$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4bb2d8f1-00bc-4e2e-8e17-f80a0f4fe293.roa File: 4bb2d8f1-00bc-4e2e-8e17-f80a0f4fe293.roa (raw, json) Hash identifier: 5gX0iE2L+yk3ssLfwGrl+kJL2e5XdlPpFK0XHs6Gw0k= Subject key identifier: 7A:96:59:F4:80:DF:3B:0E:FA:A8:CE:46:80:39:D7:1B:21:D5:5D:71 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 396AFA834AE0216FA9F1BFCB348158EF39807927 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4bb2d8f1-00bc-4e2e-8e17-f80a0f4fe293.roa Signing time: Mon 15 Sep 2025 16:20:24 +0000 ROA not before: Mon 15 Sep 2025 16:20:24 +0000 ROA not after: Mon 20 Oct 2025 23:59:59 +0000 asID: 8987 IP address blocks: 3.4.16.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 19 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:6a:fa:83:4a:e0:21:6f:a9:f1:bf:cb:34:81:58:ef:39:80:79:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 15 16:20:24 2025 GMT Not After : Oct 20 23:59:59 2025 GMT Subject: serialNumber=4ae129805581695214519729da0332408b84e825c0fe4e4219b3c1c68bb26e1d, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:cd:20:d5:8a:81:35:2e:2b:42:d1:2f:b0:69: 85:26:7a:d2:59:99:1e:36:d4:dc:03:86:3d:5b:9b: 19:56:57:00:a1:e4:75:6f:2e:f5:eb:e9:3d:df:8a: fd:81:f4:c5:82:44:f8:2e:79:94:de:fa:55:7b:ab: bd:c6:ae:d2:a9:1c:05:69:5f:41:b9:31:aa:09:1d: fd:6b:1c:09:de:ac:f7:15:32:12:4d:6d:2f:e4:5d: 2c:1a:4b:50:35:28:ce:12:a5:66:e1:b8:40:73:2f: 24:8b:8d:55:05:af:92:63:7d:f9:2f:cb:cd:90:6c: c7:79:e3:be:9f:3d:6d:7e:88:9f:83:2f:2e:ed:13: 03:8d:00:5e:44:33:02:7c:96:af:db:62:fa:3e:99: b6:69:8a:ab:5a:fd:ff:2f:37:f6:0e:76:3d:81:4b: f8:9d:fd:d4:ae:c1:6c:28:ab:b2:cf:e3:92:b7:df: 46:f7:e6:4e:7d:d0:39:03:0b:9c:9d:7a:76:63:42: d8:9b:73:da:c2:46:ad:dc:88:0b:32:2f:d0:fa:9c: a8:95:56:2a:73:fe:9e:05:c1:e0:8d:88:1a:9e:f2: 26:b0:03:b7:09:9e:23:62:48:7c:70:63:80:42:ad: 91:e1:2b:21:2b:d5:5c:12:72:3b:ff:51:ff:d3:72: 9b:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:96:59:F4:80:DF:3B:0E:FA:A8:CE:46:80:39:D7:1B:21:D5:5D:71 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4bb2d8f1-00bc-4e2e-8e17-f80a0f4fe293.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.4.16.0/21 Signature Algorithm: sha256WithRSAEncryption 95:95:18:d8:44:05:d7:c7:cb:c5:b7:55:f2:c5:16:0b:a4:af: 54:09:83:c4:9a:8a:0c:88:c1:58:a2:c4:8c:d0:e2:90:a8:d6: 3a:ec:54:70:a2:89:6b:1d:e1:17:ca:ee:fd:00:ff:47:ab:b7: 59:c7:4c:73:33:86:cc:35:81:1b:f9:cc:a1:79:db:ed:35:fc: 5b:28:1c:bd:cd:cf:dd:cc:65:7a:54:8a:23:2d:02:fa:e6:8e: d4:b5:f6:65:78:33:95:fb:27:b8:1f:c8:32:38:a6:97:77:28: 14:fa:18:62:71:b2:b7:4f:3e:80:e5:76:83:bf:3e:e1:66:6d: 70:cb:25:88:9b:1a:be:37:75:b4:56:fe:4f:ea:85:a2:01:bf: 4b:94:0c:08:54:37:77:29:6b:1f:5b:52:58:86:96:c5:66:ce: 0f:0e:d7:6e:50:3e:e5:4b:1f:a1:cb:ab:13:99:0b:7b:f4:f1: d8:2e:b8:5a:79:e5:a3:4d:a3:3f:46:dc:04:d8:8c:51:97:43: 61:20:91:28:0a:3f:ba:f0:b3:66:5d:d7:36:89:6f:b0:3c:24: 12:bb:ba:43:c6:40:a3:1e:c5:57:32:3a:b5:d3:de:4a:7d:a8: 60:e2:21:28:07:d4:42:64:d5:be:d2:b6:f4:2d:6f:7d:ee:e9: 67:f7:f2:81 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOWr6g0rgIW+p8b/LNIFY7zmAeScwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTE1MTYyMDI0WhcNMjUxMDIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A0YWUxMjk4MDU1ODE2OTUyMTQ1MTk3MjlkYTAzMzI0MDhi ODRlODI1YzBmZTRlNDIxOWIzYzFjNjhiYjI2ZTFkMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCazSDVioE1LitC0S+waYUmetJZmR421NwDhj1bmxlWVwCh 5HVvLvXr6T3fiv2B9MWCRPgueZTe+lV7q73GrtKpHAVpX0G5MaoJHf1rHAnerPcV MhJNbS/kXSwaS1A1KM4SpWbhuEBzLySLjVUFr5Jjffkvy82QbMd5476fPW1+iJ+D Ly7tEwONAF5EMwJ8lq/bYvo+mbZpiqta/f8vN/YOdj2BS/id/dSuwWwoq7LP45K3 30b35k590DkDC5ydenZjQtibc9rCRq3ciAsyL9D6nKiVVipz/p4FweCNiBqe8iaw A7cJniNiSHxwY4BCrZHhKyEr1VwScjv/Uf/TcpuDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUepZZ9IDfOw76qM5GgDnXGyHVXXEwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzRiYjJkOGYxLTAwYmMtNGUyZS04ZTE3LWY4MGEwZjRmZTI5My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMDBBAwDQYJKoZIhvcNAQELBQADggEBAJWVGNhEBdfHy8W3VfLFFgukr1QJ g8SaigyIwViixIzQ4pCo1jrsVHCiiWsd4RfK7v0A/0ert1nHTHMzhsw1gRv5zKF5 2+01/FsoHL3Nz93MZXpUiiMtAvrmjtS19mV4M5X7J7gfyDI4ppd3KBT6GGJxsrdP PoDldoO/PuFmbXDLJYibGr43dbRW/k/qhaIBv0uUDAhUN3cpax9bUliGlsVmzg8O 125QPuVLH6HLqxOZC3v08dguuFp55aNNoz9G3ATYjFGXQ2EgkSgKP7rws2Zd1zaJ b7A8JBK7ukPGQKMexVcyOrXT3kp9qGDiISgH1EJk1b7StvQtb33u6Wf38oE= -----END CERTIFICATE-----Generated at Thu Sep 18 11:35:47 2025 by rpki-client