$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3d21d12e-1a34-4808-bddf-69d28dddec57.roa File: 3d21d12e-1a34-4808-bddf-69d28dddec57.roa (raw, json) Hash identifier: p3Fus8pk461bK26Lif0Xdonrupw99lzyDGFIn70wUtk= Subject key identifier: 0B:01:1D:10:46:6B:C5:48:53:40:55:6B:26:D1:80:16:C0:73:C7:C3 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 19C2BF8D4FAD9FD3B23750026C33B925C6D21C65 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3d21d12e-1a34-4808-bddf-69d28dddec57.roa Signing time: Thu 25 Sep 2025 18:54:43 +0000 ROA not before: Thu 25 Sep 2025 18:54:43 +0000 ROA not after: Thu 30 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.167.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:c2:bf:8d:4f:ad:9f:d3:b2:37:50:02:6c:33:b9:25:c6:d2:1c:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 25 18:54:43 2025 GMT Not After : Oct 30 23:59:59 2025 GMT Subject: serialNumber=b86ea16974cd9344516a7f6ac07ed99d4eb5abaa746cea1cf4680a67ee6ea131, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:ed:58:81:8c:e8:56:29:07:6f:ed:e9:79:56: 18:e0:64:22:e9:26:c6:db:be:9c:0e:10:2a:d0:25: 44:eb:f8:b6:fb:e8:bf:2e:91:cd:c2:13:7e:84:43: ed:e4:2a:a0:dc:2d:a1:31:70:68:0c:77:d6:09:36: 88:80:c8:a8:5f:58:c3:f8:c7:1e:32:08:92:5a:0b: 33:6c:8d:67:2d:18:29:e7:34:13:a2:36:12:19:56: ee:3f:f9:b9:eb:0a:31:5d:ad:8d:db:e1:02:48:ea: 25:cc:a1:fa:de:8a:d9:3c:c4:e7:61:e2:0b:e9:a6: 10:6d:83:f4:76:6f:3e:2b:3e:26:09:45:f8:3d:4b: e7:1e:a9:11:b5:ba:84:bd:13:64:6e:af:f3:88:83: e2:20:49:21:83:8c:c4:e4:1f:1f:cf:dd:2f:a1:fa: 2c:28:58:ca:58:11:32:92:d0:23:91:18:6a:1f:8a: be:57:4b:9a:52:49:06:fa:30:97:ca:74:a2:f5:46: 9b:c7:65:db:33:51:30:19:53:c1:e3:b4:84:3c:dc: 00:7b:e4:e3:66:29:1b:15:b1:9c:98:99:f9:97:53: 9d:b4:ab:2a:19:9a:30:a6:bb:22:b3:87:55:82:3e: 23:27:c3:6f:bb:1d:d8:8f:05:8f:4b:f9:11:7a:b1: d5:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:01:1D:10:46:6B:C5:48:53:40:55:6B:26:D1:80:16:C0:73:C7:C3 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3d21d12e-1a34-4808-bddf-69d28dddec57.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.167.163.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:dd:e8:15:3c:07:9f:1e:3d:d6:b9:f2:37:32:f0:e6:2a:37: 84:22:3f:90:95:18:a3:b6:ad:b4:f4:c2:07:d6:87:85:37:c6: 09:40:e9:c0:56:b7:14:6c:1d:4b:75:9b:c7:d6:f6:66:fe:30: 61:7a:73:e3:17:85:37:20:6d:98:0d:a1:a9:96:24:84:a8:33: 84:aa:66:b2:c3:fa:18:8e:62:85:02:19:8f:a7:5d:79:29:7f: 6a:01:be:d2:61:3a:41:7f:f9:be:1e:81:4a:83:08:6d:f1:4e: 18:01:3a:9a:e6:43:9a:6f:29:39:df:5b:e6:8b:51:45:2a:89: d5:a8:9e:a1:51:d2:63:90:63:a0:96:80:df:80:7e:de:fc:8d: 97:ec:c8:58:69:4d:25:30:75:f0:55:fd:8d:4e:b7:42:26:6f: 85:77:61:c3:d1:6d:40:dd:03:aa:95:71:a7:06:98:02:79:fa: 3a:66:0a:eb:0a:88:17:ae:d8:d4:ac:e3:ca:a1:73:dd:0d:25: df:17:cc:c2:23:da:67:9b:a8:1f:1a:78:be:bc:3c:0c:0d:58: ca:76:36:b4:fa:ff:68:6b:13:d9:c6:0a:bf:cc:b3:66:7e:4c: 0e:24:7a:0a:98:d9:76:51:0a:0d:3a:6c:b3:51:61:c7:aa:24: 19:73:2d:5b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGcK/jU+tn9OyN1ACbDO5JcbSHGUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTI1MTg1NDQzWhcNMjUxMDMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiODZlYTE2OTc0Y2Q5MzQ0NTE2YTdmNmFjMDdlZDk5ZDRl YjVhYmFhNzQ2Y2VhMWNmNDY4MGE2N2VlNmVhMTMxMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDq7ViBjOhWKQdv7el5VhjgZCLpJsbbvpwOECrQJUTr+Lb7 6L8ukc3CE36EQ+3kKqDcLaExcGgMd9YJNoiAyKhfWMP4xx4yCJJaCzNsjWctGCnn NBOiNhIZVu4/+bnrCjFdrY3b4QJI6iXMofreitk8xOdh4gvpphBtg/R2bz4rPiYJ Rfg9S+ceqRG1uoS9E2Rur/OIg+IgSSGDjMTkHx/P3S+h+iwoWMpYETKS0CORGGof ir5XS5pSSQb6MJfKdKL1RpvHZdszUTAZU8HjtIQ83AB75ONmKRsVsZyYmfmXU520 qyoZmjCmuyKzh1WCPiMnw2+7HdiPBY9L+RF6sdU5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUCwEdEEZrxUhTQFVrJtGAFsBzx8MwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzNkMjFkMTJlLTFhMzQtNDgwOC1iZGRmLTY5ZDI4ZGRkZWM1Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAADp6MwDQYJKoZIhvcNAQELBQADggEBAFrd6BU8B58ePda58jcy8OYqN4Qi P5CVGKO2rbT0wgfWh4U3xglA6cBWtxRsHUt1m8fW9mb+MGF6c+MXhTcgbZgNoamW JISoM4SqZrLD+hiOYoUCGY+nXXkpf2oBvtJhOkF/+b4egUqDCG3xThgBOprmQ5pv KTnfW+aLUUUqidWonqFR0mOQY6CWgN+Aft78jZfsyFhpTSUwdfBV/Y1Ot0Imb4V3 YcPRbUDdA6qVcacGmAJ5+jpmCusKiBeu2NSs48qhc90NJd8XzMIj2mebqB8aeL68 PAwNWMp2NrT6/2hrE9nGCr/Ms2Z+TA4kegqY2XZRCg06bLNRYceqJBlzLVs= -----END CERTIFICATE-----Generated at Sat Oct 18 02:35:33 2025 by rpki-client