$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c11fec40-4509-4945-b9bf-581ad4d67c54.roa File: c11fec40-4509-4945-b9bf-581ad4d67c54.roa (raw, json) Hash identifier: 1DtY4G40YFDsQw4Sx/FMNao1W7NSGxnGQU/+/Wt5dUA= Subject key identifier: 8D:F3:BA:70:02:32:9E:D6:4E:B7:98:08:B7:BA:D0:E3:CF:E0:53:2F Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 3F30342C4AC0450633EB21A1FD4B6304022D5212 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c11fec40-4509-4945-b9bf-581ad4d67c54.roa Signing time: Thu 25 Sep 2025 21:44:38 +0000 ROA not before: Thu 25 Sep 2025 21:44:38 +0000 ROA not after: Thu 30 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.162.162.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:30:34:2c:4a:c0:45:06:33:eb:21:a1:fd:4b:63:04:02:2d:52:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 25 21:44:38 2025 GMT Not After : Oct 30 23:59:59 2025 GMT Subject: serialNumber=4955f09bb514e3eca05963620997bdc24b2568b1cd9d87839307f25e81d38816, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:fd:3e:c8:ad:f5:f2:d2:ef:bc:a4:f1:61:fe: 77:40:c8:a2:be:d6:1f:0b:18:ae:1e:22:17:4c:e1: 91:f1:85:0c:75:f7:2e:dd:de:e6:fc:2b:92:fc:65: 3b:19:04:5f:b0:0c:8e:15:05:0d:df:d9:13:66:91: 01:9e:74:54:76:4b:81:36:cc:c3:6e:b6:fe:0b:e5: 41:0f:6a:bb:1b:66:37:d1:82:d7:d5:f8:55:d1:18: 03:41:3e:91:a3:1c:76:02:be:cd:19:bf:eb:69:66: df:18:52:ae:3c:fe:00:83:99:70:10:69:c1:52:c4: 09:e3:cf:68:b7:5d:c6:9a:59:e4:6a:18:5b:15:44: 55:4d:10:54:0b:ea:64:5a:46:a7:be:b0:14:a2:7b: 36:ed:50:22:51:45:f8:5b:54:9d:9d:de:a7:ca:73: 90:6b:ab:ac:8c:7a:cd:1f:d1:9d:cd:10:e0:dc:5a: 4f:87:9a:1a:9c:c3:d6:02:25:20:80:b5:7e:9d:b3: 39:9e:3c:ae:5d:dc:34:47:0d:db:ea:40:aa:f4:9d: c5:7d:ba:88:77:d0:04:4e:42:d3:ec:1c:cb:e9:7d: c6:bb:ab:c8:4a:ec:05:34:84:b0:d6:0a:d0:8e:25: b5:0e:e9:6e:e7:dd:fa:60:dc:a2:4f:2f:28:88:06: 0d:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:F3:BA:70:02:32:9E:D6:4E:B7:98:08:B7:BA:D0:E3:CF:E0:53:2F X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c11fec40-4509-4945-b9bf-581ad4d67c54.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.162.162.0/23 Signature Algorithm: sha256WithRSAEncryption 3d:31:49:37:43:06:8b:4d:54:17:50:6e:2e:dc:7f:52:de:93: c9:6f:76:cf:0e:71:cd:48:3c:3c:ec:a1:f8:22:6d:4f:19:46: 6a:0e:af:c3:55:36:c7:44:db:81:a7:7b:25:c8:52:db:02:dc: 1a:06:04:6c:e0:15:1a:63:fa:4a:e5:fd:b0:ad:1f:c4:c1:23: bd:50:6d:e1:28:be:5c:1b:46:40:b4:c1:6b:1e:27:90:6c:99: 5a:d7:dd:01:b4:40:ff:14:78:12:9b:12:3f:d1:88:fc:67:1e: d6:40:cd:a1:07:b0:8e:49:e9:1b:25:47:5c:d1:e9:1b:6f:03: 07:ec:57:4b:e0:dc:06:f3:be:64:36:76:69:0c:06:23:05:40: e1:9d:e5:e9:bf:f7:55:06:89:3f:dc:25:ab:ca:86:39:46:3d: f5:d8:a8:31:8c:a3:0c:8a:bd:8b:03:40:33:99:90:94:f1:91: a3:39:ce:1c:e9:35:fc:19:82:34:26:5f:e0:86:e8:f5:95:37: ae:e9:4b:73:18:76:01:2b:43:d8:c1:20:e7:6d:dd:41:94:d4: 98:a8:b4:d5:ce:45:a4:fa:5a:6d:27:04:a3:73:c9:8a:8e:67: 1a:dc:9d:b8:ac:6f:47:c0:93:b5:4f:b8:a0:b3:1f:e0:bd:a6: 0e:04:9d:af -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPzA0LErARQYz6yGh/UtjBAItUhIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTI1MjE0NDM4WhcNMjUxMDMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A0OTU1ZjA5YmI1MTRlM2VjYTA1OTYzNjIwOTk3YmRjMjRi MjU2OGIxY2Q5ZDg3ODM5MzA3ZjI1ZTgxZDM4ODE2MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDM/T7IrfXy0u+8pPFh/ndAyKK+1h8LGK4eIhdM4ZHxhQx1 9y7d3ub8K5L8ZTsZBF+wDI4VBQ3f2RNmkQGedFR2S4E2zMNutv4L5UEParsbZjfR gtfV+FXRGANBPpGjHHYCvs0Zv+tpZt8YUq48/gCDmXAQacFSxAnjz2i3XcaaWeRq GFsVRFVNEFQL6mRaRqe+sBSiezbtUCJRRfhbVJ2d3qfKc5Brq6yMes0f0Z3NEODc Wk+Hmhqcw9YCJSCAtX6dszmePK5d3DRHDdvqQKr0ncV9uoh30AROQtPsHMvpfca7 q8hK7AU0hLDWCtCOJbUO6W7n3fpg3KJPLyiIBg0BAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUjfO6cAIyntZOt5gIt7rQ48/gUy8wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2MxMWZlYzQwLTQ1MDktNDk0NS1iOWJmLTU4MWFkNGQ2N2M1NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEDoqIwDQYJKoZIhvcNAQELBQADggEBAD0xSTdDBotNVBdQbi7cf1Lek8lv ds8Occ1IPDzsofgibU8ZRmoOr8NVNsdE24GneyXIUtsC3BoGBGzgFRpj+krl/bCt H8TBI71QbeEovlwbRkC0wWseJ5BsmVrX3QG0QP8UeBKbEj/RiPxnHtZAzaEHsI5J 6RslR1zR6RtvAwfsV0vg3AbzvmQ2dmkMBiMFQOGd5em/91UGiT/cJavKhjlGPfXY qDGMowyKvYsDQDOZkJTxkaM5zhzpNfwZgjQmX+CG6PWVN67pS3MYdgErQ9jBIOdt 3UGU1JiotNXORaT6Wm0nBKNzyYqOZxrcnbisb0fAk7VPuKCzH+C9pg4Ena8= -----END CERTIFICATE-----Generated at Mon Oct 20 03:07:37 2025 by rpki-client