$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8fff0afb-b916-4f84-878a-313d2a7acfff.roa File: 8fff0afb-b916-4f84-878a-313d2a7acfff.roa (raw, json) Hash identifier: jh+s98B4zAiS0dCcTulDvy8ktaufwdY3b0XO5vI9npQ= Subject key identifier: BD:13:4E:28:16:12:01:0E:DB:63:E9:F5:04:6A:39:74:67:D4:95:58 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 390EA3F5D1ACE99054CBE1B64F567F3B2F4D42A1 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8fff0afb-b916-4f84-878a-313d2a7acfff.roa Signing time: Wed 15 Oct 2025 23:17:40 +0000 ROA not before: Wed 15 Oct 2025 23:17:40 +0000 ROA not after: Wed 19 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 143.204.96.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:0e:a3:f5:d1:ac:e9:90:54:cb:e1:b6:4f:56:7f:3b:2f:4d:42:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 15 23:17:40 2025 GMT Not After : Nov 19 23:59:59 2025 GMT Subject: serialNumber=b33f2cb8808177ae31a57ea67ee611b32b055178b96e16804bd050325c2d3d42, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:47:e9:2d:39:d4:4c:4a:dd:64:88:93:cb:3e: 15:83:a6:f7:a2:40:71:df:6b:4a:2b:9c:ca:79:b4: 87:99:12:a6:fa:1d:6e:3a:f2:78:a4:eb:4f:ff:25: 7c:8b:77:f4:8e:31:7a:a5:ec:78:75:4c:00:7a:3b: 84:e8:4c:65:87:c8:88:b6:10:23:2e:62:95:89:65: 87:f3:36:a7:fe:bd:71:09:18:6c:a5:5a:35:bb:df: f2:e3:07:a4:06:21:e9:53:1b:14:81:03:d5:ca:3f: 89:e9:c4:6f:88:17:38:db:cd:e0:da:b8:80:d0:b4: 34:3e:a3:71:ac:03:a3:ae:74:53:dd:44:e8:1c:28: 3c:5e:7e:cd:d8:e0:f2:64:a0:cc:30:6a:b9:cd:d4: cc:3d:2e:fb:d0:2e:ed:fe:dd:94:23:3b:2e:56:af: e0:1d:15:3f:7b:23:18:6b:69:2c:32:97:23:95:79: d5:06:62:d4:52:26:2b:30:f4:20:c8:93:d2:06:90: 2b:a9:59:7b:92:c2:50:b6:5a:de:9d:4d:0b:fb:28: f8:f6:ef:b6:b3:2e:4a:ba:d9:23:37:61:e6:36:bc: c6:5f:2b:36:bf:97:c4:e9:76:3f:4a:f3:c3:3a:4e: 6d:e3:15:3a:f1:0c:d7:e3:48:0b:c1:58:d0:bf:7a: 89:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:13:4E:28:16:12:01:0E:DB:63:E9:F5:04:6A:39:74:67:D4:95:58 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8fff0afb-b916-4f84-878a-313d2a7acfff.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 143.204.96.0/20 Signature Algorithm: sha256WithRSAEncryption 34:97:26:dc:62:18:e1:00:2e:94:87:5e:ac:f3:63:0b:24:6f: 90:12:e6:ac:07:b4:f4:59:9f:c7:c5:aa:3d:53:c7:e0:9a:2e: 95:8f:35:52:80:d0:ff:6d:15:f4:63:76:83:95:62:07:47:16: 43:f2:a2:4e:c1:1a:97:43:76:bf:30:21:6c:af:55:f4:75:4e: f2:82:3a:b6:08:77:9a:4b:71:d6:b5:4c:f7:6a:4b:e8:2b:f8: 2f:00:e6:60:eb:df:c0:23:56:53:1b:ed:6f:b2:b5:b4:25:0e: 66:a6:d5:ae:3a:0c:02:da:11:bf:7e:15:07:a5:1e:26:e2:b0: 64:76:02:ef:8c:76:dc:2a:54:c8:3c:e7:63:13:f7:c8:57:b8: 33:ba:36:56:9e:e9:cc:05:95:21:6f:61:e5:14:cb:db:4f:44: 53:01:24:2b:41:64:45:6d:88:31:40:45:63:1a:dc:1b:70:b8: 05:24:60:7c:0b:e0:f9:51:ee:51:57:08:cf:5a:3f:26:70:9e: 2e:8e:e2:f5:88:de:56:4d:b6:f7:4c:91:7e:f3:33:ba:6c:0f: 69:0f:d5:bf:dc:c0:e3:fd:7e:b5:7a:b8:fb:d9:3d:cc:00:ea: 0e:e0:a8:5f:84:f4:dc:4c:41:85:c2:88:60:69:23:01:6b:1f: 42:83:b3:41 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOQ6j9dGs6ZBUy+G2T1Z/Oy9NQqEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE1MjMxNzQwWhcNMjUxMTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMzNmMmNiODgwODE3N2FlMzFhNTdlYTY3ZWU2MTFiMzJi MDU1MTc4Yjk2ZTE2ODA0YmQwNTAzMjVjMmQzZDQyMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDSR+ktOdRMSt1kiJPLPhWDpveiQHHfa0ornMp5tIeZEqb6 HW468nik60//JXyLd/SOMXql7Hh1TAB6O4ToTGWHyIi2ECMuYpWJZYfzNqf+vXEJ GGylWjW73/LjB6QGIelTGxSBA9XKP4npxG+IFzjbzeDauIDQtDQ+o3GsA6OudFPd ROgcKDxefs3Y4PJkoMwwarnN1Mw9LvvQLu3+3ZQjOy5Wr+AdFT97IxhraSwylyOV edUGYtRSJisw9CDIk9IGkCupWXuSwlC2Wt6dTQv7KPj277azLkq62SM3YeY2vMZf Kza/l8Tpdj9K88M6Tm3jFTrxDNfjSAvBWNC/eomdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUvRNOKBYSAQ7bY+n1BGo5dGfUlVgwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzhmZmYwYWZiLWI5MTYtNGY4NC04NzhhLTMxM2QyYTdhY2ZmZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBASPzGAwDQYJKoZIhvcNAQELBQADggEBADSXJtxiGOEALpSHXqzzYwskb5AS 5qwHtPRZn8fFqj1Tx+CaLpWPNVKA0P9tFfRjdoOVYgdHFkPyok7BGpdDdr8wIWyv VfR1TvKCOrYId5pLcda1TPdqS+gr+C8A5mDr38AjVlMb7W+ytbQlDmam1a46DALa Eb9+FQelHibisGR2Au+MdtwqVMg852MT98hXuDO6Nlae6cwFlSFvYeUUy9tPRFMB JCtBZEVtiDFARWMa3BtwuAUkYHwL4PlR7lFXCM9aPyZwni6O4vWI3lZNtvdMkX7z M7psD2kP1b/cwOP9frV6uPvZPcwA6g7gqF+E9NxMQYXCiGBpIwFrH0KDs0E= -----END CERTIFICATE-----Generated at Fri Oct 17 22:04:44 2025 by rpki-client