$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/299b0d72-77a2-4979-bbcb-197a00b9c434.roa File: 299b0d72-77a2-4979-bbcb-197a00b9c434.roa (raw, json) Hash identifier: kcUto+7m9/AWwqpNuZ+RYpCDaHr1GjnI2Mu1TgQNijY= Subject key identifier: 8F:56:92:49:95:5F:1E:4B:49:C2:65:D0:23:52:BE:A9:75:93:CD:20 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 2287B6F9E55848BF23CB457172F277561F53DB8D Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/299b0d72-77a2-4979-bbcb-197a00b9c434.roa Signing time: Mon 20 Oct 2025 08:40:08 +0000 ROA not before: Mon 20 Oct 2025 08:40:08 +0000 ROA not after: Mon 24 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.161.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:87:b6:f9:e5:58:48:bf:23:cb:45:71:72:f2:77:56:1f:53:db:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 20 08:40:08 2025 GMT Not After : Nov 24 23:59:59 2025 GMT Subject: serialNumber=c4379a44f2f848125c32307018d484f29d6800508171be80fa68e5b92604a0f0, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:28:22:49:6e:8a:d4:5a:09:a2:4d:84:90:12: 00:45:07:d8:6a:2f:ed:d7:57:d9:2d:b9:19:ea:e5: 15:0d:de:b7:e9:f3:33:c7:d6:fe:99:33:f9:77:e2: dc:49:0f:24:40:95:f6:6f:4b:c0:3f:aa:08:ef:33: 1c:dd:c4:b1:93:4a:f7:97:11:f6:61:73:c8:ea:7a: b2:31:7b:ae:18:f8:0e:e6:f4:4b:41:19:4b:7f:56: 34:2f:df:f1:57:e0:0a:5a:a9:eb:62:cc:7b:30:c7: 74:bd:a7:c1:35:e5:bc:81:ba:27:ac:80:5a:9c:d1: 6c:39:3b:b2:0e:42:e1:be:14:69:cd:55:2c:80:bf: b8:2d:ff:23:f8:2d:bc:bb:ae:f4:b3:64:11:03:76: 8e:c6:e2:83:89:a7:c0:4e:22:5f:f3:02:b1:6d:ce: 2f:42:37:b6:ee:c1:57:cc:77:7a:9b:99:70:44:83: df:ff:b0:53:15:4b:5f:9a:fb:15:6c:3b:51:23:b8: 00:8b:e6:0c:d5:f1:47:86:e1:34:4e:60:1a:59:f8: f2:6d:92:8f:fd:ae:62:4e:5a:b7:b2:f7:e1:d4:97: e9:44:1d:45:ef:99:46:53:90:ba:ba:73:c9:d7:f2: aa:d6:2e:57:35:df:0c:81:43:e1:f4:53:67:e3:a1: 21:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:56:92:49:95:5F:1E:4B:49:C2:65:D0:23:52:BE:A9:75:93:CD:20 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/299b0d72-77a2-4979-bbcb-197a00b9c434.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.161.20.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:cd:60:a6:d4:c4:ed:9f:b0:e0:73:be:0c:d1:97:c0:72:90: d1:b7:f8:ec:5d:88:55:4a:fe:70:01:27:b0:2c:c1:5e:80:d9: 66:0b:97:e9:78:0d:c3:b6:7f:ae:71:4c:ba:96:5a:07:96:f2: c1:f7:f2:3b:95:bf:70:4e:39:41:ad:55:5e:25:c2:ab:e1:26: d8:ad:f9:7f:12:f6:69:66:ae:6d:12:50:4e:4a:87:98:28:c6: 22:72:0d:96:68:a1:cc:73:66:57:87:64:57:bf:ad:2d:f1:2e: 0b:b9:9f:dd:06:99:d8:3b:21:91:4d:95:bd:66:f3:14:eb:91: ed:f3:47:a3:65:8f:1e:ad:5a:d3:b1:38:da:f5:8d:d5:c4:8a: b1:a5:f6:a9:29:21:d6:11:ac:c5:a6:38:b0:0a:c8:c7:78:c0: 19:3a:59:15:15:04:d8:ca:be:24:57:3f:ee:4a:ca:79:39:47: ea:81:b9:59:1a:9c:d5:ee:f0:5e:d6:06:bb:e7:e2:46:9d:ff: 71:61:71:07:2f:cc:3d:1e:66:32:55:90:e7:f0:8b:94:e8:8e: 3d:14:dd:b4:05:6d:2b:a1:ea:f1:4d:88:1d:f8:a7:9a:15:e2: 16:64:ad:bf:09:db:5f:46:77:30:ea:b3:c0:92:ab:7e:c3:5f: 02:db:c3:78 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIoe2+eVYSL8jy0VxcvJ3Vh9T240wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDIwMDg0MDA4WhcNMjUxMTI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNDM3OWE0NGYyZjg0ODEyNWMzMjMwNzAxOGQ0ODRmMjlk NjgwMDUwODE3MWJlODBmYTY4ZTViOTI2MDRhMGYwMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3KCJJborUWgmiTYSQEgBFB9hqL+3XV9ktuRnq5RUN3rfp 8zPH1v6ZM/l34txJDyRAlfZvS8A/qgjvMxzdxLGTSveXEfZhc8jqerIxe64Y+A7m 9EtBGUt/VjQv3/FX4ApaqetizHswx3S9p8E15byBuiesgFqc0Ww5O7IOQuG+FGnN VSyAv7gt/yP4Lby7rvSzZBEDdo7G4oOJp8BOIl/zArFtzi9CN7buwVfMd3qbmXBE g9//sFMVS1+a+xVsO1EjuACL5gzV8UeG4TROYBpZ+PJtko/9rmJOWrey9+HUl+lE HUXvmUZTkLq6c8nX8qrWLlc13wyBQ+H0U2fjoSGhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUj1aSSZVfHktJwmXQI1K+qXWTzSAwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzI5OWIwZDcyLTc3YTItNDk3OS1iYmNiLTE5N2EwMGI5YzQzNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAADoRQwDQYJKoZIhvcNAQELBQADggEBAHvNYKbUxO2fsOBzvgzRl8BykNG3 +OxdiFVK/nABJ7AswV6A2WYLl+l4DcO2f65xTLqWWgeW8sH38juVv3BOOUGtVV4l wqvhJtit+X8S9mlmrm0SUE5Kh5goxiJyDZZoocxzZleHZFe/rS3xLgu5n90Gmdg7 IZFNlb1m8xTrke3zR6Nljx6tWtOxONr1jdXEirGl9qkpIdYRrMWmOLAKyMd4wBk6 WRUVBNjKviRXP+5Kynk5R+qBuVkanNXu8F7WBrvn4kad/3FhcQcvzD0eZjJVkOfw i5Tojj0U3bQFbSuh6vFNiB34p5oV4hZkrb8J219GdzDqs8CSq37DXwLbw3g= -----END CERTIFICATE-----Generated at Mon Oct 20 11:09:21 2025 by rpki-client