$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6cab14b3-f153-4196-9352-8192ee196740.roa File: 6cab14b3-f153-4196-9352-8192ee196740.roa (raw, json) Hash identifier: cVDZ8SaKXRTiDqvn64B7jZ0geLQhvhmy8j3wApeeQIE= Subject key identifier: 3C:8C:66:F8:D4:D7:E6:93:F4:F4:43:82:66:46:EF:85:FE:63:55:97 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 1354DEC5F1C006E6DFF94A1AD7DCB87F215935D6 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6cab14b3-f153-4196-9352-8192ee196740.roa Signing time: Thu 25 Sep 2025 21:59:52 +0000 ROA not before: Thu 25 Sep 2025 21:59:52 +0000 ROA not after: Thu 30 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.163.86.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:54:de:c5:f1:c0:06:e6:df:f9:4a:1a:d7:dc:b8:7f:21:59:35:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 25 21:59:52 2025 GMT Not After : Oct 30 23:59:59 2025 GMT Subject: serialNumber=3e2b3c976de8291c157de60fdf29afa8fdc7bd7e5a988c78deb951e557d597e9, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:9d:6b:2c:92:1c:8f:d3:aa:7b:ca:15:8a:20: 07:da:28:cc:47:24:8e:8a:17:5f:4d:37:96:9c:90: bc:78:a9:c3:00:5c:45:1e:a6:6f:40:81:88:35:67: b8:3c:a5:0d:9b:73:5d:84:e0:60:b5:15:c6:05:c5: 65:be:40:ff:f1:e3:ad:c1:3f:d5:3d:5d:b1:05:52: f5:6e:07:bb:1c:b0:51:97:cc:15:af:39:6b:ae:55: 9e:fe:32:52:8a:14:db:4e:65:84:28:e6:c1:08:2c: 2a:61:41:7d:1e:fa:cf:4d:e0:c0:af:b0:bf:a6:e9: 5d:c6:57:e6:e2:11:3e:7e:9e:e8:16:3c:90:6a:b9: fa:f8:8c:0a:64:57:38:28:59:1f:40:45:c1:8c:4d: 1a:0d:28:da:ac:b4:d5:58:02:0a:a5:df:53:86:63: 61:02:3f:1d:64:f1:50:d7:87:2b:87:1a:ea:9c:47: 62:6e:1d:68:81:4f:f3:e0:92:04:2c:86:26:da:8a: f1:a2:63:13:0c:f7:9e:cf:b8:c2:4c:4f:87:be:b2: 61:38:5d:75:f8:da:e2:1a:c5:c5:33:fb:03:4b:cc: 75:97:89:68:0c:89:29:2a:29:46:1a:00:1d:49:5f: 68:5b:b4:c6:46:68:08:fc:1a:f5:7a:8c:9e:ee:fa: 6d:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:8C:66:F8:D4:D7:E6:93:F4:F4:43:82:66:46:EF:85:FE:63:55:97 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6cab14b3-f153-4196-9352-8192ee196740.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.163.86.0/23 Signature Algorithm: sha256WithRSAEncryption a4:c6:71:cf:7c:c9:fa:2e:b0:d4:33:fa:71:ce:74:b3:76:5c: 51:40:fa:c7:b7:e9:86:36:47:1a:cb:58:a2:30:36:30:b4:61: de:58:6c:a5:92:73:68:99:cd:04:9a:c1:2f:1b:a8:8d:69:c7: 4c:5c:4c:7c:01:ba:65:12:ff:d0:82:c6:42:32:e9:e8:91:84: d5:e3:4c:23:4d:97:64:d0:6b:b5:ce:22:5e:0a:eb:67:01:ba: 0c:37:9c:86:0f:62:6c:6f:40:cf:d0:d8:87:27:31:2e:bd:36: bf:6e:fe:8e:44:f9:c1:33:4f:1e:95:6d:d0:7a:ae:87:ba:81: 30:4c:66:d6:4c:bc:d0:d2:12:60:a3:84:85:de:ba:9b:dd:b9: 99:dd:55:3d:46:70:b7:6e:f6:61:02:89:b5:f8:45:ff:8e:1c: f4:1d:05:64:11:46:73:7e:0e:2a:19:e4:84:12:df:7c:f2:2e: 0b:3e:ab:64:49:5a:46:64:bc:cb:2d:d1:6e:c6:d6:9e:22:01: 8d:e6:79:99:08:57:32:43:12:ce:e3:0d:df:02:d5:59:93:67: fb:53:61:14:a2:52:aa:13:37:b3:eb:5e:e9:88:3c:0e:01:92: 7f:11:9f:03:aa:11:2e:a5:d9:53:9f:30:e3:e7:80:20:44:c4: 60:68:59:86 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUE1TexfHABubf+Uoa19y4fyFZNdYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTI1MjE1OTUyWhcNMjUxMDMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzZTJiM2M5NzZkZTgyOTFjMTU3ZGU2MGZkZjI5YWZhOGZk YzdiZDdlNWE5ODhjNzhkZWI5NTFlNTU3ZDU5N2U5MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCWnWsskhyP06p7yhWKIAfaKMxHJI6KF19NN5ackLx4qcMA XEUepm9AgYg1Z7g8pQ2bc12E4GC1FcYFxWW+QP/x463BP9U9XbEFUvVuB7scsFGX zBWvOWuuVZ7+MlKKFNtOZYQo5sEILCphQX0e+s9N4MCvsL+m6V3GV+biET5+nugW PJBqufr4jApkVzgoWR9ARcGMTRoNKNqstNVYAgql31OGY2ECPx1k8VDXhyuHGuqc R2JuHWiBT/PgkgQshibaivGiYxMM957PuMJMT4e+smE4XXX42uIaxcUz+wNLzHWX iWgMiSkqKUYaAB1JX2hbtMZGaAj8GvV6jJ7u+m2JAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUPIxm+NTX5pP09EOCZkbvhf5jVZcwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzZjYWIxNGIzLWYxNTMtNDE5Ni05MzUyLTgxOTJlZTE5Njc0MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEDo1YwDQYJKoZIhvcNAQELBQADggEBAKTGcc98yfousNQz+nHOdLN2XFFA +se36YY2RxrLWKIwNjC0Yd5YbKWSc2iZzQSawS8bqI1px0xcTHwBumUS/9CCxkIy 6eiRhNXjTCNNl2TQa7XOIl4K62cBugw3nIYPYmxvQM/Q2IcnMS69Nr9u/o5E+cEz Tx6VbdB6roe6gTBMZtZMvNDSEmCjhIXeupvduZndVT1GcLdu9mECibX4Rf+OHPQd BWQRRnN+DioZ5IQS33zyLgs+q2RJWkZkvMst0W7G1p4iAY3meZkIVzJDEs7jDd8C 1VmTZ/tTYRSiUqoTN7PrXumIPA4Bkn8RnwOqES6l2VOfMOPngCBExGBoWYY= -----END CERTIFICATE-----Generated at Fri Oct 17 23:54:02 2025 by rpki-client