$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0f7474fd-86e8-49b4-90b3-1a68c50e807e.roa File: 0f7474fd-86e8-49b4-90b3-1a68c50e807e.roa (raw, json) Hash identifier: zPBn/3PYsqFXabbWPhAeSc5Kn0lDozhW5WmgdPhWCeU= Subject key identifier: A1:A2:5A:9B:D6:C4:D1:39:3D:CE:73:6C:D1:49:35:A7:2A:99:F8:C5 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 2A1992267F434E2FBE93BAAAAE8AF55EC85E5E68 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0f7474fd-86e8-49b4-90b3-1a68c50e807e.roa Signing time: Thu 25 Sep 2025 19:10:09 +0000 ROA not before: Thu 25 Sep 2025 19:10:09 +0000 ROA not after: Thu 30 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.168.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:19:92:26:7f:43:4e:2f:be:93:ba:aa:ae:8a:f5:5e:c8:5e:5e:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 25 19:10:09 2025 GMT Not After : Oct 30 23:59:59 2025 GMT Subject: serialNumber=c23f9e3828039a8a18aa0c828cc3999a585369688769535bcbbd200773ce5472, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ef:45:32:d6:f1:74:c5:ef:89:93:0c:9c:ed: 09:ba:38:35:17:f4:ca:5f:f1:53:c0:51:05:5a:40: e5:70:17:86:6e:b8:c0:b8:ef:98:52:e2:8e:09:f3: a2:57:df:f1:67:2e:53:b4:a4:f1:83:b1:98:2b:7e: 07:be:da:04:4e:f0:75:2d:38:dc:2d:7a:8a:83:b2: 33:b6:d3:e3:ef:55:f5:e0:3d:5f:fd:f2:64:05:48: 92:d6:46:94:2e:e0:db:d5:eb:30:e6:da:39:80:d1: ce:9b:f0:ad:88:51:9d:80:47:75:b5:57:59:4e:de: ab:93:c9:ed:e9:66:90:c0:57:cc:2a:19:9b:09:80: b0:24:d5:71:fa:8b:4d:5d:af:e2:d7:aa:3c:17:e3: ab:3c:4c:51:ae:b5:50:03:83:f7:ff:08:b9:83:13: 67:a6:e8:f9:5e:bc:90:86:d8:99:b1:64:62:f1:c7: 78:4f:e1:1d:99:2a:51:2c:52:88:36:df:7e:46:81: 05:0a:c3:6c:0c:ef:86:1f:5f:cb:2b:75:95:43:e5: 83:55:0b:93:fe:ad:42:65:ee:6e:3c:40:f5:03:1b: 38:0f:97:c8:31:e7:86:eb:92:d8:f4:a1:80:64:63: 44:ce:ea:1a:02:de:7a:44:73:a0:c2:0d:6d:39:ff: e9:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:A2:5A:9B:D6:C4:D1:39:3D:CE:73:6C:D1:49:35:A7:2A:99:F8:C5 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0f7474fd-86e8-49b4-90b3-1a68c50e807e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.168.138.0/24 Signature Algorithm: sha256WithRSAEncryption 77:53:3b:41:9b:d7:fb:e6:ff:b7:a6:6f:af:e4:7e:3e:92:88: f9:f3:17:41:e8:5d:fa:c0:5a:02:3f:8b:5b:e6:96:fb:ca:2b: e5:64:87:77:97:ba:3f:7a:72:73:f4:2e:90:e6:46:55:2c:20: a0:7a:0e:24:73:81:35:ca:4d:24:9e:34:5f:f5:76:47:e6:20: 5b:e8:5b:52:c8:9d:31:bd:dd:34:17:4a:c6:fa:40:ed:ed:32: 26:46:05:18:b3:53:08:14:a6:60:a3:bf:b3:d2:c2:cb:3f:c5: b2:29:a1:54:bb:42:2b:3f:e4:02:b4:14:24:13:d4:c3:60:d8: ba:fb:6b:8a:5b:11:4c:9b:ac:7f:a7:37:12:a5:ae:27:88:92: 22:bf:12:bf:eb:74:0a:a8:e9:dc:cf:31:6e:f2:1c:fe:de:e4: da:a3:30:d2:63:55:e6:78:3e:eb:99:73:df:4a:2c:b9:86:0a: f7:25:80:f6:5d:94:fc:bb:fb:ef:9e:21:e8:dd:62:f7:ee:33: 32:07:93:43:fb:33:87:76:41:19:a7:f2:ca:04:74:c7:d3:7b: b3:b4:cc:5e:6e:3b:62:5c:b6:3d:23:ab:09:57:eb:e6:1e:6c: df:2f:ec:4f:59:8e:dd:c6:77:ad:b2:ba:17:95:8d:fe:6a:28: 86:1e:97:9b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKhmSJn9DTi++k7qqror1XsheXmgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTI1MTkxMDA5WhcNMjUxMDMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BjMjNmOWUzODI4MDM5YThhMThhYTBjODI4Y2MzOTk5YTU4 NTM2OTY4ODc2OTUzNWJjYmJkMjAwNzczY2U1NDcyMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC270Uy1vF0xe+Jkwyc7Qm6ODUX9Mpf8VPAUQVaQOVwF4Zu uMC475hS4o4J86JX3/FnLlO0pPGDsZgrfge+2gRO8HUtONwteoqDsjO20+PvVfXg PV/98mQFSJLWRpQu4NvV6zDm2jmA0c6b8K2IUZ2AR3W1V1lO3quTye3pZpDAV8wq GZsJgLAk1XH6i01dr+LXqjwX46s8TFGutVADg/f/CLmDE2em6PlevJCG2JmxZGLx x3hP4R2ZKlEsUog2335GgQUKw2wM74YfX8srdZVD5YNVC5P+rUJl7m48QPUDGzgP l8gx54brktj0oYBkY0TO6hoC3npEc6DCDW05/+n7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUoaJam9bE0Tk9znNs0Uk1pyqZ+MUwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzBmNzQ3NGZkLTg2ZTgtNDliNC05MGIzLTFhNjhjNTBlODA3ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAADqIowDQYJKoZIhvcNAQELBQADggEBAHdTO0Gb1/vm/7emb6/kfj6SiPnz F0HoXfrAWgI/i1vmlvvKK+Vkh3eXuj96cnP0LpDmRlUsIKB6DiRzgTXKTSSeNF/1 dkfmIFvoW1LInTG93TQXSsb6QO3tMiZGBRizUwgUpmCjv7PSwss/xbIpoVS7Qis/ 5AK0FCQT1MNg2Lr7a4pbEUybrH+nNxKlrieIkiK/Er/rdAqo6dzPMW7yHP7e5Nqj MNJjVeZ4PuuZc99KLLmGCvclgPZdlPy7+++eIejdYvfuMzIHk0P7M4d2QRmn8soE dMfTe7O0zF5uO2Jctj0jqwlX6+YebN8v7E9Zjt3Gd62yuheVjf5qKIYel5s= -----END CERTIFICATE-----Generated at Fri Oct 17 22:14:43 2025 by rpki-client