$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c8bfcd9d-065a-429c-a0f0-2e3b137e03de.roa File: c8bfcd9d-065a-429c-a0f0-2e3b137e03de.roa (raw, json) Hash identifier: V99fjdiIlSe6oEa9uk6P3xX9BVui0xWrBFwKI0DpeZY= Subject key identifier: 2D:E1:F6:23:B0:30:AB:7C:91:85:2B:AB:69:81:3D:43:64:B1:11:48 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 111683748BEB86CC8943A81EADA1EA436A435F88 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c8bfcd9d-065a-429c-a0f0-2e3b137e03de.roa Signing time: Mon 20 Oct 2025 13:13:33 +0000 ROA not before: Mon 20 Oct 2025 13:13:33 +0000 ROA not after: Mon 24 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.168.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 23 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:16:83:74:8b:eb:86:cc:89:43:a8:1e:ad:a1:ea:43:6a:43:5f:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 20 13:13:33 2025 GMT Not After : Nov 24 23:59:59 2025 GMT Subject: serialNumber=22dc448e97b6cac84326d5e0a28e6bb0c0b73b960ffbe94f515bcf57fcb8f8eb, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:f6:56:36:48:84:da:3e:e0:fe:c7:47:76:fd: 16:1c:8f:66:f9:c3:42:b6:be:59:8b:ec:c6:9c:18: c2:03:b2:6d:14:c6:e4:87:e6:00:a0:b0:1c:fb:b9: e7:96:21:e6:49:e1:f9:e1:5c:72:66:06:22:d4:3c: 26:cd:34:97:eb:3b:d5:e3:51:d7:a9:8d:fe:a1:70: 58:3c:28:80:18:8e:3c:ec:b7:db:57:b7:cd:63:83: 9d:a8:07:a7:2c:cf:d7:98:23:8a:90:6c:72:e7:5a: bf:99:84:4d:c4:f7:53:1a:32:1f:d2:6d:f7:34:ec: 9f:a8:e6:6c:4d:fe:06:f8:e7:c3:63:7b:69:58:02: 87:ef:1f:07:db:4d:e9:ac:4c:5a:61:de:b9:67:33: ec:0a:af:68:b1:d3:02:76:a0:9b:e2:a9:a9:99:c2: bb:87:cc:7e:35:3f:48:2e:b6:39:70:3b:00:6f:c1: 3c:c2:2d:7f:01:a4:6b:05:23:36:e5:39:b3:b5:35: a3:41:b2:34:90:3c:f3:1f:e9:44:82:c0:ff:b0:85: 56:fc:b2:7c:c3:9c:b7:a4:0f:a3:b3:52:82:1c:1d: 1d:1a:81:17:ea:2f:6f:e1:a7:dc:b5:49:11:f4:7f: 9b:a2:38:3e:f5:70:74:c9:52:a2:b1:29:6b:b5:9b: ff:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:E1:F6:23:B0:30:AB:7C:91:85:2B:AB:69:81:3D:43:64:B1:11:48 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c8bfcd9d-065a-429c-a0f0-2e3b137e03de.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.168.252.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:91:0d:2f:68:0a:9a:d4:a2:d2:27:99:f9:bd:24:3c:b3:05: e1:74:5e:f7:06:b5:4a:95:24:24:51:cd:9b:d6:ca:db:16:b8: e1:a3:fc:37:38:7c:5c:ca:b4:8f:f0:49:1b:b6:7e:8f:c1:6e: e1:06:4f:14:fe:5a:1f:10:4f:77:f1:7c:3d:66:34:ef:00:22: db:b7:52:64:35:30:df:e0:24:b9:eb:a6:3a:9d:35:50:96:cf: ff:14:83:62:2c:98:f2:0a:49:e8:ae:e3:86:94:57:a9:7d:26: 7e:e7:65:a3:18:db:47:33:fb:36:31:84:11:18:bc:ea:2b:84: 75:7f:6e:92:fa:c9:1e:67:19:ee:0a:b4:2c:63:03:69:9d:0a: 1c:a0:b0:63:a5:fc:a6:0c:64:5d:be:58:3c:55:a1:9f:df:b0: c1:36:80:5f:30:a0:2f:e1:e6:c4:e0:c5:0b:8b:12:15:98:2c: 94:82:4d:29:ac:6a:28:64:f6:32:16:7e:4e:a3:c5:bc:8b:18: 5a:37:28:87:65:bc:6f:82:f0:a8:12:67:73:bc:0f:33:01:0b: 27:71:12:b6:c3:01:f6:77:63:bc:0d:63:d1:0d:47:71:08:f1: 1e:42:71:99:2e:e3:2e:95:8d:4a:3e:0f:5e:54:57:b9:2e:31: cc:3a:87:d4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUERaDdIvrhsyJQ6geraHqQ2pDX4gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDIwMTMxMzMzWhcNMjUxMTI0MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMmRjNDQ4ZTk3YjZjYWM4NDMyNmQ1ZTBhMjhlNmJiMGMw YjczYjk2MGZmYmU5NGY1MTViY2Y1N2ZjYjhmOGViMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCo9lY2SITaPuD+x0d2/RYcj2b5w0K2vlmL7MacGMIDsm0U xuSH5gCgsBz7ueeWIeZJ4fnhXHJmBiLUPCbNNJfrO9XjUdepjf6hcFg8KIAYjjzs t9tXt81jg52oB6csz9eYI4qQbHLnWr+ZhE3E91MaMh/Sbfc07J+o5mxN/gb458Nj e2lYAofvHwfbTemsTFph3rlnM+wKr2ix0wJ2oJviqamZwruHzH41P0gutjlwOwBv wTzCLX8BpGsFIzblObO1NaNBsjSQPPMf6USCwP+whVb8snzDnLekD6OzUoIcHR0a gRfqL2/hp9y1SRH0f5uiOD71cHTJUqKxKWu1m/85AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQULeH2I7Awq3yRhSuraYE9Q2SxEUgwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2M4YmZjZDlkLTA2NWEtNDI5Yy1hMGYwLTJlM2IxMzdlMDNkZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAADqPwwDQYJKoZIhvcNAQELBQADggEBAGuRDS9oCprUotInmfm9JDyzBeF0 XvcGtUqVJCRRzZvWytsWuOGj/Dc4fFzKtI/wSRu2fo/BbuEGTxT+Wh8QT3fxfD1m NO8AItu3UmQ1MN/gJLnrpjqdNVCWz/8Ug2IsmPIKSeiu44aUV6l9Jn7nZaMY20cz +zYxhBEYvOorhHV/bpL6yR5nGe4KtCxjA2mdChygsGOl/KYMZF2+WDxVoZ/fsME2 gF8woC/h5sTgxQuLEhWYLJSCTSmsaihk9jIWfk6jxbyLGFo3KIdlvG+C8KgSZ3O8 DzMBCydxErbDAfZ3Y7wNY9ENR3EI8R5CcZku4y6VjUo+D15UV7kuMcw6h9Q= -----END CERTIFICATE-----Generated at Tue Oct 21 01:07:35 2025 by rpki-client