$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a0fb709a-d7f2-4b3c-ae39-69f865b09a8c.roa File: a0fb709a-d7f2-4b3c-ae39-69f865b09a8c.roa (raw, json) Hash identifier: yOhkp/rsfOAdYRv+1HNkJg6lHTq2czgJxWZfpVb+WYo= Subject key identifier: DF:D3:E1:24:2E:AF:B5:B1:A0:CD:A8:C2:FF:30:A7:48:D7:9B:AF:B1 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 0741DE3F79DE3143607DBD0EFA53491E56AA85C0 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a0fb709a-d7f2-4b3c-ae39-69f865b09a8c.roa Signing time: Mon 20 Oct 2025 10:03:54 +0000 ROA not before: Mon 20 Oct 2025 10:03:54 +0000 ROA not after: Mon 24 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.166.156.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:41:de:3f:79:de:31:43:60:7d:bd:0e:fa:53:49:1e:56:aa:85:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 20 10:03:54 2025 GMT Not After : Nov 24 23:59:59 2025 GMT Subject: serialNumber=ede8578f625a388fc914ce08ad6afdb0b7e3e72fec7c022d1069d5a102cddcb1, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:91:88:66:98:20:8a:7c:7e:7d:2c:01:71:a2: 60:e7:48:72:71:b7:f0:a2:a8:7d:55:ad:66:df:98: 60:a7:03:ee:5c:dd:3e:a7:ee:fd:6e:2a:2d:82:b0: 9d:9f:cb:0f:39:77:fa:b5:72:1b:dd:f6:44:37:cc: 5d:4a:3c:3f:b2:2f:0b:9d:5c:3e:45:cc:a7:e6:1b: 50:b0:0e:ee:5d:ec:95:57:c0:da:81:b0:e1:02:42: e7:1c:eb:5e:24:92:44:5a:38:54:cc:ad:99:53:31: 01:ac:b5:c8:f5:be:9a:d5:d6:ae:f7:95:47:1d:95: f1:f4:9c:ad:60:af:b6:19:0e:83:c7:6b:aa:de:fb: 08:7f:9a:16:73:80:ac:60:5f:86:c1:27:32:a1:08: 1f:81:71:2f:e9:fc:da:1e:29:4d:e6:8d:81:f0:cf: bb:6d:32:06:89:a5:f4:ec:c2:ce:51:d2:5c:71:ce: 2f:ec:54:28:fd:2b:ce:bc:df:18:c0:98:3f:8a:82: 18:f5:06:b7:9a:e7:a3:89:7d:bc:fb:8e:61:1f:2a: 8a:30:71:06:33:0c:e3:c8:d9:bd:bf:76:35:1e:d1: 51:63:f5:a8:3a:6c:aa:a3:ae:de:22:26:22:07:95: ab:94:77:d8:09:e3:a8:e5:a8:22:0c:e8:ca:c6:82: df:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:D3:E1:24:2E:AF:B5:B1:A0:CD:A8:C2:FF:30:A7:48:D7:9B:AF:B1 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a0fb709a-d7f2-4b3c-ae39-69f865b09a8c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.166.156.0/24 Signature Algorithm: sha256WithRSAEncryption ae:3e:1e:60:4b:5c:34:01:94:82:c9:a6:1b:fd:e4:77:0b:c3: f1:18:26:f2:a4:0c:68:15:9d:6a:82:a4:af:50:26:2b:30:ee: ef:61:cd:93:24:82:31:dd:90:b6:77:f1:d2:62:6f:c4:2b:17: cf:e6:3f:d5:96:05:a2:0b:50:f5:3c:a9:ce:ff:21:39:8c:d0: 6a:41:f2:44:4d:e0:05:d8:76:42:83:21:6e:d8:4e:5b:d9:b8: 74:25:9e:24:89:e1:00:28:a5:44:0e:66:97:ea:81:ee:c1:cd: f6:a9:6f:3a:df:05:3b:ea:0f:04:ea:eb:c4:c0:fb:ac:dc:95: f3:bd:fd:ed:28:b5:a8:c2:ba:7b:8b:b4:bf:d2:df:86:c9:8d: eb:f3:82:a4:05:92:69:6d:00:ce:1f:2d:03:3e:4f:8b:2f:44: c7:39:b3:57:fc:80:71:8d:d2:7d:7a:fb:ac:00:01:be:a9:f5: 2b:ba:d8:46:82:02:6f:25:0d:7a:36:c3:96:c3:fc:12:00:78: b6:0e:7c:90:20:a7:a3:b0:9b:bc:23:38:6e:63:bd:fd:70:56: ed:60:46:8b:fc:c1:34:94:2f:3e:b4:9e:97:5d:66:16:0d:a4: 68:e0:bb:15:69:c8:c2:d0:0d:b6:20:34:6c:fb:7b:71:67:fc: 17:28:24:4d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUB0HeP3neMUNgfb0O+lNJHlaqhcAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDIwMTAwMzU0WhcNMjUxMTI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BlZGU4NTc4ZjYyNWEzODhmYzkxNGNlMDhhZDZhZmRiMGI3 ZTNlNzJmZWM3YzAyMmQxMDY5ZDVhMTAyY2RkY2IxMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/kYhmmCCKfH59LAFxomDnSHJxt/CiqH1VrWbfmGCnA+5c 3T6n7v1uKi2CsJ2fyw85d/q1chvd9kQ3zF1KPD+yLwudXD5FzKfmG1CwDu5d7JVX wNqBsOECQucc614kkkRaOFTMrZlTMQGstcj1vprV1q73lUcdlfH0nK1gr7YZDoPH a6re+wh/mhZzgKxgX4bBJzKhCB+BcS/p/NoeKU3mjYHwz7ttMgaJpfTsws5R0lxx zi/sVCj9K8683xjAmD+Kghj1Brea56OJfbz7jmEfKoowcQYzDOPI2b2/djUe0VFj 9ag6bKqjrt4iJiIHlauUd9gJ46jlqCIM6MrGgt+HAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU39PhJC6vtbGgzajC/zCnSNebr7EwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2EwZmI3MDlhLWQ3ZjItNGIzYy1hZTM5LTY5Zjg2NWIwOWE4Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAADppwwDQYJKoZIhvcNAQELBQADggEBAK4+HmBLXDQBlILJphv95HcLw/EY JvKkDGgVnWqCpK9QJisw7u9hzZMkgjHdkLZ38dJib8QrF8/mP9WWBaILUPU8qc7/ ITmM0GpB8kRN4AXYdkKDIW7YTlvZuHQlniSJ4QAopUQOZpfqge7BzfapbzrfBTvq DwTq68TA+6zclfO9/e0otajCunuLtL/S34bJjevzgqQFkmltAM4fLQM+T4svRMc5 s1f8gHGN0n16+6wAAb6p9Su62EaCAm8lDXo2w5bD/BIAeLYOfJAgp6Owm7wjOG5j vf1wVu1gRov8wTSULz60npddZhYNpGjguxVpyMLQDbYgNGz7e3Fn/BcoJE0= -----END CERTIFICATE-----Generated at Mon Oct 20 12:21:48 2025 by rpki-client