$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7a4cd46e-b055-47b6-a4f5-54b4d9014b9e.roa File: 7a4cd46e-b055-47b6-a4f5-54b4d9014b9e.roa (raw, json) Hash identifier: HE8yXyQ1tdGuyWKMdt0Mq/MwPnzAZWs8gfBfpdy2o+U= Subject key identifier: 49:FC:A4:82:92:ED:D2:B6:FA:05:7D:11:59:BD:11:3D:D7:F4:F3:42 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 0304E2789A3F11787001F427D15EB0C944AC0F57 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7a4cd46e-b055-47b6-a4f5-54b4d9014b9e.roa Signing time: Fri 10 Oct 2025 15:35:22 +0000 ROA not before: Fri 10 Oct 2025 15:35:22 +0000 ROA not after: Fri 14 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.236.60.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:04:e2:78:9a:3f:11:78:70:01:f4:27:d1:5e:b0:c9:44:ac:0f:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 10 15:35:22 2025 GMT Not After : Nov 14 23:59:59 2025 GMT Subject: serialNumber=84d0ce9cba8c28040193ae31680839510d2d84088591a12bcc71ce090996b173, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:f0:03:83:bc:3c:4e:ac:5d:b2:88:cf:8f:d6: ac:85:1e:88:66:b3:43:8c:f3:1a:df:bb:2f:b1:32: b5:97:f8:26:0a:fe:4f:2d:0c:e2:bf:36:22:c3:9c: 5b:16:d5:53:61:70:b0:73:c7:78:4a:60:6f:80:a9: 9b:3d:e6:b3:06:f9:65:ca:64:40:37:1a:97:05:31: 69:38:38:85:bc:10:bd:7f:ce:18:ae:a4:2f:0d:37: 52:21:a0:ab:ca:50:7f:80:b1:0a:d0:f8:a9:e6:d3: e8:19:22:d7:79:52:a4:f9:4b:85:66:60:d2:84:e9: e0:0f:9e:d1:d1:69:ba:8f:dc:cd:8e:e5:68:51:b7: ab:8e:77:46:01:0e:4c:2f:93:21:6e:eb:84:92:e8: f0:31:b9:68:ca:17:19:bf:c9:45:52:64:3d:f2:66: 10:c5:de:df:1f:89:7b:78:3c:fe:5a:c9:8b:d8:00: a0:ea:12:c8:78:ef:f3:c4:63:c4:28:09:dd:24:cf: 7c:ba:5d:8d:02:1b:22:fa:53:c2:05:45:a0:c2:ac: a0:08:20:83:1d:95:b6:59:d2:f6:83:43:dd:75:26: f2:a5:43:53:ee:d2:3a:62:8a:a0:a8:6d:cc:93:50: 40:74:ff:b6:3a:63:ab:4b:59:08:64:41:57:1d:c6: 6e:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:FC:A4:82:92:ED:D2:B6:FA:05:7D:11:59:BD:11:3D:D7:F4:F3:42 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7a4cd46e-b055-47b6-a4f5-54b4d9014b9e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.236.60.0/22 Signature Algorithm: sha256WithRSAEncryption 37:3c:c1:e6:83:55:a7:ec:f8:a9:d6:33:57:27:7a:13:54:80: a7:50:bd:ae:95:2b:6e:ea:b5:57:96:59:de:94:40:66:ba:c5: fe:07:0b:59:3a:22:47:f7:c9:5b:cb:ed:37:62:dc:a6:86:71: df:ba:82:27:25:54:3c:99:35:57:94:4d:75:12:dd:fe:76:58: 77:25:94:f8:4f:91:e9:df:19:de:97:b2:a0:96:8e:46:64:54: 9b:b4:8e:af:17:19:d3:9d:c5:56:82:a9:d3:cb:2a:1b:bd:22: 29:db:cc:68:f6:8f:1c:7e:1b:ec:74:6b:3b:0f:44:9b:4e:37: 70:01:27:5f:e5:06:6b:98:67:83:a4:c8:e0:a0:8b:23:2f:b3: 11:10:5f:c0:13:67:57:b2:11:0c:2c:42:45:8b:74:ce:61:13: f1:be:3e:72:88:fd:4d:67:13:d5:0d:76:a9:e1:66:e3:dd:94: ba:10:08:31:dd:43:96:ba:37:95:66:24:9c:87:5d:19:c2:da: ac:69:84:fc:1d:57:6f:d5:44:f7:eb:b0:ae:d0:d0:21:04:b6: 8c:af:46:51:eb:07:ad:ca:8f:b9:84:2c:5e:d1:00:0c:0c:7f: ad:9c:78:ec:37:34:c7:9b:db:ec:59:f8:3d:24:fa:cf:3b:73: 19:2a:29:87 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAwTieJo/EXhwAfQn0V6wyUSsD1cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDEwMTUzNTIyWhcNMjUxMTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A4NGQwY2U5Y2JhOGMyODA0MDE5M2FlMzE2ODA4Mzk1MTBk MmQ4NDA4ODU5MWExMmJjYzcxY2UwOTA5OTZiMTczMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCw8AODvDxOrF2yiM+P1qyFHohms0OM8xrfuy+xMrWX+CYK /k8tDOK/NiLDnFsW1VNhcLBzx3hKYG+AqZs95rMG+WXKZEA3GpcFMWk4OIW8EL1/ zhiupC8NN1IhoKvKUH+AsQrQ+Knm0+gZItd5UqT5S4VmYNKE6eAPntHRabqP3M2O 5WhRt6uOd0YBDkwvkyFu64SS6PAxuWjKFxm/yUVSZD3yZhDF3t8fiXt4PP5ayYvY AKDqEsh47/PEY8QoCd0kz3y6XY0CGyL6U8IFRaDCrKAIIIMdlbZZ0vaDQ911JvKl Q1Pu0jpiiqCobcyTUEB0/7Y6Y6tLWQhkQVcdxm7zAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUSfykgpLt0rb6BX0RWb0RPdf080IwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzdhNGNkNDZlLWIwNTUtNDdiNi1hNGY1LTU0YjRkOTAxNGI5ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAID7DwwDQYJKoZIhvcNAQELBQADggEBADc8weaDVafs+KnWM1cnehNUgKdQ va6VK27qtVeWWd6UQGa6xf4HC1k6Ikf3yVvL7Tdi3KaGcd+6giclVDyZNVeUTXUS 3f52WHcllPhPkenfGd6XsqCWjkZkVJu0jq8XGdOdxVaCqdPLKhu9IinbzGj2jxx+ G+x0azsPRJtON3ABJ1/lBmuYZ4OkyOCgiyMvsxEQX8ATZ1eyEQwsQkWLdM5hE/G+ PnKI/U1nE9UNdqnhZuPdlLoQCDHdQ5a6N5VmJJyHXRnC2qxphPwdV2/VRPfrsK7Q 0CEEtoyvRlHrB63Kj7mELF7RAAwMf62ceOw3NMeb2+xZ+D0k+s87cxkqKYc= -----END CERTIFICATE-----Generated at Fri Oct 17 23:55:04 2025 by rpki-client