$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/76c136d6-0551-44bc-82b3-10c2a186f54b.roa File: 76c136d6-0551-44bc-82b3-10c2a186f54b.roa (raw, json) Hash identifier: CAx/CFg6AND5AK32tXaBBvqY30hwlDM2aWc3IQDpJ5E= Subject key identifier: 3C:56:DC:90:6B:C9:B8:C3:F4:45:BA:C6:6B:41:3C:16:0D:7F:AE:87 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 3D80270CFD1B8B2B42BB60DE876EFBF625D8AC19 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/76c136d6-0551-44bc-82b3-10c2a186f54b.roa Signing time: Fri 26 Sep 2025 01:37:04 +0000 ROA not before: Fri 26 Sep 2025 01:37:04 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.173.32.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:80:27:0c:fd:1b:8b:2b:42:bb:60:de:87:6e:fb:f6:25:d8:ac:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 26 01:37:04 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=b8e8e28fe2246df5d5c559608cfe6f68df710270da57e3ee198240314498eab0, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:24:bc:ae:35:9a:90:fa:22:03:c0:b5:cd:fc: 27:5b:0f:28:0b:ee:d8:08:06:4c:e4:1b:8d:d8:be: e9:8d:4c:37:4d:a7:81:97:3c:c1:5c:dc:b4:c5:c4: ef:46:55:77:04:43:13:ad:17:07:83:4a:46:d6:0e: 20:ee:29:47:ce:79:06:5f:60:1a:bb:bf:1f:b0:49: 77:5f:e5:30:9b:db:8a:4a:98:26:bc:ac:3d:a3:1c: 1c:76:d3:bb:5a:4e:f4:4b:07:59:8e:21:80:9b:af: 09:d6:7a:2f:63:38:2d:57:5e:7f:ed:9d:96:75:d9: ab:91:30:f9:90:34:22:c7:f7:f7:ea:86:37:71:7b: 66:ca:3f:a1:28:2b:7b:fc:72:43:83:45:02:09:46: 8d:f8:4e:8e:4f:db:e3:1b:1a:b8:ca:7e:a8:f0:8d: 26:ea:af:ee:20:fe:58:1c:39:07:c8:38:7e:5f:fb: 1f:0e:8c:90:99:94:b9:78:28:1c:f0:b2:cb:0e:2d: 53:eb:b8:1a:6b:17:11:e2:45:d7:45:90:3d:57:f9: c4:bc:58:e9:9a:c5:fc:5a:4f:44:df:e9:72:1a:6f: e3:35:86:d1:56:49:fb:d0:ce:7f:22:e3:18:8d:40: 88:b9:e6:b9:85:a2:38:14:c5:2b:eb:ed:03:42:7a: 40:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:56:DC:90:6B:C9:B8:C3:F4:45:BA:C6:6B:41:3C:16:0D:7F:AE:87 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/76c136d6-0551-44bc-82b3-10c2a186f54b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.173.32.0/21 Signature Algorithm: sha256WithRSAEncryption 24:4d:ba:b9:d6:41:04:63:7b:66:d6:9e:7e:60:f6:cc:f4:32: 22:dc:55:5d:a0:ad:ee:40:56:af:51:cf:5c:26:f0:4e:10:1c: 9f:16:cc:a5:6b:2b:25:06:9a:f4:43:34:75:21:43:7b:cb:e5: cf:bb:ee:5c:dc:47:5f:9e:37:4b:8d:3b:32:17:cb:22:9b:9e: 52:58:ee:7a:ce:38:7b:9a:d7:33:f7:f4:bd:86:48:9d:e6:18: f0:f9:b0:fc:30:63:f8:c3:89:df:dd:f2:60:59:5f:cc:59:0a: c7:7c:67:3d:00:70:72:3c:13:c0:cb:16:5b:20:a4:5c:44:5d: 1d:88:a3:f6:da:5f:80:fe:0b:34:56:01:fb:3c:af:58:fe:2c: 91:ae:ab:5e:33:c6:2e:8a:c3:e6:eb:63:c5:00:c0:b3:33:fb: 83:6c:b6:3e:c8:e6:53:0c:7f:b0:e1:3e:98:73:8f:05:5a:52: 9e:06:76:1f:f4:44:d8:7b:93:3e:7a:5b:4c:4c:2d:95:a5:ce: ef:84:87:b4:12:8a:ec:92:65:06:e7:da:f4:e6:d5:d0:b8:5d: d8:f5:f0:46:3d:80:79:98:44:bb:81:e4:ba:ec:51:7f:86:15: b1:ab:64:b6:4b:6c:72:6d:dc:09:a8:53:57:4d:c9:74:dd:fc: d0:74:50:2d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPYAnDP0biytCu2Deh2779iXYrBkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTI2MDEzNzA0WhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0BiOGU4ZTI4ZmUyMjQ2ZGY1ZDVjNTU5NjA4Y2ZlNmY2OGRm NzEwMjcwZGE1N2UzZWUxOTgyNDAzMTQ0OThlYWIwMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrJLyuNZqQ+iIDwLXN/CdbDygL7tgIBkzkG43YvumNTDdN p4GXPMFc3LTFxO9GVXcEQxOtFweDSkbWDiDuKUfOeQZfYBq7vx+wSXdf5TCb24pK mCa8rD2jHBx207taTvRLB1mOIYCbrwnWei9jOC1XXn/tnZZ12auRMPmQNCLH9/fq hjdxe2bKP6EoK3v8ckODRQIJRo34To5P2+MbGrjKfqjwjSbqr+4g/lgcOQfIOH5f +x8OjJCZlLl4KBzwsssOLVPruBprFxHiRddFkD1X+cS8WOmaxfxaT0Tf6XIab+M1 htFWSfvQzn8i4xiNQIi55rmFojgUxSvr7QNCekBxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUPFbckGvJuMP0RbrGa0E8Fg1/rocwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzc2YzEzNmQ2LTA1NTEtNDRiYy04MmIzLTEwYzJhMTg2ZjU0Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMDrSAwDQYJKoZIhvcNAQELBQADggEBACRNurnWQQRje2bWnn5g9sz0MiLc VV2gre5AVq9Rz1wm8E4QHJ8WzKVrKyUGmvRDNHUhQ3vL5c+77lzcR1+eN0uNOzIX yyKbnlJY7nrOOHua1zP39L2GSJ3mGPD5sPwwY/jDid/d8mBZX8xZCsd8Zz0AcHI8 E8DLFlsgpFxEXR2Io/baX4D+CzRWAfs8r1j+LJGuq14zxi6Kw+brY8UAwLMz+4Ns tj7I5lMMf7DhPphzjwVaUp4Gdh/0RNh7kz56W0xMLZWlzu+Eh7QSiuySZQbn2vTm 1dC4Xdj18EY9gHmYRLuB5LrsUX+GFbGrZLZLbHJt3AmoU1dNyXTd/NB0UC0= -----END CERTIFICATE-----Generated at Fri Oct 17 21:59:38 2025 by rpki-client