvLqTvN3bCk7o1JttTyYKMBHOad9FRYZwsmo= Subject key identifier: 62:9C:E4:39:8F:C7:56:44:B1:56:6D:5E:02:65:AA:FB:3D:0E:BC:17 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 77E23B5915DD770E44FB7F15F7EB8D38149FDB Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/06859551-844f-4e9b-bd83-8887082e2cad.roa Signing time: Thu 25 Sep 2025 23:06:51 +0000 ROA not before: Thu 25 Sep 2025 23:06:51 +0000 ROA not after: Thu 30 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.170.254.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:e2:3b:59:15:dd:77:0e:44:fb:7f:15:f7:eb:8d:38:14:9f:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 25 23:06:51 2025 GMT Not After : Oct 30 23:59:59 2025 GMT Subject: serialNumber=a178b18fbe868ecf2affdfdece60025a4adda4139a7a70243bf85f9e3123b5ec, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:6d:d9:37:70:31:3d:f4:aa:73:eb:bb:5b:0e: 67:18:f2:fe:c4:04:e0:c2:7c:c2:f5:30:e4:6d:bf: 03:e8:2c:28:7d:f1:47:82:23:a7:fb:56:b2:12:88: 0a:96:04:ee:d8:63:52:fd:29:de:ee:7d:85:75:7b: 13:3e:95:19:8e:38:01:80:84:b9:ea:a8:26:45:a8: 0a:0f:fc:2f:2a:4d:82:04:17:0d:84:a0:46:48:a7: d2:ce:b9:c5:61:bb:c3:e7:81:d0:e3:21:c9:00:19: d0:fa:0d:22:fb:41:fa:20:89:0e:3e:07:bd:56:19: 0c:b7:b7:0b:e2:97:20:d4:a7:0c:9a:06:75:2d:c9: 7d:9e:07:4a:8a:ca:d9:57:54:39:8a:24:76:ce:f5: 93:28:30:0d:d2:f3:00:8e:79:8d:39:5d:49:0c:04: 65:fe:73:5c:93:50:72:b9:60:0f:61:b0:94:de:e4: 20:39:bb:cd:17:a9:e6:01:a1:b5:1f:9c:29:e6:ee: 94:db:4f:b1:37:dc:2e:48:8a:19:ac:01:2f:c5:e6: c4:33:4d:eb:46:93:80:2f:ab:d2:e4:9b:20:92:0f: f1:05:ac:79:50:78:be:68:b9:80:12:ce:10:68:b1: 77:ba:2d:90:25:69:2b:7b:ac:88:fb:69:a0:32:5a: c1:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:9C:E4:39:8F:C7:56:44:B1:56:6D:5E:02:65:AA:FB:3D:0E:BC:17 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/06859551-844f-4e9b-bd83-8887082e2cad.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.170.254.0/23 Signature Algorithm: sha256WithRSAEncryption 49:2a:d6:76:eb:ef:cc:58:20:31:02:ee:0d:12:43:2a:30:7b: 20:75:29:d3:f8:e5:a2:4e:28:d4:d6:d3:89:6a:a6:de:9a:55: 68:17:46:9b:04:dc:fc:86:28:96:62:a1:30:e0:8f:1a:75:ea: 26:36:41:7a:d3:d6:55:ee:31:39:c4:ae:d9:39:2b:ff:8a:a3: c2:dd:1a:57:eb:68:a1:73:69:a9:56:64:2b:04:d5:c3:50:d3: ae:6c:a3:06:ca:d9:e6:0b:7d:e2:a4:a3:e6:da:a0:13:fe:34: 8d:95:b8:b1:e4:6e:2c:b6:e8:d1:23:c4:66:ac:9c:88:75:fa: ab:29:3a:f4:42:02:2c:c7:71:cf:6f:b8:8f:35:3a:85:62:f8: 9a:f6:23:c1:83:77:86:39:13:48:b0:51:d4:db:61:44:c0:50: ca:56:78:54:0c:e9:e0:00:81:26:c7:90:13:2f:97:91:a3:77: 96:1d:69:ad:0f:63:5e:4e:45:a0:16:e5:dd:26:f8:db:e4:76: bb:9f:a1:10:94:1e:9c:45:4c:0b:55:bf:0e:9a:0b:2c:bb:7c: fd:44:c0:b0:ef:49:bf:53:fd:e2:f2:29:96:c6:fc:32:2f:0f: df:ea:36:66:54:3b:c5:34:0b:30:96:a1:22:ee:e7:90:85:6d: b2:73:97:f8 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITd+I7WRXddw5E+38V9+uNOBSf2zANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzJkZjZmM2IzYTM0YjYzODZkMWEzMmQ4ZjRmYTMxNzhlZjMx ODg3ZDhiNDI4ZGZhYTQ3NjAeFw0yNTA5MjUyMzA2NTFaFw0yNTEwMzAyMzU5NTla MHoxSTBHBgNVBAUTQGExNzhiMThmYmU4NjhlY2YyYWZmZGZkZWNlNjAwMjVhNGFk ZGE0MTM5YTdhNzAyNDNiZjg1ZjllMzEyM2I1ZWMxLTArBgNVBAMTJDVmMjc2MDQ1 LTViOWYtNDVlZi05MjNkLWYzZmNlMjRhNjIyNTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAKlt2TdwMT30qnPru1sOZxjy/sQE4MJ8wvUw5G2/A+gsKH3x R4Ijp/tWshKICpYE7thjUv0p3u59hXV7Ez6VGY44AYCEueqoJkWoCg/8LypNggQX DYSgRkin0s65xWG7w+eB0OMhyQAZ0PoNIvtB+iCJDj4HvVYZDLe3C+KXINSnDJoG dS3JfZ4HSorK2VdUOYokds71kygwDdLzAI55jTldSQwEZf5zXJNQcrlgD2GwlN7k IDm7zRep5gGhtR+cKebulNtPsTfcLkiKGawBL8XmxDNN60aTgC+r0uSbIJIP8QWs eVB4vmi5gBLOEGixd7otkCVpK3usiPtpoDJawfkCAwEAAaOCArEwggKtMB0GA1Ud DgQWBBRinOQ5j8dWRLFWbV4CZar7PQ68FzAfBgNVHSMEGDAWgBQlrdNCsB63pY6t GZAmiLVLP4H0uDAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzg1MWNlZjE3LTEz MmEtNDMzNy1iN2QxLWJmMTZhNTJmZmQwMy9kZjZmM2IzYTM0YjYzODZkMWEzMmQ4 ZjRmYTMxNzhlZjMxODg3ZDhiNDI4ZGZhYTQ3Ni5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9mNzAzNjk2ZS1lNDdiLTRjMjAtYmQ5My02Zjgw OTA0ZTQyZDIvMDY4NTk1NTEtODQ0Zi00ZTliLWJkODMtODg4NzA4MmUyY2FkLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMt NmY4MDkwNGU0MmQyL3RqaHRHakxZOVBveGVPOHhpSDJMUW8zNnBIWS5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAQOq/jANBgkqhkiG9w0BAQsFAAOCAQEASSrWduvvzFggMQLuDRJDKjB7IHUp 0/jlok4o1NbTiWqm3ppVaBdGmwTc/IYolmKhMOCPGnXqJjZBetPWVe4xOcSu2Tkr /4qjwt0aV+tooXNpqVZkKwTVw1DTrmyjBsrZ5gt94qSj5tqgE/40jZW4seRuLLbo 0SPEZqyciHX6qyk69EICLMdxz2+4jzU6hWL4mvYjwYN3hjkTSLBR1NthRMBQylZ4 VAzp4ACBJseQEy+XkaN3lh1prQ9jXk5FoBbl3Sb42+R2u5+hEJQenEVMC1W/DpoL LLt8/UTAsO9Jv1P94vIplsb8Mi8P3+o2ZlQ7xTQLMJahIu7nkIVtsnOX+A== -----END CERTIFICATE-----Generated at Fri Oct 17 22:19:08 2025 by rpki-client