$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/60d58c30-6983-4154-8081-27d5431eed5c.roa File: 60d58c30-6983-4154-8081-27d5431eed5c.roa (raw, json) Hash identifier: Wmy7H2yQq8ZovGQvTQGr03nIdSQh2x4U3Wsk+2V396A= Subject key identifier: C0:42:FE:02:84:54:16:BD:C7:2A:BE:AF:A7:43:CD:52:AA:F9:24:34 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 40DF24C8AC4A52775EB78AB5147048FD332D1020 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/60d58c30-6983-4154-8081-27d5431eed5c.roa Signing time: Fri 26 Sep 2025 01:51:58 +0000 ROA not before: Fri 26 Sep 2025 01:51:58 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.167.176.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:df:24:c8:ac:4a:52:77:5e:b7:8a:b5:14:70:48:fd:33:2d:10:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 26 01:51:58 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=8f3dc2461712109dd762b5384e04c0fad6732b915cc4cdec65c50f86c75e8b13, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:68:c7:68:ef:81:9e:2f:18:01:51:70:57:5c: 23:14:de:26:ca:bb:4c:11:0a:8d:8c:5f:fe:c1:f0: 98:eb:f8:2c:99:74:3d:8e:1e:d0:dc:f4:88:86:8a: a8:ce:c9:ba:aa:7b:48:20:d4:ec:6d:d8:3a:9d:f4: 87:be:a6:a2:3a:07:b7:45:05:c0:b2:a2:ec:cf:9e: 79:39:fc:3a:67:2b:86:98:ea:73:7b:a5:1b:4b:68: d5:da:52:95:bf:be:e3:e2:78:e6:3d:1b:1b:ae:c6: c2:b9:f7:24:21:3b:3c:12:e6:07:e2:2b:a6:ff:4d: 82:0a:9b:07:6a:e3:b0:e9:46:a3:14:12:39:59:be: fd:f6:89:7e:51:36:6b:1d:69:6a:c1:8b:6f:69:70: 1c:4d:6c:e0:59:57:02:88:24:be:2d:f6:7e:3f:eb: a8:c2:a1:58:56:dc:03:6d:ed:ec:3d:f7:53:fa:11: fd:51:bc:cc:63:1c:8b:61:2d:d0:7c:11:55:2a:95: 87:38:36:38:3a:87:86:84:ab:aa:75:6e:94:4a:1b: dc:20:c0:9b:0d:0e:58:e7:23:18:70:6f:37:e7:c7: e8:f8:7f:51:a1:b5:85:85:02:50:59:dc:74:39:b1: ce:56:6b:5c:28:d5:5a:db:88:75:53:e1:9c:6f:ce: 5f:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:42:FE:02:84:54:16:BD:C7:2A:BE:AF:A7:43:CD:52:AA:F9:24:34 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/60d58c30-6983-4154-8081-27d5431eed5c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.167.176.0/20 Signature Algorithm: sha256WithRSAEncryption 37:19:d4:2b:95:77:ac:11:e2:a9:40:a1:10:03:4d:6f:bf:38: 15:af:7c:2d:b2:1d:9e:c1:dd:f4:ff:72:33:be:05:7c:0a:20: 40:41:90:4a:43:20:ef:4f:c5:4f:ea:c7:27:59:9b:fd:ee:85: 47:96:c6:ab:1a:d9:c0:35:c4:c3:aa:77:bf:cf:3d:e6:12:ed: 0f:22:d0:8d:85:80:ed:25:04:26:58:b8:6c:88:56:f6:80:36: 61:4c:0e:7b:0c:01:a7:92:8c:b5:5c:e9:fe:c4:58:23:56:81: ad:d8:0e:f8:70:c3:d4:1d:12:2c:93:d8:72:d5:0e:3a:18:70: 15:b3:55:f6:b3:8a:3f:57:32:03:6c:b8:d1:f1:b7:75:58:dc: 65:02:0b:84:93:82:d0:ba:9f:f8:e0:34:14:b2:3b:93:d1:2c: 2e:5b:c4:52:b1:89:e7:f4:46:bf:c5:86:38:8f:fe:8c:c6:d1: 2e:40:9a:17:8a:ce:da:f6:99:48:b2:ed:83:03:98:e3:0c:de: 68:1d:67:58:14:bf:55:08:b0:33:a7:08:94:06:4f:98:f7:cf: 85:b3:e1:2d:e0:42:65:a1:aa:a4:8e:81:14:e8:d1:65:25:15: 22:f0:68:e9:1a:17:aa:8b:87:66:20:c7:d0:e4:d0:65:50:e9: 59:75:24:df -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQN8kyKxKUndet4q1FHBI/TMtECAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTI2MDE1MTU4WhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZjNkYzI0NjE3MTIxMDlkZDc2MmI1Mzg0ZTA0YzBmYWQ2 NzMyYjkxNWNjNGNkZWM2NWM1MGY4NmM3NWU4YjEzMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvaMdo74GeLxgBUXBXXCMU3ibKu0wRCo2MX/7B8Jjr+CyZ dD2OHtDc9IiGiqjOybqqe0gg1Oxt2Dqd9Ie+pqI6B7dFBcCyouzPnnk5/DpnK4aY 6nN7pRtLaNXaUpW/vuPieOY9GxuuxsK59yQhOzwS5gfiK6b/TYIKmwdq47DpRqMU EjlZvv32iX5RNmsdaWrBi29pcBxNbOBZVwKIJL4t9n4/66jCoVhW3ANt7ew991P6 Ef1RvMxjHIthLdB8EVUqlYc4Njg6h4aEq6p1bpRKG9wgwJsNDljnIxhwbzfnx+j4 f1GhtYWFAlBZ3HQ5sc5Wa1wo1VrbiHVT4Zxvzl+1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUwEL+AoRUFr3HKr6vp0PNUqr5JDQwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzYwZDU4YzMwLTY5ODMtNDE1NC04MDgxLTI3ZDU0MzFlZWQ1Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQDp7AwDQYJKoZIhvcNAQELBQADggEBADcZ1CuVd6wR4qlAoRADTW+/OBWv fC2yHZ7B3fT/cjO+BXwKIEBBkEpDIO9PxU/qxydZm/3uhUeWxqsa2cA1xMOqd7/P PeYS7Q8i0I2FgO0lBCZYuGyIVvaANmFMDnsMAaeSjLVc6f7EWCNWga3YDvhww9Qd EiyT2HLVDjoYcBWzVfazij9XMgNsuNHxt3VY3GUCC4STgtC6n/jgNBSyO5PRLC5b xFKxief0Rr/FhjiP/ozG0S5AmheKztr2mUiy7YMDmOMM3mgdZ1gUv1UIsDOnCJQG T5j3z4Wz4S3gQmWhqqSOgRTo0WUlFSLwaOkaF6qLh2Ygx9Dk0GVQ6Vl1JN8= -----END CERTIFICATE-----Generated at Fri Oct 17 23:47:34 2025 by rpki-client