$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/801a14b9-e343-438c-850d-625595380228.roa File: 801a14b9-e343-438c-850d-625595380228.roa (raw, json) Hash identifier: VAY8Bzyv/47YeMz/U0qVH1vuTEJAT0ZKO2B/6A+Fld8= Subject key identifier: E1:03:28:CF:C8:B5:73:90:D8:A1:23:BC:21:28:2F:01:8F:44:96:44 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 28A35FA8C628B839FC4E22E7AB5F3596C966D04F Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/801a14b9-e343-438c-850d-625595380228.roa Signing time: Mon 06 Oct 2025 17:02:27 +0000 ROA not before: Mon 06 Oct 2025 17:02:27 +0000 ROA not after: Mon 10 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.2.86.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:a3:5f:a8:c6:28:b8:39:fc:4e:22:e7:ab:5f:35:96:c9:66:d0:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 6 17:02:27 2025 GMT Not After : Nov 10 23:59:59 2025 GMT Subject: serialNumber=0d081db86bf5017803b78920922fbcfcbe3e5113f3bac7c5044c94fc64b6eed9, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ad:86:38:83:b5:ff:0f:29:d8:21:1c:96:be: f7:f7:36:fa:54:1f:9e:7e:52:77:25:c8:9b:85:5f: d8:d2:3f:5d:c9:60:ec:df:2f:95:7b:ac:e2:64:57: cf:a0:c4:5a:3c:a8:34:cb:48:18:68:b4:5e:1b:41: d5:ec:81:ca:c9:aa:30:f3:ba:ac:11:5b:16:30:88: bc:d3:48:fd:b4:d4:d7:e7:05:db:b9:5f:78:31:a2: ea:4f:7c:70:5f:b9:52:7e:17:f0:4c:1d:23:c9:95: ee:fd:87:a1:e8:c3:81:e8:7c:b8:6f:41:cf:ba:4f: e3:25:96:dd:cf:a6:22:35:ab:63:37:68:f4:62:90: 89:a5:9d:7d:9a:ee:96:38:c1:4d:ab:84:c5:b2:a3: af:26:e8:92:b8:6a:83:50:a8:97:99:c1:25:6d:c2: ad:01:5f:51:fc:20:15:69:62:ab:1b:1b:2a:39:be: fd:e1:ad:17:e0:04:2a:22:3d:68:24:dc:06:e5:8b: 4a:2a:7f:ab:8a:6e:80:61:7b:27:43:c4:20:41:4a: 09:3d:09:30:22:7b:f4:ce:e8:b7:c6:30:cc:b3:79: 97:0f:7a:85:f9:c0:67:60:92:eb:73:f4:c6:3a:7a: 39:0a:26:ee:ee:09:12:0a:d6:c3:1f:49:01:c7:4d: 86:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:03:28:CF:C8:B5:73:90:D8:A1:23:BC:21:28:2F:01:8F:44:96:44 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/801a14b9-e343-438c-850d-625595380228.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.2.86.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:fd:0f:b5:7c:6a:2c:8b:a2:7f:2d:c9:60:85:ba:06:c2:d1: 52:59:2e:96:2b:18:ee:85:36:09:6a:31:d7:fe:d9:6d:09:10: e2:87:b0:90:6d:44:d7:e8:76:d8:71:d9:1b:6e:de:a4:bc:ff: 4e:37:f7:6f:c9:6a:26:f0:6a:38:f0:89:5a:71:11:35:45:19: b7:97:12:f3:58:7b:d7:60:d9:e6:e9:76:72:31:ff:06:1a:de: bf:e3:ee:9a:7b:91:68:00:35:1d:87:6e:98:97:dd:8c:11:92: 58:db:37:51:2f:0c:f9:78:af:fd:3e:40:e2:99:e9:35:74:f5: 82:9e:4d:42:37:40:c2:8c:5f:bf:71:ca:08:aa:0d:f4:46:1b: e1:29:60:23:aa:09:d1:4b:34:58:4f:c0:8b:09:47:3a:93:43: ec:23:53:ec:c9:6b:84:06:23:ae:3b:5e:c3:4e:5f:01:f2:de: 25:92:61:11:28:fd:41:10:45:44:72:56:89:c1:90:66:5e:68: 8a:d0:2e:df:aa:7d:94:85:5e:65:67:c7:0c:68:ee:fe:ec:c4: 50:dc:2a:1e:f6:df:e5:25:5c:6e:55:b7:d0:d5:4a:45:12:c7: 33:4d:e3:c0:45:63:df:79:06:0d:e6:c1:28:cb:a9:b0:4f:36: b5:de:ad:e5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKKNfqMYouDn8TiLnq181lslm0E8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDA2MTcwMjI3WhcNMjUxMTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AwZDA4MWRiODZiZjUwMTc4MDNiNzg5MjA5MjJmYmNmY2Jl M2U1MTEzZjNiYWM3YzUwNDRjOTRmYzY0YjZlZWQ5MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCrYY4g7X/DynYIRyWvvf3NvpUH55+UnclyJuFX9jSP13J YOzfL5V7rOJkV8+gxFo8qDTLSBhotF4bQdXsgcrJqjDzuqwRWxYwiLzTSP201Nfn Bdu5X3gxoupPfHBfuVJ+F/BMHSPJle79h6How4HofLhvQc+6T+Mllt3PpiI1q2M3 aPRikImlnX2a7pY4wU2rhMWyo68m6JK4aoNQqJeZwSVtwq0BX1H8IBVpYqsbGyo5 vv3hrRfgBCoiPWgk3Abli0oqf6uKboBheydDxCBBSgk9CTAie/TO6LfGMMyzeZcP eoX5wGdgkutz9MY6ejkKJu7uCRIK1sMfSQHHTYZFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU4QMoz8i1c5DYoSO8ISgvAY9ElkQwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzgwMWExNGI5LWUzNDMtNDM4Yy04NTBkLTYyNTU5NTM4MDIyOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAADAlYwDQYJKoZIhvcNAQELBQADggEBAH/9D7V8aiyLon8tyWCFugbC0VJZ LpYrGO6FNglqMdf+2W0JEOKHsJBtRNfodthx2Rtu3qS8/04392/JaibwajjwiVpx ETVFGbeXEvNYe9dg2ebpdnIx/wYa3r/j7pp7kWgANR2HbpiX3YwRkljbN1EvDPl4 r/0+QOKZ6TV09YKeTUI3QMKMX79xygiqDfRGG+EpYCOqCdFLNFhPwIsJRzqTQ+wj U+zJa4QGI647XsNOXwHy3iWSYREo/UEQRURyVonBkGZeaIrQLt+qfZSFXmVnxwxo 7v7sxFDcKh723+UlXG5Vt9DVSkUSxzNN48BFY995Bg3mwSjLqbBPNrXereU= -----END CERTIFICATE-----Generated at Fri Oct 17 23:56:43 2025 by rpki-client