$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/82f88bb7-11f5-4e07-9a5a-289df980ae46.roa File: 82f88bb7-11f5-4e07-9a5a-289df980ae46.roa (raw, json) Hash identifier: B+lBD0+WJ1iOdY54NYB4Q+kdJaopP4G7xyUL0XROI0E= Subject key identifier: B8:4E:DD:68:CA:FC:33:5E:FC:D5:71:44:EC:11:77:49:E0:C2:E9:41 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 1174A231E01C238003AB42C2F805DD98AE8E7E5C Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/82f88bb7-11f5-4e07-9a5a-289df980ae46.roa Signing time: Thu 25 Sep 2025 23:17:48 +0000 ROA not before: Thu 25 Sep 2025 23:17:48 +0000 ROA not after: Thu 30 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.171.88.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:74:a2:31:e0:1c:23:80:03:ab:42:c2:f8:05:dd:98:ae:8e:7e:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 25 23:17:48 2025 GMT Not After : Oct 30 23:59:59 2025 GMT Subject: serialNumber=9de3cac083be2fc9eab842daa5bc6489ab19409d59f2507971abc728553b8117, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:15:16:72:f6:ee:80:0c:b8:31:b2:8f:c9:14: 27:f7:bf:f8:c8:e9:5e:d1:4e:fe:5b:d7:b8:48:88: 50:7f:5f:9a:cc:46:61:e5:dd:48:dd:82:90:65:51: 7a:e2:fc:28:64:1f:33:92:50:d8:90:8b:e7:0c:ca: 22:43:4d:81:97:26:0a:6a:ff:09:b4:31:99:4a:42: 69:80:a6:55:c2:39:d7:84:8a:47:dc:d6:5c:7d:5a: b7:79:5d:f0:53:1c:a1:38:1b:d4:a4:44:15:b5:2c: 94:43:94:01:40:7a:de:71:4b:72:59:5d:52:1d:ac: fe:2c:44:37:3a:89:35:63:6e:77:68:54:dc:f1:98: df:09:b3:eb:79:5a:e5:13:da:a0:9f:2a:64:d0:98: d8:87:e8:00:69:ed:40:74:8d:82:0c:09:2f:8d:4d: be:4a:15:57:ed:e0:9a:d0:d2:f8:25:85:57:38:94: 73:dc:74:3d:e2:21:23:03:5b:2d:e2:3b:6b:78:52: 2e:9b:ed:42:a9:ab:b0:62:b3:48:8a:04:dc:86:bc: ea:3b:81:69:d0:d1:f3:5b:64:5c:5f:5d:06:b4:96: 62:38:77:09:6e:bb:08:00:21:b9:57:62:af:7c:08: a9:9f:79:82:85:b9:60:db:00:39:be:a5:68:70:ae: 4e:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:4E:DD:68:CA:FC:33:5E:FC:D5:71:44:EC:11:77:49:E0:C2:E9:41 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/82f88bb7-11f5-4e07-9a5a-289df980ae46.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.171.88.0/23 Signature Algorithm: sha256WithRSAEncryption 07:48:2c:07:9d:61:cf:aa:ed:6d:24:69:f5:ac:24:62:a0:a1: 96:3e:a0:9c:73:45:de:39:31:fe:e9:c9:53:74:46:84:88:7b: 70:e7:a8:33:a5:6c:9e:30:7b:42:1e:de:3f:62:dc:aa:09:76: e6:1f:65:e3:f4:e7:40:09:b6:f6:e6:f2:52:ed:f4:1e:1f:02: 80:86:f6:0d:66:f6:a2:18:3e:ed:e8:5d:bc:f4:46:ae:38:fd: 90:f5:e9:5e:31:6a:14:e2:7a:fa:4b:0a:05:f9:be:71:d5:7f: a1:c3:cf:64:02:82:da:a2:cb:47:20:46:3a:a3:3e:ef:74:b7: ea:14:da:69:c4:5f:75:a1:a3:62:3c:e7:6e:91:be:98:5c:dd: e2:f3:df:22:48:fa:5a:60:ca:9e:46:63:87:8e:af:e1:d4:ae: 8b:9a:95:2c:5c:93:20:ea:5f:45:45:04:c5:42:35:48:1a:a2: ac:49:d1:47:7f:6d:d4:eb:78:ee:6b:e8:95:58:9f:a1:bb:49: b7:41:b4:c5:fb:3e:9c:4e:e7:cf:18:3f:93:a4:dd:b3:58:fb: ba:28:b0:e5:ac:11:9f:7c:2f:a1:8f:65:08:8a:c7:91:9e:3c: 19:3a:e6:1c:81:3d:c6:cd:4c:f8:7b:f4:74:1a:38:22:f7:fe: 8b:85:ba:3f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEXSiMeAcI4ADq0LC+AXdmK6OflwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTI1MjMxNzQ4WhcNMjUxMDMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZGUzY2FjMDgzYmUyZmM5ZWFiODQyZGFhNWJjNjQ4OWFi MTk0MDlkNTlmMjUwNzk3MWFiYzcyODU1M2I4MTE3MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIFRZy9u6ADLgxso/JFCf3v/jI6V7RTv5b17hIiFB/X5rM RmHl3UjdgpBlUXri/ChkHzOSUNiQi+cMyiJDTYGXJgpq/wm0MZlKQmmAplXCOdeE ikfc1lx9Wrd5XfBTHKE4G9SkRBW1LJRDlAFAet5xS3JZXVIdrP4sRDc6iTVjbndo VNzxmN8Js+t5WuUT2qCfKmTQmNiH6ABp7UB0jYIMCS+NTb5KFVft4JrQ0vglhVc4 lHPcdD3iISMDWy3iO2t4Ui6b7UKpq7Bis0iKBNyGvOo7gWnQ0fNbZFxfXQa0lmI4 dwluuwgAIblXYq98CKmfeYKFuWDbADm+pWhwrk5tAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUuE7daMr8M1781XFE7BF3SeDC6UEwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzgyZjg4YmI3LTExZjUtNGUwNy05YTVhLTI4OWRmOTgwYWU0Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEDq1gwDQYJKoZIhvcNAQELBQADggEBAAdILAedYc+q7W0kafWsJGKgoZY+ oJxzRd45Mf7pyVN0RoSIe3DnqDOlbJ4we0Ie3j9i3KoJduYfZeP050AJtvbm8lLt 9B4fAoCG9g1m9qIYPu3oXbz0Rq44/ZD16V4xahTievpLCgX5vnHVf6HDz2QCgtqi y0cgRjqjPu90t+oU2mnEX3Who2I8526Rvphc3eLz3yJI+lpgyp5GY4eOr+HUroua lSxckyDqX0VFBMVCNUgaoqxJ0Ud/bdTreO5r6JVYn6G7SbdBtMX7PpxO588YP5Ok 3bNY+7oosOWsEZ98L6GPZQiKx5GePBk65hyBPcbNTPh79HQaOCL3/ouFuj8= -----END CERTIFICATE-----Generated at Fri Oct 17 21:57:22 2025 by rpki-client