$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d96687c7-00f7-45a8-9683-e38f034c8add.roa File: d96687c7-00f7-45a8-9683-e38f034c8add.roa (raw, json) Hash identifier: Ardw+am+jb01DJpVyCZhEHEeN5phPjnpm4uLSvJg1mo= Subject key identifier: E1:3F:61:1B:69:CE:B2:C5:A2:F9:8A:0C:40:D9:E6:7B:7B:71:F4:E1 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 6FB7630D7A835AE536A5E54298EF9E0D08C833BE Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d96687c7-00f7-45a8-9683-e38f034c8add.roa Signing time: Fri 26 Sep 2025 01:36:51 +0000 ROA not before: Fri 26 Sep 2025 01:36:51 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.173.176.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:b7:63:0d:7a:83:5a:e5:36:a5:e5:42:98:ef:9e:0d:08:c8:33:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 26 01:36:51 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=8d0a73581f798264c3b4266b74afe9533c87fac7697f62e935922d447a7f9036, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:62:02:69:12:cd:08:5f:e8:7f:f4:52:8f:2d: 34:56:6e:f1:0e:3d:9d:b5:56:35:e1:89:af:f7:1c: 0f:cb:5b:4f:42:87:cb:a6:39:fe:65:3b:f4:fb:80: 11:e0:f5:bb:f6:88:61:35:be:c5:e3:51:71:91:16: ca:52:9c:a1:6b:4a:7a:64:d8:2f:23:82:d7:67:43: 31:a0:a8:ca:53:69:6b:92:5c:20:b6:f0:b0:bc:a5: 10:7b:95:09:ca:af:13:57:3e:4f:5a:f3:6a:e7:c3: 82:7e:c4:f8:92:0d:6c:7d:86:e9:74:dd:f7:77:80: e4:09:c5:14:2b:ad:88:90:e2:54:ee:73:0e:e5:a5: c0:63:cb:31:0b:65:0f:f1:58:cb:61:1d:0e:d5:41: 4e:a4:29:bd:55:78:81:0c:be:6f:d0:c4:9a:3a:60: 12:c1:0b:6d:f4:26:09:98:ad:a0:91:86:cc:72:ab: 5f:ba:3e:e0:e0:3a:f9:ce:4a:26:5d:7f:29:d2:ac: 96:2d:ea:99:d3:98:f2:5f:a3:b9:46:96:1d:47:98: ce:c7:7d:be:e8:e3:c2:46:cb:90:54:80:40:f4:63: 9a:8b:f5:be:41:11:37:25:eb:73:87:22:f7:25:e1: a1:b0:6d:64:e7:af:ca:68:e3:3e:41:f1:af:7f:60: b5:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:3F:61:1B:69:CE:B2:C5:A2:F9:8A:0C:40:D9:E6:7B:7B:71:F4:E1 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d96687c7-00f7-45a8-9683-e38f034c8add.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.173.176.0/21 Signature Algorithm: sha256WithRSAEncryption 8b:a1:b6:34:1e:74:12:c8:54:d5:7b:ab:52:24:b1:28:b3:bc: 7b:d8:c1:0f:08:c5:11:8d:bb:80:17:e9:45:3e:35:d8:b9:ed: 3b:2f:f7:54:19:1c:40:e7:3a:57:87:c8:c0:ff:8a:10:ad:c2: d8:7f:d1:bb:71:29:30:cb:62:7f:fe:db:8f:ae:32:e5:5b:5f: 3f:ad:a3:f7:b6:72:96:61:81:4a:9b:4a:98:86:00:75:52:a0: b3:16:d2:d6:df:75:c7:2f:6b:f3:cc:f5:9f:75:89:0a:e6:36: 75:9a:6b:fb:8c:39:be:34:17:37:1c:e7:db:b3:5c:0a:e6:f4: c9:b7:e8:2c:27:53:83:6e:a6:a3:ea:65:d0:fa:27:a1:16:97: e0:df:19:ec:2f:82:8e:da:5c:ba:f9:ee:11:85:12:98:eb:9f: 24:97:d1:12:d3:52:3b:0f:b1:73:a2:49:28:b0:a0:e3:06:79: 91:50:8f:f6:10:a4:f6:e9:dd:1c:59:0d:88:60:75:62:fd:00: fb:94:57:4b:c7:69:ff:3d:5f:04:ef:3f:aa:64:6b:6d:ea:7d: 46:fd:76:20:b3:f3:49:54:66:8d:3f:4b:dd:47:04:9e:88:13: 7a:c7:c3:87:cd:19:ad:0c:f7:25:72:5b:21:6d:56:1b:90:41: b9:ce:fc:63 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUb7djDXqDWuU2peVCmO+eDQjIM74wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTI2MDEzNjUxWhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZDBhNzM1ODFmNzk4MjY0YzNiNDI2NmI3NGFmZTk1MzNj ODdmYWM3Njk3ZjYyZTkzNTkyMmQ0NDdhN2Y5MDM2MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrYgJpEs0IX+h/9FKPLTRWbvEOPZ21VjXhia/3HA/LW09C h8umOf5lO/T7gBHg9bv2iGE1vsXjUXGRFspSnKFrSnpk2C8jgtdnQzGgqMpTaWuS XCC28LC8pRB7lQnKrxNXPk9a82rnw4J+xPiSDWx9hul03fd3gOQJxRQrrYiQ4lTu cw7lpcBjyzELZQ/xWMthHQ7VQU6kKb1VeIEMvm/QxJo6YBLBC230JgmYraCRhsxy q1+6PuDgOvnOSiZdfynSrJYt6pnTmPJfo7lGlh1HmM7Hfb7o48JGy5BUgED0Y5qL 9b5BETcl63OHIvcl4aGwbWTnr8po4z5B8a9/YLXjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU4T9hG2nOssWi+YoMQNnme3tx9OEwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2Q5NjY4N2M3LTAwZjctNDVhOC05NjgzLWUzOGYwMzRjOGFkZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMDrbAwDQYJKoZIhvcNAQELBQADggEBAIuhtjQedBLIVNV7q1IksSizvHvY wQ8IxRGNu4AX6UU+Ndi57Tsv91QZHEDnOleHyMD/ihCtwth/0btxKTDLYn/+24+u MuVbXz+to/e2cpZhgUqbSpiGAHVSoLMW0tbfdccva/PM9Z91iQrmNnWaa/uMOb40 Fzcc59uzXArm9Mm36CwnU4NupqPqZdD6J6EWl+DfGewvgo7aXLr57hGFEpjrnySX 0RLTUjsPsXOiSSiwoOMGeZFQj/YQpPbp3RxZDYhgdWL9APuUV0vHaf89XwTvP6pk a23qfUb9diCz80lUZo0/S91HBJ6IE3rHw4fNGa0M9yVyWyFtVhuQQbnO/GM= -----END CERTIFICATE-----Generated at Mon Oct 20 17:29:26 2025 by rpki-client