$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d2190302-cb66-407e-951e-e6ef2d68bc28.roa File: d2190302-cb66-407e-951e-e6ef2d68bc28.roa (raw, json) Hash identifier: 2EX5dZO60jDNcKi9bLRawL2ROgHRjLOMjI7ER9aMAyI= Subject key identifier: DC:3B:2F:32:D6:93:D3:9C:4C:4B:68:62:B1:DB:04:E9:7E:3B:65:42 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 119EA123E46A28486FBE58F672ABF0DAB1E76305 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d2190302-cb66-407e-951e-e6ef2d68bc28.roa Signing time: Thu 25 Sep 2025 18:57:08 +0000 ROA not before: Thu 25 Sep 2025 18:57:08 +0000 ROA not after: Thu 30 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.167.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:9e:a1:23:e4:6a:28:48:6f:be:58:f6:72:ab:f0:da:b1:e7:63:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 25 18:57:08 2025 GMT Not After : Oct 30 23:59:59 2025 GMT Subject: serialNumber=b5ff5ad137b480ac86dda96e9917b1cbcf4d6e2d6c9ffeb04fcef19f9f973f33, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:c5:57:b7:d8:c3:51:c7:4d:4b:97:e7:00:8d: df:c7:86:62:1c:61:60:69:99:89:c1:7d:85:f4:2f: 50:65:74:69:34:3e:fc:51:b5:c4:02:fa:07:95:a3: 66:d0:84:9d:cf:38:c6:9d:d9:b1:e8:e8:fc:56:8e: 7f:fb:a6:ed:1b:1c:4a:9d:ad:63:85:bd:93:4a:ea: d5:8b:4d:30:ff:b7:cd:09:df:43:86:9b:a6:bd:31: 22:94:4b:2a:7a:c8:80:b1:e5:0f:d0:4d:9d:0d:c3: 8a:dc:89:a4:50:e5:70:5d:78:ab:46:6d:ec:ec:88: 3f:f8:69:c5:45:4d:0f:bf:5b:2a:20:74:74:af:4d: 74:3d:7c:ba:cc:bf:71:a3:2a:f9:d6:90:ab:95:02: c6:41:74:4e:a0:8b:18:50:02:06:88:76:3a:a1:3b: 70:b0:ec:08:a2:dc:c2:0f:ce:0a:4e:d2:a4:4d:94: 48:a2:a2:ed:5c:cc:34:08:fd:78:55:44:6b:a6:b6: d3:76:7c:fb:29:cc:40:85:ff:d3:05:ad:be:5b:3e: 81:07:d6:c5:68:8b:b3:86:f8:14:e6:79:79:26:1e: ee:51:a8:cc:3e:ab:94:63:2e:f8:b6:77:64:91:fc: c4:96:bc:78:1b:d7:7f:a9:84:10:d8:b8:db:d4:ea: b0:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:3B:2F:32:D6:93:D3:9C:4C:4B:68:62:B1:DB:04:E9:7E:3B:65:42 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d2190302-cb66-407e-951e-e6ef2d68bc28.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.167.187.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:56:b2:7f:33:0b:d0:53:46:7e:6d:68:75:fc:57:65:23:d2: ba:61:10:5e:22:8d:7f:24:93:aa:7d:a3:5f:34:4d:1b:3b:91: af:55:65:77:1b:51:cf:40:1c:b6:05:7c:73:f4:ad:8d:43:d8: fe:f0:64:ad:a7:22:c1:21:b0:03:91:8c:6e:3a:e8:f2:b7:74: 77:f4:ba:5a:a7:a4:14:18:ff:4e:f1:94:5a:f0:56:65:ae:42: cc:9c:a8:37:ad:77:e5:92:78:37:66:f2:38:43:cd:29:89:0f: 6b:14:e7:6f:92:56:7f:5c:d4:b8:ca:d7:84:b4:ea:22:ab:19: 3d:29:db:77:3f:fa:41:0d:82:9b:cf:28:20:1b:44:4a:ee:b5: 15:6a:f5:49:ca:80:f4:3c:72:9d:a4:85:4c:d7:63:df:cb:24: 42:1d:3b:59:94:d6:84:3d:21:96:ad:14:92:91:cb:3a:49:c9: 1d:5b:49:62:41:57:e3:1f:93:95:c4:20:dc:8b:34:85:00:f6: cf:c5:77:67:aa:b5:31:3a:19:f6:de:13:6b:e0:8e:53:8a:c0: 78:21:55:d2:4a:2e:fe:d4:e3:77:f9:a2:5e:3b:8e:0f:71:07: 49:f7:97:5a:de:9d:f2:86:69:f7:f9:e4:dc:e7:f8:f9:8e:fe: f4:d8:e9:76 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEZ6hI+RqKEhvvlj2cqvw2rHnYwUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTI1MTg1NzA4WhcNMjUxMDMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiNWZmNWFkMTM3YjQ4MGFjODZkZGE5NmU5OTE3YjFjYmNm NGQ2ZTJkNmM5ZmZlYjA0ZmNlZjE5ZjlmOTczZjMzMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgxVe32MNRx01Ll+cAjd/HhmIcYWBpmYnBfYX0L1BldGk0 PvxRtcQC+geVo2bQhJ3POMad2bHo6PxWjn/7pu0bHEqdrWOFvZNK6tWLTTD/t80J 30OGm6a9MSKUSyp6yICx5Q/QTZ0Nw4rciaRQ5XBdeKtGbezsiD/4acVFTQ+/Wyog dHSvTXQ9fLrMv3GjKvnWkKuVAsZBdE6gixhQAgaIdjqhO3Cw7Aii3MIPzgpO0qRN lEiiou1czDQI/XhVRGumttN2fPspzECF/9MFrb5bPoEH1sVoi7OG+BTmeXkmHu5R qMw+q5RjLvi2d2SR/MSWvHgb13+phBDYuNvU6rCrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU3DsvMtaT05xMS2hisdsE6X47ZUIwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2QyMTkwMzAyLWNiNjYtNDA3ZS05NTFlLWU2ZWYyZDY4YmMyOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAADp7swDQYJKoZIhvcNAQELBQADggEBAAtWsn8zC9BTRn5taHX8V2Uj0rph EF4ijX8kk6p9o180TRs7ka9VZXcbUc9AHLYFfHP0rY1D2P7wZK2nIsEhsAORjG46 6PK3dHf0ulqnpBQY/07xlFrwVmWuQsycqDetd+WSeDdm8jhDzSmJD2sU52+SVn9c 1LjK14S06iKrGT0p23c/+kENgpvPKCAbRErutRVq9UnKgPQ8cp2khUzXY9/LJEId O1mU1oQ9IZatFJKRyzpJyR1bSWJBV+Mfk5XEINyLNIUA9s/Fd2eqtTE6GfbeE2vg jlOKwHghVdJKLv7U43f5ol47jg9xB0n3l1renfKGaff55Nzn+PmO/vTY6XY= -----END CERTIFICATE-----Generated at Mon Oct 20 06:04:05 2025 by rpki-client