$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4a5670e2-3a21-4962-958f-d6dba70b79be.roa File: 4a5670e2-3a21-4962-958f-d6dba70b79be.roa (raw, json) Hash identifier: 4ydUb/xNJpkRzIN/5OWpZx02Se7mbRxRKQ+8u9qduSc= Subject key identifier: 22:7B:05:F9:F0:CA:7C:32:48:4F:F0:28:B1:5A:A4:CB:71:0C:AB:0E Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 5654C382DD512074138AFF1C48B0DD8EB7F65071 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4a5670e2-3a21-4962-958f-d6dba70b79be.roa Signing time: Fri 10 Oct 2025 15:37:35 +0000 ROA not before: Fri 10 Oct 2025 15:37:35 +0000 ROA not after: Fri 14 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.104.82.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:54:c3:82:dd:51:20:74:13:8a:ff:1c:48:b0:dd:8e:b7:f6:50:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 10 15:37:35 2025 GMT Not After : Nov 14 23:59:59 2025 GMT Subject: serialNumber=a8fa57596a65ac18e60f9c6413a3ddc24ec49ab03903cfca1fb892d2516e897c, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:a9:c2:12:07:04:22:71:7b:04:c2:9e:15:02: dd:df:5b:3d:d5:fe:b3:a2:e4:b0:6e:d3:77:d8:9e: dd:a3:a1:18:b0:c0:6d:b7:2d:d7:22:b3:06:6d:8c: 7b:b2:80:0c:7a:36:07:93:ea:b5:08:29:d5:b9:8b: 8e:57:4b:f9:bf:06:51:ff:b6:c5:3e:dd:dc:9f:cd: 37:69:4c:7c:68:22:39:e3:2e:54:06:2b:86:93:0c: 88:50:49:f4:12:5f:82:ef:d9:c8:04:a0:5a:98:69: 3e:20:6e:f3:03:d2:38:ad:81:23:5a:2a:c4:e6:bf: f0:9d:bb:57:5e:11:5a:89:63:01:17:9b:b1:6e:d3: 7d:e4:66:6d:44:b2:ae:a0:e4:25:d4:d3:17:c2:28: 13:06:2c:c4:e9:73:bf:8e:1f:a4:a9:c6:b5:82:02: 20:b3:82:a4:cf:51:c0:a8:ae:8b:f6:87:e4:44:a9: 35:01:eb:8f:40:50:21:9c:b7:bc:42:61:cc:28:cb: 8b:61:4a:bb:ff:65:0f:9d:e1:06:e7:28:72:69:e5: d6:2e:4f:b1:e6:8c:21:5c:20:63:80:83:62:8a:13: 2a:1d:d5:6b:89:2a:19:fc:f2:80:26:38:d6:a4:60: cf:c3:02:03:54:da:fa:f5:2a:bc:ee:17:8c:c4:0d: da:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:7B:05:F9:F0:CA:7C:32:48:4F:F0:28:B1:5A:A4:CB:71:0C:AB:0E X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4a5670e2-3a21-4962-958f-d6dba70b79be.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.104.82.0/23 Signature Algorithm: sha256WithRSAEncryption 17:05:70:fc:a0:0a:fc:bb:c1:5b:25:4c:0c:3d:c0:66:af:7d: f1:f7:f0:8c:0f:95:84:ea:e1:8b:40:c5:95:4f:25:cd:81:a8: 84:46:6b:d9:d7:46:59:f8:38:f0:ec:2d:2f:14:d6:7f:6c:5b: 0a:d1:49:6d:77:09:5c:5a:13:5f:cf:fb:52:f8:7d:c4:37:45: 46:8e:be:75:9a:2f:b4:17:26:50:f6:0b:44:49:94:35:4a:09: 9b:38:42:98:54:d9:41:3b:ad:9f:c6:4f:b5:d7:f1:a1:1e:03: 31:6f:5d:62:75:a8:18:6f:e8:5a:13:3f:ea:6a:0a:2c:49:1c: 4a:e4:fa:52:65:ab:57:b7:40:1a:a8:95:59:11:76:e5:f9:ba: db:bd:db:43:8e:b7:1a:77:b9:cf:74:60:25:20:63:69:fd:50: f6:71:f6:f7:dd:62:bc:32:20:42:7d:67:f0:ab:33:66:84:e0: bd:ce:82:7e:bc:f1:96:3a:7b:bb:24:6a:46:9c:2f:13:98:f0: 77:67:30:53:da:73:23:d4:28:80:13:d8:7a:fb:a4:af:84:03: 86:1c:9b:6e:c2:cd:66:20:02:f2:b1:2e:37:37:99:13:13:7e: ad:df:8e:5b:89:03:37:2e:48:ed:da:10:d4:9c:85:f1:0e:35: 51:f1:1a:51 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVlTDgt1RIHQTiv8cSLDdjrf2UHEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDEwMTUzNzM1WhcNMjUxMTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BhOGZhNTc1OTZhNjVhYzE4ZTYwZjljNjQxM2EzZGRjMjRl YzQ5YWIwMzkwM2NmY2ExZmI4OTJkMjUxNmU4OTdjMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjqcISBwQicXsEwp4VAt3fWz3V/rOi5LBu03fYnt2joRiw wG23LdciswZtjHuygAx6NgeT6rUIKdW5i45XS/m/BlH/tsU+3dyfzTdpTHxoIjnj LlQGK4aTDIhQSfQSX4Lv2cgEoFqYaT4gbvMD0jitgSNaKsTmv/Cdu1deEVqJYwEX m7Fu033kZm1Esq6g5CXU0xfCKBMGLMTpc7+OH6SpxrWCAiCzgqTPUcCorov2h+RE qTUB649AUCGct7xCYcwoy4thSrv/ZQ+d4QbnKHJp5dYuT7HmjCFcIGOAg2KKEyod 1WuJKhn88oAmONakYM/DAgNU2vr1KrzuF4zEDdqXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUInsF+fDKfDJIT/AosVqky3EMqw4wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzRhNTY3MGUyLTNhMjEtNDk2Mi05NThmLWQ2ZGJhNzBiNzliZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEDaFIwDQYJKoZIhvcNAQELBQADggEBABcFcPygCvy7wVslTAw9wGavffH3 8IwPlYTq4YtAxZVPJc2BqIRGa9nXRln4OPDsLS8U1n9sWwrRSW13CVxaE1/P+1L4 fcQ3RUaOvnWaL7QXJlD2C0RJlDVKCZs4QphU2UE7rZ/GT7XX8aEeAzFvXWJ1qBhv 6FoTP+pqCixJHErk+lJlq1e3QBqolVkRduX5utu920OOtxp3uc90YCUgY2n9UPZx 9vfdYrwyIEJ9Z/CrM2aE4L3Ogn688ZY6e7skakacLxOY8HdnMFPacyPUKIAT2Hr7 pK+EA4Ycm27CzWYgAvKxLjc3mRMTfq3fjluJAzcuSO3aENSchfEONVHxGlE= -----END CERTIFICATE-----Generated at Sat Oct 18 02:42:06 2025 by rpki-client