$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a4c69bbb-becc-456c-a767-31be9c38f55f.roa File: a4c69bbb-becc-456c-a767-31be9c38f55f.roa (raw, json) Hash identifier: DcZ/CVdc3iMflmdWVza2ExUZgfvDYD9l5rYiAlkTwfc= Subject key identifier: 9C:6E:53:DB:AE:2E:5B:7D:82:6C:0B:4A:70:82:28:E9:B6:E0:7E:15 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 76C7019364A5F2A2AC3C31AC20251E7DE02DB85F Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a4c69bbb-becc-456c-a767-31be9c38f55f.roa Signing time: Mon 20 Oct 2025 06:42:46 +0000 ROA not before: Mon 20 Oct 2025 06:42:46 +0000 ROA not after: Mon 24 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.171.144.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:c7:01:93:64:a5:f2:a2:ac:3c:31:ac:20:25:1e:7d:e0:2d:b8:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 20 06:42:46 2025 GMT Not After : Nov 24 23:59:59 2025 GMT Subject: serialNumber=dac3e8e4e267fd439eb144016ecec757f734ec1a1b2f79942f66bd3593d4f3bb, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:63:ce:53:35:90:da:25:b5:d6:8d:7f:6c:4a: 3c:c6:8d:bc:93:8f:65:be:5b:b0:e4:b5:7d:cf:0f: 4f:0f:a9:ed:aa:f5:a3:aa:7e:a3:d3:98:31:d9:dc: 49:01:dd:b9:80:3e:4e:74:f5:e6:85:cf:6c:f8:e8: bc:72:b6:0c:b0:c4:46:84:8c:98:ea:f9:ad:2d:72: aa:1b:14:61:65:4c:91:f9:76:6f:f0:90:a3:6e:1b: 5f:85:7c:e1:e9:0f:10:05:47:bb:5a:20:93:85:2c: f0:aa:f5:1e:fc:87:5d:9d:11:b8:7e:1a:a6:f8:df: 48:0e:1d:04:63:84:b6:86:c1:ac:87:cc:85:84:cf: 28:71:64:ac:6d:00:3a:7d:45:4e:75:3d:a2:0c:b5: 6b:b4:3a:8a:41:80:6a:cb:c7:8e:99:5e:67:87:ed: fa:21:38:91:9f:a7:4b:49:e6:bb:d7:c0:b6:40:ad: 85:44:b6:63:6c:17:d7:05:85:91:d6:c8:72:85:c9: 28:9b:fc:8b:62:ca:0c:84:c9:d4:58:f9:1f:74:d8: 2d:de:d4:6b:45:94:d0:45:d6:1e:08:5d:ee:19:d9: ae:09:ee:41:a3:93:b9:54:5d:fc:70:33:f8:8d:26: 86:d2:86:0b:15:c3:21:08:3c:25:61:aa:c1:45:d2: 0c:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:6E:53:DB:AE:2E:5B:7D:82:6C:0B:4A:70:82:28:E9:B6:E0:7E:15 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a4c69bbb-becc-456c-a767-31be9c38f55f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.171.144.0/23 Signature Algorithm: sha256WithRSAEncryption 43:cd:65:c1:3f:f4:f1:56:6b:dc:2c:09:e5:9c:47:66:25:59: b7:ac:32:a2:9e:d4:27:b7:29:b2:bf:ae:23:02:5e:8a:c5:de: df:69:ce:d9:fb:68:ea:a4:72:6b:cf:6f:af:80:e9:1d:df:5a: 87:7a:1c:f9:8d:87:5e:57:e1:61:e3:f1:d0:37:77:5b:44:d4: 9d:b5:56:d3:96:30:bb:d7:e8:79:17:1f:af:84:52:00:3c:3b: 99:e9:5a:a6:db:df:e1:e0:66:ca:50:ab:c2:8f:69:91:57:b6: 50:a1:7b:bc:74:67:f2:e0:d6:16:2c:da:8e:e0:26:9b:57:5e: c6:57:f9:12:7d:81:6c:ec:52:d0:fc:6d:56:b8:54:66:44:31: 37:a6:5f:b9:e7:30:4c:44:25:2e:ea:57:57:42:d4:d4:41:7a: ae:4f:67:b2:0d:4f:66:d6:b8:b8:34:a1:63:c8:63:2c:37:dd: 82:45:cd:de:c1:e2:0b:02:48:d2:9f:c4:f2:18:91:18:33:0b: 1d:84:e8:81:3a:b3:8f:8d:ff:6a:13:fd:d4:4f:04:be:9b:9f: 09:c4:0d:d5:d8:9b:e9:72:1f:f6:ee:de:6e:ac:05:ea:66:cd: 5a:2d:75:46:dd:41:a2:b6:2d:eb:d3:58:e9:30:c1:41:f6:ca: 5b:3f:29:cc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdscBk2Sl8qKsPDGsICUefeAtuF8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDIwMDY0MjQ2WhcNMjUxMTI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BkYWMzZThlNGUyNjdmZDQzOWViMTQ0MDE2ZWNlYzc1N2Y3 MzRlYzFhMWIyZjc5OTQyZjY2YmQzNTkzZDRmM2JiMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCcY85TNZDaJbXWjX9sSjzGjbyTj2W+W7DktX3PD08Pqe2q 9aOqfqPTmDHZ3EkB3bmAPk509eaFz2z46LxytgywxEaEjJjq+a0tcqobFGFlTJH5 dm/wkKNuG1+FfOHpDxAFR7taIJOFLPCq9R78h12dEbh+Gqb430gOHQRjhLaGwayH zIWEzyhxZKxtADp9RU51PaIMtWu0OopBgGrLx46ZXmeH7fohOJGfp0tJ5rvXwLZA rYVEtmNsF9cFhZHWyHKFySib/ItiygyEydRY+R902C3e1GtFlNBF1h4IXe4Z2a4J 7kGjk7lUXfxwM/iNJobShgsVwyEIPCVhqsFF0gwTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUnG5T264uW32CbAtKcIIo6bbgfhUwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2E0YzY5YmJiLWJlY2MtNDU2Yy1hNzY3LTMxYmU5YzM4ZjU1Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEDq5AwDQYJKoZIhvcNAQELBQADggEBAEPNZcE/9PFWa9wsCeWcR2YlWbes MqKe1Ce3KbK/riMCXorF3t9pztn7aOqkcmvPb6+A6R3fWod6HPmNh15X4WHj8dA3 d1tE1J21VtOWMLvX6HkXH6+EUgA8O5npWqbb3+HgZspQq8KPaZFXtlChe7x0Z/Lg 1hYs2o7gJptXXsZX+RJ9gWzsUtD8bVa4VGZEMTemX7nnMExEJS7qV1dC1NRBeq5P Z7INT2bWuLg0oWPIYyw33YJFzd7B4gsCSNKfxPIYkRgzCx2E6IE6s4+N/2oT/dRP BL6bnwnEDdXYm+lyH/bu3m6sBepmzVotdUbdQaK2LevTWOkwwUH2yls/Kcw= -----END CERTIFICATE-----Generated at Mon Oct 20 09:48:59 2025 by rpki-client