$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1bf0e885-4eac-48b3-a4dc-f16beeb8f8e1.roa File: 1bf0e885-4eac-48b3-a4dc-f16beeb8f8e1.roa (raw, json) Hash identifier: qLRrpHWckgyEmJTWJJ6U91PIWpwAbAOPz6UVi2lvH1k= Subject key identifier: 42:F2:4D:36:37:17:62:3C:2F:A7:D3:28:28:13:07:37:FB:D1:D5:9F Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 709EE88F964F58FF47556AB66D8332079B50CF39 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1bf0e885-4eac-48b3-a4dc-f16beeb8f8e1.roa Signing time: Thu 25 Sep 2025 17:57:18 +0000 ROA not before: Thu 25 Sep 2025 17:57:18 +0000 ROA not after: Thu 30 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.164.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:9e:e8:8f:96:4f:58:ff:47:55:6a:b6:6d:83:32:07:9b:50:cf:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 25 17:57:18 2025 GMT Not After : Oct 30 23:59:59 2025 GMT Subject: serialNumber=a3af688210496d42add635e26118cf978c1ec77104b4a1dfd5e40b32ac69cd99, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:06:2b:84:c2:16:f3:c5:b3:6f:94:4e:26:53: 8f:89:01:6b:95:09:84:60:9a:f9:70:55:27:ea:81: c4:e6:d6:2f:f7:e0:63:c9:73:ac:bf:31:a5:76:3e: f0:01:6b:54:6a:1d:c3:50:a8:8b:5d:42:b4:d9:92: 32:b6:20:50:15:6c:17:cb:92:47:7a:29:70:c8:70: 99:03:b9:15:ce:28:d1:49:61:93:e5:4b:f0:89:cb: ba:50:ba:d1:4b:32:d2:84:b5:f2:98:ab:47:25:1c: 9a:5e:db:53:13:ae:55:94:ec:a7:bf:50:39:1c:81: ba:b7:9a:8c:50:5c:bc:78:a3:01:8c:a1:32:14:11: 2e:07:6d:02:ce:22:80:01:03:f7:f9:ec:f4:b3:4e: 31:b3:d7:07:14:a6:fc:1a:30:f5:62:e8:02:a3:17: f2:be:f3:d2:e8:ed:81:2e:3b:c8:18:06:62:cd:88: 70:ff:7f:59:15:5f:20:db:71:61:0f:c5:8e:aa:97: b5:e7:1e:4f:8b:f2:e6:25:68:e5:f6:93:5a:43:ac: 67:1c:33:c3:c2:1b:56:2e:71:b1:24:8b:6c:9a:6c: 91:3f:72:72:c3:a8:16:fd:64:8c:a2:57:07:0c:b1: c8:1b:a6:58:42:c8:c8:6c:10:fe:c4:c1:37:0e:26: 1d:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:F2:4D:36:37:17:62:3C:2F:A7:D3:28:28:13:07:37:FB:D1:D5:9F X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1bf0e885-4eac-48b3-a4dc-f16beeb8f8e1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.164.175.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:df:5f:62:1a:56:db:62:c8:5b:22:92:0d:fe:37:28:50:32: af:78:7a:74:fd:55:23:81:f2:3c:a3:d8:64:de:51:31:76:43: 1a:9d:14:d6:59:fe:fa:e8:ea:80:5a:cd:32:15:16:d1:a7:42: 0f:ef:3c:be:47:4c:37:b1:e8:a9:70:d8:cf:f5:72:31:e7:da: f3:b2:78:e3:98:97:74:f0:02:8a:b3:c3:06:3e:4d:f6:09:91: 89:c3:07:e9:81:e0:29:93:d8:03:62:1c:20:25:72:6d:58:2e: 89:13:c2:f3:c3:f0:cc:ca:a7:ae:c3:ae:c4:ac:32:2f:c0:4d: cd:4d:26:05:80:fd:63:45:fa:0f:de:ba:09:cb:22:87:f5:60: 7b:47:35:cb:46:48:36:e8:5e:72:24:5c:af:db:3d:b7:c2:19: 00:20:d2:eb:57:ae:04:8d:80:3f:b0:40:9a:32:8f:eb:50:7a: a9:33:96:2f:30:45:c9:b3:c2:93:72:92:fd:cb:80:88:be:2b: 95:ea:cc:5e:93:1a:a0:fb:cf:0e:e6:80:da:01:e8:13:36:93: 4b:e9:6e:3a:98:d4:29:76:a1:7f:d7:ac:57:c3:b5:b7:a0:7f: ab:24:7f:29:6a:78:0a:9e:b7:e8:fb:45:da:0e:62:83:3f:8a: cb:12:e7:5b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcJ7oj5ZPWP9HVWq2bYMyB5tQzzkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTI1MTc1NzE4WhcNMjUxMDMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhM2FmNjg4MjEwNDk2ZDQyYWRkNjM1ZTI2MTE4Y2Y5Nzhj MWVjNzcxMDRiNGExZGZkNWU0MGIzMmFjNjljZDk5MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+BiuEwhbzxbNvlE4mU4+JAWuVCYRgmvlwVSfqgcTm1i/3 4GPJc6y/MaV2PvABa1RqHcNQqItdQrTZkjK2IFAVbBfLkkd6KXDIcJkDuRXOKNFJ YZPlS/CJy7pQutFLMtKEtfKYq0clHJpe21MTrlWU7Ke/UDkcgbq3moxQXLx4owGM oTIUES4HbQLOIoABA/f57PSzTjGz1wcUpvwaMPVi6AKjF/K+89Lo7YEuO8gYBmLN iHD/f1kVXyDbcWEPxY6ql7XnHk+L8uYlaOX2k1pDrGccM8PCG1YucbEki2yabJE/ cnLDqBb9ZIyiVwcMscgbplhCyMhsEP7EwTcOJh1NAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQvJNNjcXYjwvp9MoKBMHN/vR1Z8wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzFiZjBlODg1LTRlYWMtNDhiMy1hNGRjLWYxNmJlZWI4ZjhlMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAADpK8wDQYJKoZIhvcNAQELBQADggEBAH7fX2IaVttiyFsikg3+NyhQMq94 enT9VSOB8jyj2GTeUTF2QxqdFNZZ/vro6oBazTIVFtGnQg/vPL5HTDex6Klw2M/1 cjHn2vOyeOOYl3TwAoqzwwY+TfYJkYnDB+mB4CmT2ANiHCAlcm1YLokTwvPD8MzK p67DrsSsMi/ATc1NJgWA/WNF+g/eugnLIof1YHtHNctGSDboXnIkXK/bPbfCGQAg 0utXrgSNgD+wQJoyj+tQeqkzli8wRcmzwpNykv3LgIi+K5XqzF6TGqD7zw7mgNoB 6BM2k0vpbjqY1Cl2oX/XrFfDtbegf6skfylqeAqet+j7RdoOYoM/issS51s= -----END CERTIFICATE-----Generated at Fri Oct 17 22:12:25 2025 by rpki-client