$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8b0633e2-c456-4050-bc9f-fb73b068847e.roa File: 8b0633e2-c456-4050-bc9f-fb73b068847e.roa (raw, json) Hash identifier: 9pXficOCIk21o+pV0gcQF/aZqTVVPEN6x6kKdzc09AA= Subject key identifier: CC:52:A0:5E:6C:D0:34:3F:D2:6C:31:53:CC:5E:6D:19:81:23:6B:50 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 4195937D853F1B51F7FFDEDBC611450CDC53CB Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8b0633e2-c456-4050-bc9f-fb73b068847e.roa Signing time: Fri 26 Sep 2025 00:42:36 +0000 ROA not before: Fri 26 Sep 2025 00:42:36 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.170.236.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:95:93:7d:85:3f:1b:51:f7:ff:de:db:c6:11:45:0c:dc:53:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 26 00:42:36 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=14c93ccc6c5e97348eed9e3ce91ae0f556d15a375bba186c77ef466e605bddcd, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:bb:c7:0d:cb:8e:f1:30:c4:b5:9f:24:25:58: be:16:60:44:aa:51:4c:95:1f:d6:c1:89:fd:46:5f: 2e:6d:1b:40:24:ff:5e:57:62:12:8e:c2:d4:92:da: d1:df:f0:7e:59:54:6d:77:ea:a8:51:19:7a:00:dc: 35:88:7d:9f:53:95:d8:b9:18:fc:9a:75:9c:87:59: d4:59:7f:04:c7:cd:d7:cc:24:5a:ce:84:c3:0a:c8: fb:d1:c6:4b:1c:6b:3f:d3:fd:16:4f:b4:84:9e:36: 2e:3e:20:3d:61:45:f4:7a:4f:44:79:4a:ff:c2:fa: d3:91:0a:14:58:21:5b:6f:6d:66:c3:77:3c:2e:94: 02:0c:b2:c3:ff:55:e1:a6:bd:8f:53:c9:d2:5d:3e: 35:a6:06:79:fc:8d:1a:2c:1c:58:a2:16:6b:9d:2a: 38:a7:22:89:31:21:8a:4d:81:12:44:a8:52:bd:d3: cf:9b:ec:18:82:ab:ac:f2:92:b6:a6:f9:7f:a9:0c: 4c:7f:66:82:f8:20:18:20:13:11:5c:b9:53:a6:a6: ed:0a:81:bf:d6:d5:6f:ed:de:7e:79:91:1b:a2:e0: 79:3f:ab:08:a5:da:10:40:fa:90:46:d4:9b:1f:8c: 45:e1:84:3d:6f:4c:04:c1:70:ff:cb:56:ce:ba:10: d6:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:52:A0:5E:6C:D0:34:3F:D2:6C:31:53:CC:5E:6D:19:81:23:6B:50 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8b0633e2-c456-4050-bc9f-fb73b068847e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.170.236.0/22 Signature Algorithm: sha256WithRSAEncryption 5f:30:87:b0:3a:98:c2:4d:4d:b2:25:27:f0:6d:82:1c:66:26: e9:e8:28:10:74:bf:fc:6a:63:eb:7d:ae:81:17:d1:f8:63:d6: ad:03:ad:54:4d:dd:84:d6:2d:74:83:bd:38:ee:aa:3a:03:a3: a7:c1:88:35:28:4f:5a:ee:c6:7f:fe:8d:6c:6b:47:ce:8e:1f: 33:28:ab:c9:37:b8:18:30:a0:0d:9a:83:8e:8a:0b:d8:0d:2c: 26:21:26:27:88:d8:84:4e:48:86:73:60:8a:fb:7b:14:6c:8a: a7:45:01:10:8a:e1:24:6a:d8:c7:a3:ee:a0:66:2a:b8:ad:45: 03:50:fd:ab:14:df:9d:de:74:e5:16:af:99:84:4f:09:c9:91: 54:51:1b:f5:00:0d:9c:4b:83:e5:3b:64:b0:dc:2e:36:f0:0b: b9:07:b1:a7:eb:0c:52:25:7c:d2:b6:7a:22:6d:28:90:1f:39: f1:e4:8b:b2:8e:dd:9f:6f:70:54:28:ad:21:64:cd:d2:43:ff: 43:82:a1:c1:1f:f4:e7:72:25:c8:18:02:9e:19:a7:7c:3e:32: 43:bf:e0:fe:01:fc:7f:15:db:61:71:ff:ef:91:b7:f4:75:1d: 9c:a5:a8:b6:e5:f3:0f:c6:56:32:f6:51:74:cf:34:c1:7c:9d: 38:b9:c0:0b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITQZWTfYU/G1H3/97bxhFFDNxTyzANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzJkZjZmM2IzYTM0YjYzODZkMWEzMmQ4ZjRmYTMxNzhlZjMx ODg3ZDhiNDI4ZGZhYTQ3NjAeFw0yNTA5MjYwMDQyMzZaFw0yNTEwMzEyMzU5NTla MHoxSTBHBgNVBAUTQDE0YzkzY2NjNmM1ZTk3MzQ4ZWVkOWUzY2U5MWFlMGY1NTZk MTVhMzc1YmJhMTg2Yzc3ZWY0NjZlNjA1YmRkY2QxLTArBgNVBAMTJDVmMjc2MDQ1 LTViOWYtNDVlZi05MjNkLWYzZmNlMjRhNjIyNTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBANW7xw3LjvEwxLWfJCVYvhZgRKpRTJUf1sGJ/UZfLm0bQCT/ XldiEo7C1JLa0d/wfllUbXfqqFEZegDcNYh9n1OV2LkY/Jp1nIdZ1Fl/BMfN18wk Ws6EwwrI+9HGSxxrP9P9Fk+0hJ42Lj4gPWFF9HpPRHlK/8L605EKFFghW29tZsN3 PC6UAgyyw/9V4aa9j1PJ0l0+NaYGefyNGiwcWKIWa50qOKciiTEhik2BEkSoUr3T z5vsGIKrrPKStqb5f6kMTH9mgvggGCATEVy5U6am7QqBv9bVb+3efnmRG6LgeT+r CKXaEED6kEbUmx+MReGEPW9MBMFw/8tWzroQ1i8CAwEAAaOCArEwggKtMB0GA1Ud DgQWBBTMUqBebNA0P9JsMVPMXm0ZgSNrUDAfBgNVHSMEGDAWgBQlrdNCsB63pY6t GZAmiLVLP4H0uDAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzg1MWNlZjE3LTEz MmEtNDMzNy1iN2QxLWJmMTZhNTJmZmQwMy9kZjZmM2IzYTM0YjYzODZkMWEzMmQ4 ZjRmYTMxNzhlZjMxODg3ZDhiNDI4ZGZhYTQ3Ni5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9mNzAzNjk2ZS1lNDdiLTRjMjAtYmQ5My02Zjgw OTA0ZTQyZDIvOGIwNjMzZTItYzQ1Ni00MDUwLWJjOWYtZmI3M2IwNjg4NDdlLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMt NmY4MDkwNGU0MmQyL3RqaHRHakxZOVBveGVPOHhpSDJMUW8zNnBIWS5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAgOq7DANBgkqhkiG9w0BAQsFAAOCAQEAXzCHsDqYwk1NsiUn8G2CHGYm6ego EHS//Gpj632ugRfR+GPWrQOtVE3dhNYtdIO9OO6qOgOjp8GINShPWu7Gf/6NbGtH zo4fMyiryTe4GDCgDZqDjooL2A0sJiEmJ4jYhE5IhnNgivt7FGyKp0UBEIrhJGrY x6PuoGYquK1FA1D9qxTfnd505RavmYRPCcmRVFEb9QANnEuD5TtksNwuNvALuQex p+sMUiV80rZ6Im0okB858eSLso7dn29wVCitIWTN0kP/Q4KhwR/053IlyBgCnhmn fD4yQ7/g/gH8fxXbYXH/75G39HUdnKWotuXzD8ZWMvZRdM80wXydOLnACw== -----END CERTIFICATE-----Generated at Fri Oct 17 21:57:31 2025 by rpki-client