$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/53d6062e-ef60-4119-8d03-62d254632f1d.roa File: 53d6062e-ef60-4119-8d03-62d254632f1d.roa (raw, json) Hash identifier: qVWSXkz6QSLrTGLFx2TpwW/rpGPbHJuBd5RkUYYnT7w= Subject key identifier: 40:44:BC:9A:7A:73:D8:32:A7:B3:28:B3:25:5F:82:EE:CE:8F:06:CF Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 49AC3EAD466B78D048E645AD2461873C0E9DD639 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/53d6062e-ef60-4119-8d03-62d254632f1d.roa Signing time: Thu 25 Sep 2025 23:24:38 +0000 ROA not before: Thu 25 Sep 2025 23:24:38 +0000 ROA not after: Thu 30 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.173.138.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:ac:3e:ad:46:6b:78:d0:48:e6:45:ad:24:61:87:3c:0e:9d:d6:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 25 23:24:38 2025 GMT Not After : Oct 30 23:59:59 2025 GMT Subject: serialNumber=ef2c36540adcdc32bb2e052ffcc09bbc63f427f7c078c19ed752e4017fb925f6, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:d3:54:5f:76:1d:7d:ff:c0:8f:63:c8:e8:db: 14:33:e5:a5:95:8f:34:53:dd:5a:0e:4e:f0:78:42: d1:f3:24:ef:72:69:d0:c5:d4:08:c8:e1:95:cb:1a: d2:bd:bb:7e:5d:fc:9e:bd:d3:f4:71:8e:3b:b0:7d: 94:f7:d2:48:24:f0:0c:8f:13:fd:a7:4d:8b:e1:9f: 60:03:72:2a:05:b4:6f:2f:6f:c2:48:8a:ab:15:b3: 4a:11:65:22:bc:b1:81:3a:2a:ba:24:6d:58:e7:2b: 80:10:19:b8:58:6f:d5:2a:09:5c:92:d2:7c:7f:25: 30:31:18:0e:2b:29:a3:9f:b4:d9:8d:50:09:d6:25: fc:93:d4:ce:d0:db:f7:24:7b:f9:45:0c:b9:60:53: f1:7e:3c:96:42:b6:60:fa:b8:7c:9a:b0:3a:4a:30: 49:e2:36:c4:c6:63:cb:7f:07:2a:97:4b:c8:95:17: bf:34:03:79:a3:a4:a6:04:1d:dc:0a:25:bf:8f:49: 29:92:4b:3d:bd:14:37:0d:a2:b5:ed:f3:cb:65:03: 06:61:18:4b:db:0c:b7:27:b4:e3:3d:7a:41:59:fe: a7:7f:0b:a1:0e:3f:26:09:b1:ac:b0:3d:84:29:39: 61:47:9e:e7:5a:0a:0c:36:b3:75:7f:a0:54:d7:f5: 44:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:44:BC:9A:7A:73:D8:32:A7:B3:28:B3:25:5F:82:EE:CE:8F:06:CF X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/53d6062e-ef60-4119-8d03-62d254632f1d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.173.138.0/23 Signature Algorithm: sha256WithRSAEncryption 91:47:ad:ed:18:0f:3c:23:d5:4c:1b:d6:9a:8f:a0:ef:92:c6: 4f:09:e1:c5:09:fc:b1:dd:4d:32:ae:2e:f8:f6:4e:e3:0b:5a: 56:1a:bc:27:24:2e:1a:25:3f:f6:9a:49:82:03:32:82:c9:81: 89:1a:ec:96:d8:aa:2b:02:8e:f0:94:f9:97:b9:1a:27:0a:6e: 5b:cd:75:08:c9:98:5a:c7:db:54:ff:f8:11:1f:dc:f5:41:67: e6:0c:cd:27:df:91:a4:a0:d9:78:f8:ef:dd:11:a9:77:5b:a2: 47:eb:d2:03:aa:21:b1:5b:4c:f8:13:05:70:3b:bf:4a:cc:83: 67:41:66:4d:73:5e:90:d0:f6:f2:cb:58:74:6c:66:a3:57:b9: a0:89:90:f0:6c:89:59:bb:12:5e:cf:44:16:e8:73:57:1e:de: 59:3a:d9:4b:06:ba:fd:cf:93:1d:03:a1:c4:a7:4e:13:32:ac: b7:7e:0f:80:cd:e1:87:e7:d1:3d:da:dc:72:b3:43:66:ea:1b: 4d:5b:0f:fd:8b:6d:0d:b0:09:43:fc:67:74:ff:d0:2a:e1:ed: 49:ad:71:c1:2c:de:20:f1:f3:17:f2:e7:d6:41:cc:dc:13:aa: b6:e9:de:96:76:c5:29:49:3b:4b:ae:f6:5a:e2:87:5b:1e:36: f9:0c:e9:88 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSaw+rUZreNBI5kWtJGGHPA6d1jkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTI1MjMyNDM4WhcNMjUxMDMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BlZjJjMzY1NDBhZGNkYzMyYmIyZTA1MmZmY2MwOWJiYzYz ZjQyN2Y3YzA3OGMxOWVkNzUyZTQwMTdmYjkyNWY2MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDB01Rfdh19/8CPY8jo2xQz5aWVjzRT3VoOTvB4QtHzJO9y adDF1AjI4ZXLGtK9u35d/J690/RxjjuwfZT30kgk8AyPE/2nTYvhn2ADcioFtG8v b8JIiqsVs0oRZSK8sYE6KrokbVjnK4AQGbhYb9UqCVyS0nx/JTAxGA4rKaOftNmN UAnWJfyT1M7Q2/cke/lFDLlgU/F+PJZCtmD6uHyasDpKMEniNsTGY8t/ByqXS8iV F780A3mjpKYEHdwKJb+PSSmSSz29FDcNorXt88tlAwZhGEvbDLcntOM9ekFZ/qd/ C6EOPyYJsaywPYQpOWFHnudaCgw2s3V/oFTX9USRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQES8mnpz2DKnsyizJV+C7s6PBs8wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzUzZDYwNjJlLWVmNjAtNDExOS04ZDAzLTYyZDI1NDYzMmYxZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEDrYowDQYJKoZIhvcNAQELBQADggEBAJFHre0YDzwj1Uwb1pqPoO+Sxk8J 4cUJ/LHdTTKuLvj2TuMLWlYavCckLholP/aaSYIDMoLJgYka7JbYqisCjvCU+Ze5 GicKblvNdQjJmFrH21T/+BEf3PVBZ+YMzSffkaSg2Xj4790RqXdbokfr0gOqIbFb TPgTBXA7v0rMg2dBZk1zXpDQ9vLLWHRsZqNXuaCJkPBsiVm7El7PRBboc1ce3lk6 2UsGuv3Pkx0DocSnThMyrLd+D4DN4Yfn0T3a3HKzQ2bqG01bD/2LbQ2wCUP8Z3T/ 0Crh7UmtccEs3iDx8xfy59ZBzNwTqrbp3pZ2xSlJO0uu9lrih1seNvkM6Yg= -----END CERTIFICATE-----Generated at Sat Oct 18 00:13:03 2025 by rpki-client