$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/af8ca72c-d67e-495c-b6b0-7dbef8285562.roa File: af8ca72c-d67e-495c-b6b0-7dbef8285562.roa (raw, json) Hash identifier: Q95eTP8yaHtky8nlhVE0WlQ3Te359RM9fcIGCF/n7sE= Subject key identifier: EB:C4:BE:EE:B4:5D:63:19:A7:15:B2:31:C4:B0:1D:6B:7E:1E:84:70 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 7297F0D1D20D4D626FC9F88324CB3EF87C44E526 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/af8ca72c-d67e-495c-b6b0-7dbef8285562.roa Signing time: Mon 20 Oct 2025 07:21:30 +0000 ROA not before: Mon 20 Oct 2025 07:21:30 +0000 ROA not after: Mon 24 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.166.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:97:f0:d1:d2:0d:4d:62:6f:c9:f8:83:24:cb:3e:f8:7c:44:e5:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 20 07:21:30 2025 GMT Not After : Nov 24 23:59:59 2025 GMT Subject: serialNumber=3fe512594dae20b9332ab416f961f0478d13963c8fa010244081f4016df2aa86, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:e0:2b:0f:ce:0e:76:42:bb:56:a0:51:1c:97: a8:79:7c:d8:5a:e5:45:b0:bf:17:8b:36:21:6b:83: f5:18:66:9c:a0:ef:6c:bb:38:03:4d:b4:4c:2c:76: 0e:8c:14:61:0e:21:84:1e:c5:2b:ab:37:07:c4:a7: ae:4f:54:43:66:63:70:26:3c:a6:74:de:c6:ac:20: c6:83:e5:db:02:b7:50:43:21:1c:4e:08:84:98:eb: 8d:93:7f:a1:67:ba:66:22:8a:b1:fb:75:56:98:00: 20:54:16:ad:40:01:66:b2:01:31:a4:48:a1:dc:fb: e7:08:06:e2:1f:d1:26:b4:3c:eb:34:54:67:ec:23: bc:ac:88:c7:fc:88:fd:3a:85:9e:ab:60:a5:67:fb: f7:45:f9:dc:10:89:41:ef:7b:b1:16:70:43:51:ff: 2a:3f:fe:8f:0f:39:ce:1c:3d:58:d5:e3:58:cd:83: 41:1b:e3:d8:27:4d:94:96:7a:ca:7b:ea:a6:7d:e5: 59:82:42:ea:b5:70:37:30:4f:7f:53:9a:78:ab:08: 09:4c:d2:46:ba:73:cf:ac:f9:11:41:eb:78:22:7b: 55:b8:b2:c2:7e:08:05:2d:f8:3c:a5:53:bb:9d:68: 8a:75:bc:a4:45:57:a6:cf:9c:d9:65:f1:75:e2:67: d5:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:C4:BE:EE:B4:5D:63:19:A7:15:B2:31:C4:B0:1D:6B:7E:1E:84:70 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/af8ca72c-d67e-495c-b6b0-7dbef8285562.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.166.228.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:68:66:2f:75:b7:5a:57:f5:02:29:e8:f9:7d:50:09:24:86: 46:52:63:a9:d5:f1:f8:a3:6b:ac:88:47:69:12:04:29:4d:65: 4f:37:32:2c:e2:85:1e:62:3f:02:c0:5a:dd:eb:52:d1:e4:ba: 12:9c:44:90:27:2e:db:29:cb:ee:c9:aa:6a:c2:1a:b7:e2:b1: bf:81:72:0a:bb:51:4f:bb:76:0f:2d:db:8d:56:7f:f9:b7:0c: b2:c2:72:b1:16:9d:24:d4:71:c4:25:19:89:3d:32:df:73:42: 93:8b:9d:36:45:c0:f0:2b:f6:73:d8:fc:14:18:ba:4a:3d:25: 25:2c:52:83:42:04:fd:39:cf:a0:07:b7:ee:04:70:bb:6b:51: 43:a0:a7:95:69:3b:51:07:ad:ac:ed:6b:cc:21:e4:3e:c3:68: ba:2b:2b:51:3c:23:8a:ab:dd:8b:f0:4c:00:c9:06:04:58:df: 93:23:72:61:e2:d8:b7:fa:28:87:ce:9d:39:4d:be:59:5b:38: 02:23:a0:b5:e1:f2:cf:0b:7f:5b:8d:70:29:0b:2d:dd:c0:33: 2e:9f:14:85:f3:6e:37:6a:da:c9:77:07:0f:ed:bd:8e:63:8d: 19:d7:7c:c8:fc:7d:99:af:8a:ee:b1:c3:ce:77:94:48:40:0d: f1:78:34:4a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcpfw0dINTWJvyfiDJMs++HxE5SYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDIwMDcyMTMwWhcNMjUxMTI0MjM1OTU5 WjB6MUkwRwYDVQQFE0AzZmU1MTI1OTRkYWUyMGI5MzMyYWI0MTZmOTYxZjA0Nzhk MTM5NjNjOGZhMDEwMjQ0MDgxZjQwMTZkZjJhYTg2MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/4CsPzg52QrtWoFEcl6h5fNha5UWwvxeLNiFrg/UYZpyg 72y7OANNtEwsdg6MFGEOIYQexSurNwfEp65PVENmY3AmPKZ03sasIMaD5dsCt1BD IRxOCISY642Tf6FnumYiirH7dVaYACBUFq1AAWayATGkSKHc++cIBuIf0Sa0POs0 VGfsI7ysiMf8iP06hZ6rYKVn+/dF+dwQiUHve7EWcENR/yo//o8POc4cPVjV41jN g0Eb49gnTZSWesp76qZ95VmCQuq1cDcwT39TmnirCAlM0ka6c8+s+RFB63gie1W4 ssJ+CAUt+DylU7udaIp1vKRFV6bPnNll8XXiZ9VzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU68S+7rRdYxmnFbIxxLAda34ehHAwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2FmOGNhNzJjLWQ2N2UtNDk1Yy1iNmIwLTdkYmVmODI4NTU2Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAADpuQwDQYJKoZIhvcNAQELBQADggEBAC1oZi91t1pX9QIp6Pl9UAkkhkZS Y6nV8fija6yIR2kSBClNZU83MizihR5iPwLAWt3rUtHkuhKcRJAnLtspy+7JqmrC Grfisb+Bcgq7UU+7dg8t241Wf/m3DLLCcrEWnSTUccQlGYk9Mt9zQpOLnTZFwPAr 9nPY/BQYuko9JSUsUoNCBP05z6AHt+4EcLtrUUOgp5VpO1EHrazta8wh5D7DaLor K1E8I4qr3YvwTADJBgRY35MjcmHi2Lf6KIfOnTlNvllbOAIjoLXh8s8Lf1uNcCkL Ld3AMy6fFIXzbjdq2sl3Bw/tvY5jjRnXfMj8fZmviu6xw853lEhADfF4NEo= -----END CERTIFICATE-----Generated at Mon Oct 20 12:21:00 2025 by rpki-client