$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a7cdc94f-882e-4ed7-ad3e-1a7d6f7e5700.roa File: a7cdc94f-882e-4ed7-ad3e-1a7d6f7e5700.roa (raw, json) Hash identifier: 4mEDHFYo4imLPPRodzNVUp55vVk63xGlNwCAg1U6Qw8= Subject key identifier: 14:59:BD:64:79:D2:17:3C:60:35:8F:E4:C6:98:7C:94:B3:E7:7C:79 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 0968ABBD610636B8F03A95B3D5A173D75B3984F3 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a7cdc94f-882e-4ed7-ad3e-1a7d6f7e5700.roa Signing time: Mon 20 Oct 2025 07:30:16 +0000 ROA not before: Mon 20 Oct 2025 07:30:16 +0000 ROA not after: Mon 24 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.160.122.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:68:ab:bd:61:06:36:b8:f0:3a:95:b3:d5:a1:73:d7:5b:39:84:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 20 07:30:16 2025 GMT Not After : Nov 24 23:59:59 2025 GMT Subject: serialNumber=407e0311bdc2ae029cbb67e64300f01443ee31a757daef8cc25ce909d579bfe5, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:c9:45:c8:d4:a5:ed:c3:15:f1:37:8c:ad:3f: 1f:af:eb:55:87:ff:2c:7e:31:0f:cb:3e:2c:7b:8b: c0:60:f6:ae:4b:e7:03:f1:78:0b:49:14:14:64:b2: 33:d6:28:9f:27:6f:11:8f:1b:e7:c2:41:bd:50:fc: d0:e5:56:1c:d0:13:1d:b5:dc:d8:a1:45:dc:36:4e: 46:09:b7:11:c5:2d:5b:a7:f3:5b:1a:ec:89:b6:a7: 18:e2:22:17:fd:e1:83:7c:6a:98:65:14:33:d9:39: a4:b8:4e:f3:b5:1d:e5:c3:7c:79:ae:f4:f2:4c:d9: 09:bb:1c:87:c4:43:f6:55:2a:51:12:53:87:2f:b7: 5b:17:a6:65:f8:a7:56:a2:04:cf:53:be:df:bb:2a: 8a:4a:c3:56:43:12:8e:84:08:b4:81:72:6a:0b:19: b7:98:67:e8:02:66:8e:96:56:b7:0c:ff:18:c7:c6: 44:c4:48:3a:69:ca:05:8b:34:f5:a8:7b:ed:3b:d8: aa:5c:a6:95:b1:cd:3e:c3:98:74:68:b7:56:f2:62: 9c:69:bc:2e:42:5a:38:46:1d:11:dc:e7:ba:ac:2e: ed:70:3d:df:a2:ba:73:cb:bd:4b:80:0c:32:86:3c: ab:fd:20:14:53:52:f4:b1:04:7b:91:e6:c5:5d:86: 6a:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:59:BD:64:79:D2:17:3C:60:35:8F:E4:C6:98:7C:94:B3:E7:7C:79 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a7cdc94f-882e-4ed7-ad3e-1a7d6f7e5700.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.160.122.0/24 Signature Algorithm: sha256WithRSAEncryption b0:df:0b:c5:56:70:ea:50:83:90:59:48:a4:2d:3a:7c:30:9c: 89:9e:c6:3c:45:f0:d1:b6:27:e2:14:df:78:f5:52:fb:be:a1: ad:a0:a3:ab:d6:2d:d0:14:a2:ae:28:7f:b4:f9:37:d5:60:f2: 67:21:d3:b4:8e:56:15:3b:cf:ab:6f:f5:60:8c:b7:f3:dd:aa: 16:dc:ba:72:df:9c:6d:ff:0d:19:9c:21:3e:91:db:85:35:cd: 8b:1f:01:eb:33:59:d4:aa:cd:44:75:19:1a:47:ce:73:06:4b: 05:28:5b:bc:50:d2:2e:b1:e6:30:e5:9d:a7:73:b8:b8:5b:ab: 66:d5:01:dd:be:4d:9c:1f:9a:47:9f:8b:e4:c6:b3:f3:97:f0: ba:ed:eb:fd:e8:de:59:ec:9f:1d:3b:42:f6:c5:2c:43:58:79: 36:89:26:73:b8:6f:66:6d:b3:aa:19:85:42:dd:82:b0:f5:85: 7f:8f:43:94:24:3b:b7:0f:05:50:91:d6:41:5f:18:5f:c7:b8: 23:b0:96:0f:64:48:ac:91:1e:c2:14:bf:a0:59:1d:b7:f9:e9: 49:cf:a9:78:1c:49:3c:0f:f5:8a:ec:db:a2:37:5a:cd:e0:16: c2:a5:a1:bf:eb:05:74:2c:2c:84:94:90:2e:ab:b3:36:bf:f2: 81:4a:21:08 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCWirvWEGNrjwOpWz1aFz11s5hPMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDIwMDczMDE2WhcNMjUxMTI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MDdlMDMxMWJkYzJhZTAyOWNiYjY3ZTY0MzAwZjAxNDQz ZWUzMWE3NTdkYWVmOGNjMjVjZTkwOWQ1NzliZmU1MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDNyUXI1KXtwxXxN4ytPx+v61WH/yx+MQ/LPix7i8Bg9q5L 5wPxeAtJFBRksjPWKJ8nbxGPG+fCQb1Q/NDlVhzQEx213NihRdw2TkYJtxHFLVun 81sa7Im2pxjiIhf94YN8aphlFDPZOaS4TvO1HeXDfHmu9PJM2Qm7HIfEQ/ZVKlES U4cvt1sXpmX4p1aiBM9Tvt+7KopKw1ZDEo6ECLSBcmoLGbeYZ+gCZo6WVrcM/xjH xkTESDppygWLNPWoe+072KpcppWxzT7DmHRot1byYpxpvC5CWjhGHRHc57qsLu1w Pd+iunPLvUuADDKGPKv9IBRTUvSxBHuR5sVdhmrpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUFFm9ZHnSFzxgNY/kxph8lLPnfHkwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2E3Y2RjOTRmLTg4MmUtNGVkNy1hZDNlLTFhN2Q2ZjdlNTcwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAADoHowDQYJKoZIhvcNAQELBQADggEBALDfC8VWcOpQg5BZSKQtOnwwnIme xjxF8NG2J+IU33j1Uvu+oa2go6vWLdAUoq4of7T5N9Vg8mch07SOVhU7z6tv9WCM t/PdqhbcunLfnG3/DRmcIT6R24U1zYsfAeszWdSqzUR1GRpHznMGSwUoW7xQ0i6x 5jDlnadzuLhbq2bVAd2+TZwfmkefi+TGs/OX8Lrt6/3o3lnsnx07QvbFLENYeTaJ JnO4b2Zts6oZhULdgrD1hX+PQ5QkO7cPBVCR1kFfGF/HuCOwlg9kSKyRHsIUv6BZ Hbf56UnPqXgcSTwP9Yrs26I3Ws3gFsKlob/rBXQsLISUkC6rsza/8oFKIQg= -----END CERTIFICATE-----Generated at Mon Oct 20 12:20:56 2025 by rpki-client