$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d76bc2d3-10e7-4e90-850f-02cbe5c7ab7e.roa File: d76bc2d3-10e7-4e90-850f-02cbe5c7ab7e.roa (raw, json) Hash identifier: luvjT53gia7JovBU0dzS5ifdfDKhIEAa0ws66CxeLW4= Subject key identifier: 39:88:CF:42:0B:1B:1F:0D:97:3A:08:3F:AD:3C:B9:9B:D6:1F:97:B9 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 09099B5A273188DC575308251403BCA3724949B3 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d76bc2d3-10e7-4e90-850f-02cbe5c7ab7e.roa Signing time: Thu 25 Sep 2025 18:24:06 +0000 ROA not before: Thu 25 Sep 2025 18:24:06 +0000 ROA not after: Thu 30 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.165.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:09:9b:5a:27:31:88:dc:57:53:08:25:14:03:bc:a3:72:49:49:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 25 18:24:06 2025 GMT Not After : Oct 30 23:59:59 2025 GMT Subject: serialNumber=a6ae803df48e5dbc1b82f1cf5eb686bb8a780c7087f8622c83383342085676a7, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:3d:d9:10:e3:9d:56:65:12:9f:74:6d:af:d8: 44:45:8f:4c:e9:6c:b9:fe:11:6d:78:04:01:15:2f: d0:af:0c:51:6d:58:c8:51:ec:cb:d1:4a:77:56:ed: 67:f7:3c:0a:9a:82:15:90:e3:c0:48:12:7c:c9:62: f9:53:7a:01:d8:c2:6e:2b:3c:ac:d8:c8:cd:48:76: 11:e6:c3:9f:1a:be:ee:41:9d:70:8a:e0:69:7a:0d: e6:49:54:21:ef:25:ce:0f:6c:2f:13:4a:35:13:2c: 15:cd:93:dd:c2:e3:06:47:21:91:da:78:51:eb:77: 7d:5d:ca:20:65:4c:84:51:d9:e3:33:67:d6:a9:ac: 21:4b:75:e2:cb:83:ca:21:b2:c5:cb:d1:16:25:7e: b0:ef:d2:e4:28:e6:c5:db:4a:c9:99:69:8a:0e:91: aa:dd:b9:9c:c0:21:5a:2b:2a:fd:86:d3:08:35:63: be:20:b5:ad:6d:77:23:8c:35:38:b7:e7:5d:4c:4e: 0f:15:13:5a:06:4a:10:b6:a1:ad:04:ea:39:72:3c: b8:97:36:ba:fe:3d:a0:0e:08:1c:57:1e:64:e5:96: 42:74:be:03:58:30:5a:5e:98:d5:d8:2a:94:f4:21: 41:a7:a3:e2:0d:70:3d:f0:2e:e7:2b:6e:51:0a:d6: 0e:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:88:CF:42:0B:1B:1F:0D:97:3A:08:3F:AD:3C:B9:9B:D6:1F:97:B9 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d76bc2d3-10e7-4e90-850f-02cbe5c7ab7e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.165.254.0/24 Signature Algorithm: sha256WithRSAEncryption 15:fe:5f:ff:9e:fd:ba:88:e3:58:27:98:83:ab:54:db:9f:b7: aa:32:75:7b:af:33:91:e9:3e:86:66:26:46:a2:bb:0d:f8:e6: b9:6c:50:0d:0c:26:be:10:3b:c4:4e:ff:fe:69:88:11:62:a4: 22:20:3d:29:0c:8a:cf:36:8c:2a:84:53:ec:08:ab:ee:18:d4: 0f:8d:21:13:21:09:ef:77:e0:89:a6:40:d6:9a:c6:f5:ed:44: 72:27:a5:90:e7:d4:30:49:8e:29:98:0a:2c:98:04:a1:47:83: fb:2e:53:7e:32:d1:a7:a3:f0:1f:29:8a:31:4e:b0:64:2b:45: 9d:41:16:44:2e:0f:43:a4:8f:4c:e1:e5:78:2d:31:1d:be:e5: 1f:f6:d2:44:c3:7a:40:2d:de:98:c1:7d:d8:98:82:47:8c:b9: 90:54:12:18:b8:f0:c2:d5:1d:46:5f:2f:ea:3e:93:76:50:8b: 33:4d:a1:0e:df:87:12:16:0b:c8:bb:be:92:d6:e5:13:83:12: b5:b8:7d:fe:4b:ab:c1:f8:ae:e8:56:1d:9e:c0:e0:c0:5e:f1: c3:8c:7e:a8:b4:b3:57:1c:d3:88:fa:a1:9a:38:2a:48:49:5b: a3:d1:e6:5f:07:e6:0c:24:6d:c0:f9:cb:56:0b:98:fc:2d:19: fd:0e:54:55 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCQmbWicxiNxXUwglFAO8o3JJSbMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTI1MTgyNDA2WhcNMjUxMDMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhNmFlODAzZGY0OGU1ZGJjMWI4MmYxY2Y1ZWI2ODZiYjhh NzgwYzcwODdmODYyMmM4MzM4MzM0MjA4NTY3NmE3MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClPdkQ451WZRKfdG2v2ERFj0zpbLn+EW14BAEVL9CvDFFt WMhR7MvRSndW7Wf3PAqaghWQ48BIEnzJYvlTegHYwm4rPKzYyM1IdhHmw58avu5B nXCK4Gl6DeZJVCHvJc4PbC8TSjUTLBXNk93C4wZHIZHaeFHrd31dyiBlTIRR2eMz Z9aprCFLdeLLg8ohssXL0RYlfrDv0uQo5sXbSsmZaYoOkarduZzAIVorKv2G0wg1 Y74gta1tdyOMNTi3511MTg8VE1oGShC2oa0E6jlyPLiXNrr+PaAOCBxXHmTllkJ0 vgNYMFpemNXYKpT0IUGno+INcD3wLucrblEK1g7RAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUOYjPQgsbHw2XOgg/rTy5m9Yfl7kwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2Q3NmJjMmQzLTEwZTctNGU5MC04NTBmLTAyY2JlNWM3YWI3ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAADpf4wDQYJKoZIhvcNAQELBQADggEBABX+X/+e/bqI41gnmIOrVNuft6oy dXuvM5HpPoZmJkaiuw345rlsUA0MJr4QO8RO//5piBFipCIgPSkMis82jCqEU+wI q+4Y1A+NIRMhCe934ImmQNaaxvXtRHInpZDn1DBJjimYCiyYBKFHg/suU34y0aej 8B8pijFOsGQrRZ1BFkQuD0Okj0zh5XgtMR2+5R/20kTDekAt3pjBfdiYgkeMuZBU Ehi48MLVHUZfL+o+k3ZQizNNoQ7fhxIWC8i7vpLW5RODErW4ff5Lq8H4ruhWHZ7A 4MBe8cOMfqi0s1cc04j6oZo4KkhJW6PR5l8H5gwkbcD5y1YLmPwtGf0OVFU= -----END CERTIFICATE-----Generated at Mon Oct 20 09:49:21 2025 by rpki-client