$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/da610833-c1bb-4ee9-a0d0-a0987b7e4cfa.roa File: da610833-c1bb-4ee9-a0d0-a0987b7e4cfa.roa (raw, json) Hash identifier: ruptQtOav+SfjJ72Cz/S/3p2nIbmYblllY2hzrndXyM= Subject key identifier: BE:62:2D:92:8C:4D:CB:E2:38:08:44:07:4B:E6:7C:73:FA:50:FA:35 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 1A51CCE10A4EBAB729B5D819A1BD9175B7BDAE4C Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/da610833-c1bb-4ee9-a0d0-a0987b7e4cfa.roa Signing time: Fri 26 Sep 2025 00:59:10 +0000 ROA not before: Fri 26 Sep 2025 00:59:10 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.174.248.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:51:cc:e1:0a:4e:ba:b7:29:b5:d8:19:a1:bd:91:75:b7:bd:ae:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 26 00:59:10 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=ba700a07ad418355d8590ec33f355d0792b874a25d9d98c1e23713c5ddde9b1a, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fd:b8:56:a0:50:0b:55:8e:82:f6:89:99:ea:97: 83:5d:91:19:b3:76:61:42:df:de:67:c8:e2:4b:0d: 8b:e1:b1:9c:cf:7c:ec:16:1b:09:9e:b4:d8:7a:bf: 37:83:0e:7c:12:4c:61:8d:f0:27:57:6f:cf:bf:e3: 3c:97:39:88:16:69:4f:c9:af:41:ee:93:c5:12:cf: 2a:85:d5:15:26:de:6b:81:b2:2e:18:f8:ab:95:0e: 24:d4:d8:7c:93:87:52:f9:59:74:89:c5:3c:3d:a1: c9:5c:2e:37:59:e8:33:69:23:d2:1f:a1:33:75:b7: 57:a4:9e:35:1f:9d:15:00:d8:73:79:7d:86:23:ea: f3:6b:74:f2:89:39:4d:f9:3b:cd:75:8c:cf:5e:2b: 45:4d:5d:15:bc:e4:73:f6:2d:43:df:74:97:15:9a: 34:41:1a:64:6e:f8:2a:d9:7e:f8:d5:66:5f:36:f2: 7b:77:44:ff:ff:3d:0f:6b:2f:df:5b:18:02:70:33: 07:07:13:54:ae:e6:6a:86:43:bf:05:3b:9d:40:43: 88:10:e9:cd:cc:09:1d:01:5d:56:b0:ad:97:2e:7b: f3:b2:b3:51:d6:9e:a4:18:ec:a1:50:06:bb:fb:4c: 66:f2:4a:5c:18:41:f2:7a:5a:84:91:87:77:31:f3: 79:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:62:2D:92:8C:4D:CB:E2:38:08:44:07:4B:E6:7C:73:FA:50:FA:35 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/da610833-c1bb-4ee9-a0d0-a0987b7e4cfa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.174.248.0/22 Signature Algorithm: sha256WithRSAEncryption 1d:75:e6:21:36:ca:2d:bf:2f:5e:8f:8c:7d:66:7a:71:cf:c7: cd:61:6d:13:1a:15:28:ef:22:78:19:14:0e:ab:7a:a5:ad:78: df:d1:2d:4b:34:30:15:fd:eb:ad:ea:c8:7c:b8:cc:d1:e9:1e: 3d:e2:ef:a5:97:da:d2:b1:6f:be:e7:53:9f:05:85:12:51:22: 05:58:b4:5f:7a:f9:e4:0e:cb:5e:ab:47:9e:1a:65:0c:59:18: cf:fd:60:e8:c8:c2:db:dd:d7:37:3c:44:06:6a:78:c7:d7:0c: 74:85:9d:ac:0b:1d:3c:0a:0a:5f:c0:8a:e9:67:73:b4:d9:90: c2:b0:54:5d:c9:d5:dc:32:33:73:9f:86:6b:85:36:4f:8c:ef: 71:6e:ac:d9:b1:77:22:05:6b:6b:7c:7c:89:e8:fe:81:9b:81: 25:a0:8a:59:85:5f:76:00:f5:54:fc:ae:53:bc:b6:a7:3d:f6: b6:75:4d:95:c8:6f:22:82:84:84:72:59:f7:90:d3:a5:f7:f2: 5b:f2:ae:e8:9b:50:62:17:f8:86:d0:d2:8a:d8:e7:9b:73:90: c4:24:15:3e:53:a8:e3:2a:2e:60:07:88:6d:7f:bd:f7:2b:f3: 29:83:5b:33:09:5f:d0:c7:82:f4:41:61:87:ea:f3:3b:2b:28: 50:c7:ed:1f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGlHM4QpOurcptdgZob2Rdbe9rkwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTI2MDA1OTEwWhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0BiYTcwMGEwN2FkNDE4MzU1ZDg1OTBlYzMzZjM1NWQwNzky Yjg3NGEyNWQ5ZDk4YzFlMjM3MTNjNWRkZGU5YjFhMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD9uFagUAtVjoL2iZnql4NdkRmzdmFC395nyOJLDYvhsZzP fOwWGwmetNh6vzeDDnwSTGGN8CdXb8+/4zyXOYgWaU/Jr0Huk8USzyqF1RUm3muB si4Y+KuVDiTU2HyTh1L5WXSJxTw9oclcLjdZ6DNpI9IfoTN1t1eknjUfnRUA2HN5 fYYj6vNrdPKJOU35O811jM9eK0VNXRW85HP2LUPfdJcVmjRBGmRu+CrZfvjVZl82 8nt3RP//PQ9rL99bGAJwMwcHE1Su5mqGQ78FO51AQ4gQ6c3MCR0BXVawrZcue/Oy s1HWnqQY7KFQBrv7TGbySlwYQfJ6WoSRh3cx83nxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUvmItkoxNy+I4CEQHS+Z8c/pQ+jUwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2RhNjEwODMzLWMxYmItNGVlOS1hMGQwLWEwOTg3YjdlNGNmYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIDrvgwDQYJKoZIhvcNAQELBQADggEBAB115iE2yi2/L16PjH1menHPx81h bRMaFSjvIngZFA6reqWteN/RLUs0MBX9663qyHy4zNHpHj3i76WX2tKxb77nU58F hRJRIgVYtF96+eQOy16rR54aZQxZGM/9YOjIwtvd1zc8RAZqeMfXDHSFnawLHTwK Cl/Aiulnc7TZkMKwVF3J1dwyM3OfhmuFNk+M73FurNmxdyIFa2t8fIno/oGbgSWg ilmFX3YA9VT8rlO8tqc99rZ1TZXIbyKChIRyWfeQ06X38lvyruibUGIX+IbQ0orY 55tzkMQkFT5TqOMqLmAHiG1/vfcr8ymDWzMJX9DHgvRBYYfq8zsrKFDH7R8= -----END CERTIFICATE-----Generated at Mon Oct 20 15:46:22 2025 by rpki-client