$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/e337ea29-83a4-4851-83f2-0b0aef373403.roa File: e337ea29-83a4-4851-83f2-0b0aef373403.roa (raw, json) Hash identifier: EONk1pZfXxF2/PENeRg+rWWGiyK3OT18bQAjNOludSY= Subject key identifier: EF:DD:D8:95:B2:B9:44:A3:3B:C7:A2:21:B3:DD:2D:25:6D:5C:1E:4F Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 63D10AAAD68B4417F7DA3C247A0BC373E0261025 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/e337ea29-83a4-4851-83f2-0b0aef373403.roa Signing time: Fri 10 Oct 2025 15:11:27 +0000 ROA not before: Fri 10 Oct 2025 15:11:27 +0000 ROA not after: Fri 14 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.4.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:d1:0a:aa:d6:8b:44:17:f7:da:3c:24:7a:0b:c3:73:e0:26:10:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 10 15:11:27 2025 GMT Not After : Nov 14 23:59:59 2025 GMT Subject: serialNumber=749a9195078857c117ed2110c82566910f074d9829aa3e7ee1e3846bc45b4980, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:e6:e7:92:65:5c:22:b3:fe:87:8f:57:f3:31: f3:1c:ba:0a:0a:1a:0c:a4:8c:07:f5:e7:2f:15:2c: 6b:f0:6c:d2:c5:21:c3:02:a3:d1:ce:31:9d:47:03: 7e:e5:40:8a:c0:97:69:e4:7d:34:ef:44:ad:c1:4a: 74:e3:fd:b1:13:7f:f9:34:10:2a:8b:f5:a2:33:bd: 2c:b5:e8:45:39:c7:43:38:a2:96:af:52:e1:ac:e5: 00:46:b3:34:69:d2:62:b0:eb:13:51:87:c6:7e:25: 8c:ff:97:3c:51:d0:be:3c:72:5d:d8:74:e9:65:a5: 59:60:61:39:35:63:91:db:43:35:85:f8:3a:f9:c0: 81:5e:ef:52:cf:1d:cc:dd:a6:35:9b:bd:2a:1b:da: 5f:a2:bc:74:1b:16:58:11:3b:60:8c:74:c3:40:84: 02:08:21:07:51:ac:aa:f7:ed:62:7d:fb:86:b7:a2: c5:79:51:40:7d:78:7c:4a:77:da:5b:21:cc:8b:dd: 3e:94:cb:d6:20:b0:3a:ed:80:30:e0:0b:bd:c3:ed: 80:b9:77:11:a5:1a:e7:ee:0c:dc:5c:2f:4c:96:1b: 12:68:20:8a:81:f8:a6:87:ad:cc:74:ef:b3:e0:15: a4:45:89:5a:72:d2:8b:61:77:5c:17:9d:5c:1a:c2: 40:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:DD:D8:95:B2:B9:44:A3:3B:C7:A2:21:B3:DD:2D:25:6D:5C:1E:4F X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/e337ea29-83a4-4851-83f2-0b0aef373403.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.4.3.0/24 Signature Algorithm: sha256WithRSAEncryption 89:05:3d:91:99:83:77:56:6c:b4:c5:2b:54:a1:a6:35:7f:a9: d8:ad:79:80:c1:6d:b1:ee:6f:30:55:67:c3:70:e7:89:9a:64: 50:ab:e7:f6:09:4d:ad:fc:41:e0:e9:a8:f0:08:20:3c:e2:2c: 17:50:c5:a9:88:bc:ea:2f:1a:e4:a5:ea:a4:1b:88:37:bb:91: 67:5d:05:ca:23:42:f9:5b:dd:09:5c:72:c6:a8:31:4e:7c:1c: f5:0f:16:28:7d:7c:4c:45:60:1f:0b:c3:f4:a6:3a:09:5f:21: 3d:5b:0a:d3:99:9b:f8:a1:5d:03:d4:68:9e:54:c7:f9:ad:3b: 15:31:c8:ee:19:2d:b1:5b:6e:60:45:06:b7:4b:88:7b:30:80: 7b:0f:00:41:4f:4d:96:13:6e:9b:e0:1d:89:11:cd:06:e7:1f: db:9d:10:fa:04:70:3c:29:22:ee:f5:51:00:02:fe:9e:1b:dc: c6:bc:1c:f1:20:cb:e1:03:f8:a2:2e:d9:79:31:56:1d:1e:3d: 6e:27:da:a3:a6:cf:63:39:4d:5c:47:5b:08:69:28:71:ad:bd: 5c:a3:fa:1f:34:1d:44:06:3b:94:0d:11:22:77:7f:12:3b:ef: 7e:d3:f6:2f:11:cb:5b:4d:ad:c4:14:25:66:5c:15:09:7e:fb: 26:17:a0:3c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUY9EKqtaLRBf32jwkegvDc+AmECUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDEwMTUxMTI3WhcNMjUxMTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A3NDlhOTE5NTA3ODg1N2MxMTdlZDIxMTBjODI1NjY5MTBm MDc0ZDk4MjlhYTNlN2VlMWUzODQ2YmM0NWI0OTgwMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDE5ueSZVwis/6Hj1fzMfMcugoKGgykjAf15y8VLGvwbNLF IcMCo9HOMZ1HA37lQIrAl2nkfTTvRK3BSnTj/bETf/k0ECqL9aIzvSy16EU5x0M4 opavUuGs5QBGszRp0mKw6xNRh8Z+JYz/lzxR0L48cl3YdOllpVlgYTk1Y5HbQzWF +Dr5wIFe71LPHczdpjWbvSob2l+ivHQbFlgRO2CMdMNAhAIIIQdRrKr37WJ9+4a3 osV5UUB9eHxKd9pbIcyL3T6Uy9YgsDrtgDDgC73D7YC5dxGlGufuDNxcL0yWGxJo IIqB+KaHrcx077PgFaRFiVpy0othd1wXnVwawkADAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU793YlbK5RKM7x6Ihs90tJW1cHk8wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2UzMzdlYTI5LTgzYTQtNDg1MS04M2YyLTBiMGFlZjM3MzQwMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAADBAMwDQYJKoZIhvcNAQELBQADggEBAIkFPZGZg3dWbLTFK1ShpjV/qdit eYDBbbHubzBVZ8Nw54maZFCr5/YJTa38QeDpqPAIIDziLBdQxamIvOovGuSl6qQb iDe7kWddBcojQvlb3QlccsaoMU58HPUPFih9fExFYB8Lw/SmOglfIT1bCtOZm/ih XQPUaJ5Ux/mtOxUxyO4ZLbFbbmBFBrdLiHswgHsPAEFPTZYTbpvgHYkRzQbnH9ud EPoEcDwpIu71UQAC/p4b3Ma8HPEgy+ED+KIu2XkxVh0ePW4n2qOmz2M5TVxHWwhp KHGtvVyj+h80HUQGO5QNESJ3fxI7737T9i8Ry1tNrcQUJWZcFQl++yYXoDw= -----END CERTIFICATE-----Generated at Mon Oct 20 21:19:00 2025 by rpki-client