$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2892e1a2-d494-4f4a-b9eb-bdb0ff811770.roa File: 2892e1a2-d494-4f4a-b9eb-bdb0ff811770.roa (raw, json) Hash identifier: 8i7z8Sz1k1wSM38RTtiRvmnqL4wu/K/sxbEyfxN4ZuI= Subject key identifier: 14:29:F5:39:DF:16:72:71:2D:B3:AB:E4:72:21:7C:A5:48:B7:67:0B Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 63C3975CA80CE47E62946F8CF9E7699E0B5AF2AB Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2892e1a2-d494-4f4a-b9eb-bdb0ff811770.roa Signing time: Fri 26 Sep 2025 16:04:40 +0000 ROA not before: Fri 26 Sep 2025 16:04:40 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 161.188.186.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:c3:97:5c:a8:0c:e4:7e:62:94:6f:8c:f9:e7:69:9e:0b:5a:f2:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 26 16:04:40 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=4b425af4f9c82214cbc3253439103a84677de5f729259322e04ccc7c8755d131, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:60:6e:e2:3b:95:c9:45:3b:16:e6:b0:f4:fa: 97:11:8e:18:1e:2f:e3:d6:dc:22:80:72:e7:12:e3: 99:89:fd:0e:5a:90:8b:1a:bf:d3:1f:b7:5e:38:55: c6:fa:0b:26:70:ac:57:57:3e:f5:04:ba:35:73:c4: 63:3c:dd:ef:9b:d0:cb:c3:52:49:6e:87:fe:85:07: 3e:e7:3a:45:8d:4e:4e:57:2d:19:7d:45:2b:21:7b: 8a:b1:06:09:35:86:94:04:b5:6a:0b:9d:09:aa:a4: ea:65:00:4c:55:8a:31:1e:c7:84:8f:72:73:cb:79: e9:e9:86:7c:0d:d6:18:20:02:ec:b6:57:a1:ae:22: 04:47:ac:3a:a9:b6:03:f4:f6:ac:c3:29:98:41:6e: b2:e0:f8:b3:f1:31:47:87:2e:59:67:1b:d7:d6:c2: 2a:ec:15:65:ad:ce:6c:9a:eb:b7:42:82:ed:fe:eb: 89:79:e5:c7:5f:3f:6a:e3:e6:d0:aa:d0:7c:3a:ac: db:29:bb:14:35:98:62:6a:4d:05:fc:78:af:f5:76: 1c:4b:c1:0f:5e:fc:72:dd:1b:bf:e5:a1:ce:0f:40: e3:a1:61:da:4f:d3:4e:95:51:f6:b8:bb:4f:88:fd: 90:6f:3d:db:d2:75:a9:ab:0d:7d:ce:33:79:1f:da: b0:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:29:F5:39:DF:16:72:71:2D:B3:AB:E4:72:21:7C:A5:48:B7:67:0B X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2892e1a2-d494-4f4a-b9eb-bdb0ff811770.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 161.188.186.0/23 Signature Algorithm: sha256WithRSAEncryption 2f:6f:16:31:97:c2:2e:56:cf:1f:03:56:77:ba:b5:19:70:ab: d9:ac:d0:38:6c:7f:4d:dc:84:af:4c:57:da:1b:f3:0d:20:7f: 2b:99:af:14:16:69:57:af:51:2f:a9:63:fb:d9:6a:ea:7b:7f: 8f:1f:9b:ef:92:a9:d5:97:9b:0f:99:44:ff:f2:39:f6:61:d5: 4a:2d:67:c4:fe:e0:9d:21:b4:4d:66:54:67:5d:62:74:74:d6: f1:43:cd:67:18:21:cb:fb:cb:79:33:5c:1f:64:51:ae:c9:17: bf:2d:7e:91:d7:6d:a3:90:ab:fb:dd:a5:71:ff:53:cc:cd:b2: e1:04:e7:60:76:55:ef:ea:19:d8:5a:d6:b4:d9:78:b1:63:ba: 9f:e7:8b:55:25:c3:ec:85:ed:b0:dc:2e:c0:77:54:d7:58:36: fe:78:c0:5a:42:59:2f:3a:1e:42:d5:a8:c6:18:05:58:19:c5: 1d:a4:b6:45:60:9e:45:44:7d:5d:07:39:9a:4b:79:9a:fe:23: 73:d6:15:4a:93:7e:d9:ce:05:01:b4:8d:b3:c3:b4:12:21:d8: 8d:e7:99:cb:b6:81:5f:d1:c0:53:fa:4c:4e:eb:a5:80:6f:ca: af:a7:c3:45:b3:b5:e2:8a:8c:7d:a0:b1:4c:52:f5:20:fc:f1: a2:32:d5:73 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUY8OXXKgM5H5ilG+M+edpngta8qswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTI2MTYwNDQwWhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0A0YjQyNWFmNGY5YzgyMjE0Y2JjMzI1MzQzOTEwM2E4NDY3 N2RlNWY3MjkyNTkzMjJlMDRjY2M3Yzg3NTVkMTMxMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxYG7iO5XJRTsW5rD0+pcRjhgeL+PW3CKAcucS45mJ/Q5a kIsav9Mft144Vcb6CyZwrFdXPvUEujVzxGM83e+b0MvDUkluh/6FBz7nOkWNTk5X LRl9RSshe4qxBgk1hpQEtWoLnQmqpOplAExVijEex4SPcnPLeenphnwN1hggAuy2 V6GuIgRHrDqptgP09qzDKZhBbrLg+LPxMUeHLllnG9fWwirsFWWtzmya67dCgu3+ 64l55cdfP2rj5tCq0Hw6rNspuxQ1mGJqTQX8eK/1dhxLwQ9e/HLdG7/loc4PQOOh YdpP006VUfa4u0+I/ZBvPdvSdamrDX3OM3kf2rCjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUFCn1Od8WcnEts6vkciF8pUi3ZwswHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzI4OTJlMWEyLWQ0OTQtNGY0YS1iOWViLWJkYjBmZjgxMTc3MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAGhvLowDQYJKoZIhvcNAQELBQADggEBAC9vFjGXwi5Wzx8DVne6tRlwq9ms 0Dhsf03chK9MV9ob8w0gfyuZrxQWaVevUS+pY/vZaup7f48fm++SqdWXmw+ZRP/y OfZh1UotZ8T+4J0htE1mVGddYnR01vFDzWcYIcv7y3kzXB9kUa7JF78tfpHXbaOQ q/vdpXH/U8zNsuEE52B2Ve/qGdha1rTZeLFjup/ni1Ulw+yF7bDcLsB3VNdYNv54 wFpCWS86HkLVqMYYBVgZxR2ktkVgnkVEfV0HOZpLeZr+I3PWFUqTftnOBQG0jbPD tBIh2I3nmcu2gV/RwFP6TE7rpYBvyq+nw0WzteKKjH2gsUxS9SD88aIy1XM= -----END CERTIFICATE-----Generated at Sat Oct 18 00:14:47 2025 by rpki-client