$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/636d2569-c2dc-4139-b39e-aeec89255b76.roa File: 636d2569-c2dc-4139-b39e-aeec89255b76.roa (raw, json) Hash identifier: zz78SSE0kaHN2kDAghTnqQDJgMGijoo8nF92OQKFEZ0= Subject key identifier: 2A:D8:A4:BD:3F:47:95:3F:D8:50:31:07:28:38:00:E3:6E:3E:41:CE Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 45A01A9F70823A1DBCAB3FAC79C3DDD612D44B Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/636d2569-c2dc-4139-b39e-aeec89255b76.roa Signing time: Thu 25 Sep 2025 18:32:26 +0000 ROA not before: Thu 25 Sep 2025 18:32:26 +0000 ROA not after: Thu 30 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.166.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:a0:1a:9f:70:82:3a:1d:bc:ab:3f:ac:79:c3:dd:d6:12:d4:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 25 18:32:26 2025 GMT Not After : Oct 30 23:59:59 2025 GMT Subject: serialNumber=17511a64ae272f66456a3a0a6a18f2948b3cfc3090e50cfb1918c58a181b354b, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:0d:83:a9:31:ae:3f:c4:ac:c1:47:bb:84:ac: 22:4c:1c:07:fb:ba:e3:ad:a0:e2:34:76:d4:7b:49: b5:8d:31:32:40:54:b7:24:b3:28:a1:51:d0:fb:94: 3d:b2:0c:a9:7b:22:26:58:2d:00:0a:e7:21:fe:f7: 96:ff:14:92:7b:a2:49:fc:c4:44:97:90:06:f2:59: 96:0c:ed:c4:3a:87:7d:2f:c3:ba:0b:81:10:c7:b2: a9:c5:fe:e4:84:56:c0:a2:b7:49:b0:d1:33:26:69: 6c:33:f4:07:b5:3d:4b:86:5f:b2:3b:18:ea:cd:98: 19:f6:1f:8c:70:4d:59:5e:14:8f:95:b5:15:29:dd: 66:17:6b:7e:11:19:43:35:10:d1:0f:49:b8:25:d0: f8:84:d6:91:a3:28:bf:69:25:48:b9:dd:08:2d:77: 1b:6c:70:79:46:a6:a5:b5:7a:2b:ce:63:e0:a8:ca: cf:dd:39:24:b0:e3:47:73:3a:6e:43:b0:58:6f:78: 92:d8:37:4b:ec:be:b3:4f:fd:0d:50:8c:b9:d5:c1: 75:42:90:9e:74:80:b0:be:df:fa:04:df:33:4b:66: da:5f:9b:64:1b:3c:28:26:a0:b4:c1:c7:e7:5d:e7: f9:da:ed:13:9b:55:5b:37:c0:bf:ca:4d:27:2d:9d: f5:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:D8:A4:BD:3F:47:95:3F:D8:50:31:07:28:38:00:E3:6E:3E:41:CE X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/636d2569-c2dc-4139-b39e-aeec89255b76.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.166.15.0/24 Signature Algorithm: sha256WithRSAEncryption a6:cd:64:5b:2a:40:a1:d7:92:58:46:c3:2b:23:0f:76:1c:b2: db:bf:dc:78:0c:05:4e:dd:af:9c:1e:96:08:9a:fd:a1:a9:11: a8:0a:63:1a:40:60:2b:c2:96:be:fe:32:e6:05:98:b7:58:17: 20:e5:a9:48:98:66:94:98:42:4f:83:17:e9:bc:d5:0d:34:40: ba:59:a9:78:a5:b5:f7:46:98:81:dc:90:71:ff:7c:88:b0:ca: 7d:a2:05:53:6f:0e:a0:ff:37:eb:62:d9:44:23:54:bb:72:93: a4:95:99:cc:90:dc:a1:fa:d7:e9:22:42:c6:e7:1a:0a:f9:74: b9:5b:56:00:f5:aa:cf:1f:2e:2d:5d:5b:13:3e:2b:c0:e2:3e: e1:db:ff:ee:2a:56:9e:ab:87:8c:0a:e8:2f:60:c1:c4:3a:61: fd:58:44:d3:91:f2:76:40:9b:54:6a:28:13:a3:0e:d7:37:76: a9:c6:1d:24:1f:71:00:f1:1e:cd:88:4a:f3:ff:73:a3:46:1d: 07:75:8c:76:50:b5:2d:28:f4:9d:f5:cf:c6:92:7c:56:2a:b2: 0f:3f:ae:b2:21:a9:d9:86:9c:3e:a4:91:75:f4:47:97:86:0f: 10:2a:7f:f7:85:4e:ae:e8:8c:3a:d6:a3:d0:e3:28:4a:70:3f: dc:5c:ae:50 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITRaAan3CCOh28qz+secPd1hLUSzANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzJkZjZmM2IzYTM0YjYzODZkMWEzMmQ4ZjRmYTMxNzhlZjMx ODg3ZDhiNDI4ZGZhYTQ3NjAeFw0yNTA5MjUxODMyMjZaFw0yNTEwMzAyMzU5NTla MHoxSTBHBgNVBAUTQDE3NTExYTY0YWUyNzJmNjY0NTZhM2EwYTZhMThmMjk0OGIz Y2ZjMzA5MGU1MGNmYjE5MThjNThhMTgxYjM1NGIxLTArBgNVBAMTJDVmMjc2MDQ1 LTViOWYtNDVlZi05MjNkLWYzZmNlMjRhNjIyNTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBALUNg6kxrj/ErMFHu4SsIkwcB/u6462g4jR21HtJtY0xMkBU tySzKKFR0PuUPbIMqXsiJlgtAArnIf73lv8UknuiSfzERJeQBvJZlgztxDqHfS/D uguBEMeyqcX+5IRWwKK3SbDRMyZpbDP0B7U9S4ZfsjsY6s2YGfYfjHBNWV4Uj5W1 FSndZhdrfhEZQzUQ0Q9JuCXQ+ITWkaMov2klSLndCC13G2xweUampbV6K85j4KjK z905JLDjR3M6bkOwWG94ktg3S+y+s0/9DVCMudXBdUKQnnSAsL7f+gTfM0tm2l+b ZBs8KCagtMHH513n+drtE5tVWzfAv8pNJy2d9ekCAwEAAaOCArEwggKtMB0GA1Ud DgQWBBQq2KS9P0eVP9hQMQcoOADjbj5BzjAfBgNVHSMEGDAWgBQlrdNCsB63pY6t GZAmiLVLP4H0uDAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzg1MWNlZjE3LTEz MmEtNDMzNy1iN2QxLWJmMTZhNTJmZmQwMy9kZjZmM2IzYTM0YjYzODZkMWEzMmQ4 ZjRmYTMxNzhlZjMxODg3ZDhiNDI4ZGZhYTQ3Ni5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9mNzAzNjk2ZS1lNDdiLTRjMjAtYmQ5My02Zjgw OTA0ZTQyZDIvNjM2ZDI1NjktYzJkYy00MTM5LWIzOWUtYWVlYzg5MjU1Yjc2LnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMt NmY4MDkwNGU0MmQyL3RqaHRHakxZOVBveGVPOHhpSDJMUW8zNnBIWS5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAAOmDzANBgkqhkiG9w0BAQsFAAOCAQEAps1kWypAodeSWEbDKyMPdhyy27/c eAwFTt2vnB6WCJr9oakRqApjGkBgK8KWvv4y5gWYt1gXIOWpSJhmlJhCT4MX6bzV DTRAulmpeKW190aYgdyQcf98iLDKfaIFU28OoP8362LZRCNUu3KTpJWZzJDcofrX 6SJCxucaCvl0uVtWAPWqzx8uLV1bEz4rwOI+4dv/7ipWnquHjAroL2DBxDph/VhE 05HydkCbVGooE6MO1zd2qcYdJB9xAPEezYhK8/9zo0YdB3WMdlC1LSj0nfXPxpJ8 ViqyDz+usiGp2YacPqSRdfRHl4YPECp/94VOruiMOtaj0OMoSnA/3FyuUA== -----END CERTIFICATE-----Generated at Fri Oct 17 22:02:05 2025 by rpki-client