$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c18648e0-13bc-44d9-9590-7470b8934b71.roa File: c18648e0-13bc-44d9-9590-7470b8934b71.roa (raw, json) Hash identifier: 8DMvMjO4AjtPfL9XseoCYIsIJvA7YYuAolKARVKeyqM= Subject key identifier: FD:AD:98:44:50:B5:BC:AE:53:24:D2:27:0A:7B:F6:48:2B:2E:14:8C Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 465E15438B25CF34BE09AC9E4BDA3540AD2A314C Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c18648e0-13bc-44d9-9590-7470b8934b71.roa Signing time: Thu 25 Sep 2025 23:36:49 +0000 ROA not before: Thu 25 Sep 2025 23:36:49 +0000 ROA not after: Thu 30 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.174.172.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:5e:15:43:8b:25:cf:34:be:09:ac:9e:4b:da:35:40:ad:2a:31:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 25 23:36:49 2025 GMT Not After : Oct 30 23:59:59 2025 GMT Subject: serialNumber=b94c3776aadc0833c20bdddf98915137ba92b78e9a08d01209b4d7214e1c4748, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:43:38:df:bf:02:12:5c:a4:29:f4:16:26:dc: 56:1b:df:da:79:3e:26:f7:45:71:22:81:49:85:20: cf:42:ce:54:1f:60:26:e9:51:93:75:2a:91:ad:c9: d2:05:40:aa:71:3a:fb:fd:a2:11:3c:c2:73:63:73: f2:60:51:97:da:58:1a:9b:56:ed:54:16:ce:a2:68: 9e:be:92:16:75:7d:3c:88:b5:af:63:6c:57:4b:be: 10:7b:2e:05:3c:b5:75:f4:a0:a3:4b:ed:30:91:f2: e6:6f:a5:e9:b4:2f:70:e4:41:af:74:e8:36:e9:1e: fc:67:65:0c:31:e4:1c:09:96:f5:8a:a4:e8:5c:a4: 0d:cb:ed:38:85:66:47:b3:4c:22:63:61:a5:a5:5a: 41:03:5d:7e:18:4b:ac:1d:27:3a:da:0b:91:d1:8e: 67:28:e3:4d:75:2e:54:ab:b7:4c:37:a2:33:89:eb: b1:03:bd:67:b3:9c:c0:d4:c9:7b:3e:d1:81:cb:2c: 1d:46:54:d0:65:bc:55:19:16:a8:3d:29:4e:f8:09: c8:ac:3d:90:0b:69:28:2e:97:c0:e0:48:0d:a4:ef: 93:96:a6:58:9f:a9:8f:59:c4:85:eb:c6:f0:62:fd: 14:ac:c3:ad:f4:7d:db:15:fd:4f:6a:2d:c3:81:a9: f1:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:AD:98:44:50:B5:BC:AE:53:24:D2:27:0A:7B:F6:48:2B:2E:14:8C X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c18648e0-13bc-44d9-9590-7470b8934b71.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.174.172.0/23 Signature Algorithm: sha256WithRSAEncryption a5:68:f6:20:05:68:66:f5:34:9b:16:f8:7d:84:54:36:a2:a3: 1a:44:e0:fd:60:5a:0c:e9:f7:e4:61:fb:cf:c5:31:8b:c6:12: 8f:39:50:10:76:d2:76:73:52:04:6c:44:36:eb:b6:ae:84:11: 96:c4:0f:98:35:5f:3e:0d:f9:18:58:af:ae:7c:3c:29:49:46: 01:1d:d8:28:be:2c:3a:d1:8e:a1:31:77:2f:81:22:2a:59:b8: 1d:6f:55:60:95:23:6a:d8:26:52:12:83:c7:cd:8b:b1:f8:b6: 25:14:4b:fe:05:73:62:83:e8:76:0c:74:46:e7:00:03:62:79: 45:b0:69:74:db:b8:b2:34:f9:58:5a:88:d4:c3:3f:dc:e3:37: bf:dc:e8:bd:c1:23:d2:9d:97:9f:d3:6d:fc:27:dc:3e:41:55: 59:0b:3a:64:02:48:78:b8:40:ba:9d:51:4d:5c:86:e9:7f:86: fd:92:66:be:a2:d2:13:9d:2d:59:fa:c5:5f:11:5b:2c:ad:34: f6:b4:33:ce:ee:0b:44:ab:ef:27:b3:74:2e:08:96:2b:8f:a3: 06:45:80:16:83:13:f4:2d:0b:0c:3c:a0:62:16:d9:88:f3:5b: 37:0d:1d:02:84:69:71:c9:90:f4:16:71:f4:d9:ce:e1:cb:bc: 37:3c:56:21 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURl4VQ4slzzS+CayeS9o1QK0qMUwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTI1MjMzNjQ5WhcNMjUxMDMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiOTRjMzc3NmFhZGMwODMzYzIwYmRkZGY5ODkxNTEzN2Jh OTJiNzhlOWEwOGQwMTIwOWI0ZDcyMTRlMWM0NzQ4MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCiQzjfvwISXKQp9BYm3FYb39p5Pib3RXEigUmFIM9CzlQf YCbpUZN1KpGtydIFQKpxOvv9ohE8wnNjc/JgUZfaWBqbVu1UFs6iaJ6+khZ1fTyI ta9jbFdLvhB7LgU8tXX0oKNL7TCR8uZvpem0L3DkQa906DbpHvxnZQwx5BwJlvWK pOhcpA3L7TiFZkezTCJjYaWlWkEDXX4YS6wdJzraC5HRjmco4011LlSrt0w3ojOJ 67EDvWeznMDUyXs+0YHLLB1GVNBlvFUZFqg9KU74CcisPZALaSgul8DgSA2k75OW plifqY9ZxIXrxvBi/RSsw630fdsV/U9qLcOBqfEZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU/a2YRFC1vK5TJNInCnv2SCsuFIwwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2MxODY0OGUwLTEzYmMtNDRkOS05NTkwLTc0NzBiODkzNGI3MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEDrqwwDQYJKoZIhvcNAQELBQADggEBAKVo9iAFaGb1NJsW+H2EVDaioxpE 4P1gWgzp9+Rh+8/FMYvGEo85UBB20nZzUgRsRDbrtq6EEZbED5g1Xz4N+RhYr658 PClJRgEd2Ci+LDrRjqExdy+BIipZuB1vVWCVI2rYJlISg8fNi7H4tiUUS/4Fc2KD 6HYMdEbnAANieUWwaXTbuLI0+VhaiNTDP9zjN7/c6L3BI9Kdl5/Tbfwn3D5BVVkL OmQCSHi4QLqdUU1chul/hv2SZr6i0hOdLVn6xV8RWyytNPa0M87uC0Sr7yezdC4I liuPowZFgBaDE/QtCww8oGIW2YjzWzcNHQKEaXHJkPQWcfTZzuHLvDc8ViE= -----END CERTIFICATE-----Generated at Mon Oct 20 06:50:58 2025 by rpki-client