$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7deff309-8a06-4ac9-9547-bd1f77b10933.roa File: 7deff309-8a06-4ac9-9547-bd1f77b10933.roa (raw, json) Hash identifier: yRc9wjITQCRQkF0ksN7b+2a+7iYCgNs4fVa1ufmyrGk= Subject key identifier: A7:49:95:90:E4:79:09:50:18:2F:C6:7A:66:FB:71:E4:C0:2F:E3:FC Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 3629A2D53DBF857AE814B93D289BAED048FBB2C5 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7deff309-8a06-4ac9-9547-bd1f77b10933.roa Signing time: Thu 25 Sep 2025 22:02:39 +0000 ROA not before: Thu 25 Sep 2025 22:02:39 +0000 ROA not after: Thu 30 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.164.158.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:29:a2:d5:3d:bf:85:7a:e8:14:b9:3d:28:9b:ae:d0:48:fb:b2:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 25 22:02:39 2025 GMT Not After : Oct 30 23:59:59 2025 GMT Subject: serialNumber=700250e5c98d8512155bd3573e7fb6789d0e75f7862e31580fb2af17b888c634, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:95:e4:83:db:12:03:39:a3:14:77:0e:9e:84: 52:34:bc:ac:56:de:26:47:77:49:56:42:50:21:4f: 1b:5e:7a:38:d8:db:d0:06:e1:39:b8:6c:62:dc:b5: 80:58:a9:80:a3:fc:0d:e2:c0:9d:e7:60:72:a4:69: be:b3:7b:0b:6f:d1:cb:19:6a:91:b6:ac:fd:0f:23: 31:16:d0:8b:91:6f:fe:10:84:87:81:44:c1:b0:61: fe:8d:3f:8b:f8:da:c2:c7:58:3d:b2:42:ba:7a:99: b7:7b:c1:ba:a9:c3:dd:e3:d5:05:21:f3:67:94:db: bd:71:45:a8:52:4d:f4:ae:63:ee:c9:a7:47:8b:86: d4:a9:97:ae:df:58:a0:e0:b9:87:d9:31:2c:48:34: e2:75:7e:21:dc:81:02:28:61:f8:4f:84:bd:f3:73: e7:8f:25:f1:7b:6b:57:c4:dc:06:c6:6e:f3:05:06: 40:ac:3d:c0:bf:16:b2:36:2a:51:4d:8c:34:5e:3c: 37:7e:e4:7b:35:71:4f:9c:64:ff:fe:a8:e9:a9:5b: 98:04:65:ef:11:03:c1:81:84:99:8f:d0:4f:2d:77: 21:84:17:84:29:41:55:02:05:f6:59:e2:56:6d:dd: ff:08:73:87:53:c1:d1:95:bb:d0:ad:76:41:e2:eb: 5f:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:49:95:90:E4:79:09:50:18:2F:C6:7A:66:FB:71:E4:C0:2F:E3:FC X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7deff309-8a06-4ac9-9547-bd1f77b10933.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.164.158.0/23 Signature Algorithm: sha256WithRSAEncryption 0e:86:b9:78:56:db:bb:4f:d9:4b:b8:84:d0:c7:1e:14:24:bd: c3:80:ed:65:af:df:ba:2c:f0:74:c1:a1:c1:da:8f:68:b1:5a: 30:cf:62:40:eb:f7:8c:07:73:05:5a:fd:5c:73:40:ce:6b:ac: 66:47:bb:c8:20:5e:6c:4d:7b:ea:cd:5c:57:c5:87:bf:b3:d8: b3:1a:41:d5:eb:1e:1c:d2:b3:e5:0a:6a:9b:13:96:be:c5:8a: a3:d9:4e:0c:73:2d:e7:3f:75:f6:3b:c6:e8:95:b7:c9:91:bf: f5:69:33:c0:ec:b3:41:65:80:3a:c9:c0:b0:41:98:2d:fc:88: dd:54:da:21:32:b8:36:38:ef:2e:9b:f8:80:c4:0f:2f:94:3b: df:f1:1c:33:d9:3a:a9:dd:f1:76:f9:b9:61:99:c9:f5:c5:fa: ad:33:44:a9:9e:24:02:0d:62:90:27:91:30:ea:47:66:89:7e: 43:28:1b:c7:ce:fd:18:b4:c2:54:a1:f0:fa:34:23:9e:36:50: 40:71:69:37:73:20:5e:fc:6f:1a:e7:ad:5f:4b:d1:2d:d4:f5: 50:e7:7c:40:d5:14:f1:7a:16:c4:7d:b1:af:21:54:14:99:9a: 71:cc:e7:d2:4e:13:97:af:76:f0:48:63:c2:e8:10:75:ad:a6: cb:1f:da:aa -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNimi1T2/hXroFLk9KJuu0Ej7ssUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTI1MjIwMjM5WhcNMjUxMDMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3MDAyNTBlNWM5OGQ4NTEyMTU1YmQzNTczZTdmYjY3ODlk MGU3NWY3ODYyZTMxNTgwZmIyYWYxN2I4ODhjNjM0MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxleSD2xIDOaMUdw6ehFI0vKxW3iZHd0lWQlAhTxteejjY 29AG4Tm4bGLctYBYqYCj/A3iwJ3nYHKkab6zewtv0csZapG2rP0PIzEW0IuRb/4Q hIeBRMGwYf6NP4v42sLHWD2yQrp6mbd7wbqpw93j1QUh82eU271xRahSTfSuY+7J p0eLhtSpl67fWKDguYfZMSxINOJ1fiHcgQIoYfhPhL3zc+ePJfF7a1fE3AbGbvMF BkCsPcC/FrI2KlFNjDRePDd+5Hs1cU+cZP/+qOmpW5gEZe8RA8GBhJmP0E8tdyGE F4QpQVUCBfZZ4lZt3f8Ic4dTwdGVu9CtdkHi6183AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUp0mVkOR5CVAYL8Z6Zvtx5MAv4/wwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzdkZWZmMzA5LThhMDYtNGFjOS05NTQ3LWJkMWY3N2IxMDkzMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEDpJ4wDQYJKoZIhvcNAQELBQADggEBAA6GuXhW27tP2Uu4hNDHHhQkvcOA 7WWv37os8HTBocHaj2ixWjDPYkDr94wHcwVa/VxzQM5rrGZHu8ggXmxNe+rNXFfF h7+z2LMaQdXrHhzSs+UKapsTlr7FiqPZTgxzLec/dfY7xuiVt8mRv/VpM8Dss0Fl gDrJwLBBmC38iN1U2iEyuDY47y6b+IDEDy+UO9/xHDPZOqnd8Xb5uWGZyfXF+q0z RKmeJAINYpAnkTDqR2aJfkMoG8fO/Ri0wlSh8Po0I542UEBxaTdzIF78bxrnrV9L 0S3U9VDnfEDVFPF6FsR9sa8hVBSZmnHM59JOE5evdvBIY8LoEHWtpssf2qo= -----END CERTIFICATE-----Generated at Fri Oct 17 21:57:51 2025 by rpki-client