$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/73fa7ccb-22cb-41c3-ac4d-7aac73c8234a.roa File: 73fa7ccb-22cb-41c3-ac4d-7aac73c8234a.roa (raw, json) Hash identifier: /xOeqDyHh8DWwhXOMZI+lyn0TupzU3mjyRKq1xyaVr4= Subject key identifier: DD:3A:DD:96:3C:97:E4:00:60:A4:A3:D0:F8:A3:F9:41:E8:EB:02:A9 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 764D78C40C8D3E738E21959DA528988A6D0B0A51 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/73fa7ccb-22cb-41c3-ac4d-7aac73c8234a.roa Signing time: Fri 26 Sep 2025 02:15:19 +0000 ROA not before: Fri 26 Sep 2025 02:15:19 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.160.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:4d:78:c4:0c:8d:3e:73:8e:21:95:9d:a5:28:98:8a:6d:0b:0a:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 26 02:15:19 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=ff4f6fef42a42d6b03430df19bb2f8c272e88694c04e27d916e7b7087bb1d714, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:70:28:2e:e6:be:03:e2:e7:31:48:7c:b3:59: eb:6c:a3:d8:26:c0:4a:54:fe:4b:09:79:71:0d:77: e0:1d:d2:02:2a:37:bd:3f:68:14:49:60:00:61:84: 27:70:2d:5c:58:ae:69:62:7c:16:64:8b:38:f9:5d: d5:7b:3e:ad:36:b2:89:83:5b:bf:03:57:19:ba:e1: dd:93:9a:69:28:01:6f:1c:fc:ee:85:bd:49:39:3c: 01:66:db:d3:7b:e7:ae:b3:5c:8c:f8:e2:29:0e:2f: b2:2d:ef:8d:99:1b:8b:42:10:92:f5:cf:5d:f8:82: 88:fe:9f:6a:1e:11:7b:0f:e8:8c:55:62:2e:74:df: 74:30:ab:d2:19:f5:17:fc:db:5b:97:e4:fd:38:93: ea:35:98:0c:62:94:e4:f1:cd:d7:1b:5c:30:f4:5a: 44:fe:b5:01:df:1a:e6:01:c5:70:1b:f1:a3:57:d1: 23:d9:8f:3a:14:44:15:a4:ae:6e:78:33:f5:b2:41: d3:3e:9c:5e:90:11:b5:7b:d1:0d:a4:e0:cc:a4:4c: 5f:d2:95:1c:10:97:8c:34:85:4b:e9:3f:fa:67:dd: 41:3a:07:4e:5c:fa:fb:55:8a:e9:37:32:3f:ed:3c: 50:32:7f:c1:60:dc:fc:64:28:6e:40:d4:ed:9c:5c: 8f:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:3A:DD:96:3C:97:E4:00:60:A4:A3:D0:F8:A3:F9:41:E8:EB:02:A9 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/73fa7ccb-22cb-41c3-ac4d-7aac73c8234a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.160.0.0/17 Signature Algorithm: sha256WithRSAEncryption 5f:f9:3a:64:09:d2:94:55:46:85:56:a7:1f:bc:29:22:26:da: 9c:b5:db:aa:d4:6f:94:67:0e:47:45:a4:eb:2e:f2:d3:97:ed: 2a:0f:09:9d:67:a0:b4:83:c8:e1:e8:5e:99:02:ea:15:3c:cd: c9:38:b3:6f:24:cc:2f:8f:9b:43:d5:42:df:6c:5b:3f:72:f1: 0c:b5:be:ff:a2:17:23:d8:b8:20:79:ee:70:ff:e5:89:5c:7d: 57:3a:60:e2:79:79:4b:74:29:b0:01:31:5c:96:5f:7e:f9:d3: 24:89:8b:06:aa:93:82:f4:a3:4c:c9:c1:f7:8c:0a:5b:f8:2e: b8:bf:3a:d0:2b:a0:b5:8b:c4:78:4a:04:70:b9:50:3e:0e:73: 67:df:3e:65:20:92:a4:cf:18:3d:67:8f:b1:5d:13:cc:ca:a6: 5e:eb:ca:60:8e:e0:b6:d6:55:8e:49:a6:fc:40:96:1a:be:d6: b0:84:3e:6a:e6:3b:21:3f:26:36:59:a6:f6:53:0c:71:64:9c: fe:66:1e:af:b8:4d:5e:3b:f8:6b:a4:7c:4a:19:42:57:44:dc: a6:32:cc:5c:c2:1b:fe:53:53:41:11:86:1b:40:d8:c7:5c:f9: f9:7f:27:b5:bd:46:fc:2f:22:75:06:d9:b2:ce:81:9a:de:78: cd:96:ca:04 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdk14xAyNPnOOIZWdpSiYim0LClEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTI2MDIxNTE5WhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0BmZjRmNmZlZjQyYTQyZDZiMDM0MzBkZjE5YmIyZjhjMjcy ZTg4Njk0YzA0ZTI3ZDkxNmU3YjcwODdiYjFkNzE0MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkcCgu5r4D4ucxSHyzWetso9gmwEpU/ksJeXENd+Ad0gIq N70/aBRJYABhhCdwLVxYrmlifBZkizj5XdV7Pq02somDW78DVxm64d2TmmkoAW8c /O6FvUk5PAFm29N7566zXIz44ikOL7It742ZG4tCEJL1z134goj+n2oeEXsP6IxV Yi5033Qwq9IZ9Rf821uX5P04k+o1mAxilOTxzdcbXDD0WkT+tQHfGuYBxXAb8aNX 0SPZjzoURBWkrm54M/WyQdM+nF6QEbV70Q2k4MykTF/SlRwQl4w0hUvpP/pn3UE6 B05c+vtViuk3Mj/tPFAyf8Fg3PxkKG5A1O2cXI9VAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU3TrdljyX5ABgpKPQ+KP5QejrAqkwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzczZmE3Y2NiLTIyY2ItNDFjMy1hYzRkLTdhYWM3M2M4MjM0YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcDoAAwDQYJKoZIhvcNAQELBQADggEBAF/5OmQJ0pRVRoVWpx+8KSIm2py1 26rUb5RnDkdFpOsu8tOX7SoPCZ1noLSDyOHoXpkC6hU8zck4s28kzC+Pm0PVQt9s Wz9y8Qy1vv+iFyPYuCB57nD/5YlcfVc6YOJ5eUt0KbABMVyWX3750ySJiwaqk4L0 o0zJwfeMClv4Lri/OtAroLWLxHhKBHC5UD4Oc2ffPmUgkqTPGD1nj7FdE8zKpl7r ymCO4LbWVY5JpvxAlhq+1rCEPmrmOyE/JjZZpvZTDHFknP5mHq+4TV47+GukfEoZ QldE3KYyzFzCG/5TU0ERhhtA2Mdc+fl/J7W9RvwvInUG2bLOgZreeM2WygQ= -----END CERTIFICATE-----Generated at Fri Oct 17 21:58:22 2025 by rpki-client