$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4842e424-b35b-4f95-b53d-6d0c6556db7c.roa File: 4842e424-b35b-4f95-b53d-6d0c6556db7c.roa (raw, json) Hash identifier: TPdLSC75VW8QwyFGy0dj95VBt9PdEw7MbtiB4etSxIc= Subject key identifier: 9B:13:98:37:F9:EA:80:45:7F:49:D6:CF:16:FE:EC:9C:EE:AD:D5:F7 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 7267BE45419990CA2FEB96464AC7200E4A897120 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4842e424-b35b-4f95-b53d-6d0c6556db7c.roa Signing time: Thu 25 Sep 2025 17:51:52 +0000 ROA not before: Thu 25 Sep 2025 17:51:52 +0000 ROA not after: Thu 30 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.163.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:67:be:45:41:99:90:ca:2f:eb:96:46:4a:c7:20:0e:4a:89:71:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 25 17:51:52 2025 GMT Not After : Oct 30 23:59:59 2025 GMT Subject: serialNumber=8d7a94cba4649e93efc314ba61b244b2c83ef98b9f69f7f5a217aefa89f9a54d, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:00:64:89:4c:9b:49:ec:d1:48:aa:c7:08:2c: dd:a9:37:cf:1f:cf:86:a8:ef:00:68:eb:8d:5c:97: 28:44:33:49:92:f5:8c:3b:7a:98:1a:da:01:e8:49: 46:ea:e3:d2:38:43:83:1c:61:db:04:91:66:bd:d8: f3:eb:4c:1d:98:1c:f8:65:0d:f2:0a:12:5e:41:82: 00:9f:7d:02:fa:46:77:27:95:03:27:c2:bd:f8:d1: ec:4e:30:a6:f2:b1:21:d8:eb:86:c8:08:13:bc:f5: ac:da:aa:26:0b:d3:c4:f4:df:7d:b4:41:de:4f:8b: 00:27:6f:b5:0c:b4:7f:18:f0:21:b5:ea:74:14:73: 4f:15:5c:23:95:0e:d6:b4:84:1e:8f:42:bb:98:06: 26:09:fb:f9:5d:a5:de:29:6f:5e:4c:3c:be:98:32: d5:d8:5d:57:f5:50:46:fe:b9:d5:39:36:23:9f:5a: 65:21:37:10:97:d0:6f:4b:0f:62:da:c6:96:b7:ce: 04:30:06:aa:b9:9e:08:b3:e7:20:db:59:a0:25:50: 5f:9f:8a:ba:57:ca:92:d2:a5:5c:2d:1d:1e:12:fb: 2a:a9:e5:05:ae:2d:af:a8:02:f2:33:c2:75:4a:c1: df:95:87:aa:2c:03:c0:23:5a:14:ce:f7:9f:23:01: 8c:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:13:98:37:F9:EA:80:45:7F:49:D6:CF:16:FE:EC:9C:EE:AD:D5:F7 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4842e424-b35b-4f95-b53d-6d0c6556db7c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.163.97.0/24 Signature Algorithm: sha256WithRSAEncryption 31:46:4c:25:e8:7f:6f:3d:f1:53:be:0f:28:f5:fb:ab:4b:40: 61:3b:cf:97:ca:c7:da:ac:f7:0a:61:db:20:b4:3a:e9:18:a7: e7:cb:a0:2b:48:77:17:e0:74:22:11:44:84:da:8b:45:64:38: 98:98:c4:2a:65:27:58:4c:b3:b7:8c:70:c5:45:6d:94:c7:56: f6:56:42:d4:e5:0d:c3:ec:7e:93:57:34:12:c6:5c:e7:a2:43: 57:b7:be:53:3f:89:f9:2a:71:59:13:c0:0b:9c:a3:89:9f:ce: e8:1e:60:ca:79:35:4c:4f:4e:3d:59:07:7e:db:95:0d:9c:df: da:94:ee:d7:07:a4:c3:14:03:57:19:11:d7:28:61:19:1b:1e: ad:85:3d:82:e4:71:3a:fb:25:93:00:68:37:06:63:92:88:b4: b2:1a:37:1b:2f:36:d2:25:10:fc:c8:8b:ed:2a:6a:41:49:6e: 9b:14:8f:bc:df:b6:bc:73:c5:fd:79:4f:d9:1a:70:6c:33:04: c8:9d:cf:a1:ce:08:bb:33:54:d1:bf:ed:97:cd:4b:0c:21:43: bb:ee:d7:18:4f:c3:c6:83:e4:84:34:2f:61:49:9b:ce:5c:f1: 6b:7e:04:d9:26:16:f9:0c:a5:bb:cc:be:39:68:fd:94:44:be: 35:b1:48:27 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcme+RUGZkMov65ZGSscgDkqJcSAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTI1MTc1MTUyWhcNMjUxMDMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZDdhOTRjYmE0NjQ5ZTkzZWZjMzE0YmE2MWIyNDRiMmM4 M2VmOThiOWY2OWY3ZjVhMjE3YWVmYTg5ZjlhNTRkMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDSAGSJTJtJ7NFIqscILN2pN88fz4ao7wBo641clyhEM0mS 9Yw7epga2gHoSUbq49I4Q4McYdsEkWa92PPrTB2YHPhlDfIKEl5BggCffQL6Rncn lQMnwr340exOMKbysSHY64bICBO89azaqiYL08T03320Qd5PiwAnb7UMtH8Y8CG1 6nQUc08VXCOVDta0hB6PQruYBiYJ+/ldpd4pb15MPL6YMtXYXVf1UEb+udU5NiOf WmUhNxCX0G9LD2Laxpa3zgQwBqq5ngiz5yDbWaAlUF+firpXypLSpVwtHR4S+yqp 5QWuLa+oAvIzwnVKwd+Vh6osA8AjWhTO958jAYzZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUmxOYN/nqgEV/SdbPFv7snO6t1fcwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzQ4NDJlNDI0LWIzNWItNGY5NS1iNTNkLTZkMGM2NTU2ZGI3Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAADo2EwDQYJKoZIhvcNAQELBQADggEBADFGTCXof2898VO+Dyj1+6tLQGE7 z5fKx9qs9wph2yC0OukYp+fLoCtIdxfgdCIRRITai0VkOJiYxCplJ1hMs7eMcMVF bZTHVvZWQtTlDcPsfpNXNBLGXOeiQ1e3vlM/ifkqcVkTwAuco4mfzugeYMp5NUxP Tj1ZB37blQ2c39qU7tcHpMMUA1cZEdcoYRkbHq2FPYLkcTr7JZMAaDcGY5KItLIa NxsvNtIlEPzIi+0qakFJbpsUj7zftrxzxf15T9kacGwzBMidz6HOCLszVNG/7ZfN SwwhQ7vu1xhPw8aD5IQ0L2FJm85c8Wt+BNkmFvkMpbvMvjlo/ZREvjWxSCc= -----END CERTIFICATE-----Generated at Fri Oct 17 23:58:25 2025 by rpki-client