$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5226acd5-c8bb-4f86-8daf-45e64db43802.roa File: 5226acd5-c8bb-4f86-8daf-45e64db43802.roa (raw, json) Hash identifier: FkGRPg5gaqFIdHULF0YKYnLCjXYYRCwFgLTuG/Urr40= Subject key identifier: 67:C3:44:EB:8A:04:C1:A6:52:ED:34:AE:E6:A1:AC:EF:66:52:6A:28 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 1EE0BBF261D242D7D0DD486BCC1B2C0BD5BF3D6E Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5226acd5-c8bb-4f86-8daf-45e64db43802.roa Signing time: Fri 26 Sep 2025 01:14:29 +0000 ROA not before: Fri 26 Sep 2025 01:14:29 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.163.176.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:e0:bb:f2:61:d2:42:d7:d0:dd:48:6b:cc:1b:2c:0b:d5:bf:3d:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 26 01:14:29 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=23b80cf1f541f968237c4bb584a5e58e598fb321730590b8c3b60c981a4bd942, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:58:72:1a:d1:ff:9c:d7:54:05:c7:20:18:18: 00:86:cd:4d:c7:3f:7d:be:de:33:01:06:55:44:5d: 37:30:35:c7:1d:10:f0:f3:7e:32:6d:7d:22:05:7c: 62:53:e4:7c:26:9a:91:64:00:6f:23:ec:6e:81:d8: c6:0b:8e:b8:4a:65:c8:d8:40:79:de:27:c5:be:cd: 51:c6:46:cb:4f:a2:1a:2f:d0:32:4b:64:00:fe:09: 31:7f:24:1a:75:22:0b:2d:34:91:30:1b:55:b2:0c: 33:4c:de:54:cc:07:10:19:08:58:a3:fa:ab:f5:78: e1:9a:74:88:a1:56:28:dc:a1:a4:fd:e0:ac:2b:e7: 87:ed:89:da:16:39:9c:5d:f4:1b:8a:cd:5e:7b:6c: 24:d1:81:72:c4:a8:2b:67:6c:94:9c:91:4d:56:09: 41:eb:50:e0:d9:70:cd:20:e8:14:18:e6:7e:10:53: 0a:1b:f4:91:45:d4:a3:0a:4c:5f:60:20:4a:89:a9: 5c:9b:b4:ac:fa:d0:0b:ae:5a:3a:0a:9d:59:e4:08: db:8d:b3:13:1b:fb:f0:72:e6:1c:49:81:00:da:fb: 2e:4f:f6:90:60:7f:b5:49:8d:ee:87:9d:44:d7:e8: 61:a9:3e:46:22:f0:c1:1c:0d:62:0b:d4:4e:79:ec: 78:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:C3:44:EB:8A:04:C1:A6:52:ED:34:AE:E6:A1:AC:EF:66:52:6A:28 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5226acd5-c8bb-4f86-8daf-45e64db43802.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.163.176.0/21 Signature Algorithm: sha256WithRSAEncryption 64:89:03:1e:89:5d:7c:bf:07:f7:d5:25:f0:1b:bc:85:8b:0a: 0d:b0:d0:3e:83:2b:ba:41:8d:08:69:88:ad:87:5b:0c:94:8d: e9:57:9f:4e:17:12:3f:ea:fd:00:ea:66:55:24:41:e6:41:a9: 1b:28:42:74:9a:b4:1d:52:2a:87:04:c6:ac:ee:7f:93:62:99: 31:72:a5:b6:a1:fb:6a:50:f3:6e:e2:5d:6b:d7:8b:2d:1c:7c: 57:0a:e5:ab:46:83:82:a4:e2:5a:76:31:11:92:64:c1:de:37: c3:d6:db:e2:5c:a9:23:ed:6f:cc:e0:09:94:67:d9:15:26:95: 88:8f:1c:c2:eb:64:5d:23:c0:19:82:ec:88:2a:08:1b:a1:77: 20:a1:a0:60:22:b1:86:75:e4:7d:9a:44:2d:9b:bf:8a:88:be: 4b:d1:28:02:b7:e9:43:91:d3:59:0a:44:29:66:bb:39:01:9d: 6d:d9:d5:36:2d:a3:a9:51:bb:6a:3a:49:35:ad:37:fa:ae:02: d0:36:b5:b6:97:52:16:b0:8d:0c:12:ab:74:ea:70:b2:52:48: 0d:42:22:73:75:ae:05:0e:49:92:a7:40:ac:1b:b4:98:18:e1: ad:91:53:59:97:f8:ed:52:6f:8d:fe:c1:72:db:bb:70:a5:fc: ff:6e:90:b7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHuC78mHSQtfQ3UhrzBssC9W/PW4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTI2MDExNDI5WhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0AyM2I4MGNmMWY1NDFmOTY4MjM3YzRiYjU4NGE1ZTU4ZTU5 OGZiMzIxNzMwNTkwYjhjM2I2MGM5ODFhNGJkOTQyMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD7WHIa0f+c11QFxyAYGACGzU3HP32+3jMBBlVEXTcwNccd EPDzfjJtfSIFfGJT5HwmmpFkAG8j7G6B2MYLjrhKZcjYQHneJ8W+zVHGRstPohov 0DJLZAD+CTF/JBp1IgstNJEwG1WyDDNM3lTMBxAZCFij+qv1eOGadIihVijcoaT9 4Kwr54ftidoWOZxd9BuKzV57bCTRgXLEqCtnbJSckU1WCUHrUODZcM0g6BQY5n4Q Uwob9JFF1KMKTF9gIEqJqVybtKz60AuuWjoKnVnkCNuNsxMb+/By5hxJgQDa+y5P 9pBgf7VJje6HnUTX6GGpPkYi8MEcDWIL1E557Hg/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUZ8NE64oEwaZS7TSu5qGs72ZSaigwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzUyMjZhY2Q1LWM4YmItNGY4Ni04ZGFmLTQ1ZTY0ZGI0MzgwMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMDo7AwDQYJKoZIhvcNAQELBQADggEBAGSJAx6JXXy/B/fVJfAbvIWLCg2w 0D6DK7pBjQhpiK2HWwyUjelXn04XEj/q/QDqZlUkQeZBqRsoQnSatB1SKocExqzu f5NimTFypbah+2pQ827iXWvXiy0cfFcK5atGg4Kk4lp2MRGSZMHeN8PW2+JcqSPt b8zgCZRn2RUmlYiPHMLrZF0jwBmC7IgqCBuhdyChoGAisYZ15H2aRC2bv4qIvkvR KAK36UOR01kKRClmuzkBnW3Z1TYto6lRu2o6STWtN/quAtA2tbaXUhawjQwSq3Tq cLJSSA1CInN1rgUOSZKnQKwbtJgY4a2RU1mX+O1Sb43+wXLbu3Cl/P9ukLc= -----END CERTIFICATE-----Generated at Sat Oct 18 05:12:33 2025 by rpki-client