$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2f862ecf-5163-46b0-aaf4-c118ac8a7fcc.roa File: 2f862ecf-5163-46b0-aaf4-c118ac8a7fcc.roa (raw, json) Hash identifier: 2bhmvdzv2wJ2tpz67lW1j/GZfgCfM4sqNLXCdHfHxp8= Subject key identifier: 41:8D:28:E9:B9:E1:EF:31:2B:95:74:AA:45:D5:CA:E2:1A:17:C5:16 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 21E76EADFC72FEF041EF0D98A9F06A00D8EF862A Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2f862ecf-5163-46b0-aaf4-c118ac8a7fcc.roa Signing time: Thu 25 Sep 2025 22:51:43 +0000 ROA not before: Thu 25 Sep 2025 22:51:43 +0000 ROA not after: Thu 30 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.169.136.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:e7:6e:ad:fc:72:fe:f0:41:ef:0d:98:a9:f0:6a:00:d8:ef:86:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 25 22:51:43 2025 GMT Not After : Oct 30 23:59:59 2025 GMT Subject: serialNumber=981888364c584e762b9e70f4a3cedf6cae0392a2e3e88531b59c156c7e89b01c, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:21:6e:f1:f0:58:84:58:6d:f1:86:c1:7b:4a: 44:4d:3b:82:64:4e:94:c9:f8:66:18:97:7c:27:04: 49:ad:53:2c:4c:2c:3b:56:fe:cf:c9:98:74:19:bd: e3:78:3d:93:b8:a0:11:12:2c:f1:f3:db:b4:7d:3d: 55:4a:bf:0d:6a:d2:c4:5d:4c:27:9f:4e:3d:2e:11: 4b:75:4e:ff:b3:a2:29:8d:26:74:dc:37:d8:15:cc: e9:1a:0f:bc:ec:f1:ca:14:5e:08:2b:3d:c4:57:71: 94:b6:e8:40:e6:c5:9c:26:60:22:ea:09:53:58:0f: 87:b6:19:6b:69:ae:f9:2e:b7:64:ab:71:ed:12:3f: 67:fd:26:5a:d2:44:30:ed:0a:fa:f9:dd:21:be:65: c5:eb:ad:42:78:f5:22:71:72:75:40:35:ef:a6:c9: 12:b7:de:3c:72:ba:35:36:c0:ec:52:3d:6c:78:71: 61:c3:f1:40:4a:9e:9c:ef:f6:3b:15:26:92:07:aa: 1a:20:78:58:e8:40:83:d7:8d:4e:7e:80:10:01:3d: e9:75:ef:ab:f2:60:94:a7:74:79:b1:f5:53:03:7c: 06:13:27:0a:1e:21:07:25:26:e4:7f:9a:4c:13:69: ce:fb:c5:e0:3f:6a:cd:85:76:bf:d1:f8:4f:cf:d4: 36:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:8D:28:E9:B9:E1:EF:31:2B:95:74:AA:45:D5:CA:E2:1A:17:C5:16 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2f862ecf-5163-46b0-aaf4-c118ac8a7fcc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.169.136.0/23 Signature Algorithm: sha256WithRSAEncryption 75:ef:bd:91:3e:01:27:a2:c8:65:a6:be:ea:70:df:35:7d:e4: 31:43:c9:c5:85:c1:56:24:b9:87:03:bb:49:c7:4e:bf:9b:8c: 7a:74:1b:3e:4c:14:da:ac:70:6a:68:6b:ec:4b:8c:a3:e9:7b: 8a:4f:2a:8d:14:cf:3a:c3:d5:95:8b:93:6f:c4:53:2a:70:3d: 3b:5d:30:5e:f6:cc:d9:20:35:cd:d0:29:5b:c6:6c:ea:e1:78: f2:37:e0:5c:cc:66:0d:c9:b9:25:b8:87:19:08:86:ec:6f:56: 4b:6f:9b:60:0f:29:5f:6b:be:f9:84:9f:a5:65:b4:a7:51:e7: eb:5e:25:9e:89:46:f1:17:21:3a:bb:a9:2f:29:23:04:71:d9: 18:f2:d9:8f:ec:be:e7:be:4a:7e:e7:d8:7b:53:77:f9:69:dc: 2d:94:76:fe:29:ca:26:7e:44:87:e7:ca:73:aa:99:88:c8:98: f4:92:f3:8f:13:72:71:81:f9:6c:5d:34:42:4d:8d:fe:c9:4c: 7c:1f:5b:53:c5:38:e5:ac:ed:a3:83:ec:31:64:41:c6:3d:64: e3:d8:41:94:26:14:fb:09:c6:60:d0:d1:0e:2a:bf:e3:d3:c0: 16:00:5b:ea:30:a8:d7:c0:90:9a:0c:5b:12:b8:26:81:12:bd: 69:97:58:6c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIedurfxy/vBB7w2YqfBqANjvhiowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTI1MjI1MTQzWhcNMjUxMDMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5ODE4ODgzNjRjNTg0ZTc2MmI5ZTcwZjRhM2NlZGY2Y2Fl MDM5MmEyZTNlODg1MzFiNTljMTU2YzdlODliMDFjMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDSIW7x8FiEWG3xhsF7SkRNO4JkTpTJ+GYYl3wnBEmtUyxM LDtW/s/JmHQZveN4PZO4oBESLPHz27R9PVVKvw1q0sRdTCefTj0uEUt1Tv+zoimN JnTcN9gVzOkaD7zs8coUXggrPcRXcZS26EDmxZwmYCLqCVNYD4e2GWtprvkut2Sr ce0SP2f9JlrSRDDtCvr53SG+ZcXrrUJ49SJxcnVANe+myRK33jxyujU2wOxSPWx4 cWHD8UBKnpzv9jsVJpIHqhogeFjoQIPXjU5+gBABPel176vyYJSndHmx9VMDfAYT JwoeIQclJuR/mkwTac77xeA/as2Fdr/R+E/P1DbfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQY0o6bnh7zErlXSqRdXK4hoXxRYwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzJmODYyZWNmLTUxNjMtNDZiMC1hYWY0LWMxMThhYzhhN2ZjYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEDqYgwDQYJKoZIhvcNAQELBQADggEBAHXvvZE+ASeiyGWmvupw3zV95DFD ycWFwVYkuYcDu0nHTr+bjHp0Gz5MFNqscGpoa+xLjKPpe4pPKo0UzzrD1ZWLk2/E UypwPTtdMF72zNkgNc3QKVvGbOrhePI34FzMZg3JuSW4hxkIhuxvVktvm2APKV9r vvmEn6VltKdR5+teJZ6JRvEXITq7qS8pIwRx2Rjy2Y/svue+Sn7n2HtTd/lp3C2U dv4pyiZ+RIfnynOqmYjImPSS848TcnGB+WxdNEJNjf7JTHwfW1PFOOWs7aOD7DFk QcY9ZOPYQZQmFPsJxmDQ0Q4qv+PTwBYAW+owqNfAkJoMWxK4JoESvWmXWGw= -----END CERTIFICATE-----Generated at Fri Oct 17 23:59:57 2025 by rpki-client