$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b5bfca5c-9e06-4b37-8301-a4547f54478e.roa File: b5bfca5c-9e06-4b37-8301-a4547f54478e.roa (raw, json) Hash identifier: rGzSny3PyO1aJRQ35APCSRk3J7al0NDf2pS2ACoqAp4= Subject key identifier: 22:BF:2E:85:D0:86:38:4C:41:A9:E5:EC:71:D5:96:85:4A:F0:EC:C1 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 7D003F14F3FA9BB458C12AD898B74CC3243FA188 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b5bfca5c-9e06-4b37-8301-a4547f54478e.roa Signing time: Thu 25 Sep 2025 21:39:15 +0000 ROA not before: Thu 25 Sep 2025 21:39:15 +0000 ROA not after: Thu 30 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.161.228.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:00:3f:14:f3:fa:9b:b4:58:c1:2a:d8:98:b7:4c:c3:24:3f:a1:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 25 21:39:15 2025 GMT Not After : Oct 30 23:59:59 2025 GMT Subject: serialNumber=af9eeebaf5df404f43a31a65ba46df6068d4257f3c44b6ae687843635f554f4d, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:3f:cc:53:8d:d9:19:2e:28:2b:75:82:cc:06: 67:5f:38:9b:91:39:64:fc:d0:1b:24:2b:b1:06:36: 79:36:a8:77:dc:fb:50:07:db:9c:4e:8c:b0:b7:36: 17:bc:ae:1e:a8:23:36:4a:db:2c:51:9b:6e:76:53: 52:bf:db:ba:d6:d1:ea:86:61:58:19:27:e5:cd:2e: d2:1d:15:f1:b2:85:52:65:c5:d3:61:cd:0b:0b:fd: 59:b9:b3:7a:e1:72:08:08:b4:12:e0:07:a8:43:31: 4d:27:ea:55:78:cf:51:6c:7f:48:db:d3:1a:5c:1a: df:e0:18:12:a0:4c:b6:8a:2c:b7:72:47:a1:22:66: b9:31:3e:43:79:8b:e2:fe:9e:de:05:a4:7a:1f:27: d7:7c:82:13:2b:2b:4b:79:22:e0:05:bc:0d:2c:d0: 52:a5:b7:08:68:91:ec:a8:9b:d7:50:b0:fe:5b:9b: 91:d7:4d:87:68:0b:bc:26:96:dc:2c:d5:6d:1c:dc: 5b:36:7c:3c:87:8b:93:b1:e7:5a:44:07:14:82:03: fd:e1:30:85:5b:8a:0c:2c:5e:c7:24:7f:bd:a4:68: cc:0d:82:d8:38:f1:c9:22:a8:00:83:c6:48:8b:0a: 02:f3:2b:57:b9:70:9f:3d:a6:80:f5:af:66:ef:6c: a5:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:BF:2E:85:D0:86:38:4C:41:A9:E5:EC:71:D5:96:85:4A:F0:EC:C1 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b5bfca5c-9e06-4b37-8301-a4547f54478e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.161.228.0/23 Signature Algorithm: sha256WithRSAEncryption 70:ec:76:bc:b4:ad:91:ab:36:5e:77:aa:3d:d0:6a:f6:b5:fd: d4:97:f1:09:57:40:9e:95:a2:24:0e:24:4c:06:b0:a9:6d:8c: 37:48:0a:c2:f7:95:ea:c5:cd:22:3b:6d:2c:8b:d0:a6:32:70: a5:5a:9b:1c:a8:cc:f5:be:52:73:48:e6:65:ee:54:9d:0c:25: ea:fb:ca:54:df:a3:e0:c2:08:89:17:50:a7:dd:fc:c8:49:21: 2e:9a:f2:e2:6b:f6:74:c7:2f:00:32:7e:d3:fa:2d:2f:93:d8: ea:1b:f9:b0:ff:74:d7:79:6a:5b:d5:9a:43:9e:f4:df:bd:3e: 2b:a0:89:8c:cd:2f:c0:94:06:34:9d:96:37:d2:39:8d:fe:44: 11:7e:ae:a3:ae:44:55:27:36:b6:65:cc:68:63:2f:81:c6:85: 43:f9:7a:56:fa:63:28:22:44:2b:4c:2c:8e:84:0d:88:03:b4: 1c:75:9f:07:f5:93:74:0c:e4:2d:35:7e:7d:0f:c0:86:2c:3f: 89:65:12:db:82:21:c7:e9:27:eb:57:00:24:bd:e7:83:9e:74: d8:36:b7:9c:76:42:da:94:27:e5:2d:24:fd:76:6a:dc:6f:0b: 5d:a4:38:1f:25:24:5d:5e:91:f1:b8:54:46:1c:70:55:1a:ab: d3:e6:06:53 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfQA/FPP6m7RYwSrYmLdMwyQ/oYgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTI1MjEzOTE1WhcNMjUxMDMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhZjllZWViYWY1ZGY0MDRmNDNhMzFhNjViYTQ2ZGY2MDY4 ZDQyNTdmM2M0NGI2YWU2ODc4NDM2MzVmNTU0ZjRkMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDhP8xTjdkZLigrdYLMBmdfOJuROWT80BskK7EGNnk2qHfc +1AH25xOjLC3Nhe8rh6oIzZK2yxRm252U1K/27rW0eqGYVgZJ+XNLtIdFfGyhVJl xdNhzQsL/Vm5s3rhcggItBLgB6hDMU0n6lV4z1Fsf0jb0xpcGt/gGBKgTLaKLLdy R6EiZrkxPkN5i+L+nt4FpHofJ9d8ghMrK0t5IuAFvA0s0FKltwhokeyom9dQsP5b m5HXTYdoC7wmltws1W0c3Fs2fDyHi5Ox51pEBxSCA/3hMIVbigwsXsckf72kaMwN gtg48ckiqACDxkiLCgLzK1e5cJ89poD1r2bvbKVLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUIr8uhdCGOExBqeXscdWWhUrw7MEwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2I1YmZjYTVjLTllMDYtNGIzNy04MzAxLWE0NTQ3ZjU0NDc4ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEDoeQwDQYJKoZIhvcNAQELBQADggEBAHDsdry0rZGrNl53qj3Qava1/dSX 8QlXQJ6VoiQOJEwGsKltjDdICsL3lerFzSI7bSyL0KYycKVamxyozPW+UnNI5mXu VJ0MJer7ylTfo+DCCIkXUKfd/MhJIS6a8uJr9nTHLwAyftP6LS+T2Oob+bD/dNd5 alvVmkOe9N+9PiugiYzNL8CUBjSdljfSOY3+RBF+rqOuRFUnNrZlzGhjL4HGhUP5 elb6YygiRCtMLI6EDYgDtBx1nwf1k3QM5C01fn0PwIYsP4llEtuCIcfpJ+tXACS9 54OedNg2t5x2QtqUJ+UtJP12atxvC12kOB8lJF1ekfG4VEYccFUaq9PmBlM= -----END CERTIFICATE-----Generated at Mon Oct 20 02:56:01 2025 by rpki-client