$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ac129866-e40c-4b2b-adc8-dad9d3e140ef.roa File: ac129866-e40c-4b2b-adc8-dad9d3e140ef.roa (raw, json) Hash identifier: dpl6p5VYUBNfNK96OXkbXTHdkgs3huQaLBZD3TqvJ6Y= Subject key identifier: 84:6E:F1:75:00:99:1A:93:D6:C5:B6:69:4C:F2:48:6D:6B:60:CB:2D Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 2CA625ACC907C6B42B7CF7D7A75884CAB4619111 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ac129866-e40c-4b2b-adc8-dad9d3e140ef.roa Signing time: Fri 10 Oct 2025 15:09:03 +0000 ROA not before: Fri 10 Oct 2025 15:09:03 +0000 ROA not after: Fri 14 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.128.0.0/10 maxlen: 10 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:a6:25:ac:c9:07:c6:b4:2b:7c:f7:d7:a7:58:84:ca:b4:61:91:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 10 15:09:03 2025 GMT Not After : Nov 14 23:59:59 2025 GMT Subject: serialNumber=c6315e2709d2592cbd12838dce2c53765b15f374efa3217f76ae262b34618c74, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:2a:05:7b:92:d7:c3:f8:54:c8:a6:46:6e:0c: 98:d8:1a:ac:80:88:39:0e:1c:f6:42:93:9b:d2:83: 4a:4f:20:96:27:73:1b:80:cd:a4:f1:1b:a6:a8:2d: 84:94:d5:3c:cb:5e:75:73:58:8c:8f:a5:a9:4b:53: 2c:ea:d2:56:c8:4e:c4:3e:15:8b:ef:5e:69:35:e2: 0e:bf:8f:ff:c4:93:25:bc:4d:38:11:af:4c:6c:be: 10:85:a8:53:36:38:7d:67:2b:dc:0d:bb:56:36:23: 57:60:fa:d3:ec:09:09:4d:b5:cb:53:ce:50:f1:c4: 30:0e:1a:ec:94:97:09:f1:c8:d6:ff:01:8e:58:36: 70:2a:23:a2:cd:4d:10:f8:4e:e7:83:f9:63:fa:aa: 35:a3:98:13:4c:58:d1:6d:d2:b6:7f:10:67:8a:a2: 3c:7a:d4:5a:e7:f9:ed:d3:e9:e8:e0:71:c7:5d:56: 14:eb:d9:11:a7:ab:2a:0a:0c:46:ad:93:8f:22:5e: 6c:01:1a:fe:b9:29:02:b6:96:f4:7c:3f:d9:94:46: 64:1e:e9:eb:57:f0:1a:0e:42:b3:be:8e:8b:33:e9: 73:ef:3d:80:4e:1a:a1:ec:9d:15:2f:36:00:dc:65: ce:9b:18:79:eb:45:ad:e7:54:df:02:f4:87:13:0c: 87:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:6E:F1:75:00:99:1A:93:D6:C5:B6:69:4C:F2:48:6D:6B:60:CB:2D X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ac129866-e40c-4b2b-adc8-dad9d3e140ef.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.128.0.0/10 Signature Algorithm: sha256WithRSAEncryption 03:e7:9e:8d:ff:b6:c6:d3:32:a2:9e:1b:e8:29:5d:ca:57:47: 0b:90:e7:3c:23:7d:74:0e:61:83:29:dd:1d:0b:85:3d:fd:01: d8:d7:62:b5:4b:a4:b3:08:c1:78:23:22:ed:c4:7f:e2:50:88: 80:0d:96:87:6f:bd:ba:fa:81:a5:b8:92:dc:ee:e8:6e:91:a0: 0f:52:0f:09:3d:bb:35:8e:12:83:0b:0c:46:8e:57:c6:58:cf: 55:59:85:d7:02:82:e6:f3:24:94:3a:fa:bd:f0:49:f1:62:37: f3:7d:4e:e5:b3:6c:5d:55:51:3e:95:4f:bc:9d:fd:e6:0c:e4: 69:32:dc:ac:70:69:83:4d:4a:73:a2:12:ba:57:8d:07:85:a5: 09:05:99:03:2e:81:ef:c6:e0:9c:70:ae:c2:c6:b7:ef:eb:cd: dd:c3:8d:92:c3:ec:8d:25:13:a9:bb:ad:13:40:05:9e:a2:8a: 67:0d:29:9a:49:a9:99:3e:32:db:7e:8c:4f:60:dd:f1:5e:7a: 93:26:95:70:37:e1:cf:51:81:c9:f0:ed:22:50:5c:70:68:cd: 2a:67:7e:95:10:38:d1:5d:e5:8a:e4:ce:62:49:ef:b0:aa:69: 7c:d8:04:55:d9:36:21:58:cc:83:2f:da:fe:38:7b:e1:90:e2: a0:f6:dd:9b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIULKYlrMkHxrQrfPfXp1iEyrRhkREwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDEwMTUwOTAzWhcNMjUxMTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNjMxNWUyNzA5ZDI1OTJjYmQxMjgzOGRjZTJjNTM3NjVi MTVmMzc0ZWZhMzIxN2Y3NmFlMjYyYjM0NjE4Yzc0MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBKgV7ktfD+FTIpkZuDJjYGqyAiDkOHPZCk5vSg0pPIJYn cxuAzaTxG6aoLYSU1TzLXnVzWIyPpalLUyzq0lbITsQ+FYvvXmk14g6/j//EkyW8 TTgRr0xsvhCFqFM2OH1nK9wNu1Y2I1dg+tPsCQlNtctTzlDxxDAOGuyUlwnxyNb/ AY5YNnAqI6LNTRD4TueD+WP6qjWjmBNMWNFt0rZ/EGeKojx61Frn+e3T6ejgccdd VhTr2RGnqyoKDEatk48iXmwBGv65KQK2lvR8P9mURmQe6etX8BoOQrO+josz6XPv PYBOGqHsnRUvNgDcZc6bGHnrRa3nVN8C9IcTDIcVAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUhG7xdQCZGpPWxbZpTPJIbWtgyy0wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2FjMTI5ODY2LWU0MGMtNGIyYi1hZGM4LWRhZDlkM2UxNDBlZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwYDgDANBgkqhkiG9w0BAQsFAAOCAQEAA+eejf+2xtMyop4b6CldyldHC5Dn PCN9dA5hgyndHQuFPf0B2NditUukswjBeCMi7cR/4lCIgA2Wh2+9uvqBpbiS3O7o bpGgD1IPCT27NY4SgwsMRo5XxljPVVmF1wKC5vMklDr6vfBJ8WI3831O5bNsXVVR PpVPvJ395gzkaTLcrHBpg01Kc6ISuleNB4WlCQWZAy6B78bgnHCuwsa37+vN3cON ksPsjSUTqbutE0AFnqKKZw0pmkmpmT4y236MT2Dd8V56kyaVcDfhz1GByfDtIlBc cGjNKmd+lRA40V3liuTOYknvsKppfNgEVdk2IVjMgy/a/jh74ZDioPbdmw== -----END CERTIFICATE-----Generated at Fri Oct 17 23:54:58 2025 by rpki-client