$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ab4c368c-ce0a-46d7-a240-a19d52021fe5.roa File: ab4c368c-ce0a-46d7-a240-a19d52021fe5.roa (raw, json) Hash identifier: aq5TeJdKuvKCFuLiaHwui2LuSDPA+yYxQNSi3AnXbs8= Subject key identifier: 07:7B:45:BC:EE:F9:DC:0A:35:01:01:FA:CB:F0:8D:D2:EF:1F:81:A6 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 4A7F4AAC7CD6EAE0C02DA90F06AC1155C2CD5393 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ab4c368c-ce0a-46d7-a240-a19d52021fe5.roa Signing time: Thu 25 Sep 2025 21:29:20 +0000 ROA not before: Thu 25 Sep 2025 21:29:20 +0000 ROA not after: Thu 30 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.160.28.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:7f:4a:ac:7c:d6:ea:e0:c0:2d:a9:0f:06:ac:11:55:c2:cd:53:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 25 21:29:20 2025 GMT Not After : Oct 30 23:59:59 2025 GMT Subject: serialNumber=ac61d34ce072e5de71801dc1b8b57dd96b45d06b101cee1013621d74d0a6e869, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:da:4b:f4:10:04:92:14:27:ce:6e:f8:60:08: c7:a9:22:2a:f0:96:25:fd:37:2a:70:9f:3f:d1:88: a9:c1:88:96:dc:9e:df:fb:60:ea:b5:4f:19:5f:4f: a2:9d:bd:7f:b5:ad:52:0a:12:17:7b:c8:9f:29:d9: 7a:5f:72:7d:8d:ff:b9:f0:b5:db:b6:81:c2:a4:28: 1e:91:6e:ec:ec:0c:56:61:0e:f9:1b:4c:47:8c:6c: 61:b9:5c:ff:81:17:82:0b:4c:46:b9:52:77:e9:06: ba:c5:f4:46:df:4f:78:f7:2b:44:ac:fa:6b:cd:00: 27:1d:c8:e9:8f:49:1d:5c:74:81:d0:00:33:8f:6a: 91:78:2c:52:f9:09:c2:73:b6:d5:41:78:51:4a:70: d1:c0:b1:c8:84:24:c9:7e:db:41:5a:79:17:34:a6: 8e:d5:74:76:b3:ee:36:fd:bf:fd:90:c8:90:0b:f5: 14:5e:64:66:f3:35:e2:1d:68:58:09:c4:0b:d6:92: f7:42:15:95:72:83:56:c9:33:8b:91:74:3f:f0:be: 09:87:06:33:27:29:ff:0b:85:93:3e:42:eb:28:14: 04:56:43:b8:a4:80:1f:05:5a:56:f2:e6:80:e6:6d: df:fd:ac:d4:84:29:63:7e:de:31:5b:9f:bc:88:4e: 1c:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:7B:45:BC:EE:F9:DC:0A:35:01:01:FA:CB:F0:8D:D2:EF:1F:81:A6 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ab4c368c-ce0a-46d7-a240-a19d52021fe5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.160.28.0/23 Signature Algorithm: sha256WithRSAEncryption 15:d8:62:87:72:a3:2c:42:96:4e:27:81:d2:c1:be:c9:b4:49: db:92:4d:70:1f:5a:99:0e:f2:2a:9c:22:a4:2f:4b:96:b3:e2: a1:50:3f:19:64:e9:fb:95:e1:58:e2:05:95:dd:fd:d3:c9:3a: ab:bb:33:5f:82:af:08:07:c5:07:39:c9:0b:a7:8f:c1:a9:bb: 56:f3:92:a4:6e:b4:49:76:bb:d7:1a:65:4f:21:a4:3e:46:7d: 72:cb:0c:0e:54:12:a6:e5:4a:15:62:73:48:be:ed:3d:8d:73: 66:ff:d7:87:8f:24:56:6b:b0:58:3e:b1:6c:bd:d9:3a:e8:5b: 81:91:79:27:cd:b7:ab:42:c3:2c:3d:64:96:8e:d2:2f:d8:67: b0:b6:b5:3c:6c:85:cf:11:11:7b:e2:26:1a:20:cb:69:70:59: bb:a9:e1:10:3b:a5:63:0a:46:c6:bc:88:bd:ee:ba:5c:f8:17: 5f:df:98:90:44:e2:ac:68:ca:ae:ff:33:41:b9:cb:fd:72:d9: 69:ac:5a:ac:6e:b2:db:96:ac:9b:64:f3:6e:42:d4:bb:4e:14: 83:83:7e:13:a4:9f:11:6d:ab:ae:ec:bd:14:5f:66:7f:b3:47: 83:e9:d4:f8:e2:b7:2d:b6:5d:ed:1b:84:cb:d4:51:84:04:f1: fb:8c:07:6b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSn9KrHzW6uDALakPBqwRVcLNU5MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTI1MjEyOTIwWhcNMjUxMDMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhYzYxZDM0Y2UwNzJlNWRlNzE4MDFkYzFiOGI1N2RkOTZi NDVkMDZiMTAxY2VlMTAxMzYyMWQ3NGQwYTZlODY5MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCp2kv0EASSFCfObvhgCMepIirwliX9Nypwnz/RiKnBiJbc nt/7YOq1TxlfT6KdvX+1rVIKEhd7yJ8p2Xpfcn2N/7nwtdu2gcKkKB6RbuzsDFZh DvkbTEeMbGG5XP+BF4ILTEa5UnfpBrrF9EbfT3j3K0Ss+mvNACcdyOmPSR1cdIHQ ADOPapF4LFL5CcJzttVBeFFKcNHAsciEJMl+20FaeRc0po7VdHaz7jb9v/2QyJAL 9RReZGbzNeIdaFgJxAvWkvdCFZVyg1bJM4uRdD/wvgmHBjMnKf8LhZM+QusoFARW Q7ikgB8FWlby5oDmbd/9rNSEKWN+3jFbn7yIThyNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUB3tFvO753Ao1AQH6y/CN0u8fgaYwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2FiNGMzNjhjLWNlMGEtNDZkNy1hMjQwLWExOWQ1MjAyMWZlNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEDoBwwDQYJKoZIhvcNAQELBQADggEBABXYYodyoyxClk4ngdLBvsm0SduS TXAfWpkO8iqcIqQvS5az4qFQPxlk6fuV4VjiBZXd/dPJOqu7M1+CrwgHxQc5yQun j8Gpu1bzkqRutEl2u9caZU8hpD5GfXLLDA5UEqblShVic0i+7T2Nc2b/14ePJFZr sFg+sWy92TroW4GReSfNt6tCwyw9ZJaO0i/YZ7C2tTxshc8REXviJhogy2lwWbup 4RA7pWMKRsa8iL3uulz4F1/fmJBE4qxoyq7/M0G5y/1y2WmsWqxustuWrJtk825C 1LtOFIODfhOknxFtq67svRRfZn+zR4Pp1Pjity22Xe0bhMvUUYQE8fuMB2s= -----END CERTIFICATE-----Generated at Fri Oct 17 21:55:19 2025 by rpki-client