$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3a58f2cb-905c-46be-8f64-09a02140e738.roa File: 3a58f2cb-905c-46be-8f64-09a02140e738.roa (raw, json) Hash identifier: TodpC/1eQOR0LR7r3fPrizejJhKOaB+z5+Pmo78QH7g= Subject key identifier: BB:2D:8B:EB:03:98:0C:F5:6F:39:97:E9:22:CB:30:56:75:E8:3E:F6 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 44204126792E7FC04A2F410890F5F57FB031B0AF Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3a58f2cb-905c-46be-8f64-09a02140e738.roa Signing time: Sat 18 Oct 2025 13:51:24 +0000 ROA not before: Sat 18 Oct 2025 13:51:24 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.46.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:20:41:26:79:2e:7f:c0:4a:2f:41:08:90:f5:f5:7f:b0:31:b0:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 18 13:51:24 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=f5836b9f60286821b5e01c9e2b6ea12e6b6887547eb81e115dba1d9cb2603c8b, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:84:25:41:0a:f7:63:b2:f0:e4:cc:e0:bd:ce: 3d:d6:74:53:fa:eb:c8:53:c5:33:43:ac:da:b5:b5: 40:49:2a:c7:eb:07:75:9c:31:d9:66:bc:06:8a:b4: 4f:2e:f8:4e:f1:22:ff:95:ce:bd:df:94:ae:b5:dd: a1:d1:7e:e6:bd:d3:c2:fe:12:57:77:93:ba:7e:f4: 03:ca:73:9c:11:d3:16:a0:a6:cf:d9:8f:de:48:47: 6b:a1:d2:a7:83:7d:8b:be:ca:41:a8:d6:8e:6b:0c: e8:9d:60:dd:b2:2c:90:ba:16:97:5d:6f:a7:e8:5e: 7b:d3:32:7f:51:a3:5f:a9:2f:ff:48:5b:60:e0:a3: a3:95:70:a7:4c:be:12:b7:38:f3:3b:c2:07:ce:c9: a9:95:49:bd:df:44:b9:ba:39:41:ba:cd:06:73:58: 43:cc:ac:c9:02:b9:90:5a:6b:ec:97:66:7a:47:ab: 4c:f4:aa:18:2a:66:87:6a:fe:2d:6b:78:c4:e0:76: e3:d0:5d:79:cd:a1:bf:d2:99:ee:52:48:00:92:74: eb:14:63:e4:00:4c:14:c9:5e:f6:b5:1d:b2:02:ce: 73:a6:32:49:a1:0e:c1:4d:7d:c8:a6:31:1a:99:dd: 5c:a4:8f:90:69:14:e6:99:8c:31:df:fa:30:ac:d4: b6:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:2D:8B:EB:03:98:0C:F5:6F:39:97:E9:22:CB:30:56:75:E8:3E:F6 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3a58f2cb-905c-46be-8f64-09a02140e738.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.46.43.0/24 Signature Algorithm: sha256WithRSAEncryption 43:36:80:3e:3b:1b:04:e9:44:cb:ab:b8:ab:65:ee:a8:a2:dc: f9:71:bc:4c:f2:2f:5f:e3:c6:14:94:e1:50:93:25:f3:3c:ac: cb:d7:92:d5:c6:64:1a:24:f1:35:72:67:89:d0:b2:e5:41:2f: 8c:4f:78:7d:ba:84:61:ce:98:7d:59:82:bb:86:0c:24:3c:dd: da:85:85:47:b7:e2:9d:6a:0a:11:66:55:0d:32:02:ca:03:4c: 06:6c:e9:04:f1:03:d2:31:4b:e7:77:7b:ed:67:d2:18:ba:d9: e7:cc:b0:1c:aa:c6:8d:15:1f:2e:4f:10:22:94:72:04:c8:c7: e4:8c:54:0a:95:ee:ca:51:cf:33:08:c6:b0:69:5c:14:8d:2a: e3:b3:b6:d8:37:14:54:3e:38:eb:26:aa:06:60:e5:17:94:69: bf:9c:94:48:6e:0f:9c:ed:0f:7d:2a:b8:d7:13:e6:85:24:a8: d8:ea:75:fd:86:ef:c9:61:f2:49:60:fc:09:7c:c4:50:e6:f5: f2:12:63:b0:4a:88:cc:68:33:72:da:b7:8e:01:b4:0b:49:00: ee:33:f8:b8:dc:80:19:64:5c:9c:2a:53:4b:b9:fd:6e:39:24: d5:83:74:13:23:94:1d:68:1c:21:d2:53:1b:dc:26:f6:d2:5f: 99:6c:48:ae -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURCBBJnkuf8BKL0EIkPX1f7AxsK8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE4MTM1MTI0WhcNMjUxMTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BmNTgzNmI5ZjYwMjg2ODIxYjVlMDFjOWUyYjZlYTEyZTZi Njg4NzU0N2ViODFlMTE1ZGJhMWQ5Y2IyNjAzYzhiMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6hCVBCvdjsvDkzOC9zj3WdFP668hTxTNDrNq1tUBJKsfr B3WcMdlmvAaKtE8u+E7xIv+Vzr3flK613aHRfua908L+Eld3k7p+9APKc5wR0xag ps/Zj95IR2uh0qeDfYu+ykGo1o5rDOidYN2yLJC6Fpddb6foXnvTMn9Ro1+pL/9I W2Dgo6OVcKdMvhK3OPM7wgfOyamVSb3fRLm6OUG6zQZzWEPMrMkCuZBaa+yXZnpH q0z0qhgqZodq/i1reMTgduPQXXnNob/Sme5SSACSdOsUY+QATBTJXva1HbICznOm MkmhDsFNfcimMRqZ3Vykj5BpFOaZjDHf+jCs1LbvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUuy2L6wOYDPVvOZfpIsswVnXoPvYwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzNhNThmMmNiLTkwNWMtNDZiZS04ZjY0LTA5YTAyMTQwZTczOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA0LiswDQYJKoZIhvcNAQELBQADggEBAEM2gD47GwTpRMuruKtl7qii3Plx vEzyL1/jxhSU4VCTJfM8rMvXktXGZBok8TVyZ4nQsuVBL4xPeH26hGHOmH1ZgruG DCQ83dqFhUe34p1qChFmVQ0yAsoDTAZs6QTxA9IxS+d3e+1n0hi62efMsByqxo0V Hy5PECKUcgTIx+SMVAqV7spRzzMIxrBpXBSNKuOzttg3FFQ+OOsmqgZg5ReUab+c lEhuD5ztD30quNcT5oUkqNjqdf2G78lh8klg/Al8xFDm9fISY7BKiMxoM3Lat44B tAtJAO4z+LjcgBlkXJwqU0u5/W45JNWDdBMjlB1oHCHSUxvcJvbSX5lsSK4= -----END CERTIFICATE-----Generated at Mon Oct 20 08:30:30 2025 by rpki-client