$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d9b39fdf-7776-4291-b890-a37f8e7a2e65.roa File: d9b39fdf-7776-4291-b890-a37f8e7a2e65.roa (raw, json) Hash identifier: 7T08hTApkfbSildGHeMoAphluYceWoOBkifiY7nWfOE= Subject key identifier: 83:9C:0C:6B:00:36:7D:F1:29:0B:CD:38:6C:51:06:74:6D:88:12:7A Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 4D7983D0EB4E5D6D5F56CE2B7A3E60ECA80D183F Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d9b39fdf-7776-4291-b890-a37f8e7a2e65.roa Signing time: Mon 20 Oct 2025 15:23:43 +0000 ROA not before: Mon 20 Oct 2025 15:23:43 +0000 ROA not after: Mon 24 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.161.58.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:79:83:d0:eb:4e:5d:6d:5f:56:ce:2b:7a:3e:60:ec:a8:0d:18:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 20 15:23:43 2025 GMT Not After : Nov 24 23:59:59 2025 GMT Subject: serialNumber=a5c764c8e28cbcb7199ca4c800e2996a2b52214bbc326db5c41ec0b54bbbebd1, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:57:b7:18:6e:d3:3f:17:ee:9f:be:10:59:f7: 9b:46:55:1b:d2:cb:5e:3a:a0:49:5a:da:3c:f0:c2: 3d:74:cf:a0:fb:95:ca:c1:8b:7a:10:9f:88:4d:0e: 88:57:d5:53:c5:41:6f:cc:66:3e:10:e0:f4:e2:cb: 04:44:e0:74:40:0a:09:74:09:8f:66:5f:2e:fa:2a: 3a:30:3d:6d:fa:d5:49:92:cf:c4:40:b9:41:38:fd: 6f:9b:bb:21:fb:a3:99:a6:ab:19:05:d1:75:8a:43: 1b:7f:72:47:12:c2:ea:e6:54:6f:f0:ee:be:79:c3: d5:76:dd:ad:17:53:91:c9:44:c3:16:5c:78:cb:b8: 9f:27:83:1d:41:3d:e1:24:45:0c:13:bc:2f:09:e4: 8b:10:30:b8:98:02:10:11:e6:64:65:ce:d4:77:e3: a3:04:0f:3a:e6:1c:f4:4f:5d:fb:2f:cb:05:1a:c3: a8:7b:20:6e:b1:09:31:48:10:41:2b:e1:fc:92:89: f8:43:0c:de:4e:6b:94:da:52:c3:3b:99:8f:87:54: 47:4b:81:3f:62:12:59:e4:7d:e5:a0:38:34:90:c0: 8e:88:3a:50:f7:64:c3:bd:58:aa:cb:41:71:1e:e6: f7:36:59:35:98:97:03:4a:b9:73:4a:d5:6c:83:f3: 77:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:9C:0C:6B:00:36:7D:F1:29:0B:CD:38:6C:51:06:74:6D:88:12:7A X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d9b39fdf-7776-4291-b890-a37f8e7a2e65.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.161.58.0/24 Signature Algorithm: sha256WithRSAEncryption 72:5a:a7:0d:c1:43:5e:2a:b2:10:10:88:90:53:db:4e:32:9c: a6:e6:fc:4f:d0:8b:57:4c:c8:14:47:f3:20:7e:7d:0d:8b:49: 9c:d6:56:7f:d2:c7:e7:bc:2d:18:d3:38:82:06:ed:c5:f5:f7: e6:3b:89:87:27:44:33:fa:3c:74:aa:28:2c:34:4e:6e:88:3c: cf:ad:e5:8f:72:fe:7f:d1:8c:7b:c1:be:2c:5b:f3:ed:42:ae: 13:09:f0:d3:a0:66:fd:fb:79:72:69:7d:0e:ee:9b:f9:07:d4: 92:41:7a:b2:0f:dc:a2:3e:5d:a8:19:36:bb:91:c3:f6:f2:1b: ee:e7:c0:cf:1b:2b:cd:c9:c7:ac:53:4e:2f:6a:98:cf:89:2c: a9:c1:39:3e:f4:76:0f:18:2a:3a:de:2c:02:1e:c4:b6:04:2c: 54:57:59:87:c8:8e:32:ec:43:04:63:31:a0:24:7d:c9:ca:25: 13:d4:ba:2f:2c:a5:f0:9b:4d:5c:c4:12:35:a6:40:0c:28:4d: 57:37:b3:4d:40:19:0d:a7:b6:c8:82:e4:1a:5a:1a:5c:e7:8a: 61:6b:3f:b2:7c:a6:a6:78:26:6d:ab:62:db:6e:17:8c:7f:e4: 8e:f8:95:ee:31:eb:db:43:cf:49:9b:43:ab:fd:8d:05:0e:02: 00:07:7c:0e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTXmD0OtOXW1fVs4rej5g7KgNGD8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDIwMTUyMzQzWhcNMjUxMTI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNWM3NjRjOGUyOGNiY2I3MTk5Y2E0YzgwMGUyOTk2YTJi NTIyMTRiYmMzMjZkYjVjNDFlYzBiNTRiYmJlYmQxMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCVV7cYbtM/F+6fvhBZ95tGVRvSy146oEla2jzwwj10z6D7 lcrBi3oQn4hNDohX1VPFQW/MZj4Q4PTiywRE4HRACgl0CY9mXy76KjowPW361UmS z8RAuUE4/W+buyH7o5mmqxkF0XWKQxt/ckcSwurmVG/w7r55w9V23a0XU5HJRMMW XHjLuJ8ngx1BPeEkRQwTvC8J5IsQMLiYAhAR5mRlztR346MEDzrmHPRPXfsvywUa w6h7IG6xCTFIEEEr4fySifhDDN5Oa5TaUsM7mY+HVEdLgT9iElnkfeWgODSQwI6I OlD3ZMO9WKrLQXEe5vc2WTWYlwNKuXNK1WyD83dvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUg5wMawA2ffEpC804bFEGdG2IEnowHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2Q5YjM5ZmRmLTc3NzYtNDI5MS1iODkwLWEzN2Y4ZTdhMmU2NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAADoTowDQYJKoZIhvcNAQELBQADggEBAHJapw3BQ14qshAQiJBT204ynKbm /E/Qi1dMyBRH8yB+fQ2LSZzWVn/Sx+e8LRjTOIIG7cX19+Y7iYcnRDP6PHSqKCw0 Tm6IPM+t5Y9y/n/RjHvBvixb8+1CrhMJ8NOgZv37eXJpfQ7um/kH1JJBerIP3KI+ XagZNruRw/byG+7nwM8bK83Jx6xTTi9qmM+JLKnBOT70dg8YKjreLAIexLYELFRX WYfIjjLsQwRjMaAkfcnKJRPUui8spfCbTVzEEjWmQAwoTVc3s01AGQ2ntsiC5Bpa GlznimFrP7J8pqZ4Jm2rYttuF4x/5I74le4x69tDz0mbQ6v9jQUOAgAHfA4= -----END CERTIFICATE-----Generated at Mon Oct 20 18:12:29 2025 by rpki-client