$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/97e8e038-2f32-48eb-b946-6eb5e4c1682c.roa File: 97e8e038-2f32-48eb-b946-6eb5e4c1682c.roa (raw, json) Hash identifier: a0dx/mCWFsMTKlIS5DUB0Tz9yqUAvrwlldmKUHnUgRI= Subject key identifier: 18:EF:F1:55:F4:F8:12:D9:16:91:31:AB:FC:D8:58:A6:EA:80:4F:D3 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 6795BDDB7B7D083A1A888CBE5058B3DAC94D9022 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/97e8e038-2f32-48eb-b946-6eb5e4c1682c.roa Signing time: Wed 08 Oct 2025 01:00:52 +0000 ROA not before: Wed 08 Oct 2025 01:00:52 +0000 ROA not after: Wed 12 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 161.188.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:95:bd:db:7b:7d:08:3a:1a:88:8c:be:50:58:b3:da:c9:4d:90:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 8 01:00:52 2025 GMT Not After : Nov 12 23:59:59 2025 GMT Subject: serialNumber=d8d78775c43458d31ef1997a0f284e40a03dfee2a7da8e9f2286a8825def6721, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:6a:de:d9:e6:50:8a:57:48:a4:49:2c:67:45: e2:ca:f7:2f:f0:21:bd:e3:bb:18:95:0f:9f:43:98: 8c:2a:d7:c5:ab:80:85:39:80:e0:f5:b9:c2:e9:23: a6:84:62:e3:68:95:41:bb:82:d5:b9:59:6d:5b:b5: b3:4b:20:9f:28:df:a4:a4:d9:4e:27:96:d6:a9:c0: c1:a7:19:e2:33:6d:0b:e1:e8:7a:e6:54:79:ee:2c: 15:5c:cd:7b:26:b0:32:60:8f:2d:df:bd:96:3f:49: d3:ec:65:67:49:97:11:9d:57:6b:66:47:77:8b:2d: 8c:7d:84:7f:c0:d4:f4:15:7a:72:00:b6:87:62:62: db:4b:e1:21:71:e4:00:d0:83:6b:54:b0:b1:42:4c: 17:ef:2a:df:1e:c6:bc:bd:26:50:2b:5c:a9:cc:63: 07:a5:b8:9a:4b:d1:39:13:93:33:26:93:45:9f:ba: 4d:41:2f:14:49:9a:23:3a:3b:e1:e4:85:f3:bb:94: b0:32:f2:78:94:e9:27:45:5f:97:44:73:f6:cb:0a: c4:c3:64:56:dd:84:06:0f:db:ee:e8:e4:94:5f:2b: 25:bb:ff:5c:d4:73:8b:f4:6b:7b:f8:c8:16:60:73: 63:14:e3:e3:fe:7d:19:aa:ad:99:32:a3:be:7b:d5: 9c:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:EF:F1:55:F4:F8:12:D9:16:91:31:AB:FC:D8:58:A6:EA:80:4F:D3 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/97e8e038-2f32-48eb-b946-6eb5e4c1682c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 161.188.143.0/24 Signature Algorithm: sha256WithRSAEncryption 39:6d:87:d5:df:36:c9:47:60:17:54:cb:2b:8f:d6:e4:55:fa: 1c:9e:a8:e0:4a:95:15:b1:a6:ed:a2:fa:a5:c3:32:00:2f:c7: 1a:bf:93:c4:36:91:81:04:30:65:e1:2e:2e:77:cd:74:17:1f: 5f:17:1a:55:1e:a5:69:4e:a9:52:77:bd:47:9d:f1:a8:ff:1a: ef:ef:e7:9d:fe:2d:66:42:c8:d6:ad:3a:b7:9f:82:cc:4f:f0: cf:3a:18:34:f7:a0:2a:fd:3a:a3:62:4c:29:49:69:bd:7e:80: d4:d4:8f:9e:b2:37:fc:d6:43:fa:65:13:59:39:b4:c9:81:d2: b7:a6:ce:be:80:90:12:61:5c:44:b7:9a:38:f2:0b:79:c3:d8: 40:22:66:bd:2e:00:7d:7f:f5:f2:62:f0:8f:88:c9:ee:a8:97: 1e:2d:8f:e0:41:44:c4:81:b2:17:68:f3:ef:30:80:70:5b:2e: 26:22:dd:8a:ff:d8:da:fc:fc:d5:ee:b3:d4:03:7b:69:0a:a1: 6a:d4:24:3e:b7:72:04:04:de:ac:56:cf:e6:72:70:0b:9b:97: 3a:ee:b9:d5:d2:02:d7:9e:fb:a2:88:40:df:7a:16:b4:c6:9c: 8b:aa:47:37:80:7a:d6:c4:c4:35:07:7d:c7:f3:5a:32:64:c4: df:e4:de:da -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZ5W923t9CDoaiIy+UFiz2slNkCIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDA4MDEwMDUyWhcNMjUxMTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0BkOGQ3ODc3NWM0MzQ1OGQzMWVmMTk5N2EwZjI4NGU0MGEw M2RmZWUyYTdkYThlOWYyMjg2YTg4MjVkZWY2NzIxMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHat7Z5lCKV0ikSSxnReLK9y/wIb3juxiVD59DmIwq18Wr gIU5gOD1ucLpI6aEYuNolUG7gtW5WW1btbNLIJ8o36Sk2U4nltapwMGnGeIzbQvh 6HrmVHnuLBVczXsmsDJgjy3fvZY/SdPsZWdJlxGdV2tmR3eLLYx9hH/A1PQVenIA todiYttL4SFx5ADQg2tUsLFCTBfvKt8exry9JlArXKnMYweluJpL0TkTkzMmk0Wf uk1BLxRJmiM6O+HkhfO7lLAy8niU6SdFX5dEc/bLCsTDZFbdhAYP2+7o5JRfKyW7 /1zUc4v0a3v4yBZgc2MU4+P+fRmqrZkyo7571ZwdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUGO/xVfT4EtkWkTGr/NhYpuqAT9MwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzk3ZThlMDM4LTJmMzItNDhlYi1iOTQ2LTZlYjVlNGMxNjgyYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAChvI8wDQYJKoZIhvcNAQELBQADggEBADlth9XfNslHYBdUyyuP1uRV+hye qOBKlRWxpu2i+qXDMgAvxxq/k8Q2kYEEMGXhLi53zXQXH18XGlUepWlOqVJ3vUed 8aj/Gu/v553+LWZCyNatOrefgsxP8M86GDT3oCr9OqNiTClJab1+gNTUj56yN/zW Q/plE1k5tMmB0remzr6AkBJhXES3mjjyC3nD2EAiZr0uAH1/9fJi8I+Iye6olx4t j+BBRMSBshdo8+8wgHBbLiYi3Yr/2Nr8/NXus9QDe2kKoWrUJD63cgQE3qxWz+Zy cAublzruudXSAtee+6KIQN96FrTGnIuqRzeAetbExDUHfcfzWjJkxN/k3to= -----END CERTIFICATE-----Generated at Fri Oct 17 23:54:54 2025 by rpki-client