$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1dd7d463-7968-4789-b06b-fb9810b4a677.roa File: 1dd7d463-7968-4789-b06b-fb9810b4a677.roa (raw, json) Hash identifier: 7IKtP4LChsnhTDh7ZDmE9fEQFjZMusgRhnqXMz2glp0= Subject key identifier: BA:A8:7A:9A:16:52:3C:B5:FC:14:76:71:C7:8B:A5:E2:E2:B8:F3:3D Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 7A66D72608DA8BAD55A06D5A0FDA8A29B67D45 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1dd7d463-7968-4789-b06b-fb9810b4a677.roa Signing time: Fri 26 Sep 2025 02:02:08 +0000 ROA not before: Fri 26 Sep 2025 02:02:08 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.162.96.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:66:d7:26:08:da:8b:ad:55:a0:6d:5a:0f:da:8a:29:b6:7d:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 26 02:02:08 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=e19254b94001b752068e69b55dd1b19a1373ae984c97d8465802feba7ecde30a, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:5b:49:7c:5c:f7:0e:c5:32:aa:cc:11:84:4a: ce:6c:5a:8b:64:30:24:c2:78:e4:80:7f:d2:b0:86: 75:ca:40:d5:70:ea:cd:f1:5a:eb:3e:2b:45:be:3a: 8e:64:1a:8a:20:16:a4:16:02:47:5f:6a:7a:c4:e7: 88:e9:e9:c2:7e:d1:30:21:76:ca:60:52:b7:62:38: af:7d:51:55:58:c3:06:b7:83:8b:c8:14:b2:12:ea: be:c1:43:e5:b2:75:e2:45:90:6f:7f:7e:79:4f:cc: 25:75:52:ed:30:1e:6b:ee:c9:46:2d:c1:74:6a:61: ab:95:1b:fe:c1:f5:d2:e5:84:ea:61:23:75:0c:cb: bb:36:7f:69:17:61:df:55:0f:9a:94:dd:91:77:52: a4:3f:e3:2f:b8:19:48:ca:d7:44:cb:1f:d3:f1:4e: 33:9a:de:52:c1:a3:2a:17:b9:4c:fe:f3:44:04:8f: de:34:67:4d:11:b4:f9:21:f7:72:ac:c0:ed:de:70: 63:73:15:64:50:06:36:bb:e0:83:87:69:6f:dc:eb: 29:75:a2:d7:ae:fe:02:cc:74:31:d1:e6:0b:e0:af: 87:a3:30:72:b2:3b:37:3a:0f:aa:d9:08:1f:3d:d3: 52:74:da:2b:fa:3a:c8:18:76:4c:d6:62:00:be:ef: 03:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:A8:7A:9A:16:52:3C:B5:FC:14:76:71:C7:8B:A5:E2:E2:B8:F3:3D X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1dd7d463-7968-4789-b06b-fb9810b4a677.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.162.96.0/19 Signature Algorithm: sha256WithRSAEncryption a2:45:fe:bd:b1:17:da:05:7a:f7:42:cb:d8:67:36:ab:da:b3: aa:0e:ec:df:68:09:1c:0d:db:75:82:1e:c6:7e:46:4b:a7:3c: b9:ba:94:b1:7c:d3:40:01:57:e6:d7:3f:d7:b1:a9:5e:9a:5c: 56:51:1a:82:3c:f7:fb:c2:46:60:d8:07:2c:7b:30:3d:7b:0c: 55:43:e5:70:4c:af:0a:48:07:2d:8b:83:62:c0:eb:b5:97:50: eb:b2:8f:8a:ca:8b:a6:60:46:6b:39:ba:8c:3f:f9:0f:54:51: 12:be:9d:48:10:3a:17:fd:88:84:10:be:62:ae:b3:44:4e:e9: ad:84:cd:90:c0:34:a8:65:0b:2f:e1:a8:9f:f3:7d:27:ad:c1: c6:8f:ac:6f:a6:74:a5:0a:c9:8a:44:c0:5a:74:c8:e4:c5:d3: 92:b7:c1:3e:ca:17:3c:48:43:6d:36:b3:ed:57:b3:ae:c2:bc: 6d:d6:6a:34:a8:34:68:08:37:f5:1d:1a:09:36:45:57:60:37: 77:0b:7f:10:9d:03:12:83:c7:c2:8c:8a:db:75:fa:74:58:32: f7:a4:36:ad:e6:6e:5e:a4:8a:ad:a5:01:6b:72:87:25:32:c1: dd:df:d3:88:6f:f8:37:6e:68:ee:a1:a3:04:af:ab:70:08:16: 95:1e:db:4c -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITembXJgjai61VoG1aD9qKKbZ9RTANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzJkZjZmM2IzYTM0YjYzODZkMWEzMmQ4ZjRmYTMxNzhlZjMx ODg3ZDhiNDI4ZGZhYTQ3NjAeFw0yNTA5MjYwMjAyMDhaFw0yNTEwMzEyMzU5NTla MHoxSTBHBgNVBAUTQGUxOTI1NGI5NDAwMWI3NTIwNjhlNjliNTVkZDFiMTlhMTM3 M2FlOTg0Yzk3ZDg0NjU4MDJmZWJhN2VjZGUzMGExLTArBgNVBAMTJDVmMjc2MDQ1 LTViOWYtNDVlZi05MjNkLWYzZmNlMjRhNjIyNTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAL5bSXxc9w7FMqrMEYRKzmxai2QwJMJ45IB/0rCGdcpA1XDq zfFa6z4rRb46jmQaiiAWpBYCR19qesTniOnpwn7RMCF2ymBSt2I4r31RVVjDBreD i8gUshLqvsFD5bJ14kWQb39+eU/MJXVS7TAea+7JRi3BdGphq5Ub/sH10uWE6mEj dQzLuzZ/aRdh31UPmpTdkXdSpD/jL7gZSMrXRMsf0/FOM5reUsGjKhe5TP7zRASP 3jRnTRG0+SH3cqzA7d5wY3MVZFAGNrvgg4dpb9zrKXWi167+Asx0MdHmC+Cvh6Mw crI7NzoPqtkIHz3TUnTaK/o6yBh2TNZiAL7vA5cCAwEAAaOCArEwggKtMB0GA1Ud DgQWBBS6qHqaFlI8tfwUdnHHi6Xi4rjzPTAfBgNVHSMEGDAWgBQlrdNCsB63pY6t GZAmiLVLP4H0uDAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzg1MWNlZjE3LTEz MmEtNDMzNy1iN2QxLWJmMTZhNTJmZmQwMy9kZjZmM2IzYTM0YjYzODZkMWEzMmQ4 ZjRmYTMxNzhlZjMxODg3ZDhiNDI4ZGZhYTQ3Ni5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9mNzAzNjk2ZS1lNDdiLTRjMjAtYmQ5My02Zjgw OTA0ZTQyZDIvMWRkN2Q0NjMtNzk2OC00Nzg5LWIwNmItZmI5ODEwYjRhNjc3LnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMt NmY4MDkwNGU0MmQyL3RqaHRHakxZOVBveGVPOHhpSDJMUW8zNnBIWS5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBQOiYDANBgkqhkiG9w0BAQsFAAOCAQEAokX+vbEX2gV690LL2Gc2q9qzqg7s 32gJHA3bdYIexn5GS6c8ubqUsXzTQAFX5tc/17GpXppcVlEagjz3+8JGYNgHLHsw PXsMVUPlcEyvCkgHLYuDYsDrtZdQ67KPisqLpmBGazm6jD/5D1RREr6dSBA6F/2I hBC+Yq6zRE7prYTNkMA0qGULL+Gon/N9J63Bxo+sb6Z0pQrJikTAWnTI5MXTkrfB PsoXPEhDbTaz7VezrsK8bdZqNKg0aAg39R0aCTZFV2A3dwt/EJ0DEoPHwoyK23X6 dFgy96Q2reZuXqSKraUBa3KHJTLB3d/TiG/4N25o7qGjBK+rcAgWlR7bTA== -----END CERTIFICATE-----Generated at Fri Oct 17 22:19:36 2025 by rpki-client