$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/e3d1bf51-60f3-412a-a6c2-81af8c2cb7a6.roa File: e3d1bf51-60f3-412a-a6c2-81af8c2cb7a6.roa (raw, json) Hash identifier: DjK6ctLKYa3cIkbGB7lgjrtOY0TdhP14Usg3SpmsvR8= Subject key identifier: 23:6D:D0:FA:1C:1C:C1:F9:7C:F6:EC:6A:C6:F2:69:50:B6:7A:C6:3F Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 0A9CBD6BF9F78F6A49D01C827CFE1CA68A1E991F Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/e3d1bf51-60f3-412a-a6c2-81af8c2cb7a6.roa Signing time: Wed 15 Oct 2025 20:28:38 +0000 ROA not before: Wed 15 Oct 2025 20:28:38 +0000 ROA not after: Wed 19 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 143.204.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:9c:bd:6b:f9:f7:8f:6a:49:d0:1c:82:7c:fe:1c:a6:8a:1e:99:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 15 20:28:38 2025 GMT Not After : Nov 19 23:59:59 2025 GMT Subject: serialNumber=3a6043b954abc90fb495a8145170aa1a539a5c1c1a7559148a44c9578a9e3bf9, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:85:f3:ec:a3:d2:f9:70:7d:c4:3a:84:d2:57: e2:ed:25:4c:c9:bf:19:17:a0:8a:9b:30:5a:a6:b8: a3:90:05:9f:b7:a6:42:8c:c8:ae:bf:44:39:25:38: a7:08:96:4d:5f:7a:59:0f:77:30:34:bd:11:eb:60: d7:61:2b:e6:ef:62:44:c1:71:ac:b2:d7:8e:53:fd: 4b:d8:2d:6d:8e:25:be:31:a7:01:85:39:1b:9b:3d: 12:9a:96:6e:f2:ae:bb:55:af:87:4a:07:d5:63:07: a3:f5:c3:a4:30:69:57:15:b3:4c:af:1a:aa:28:00: 13:d4:03:4e:61:91:ce:1f:58:28:bd:70:2a:79:41: e8:9a:73:e7:85:83:d1:72:84:91:b2:24:d1:bb:e1: ff:30:4d:68:76:23:31:e4:1c:8b:3a:0f:1e:0b:d0: b1:ea:3c:a6:d9:27:f2:4d:f2:31:cf:f1:df:41:7b: 5c:e6:65:e5:f2:5c:26:fa:15:c8:e5:4a:60:c4:b7: b0:e8:ed:e3:bb:66:0a:0e:2e:77:85:28:c8:01:70: 7e:67:46:27:ea:42:4c:fa:31:32:aa:fb:e1:a5:e5: cf:d2:bd:4e:ab:eb:5b:8b:d0:ad:db:18:07:6e:6b: 2c:8e:c6:9e:81:50:5b:0d:aa:22:ed:40:fd:14:33: c9:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:6D:D0:FA:1C:1C:C1:F9:7C:F6:EC:6A:C6:F2:69:50:B6:7A:C6:3F X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/e3d1bf51-60f3-412a-a6c2-81af8c2cb7a6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 143.204.128.0/24 Signature Algorithm: sha256WithRSAEncryption 82:2d:8a:b7:5d:cd:8b:02:d4:d3:28:50:87:31:f8:55:3b:0f: 96:cf:79:06:b6:aa:9a:49:1b:00:b4:6d:9e:39:b5:7f:92:0f: a2:f8:97:0c:24:cf:5e:c0:59:55:af:02:05:f9:d9:5b:e8:00: 96:2d:e2:00:05:f3:18:19:e4:08:38:61:38:88:06:55:57:c5: 1f:0e:70:ea:d5:f5:ef:3c:7e:17:3e:d8:a3:45:db:67:e8:3a: 19:cb:80:5c:b1:b1:31:24:8e:ae:fa:38:f5:17:55:b4:72:6a: b0:aa:b6:f0:72:c6:48:dc:5e:05:f1:fd:66:30:39:12:d8:30: 0c:f7:46:f2:3b:c3:e8:51:eb:49:35:c4:6a:41:65:d1:9e:b9: a8:49:37:2c:c3:1a:7a:31:01:76:23:74:83:3d:3e:80:6d:cb: 05:d0:85:f1:66:fc:5e:97:c7:37:1c:f4:bc:94:8b:8a:52:f2: 21:55:65:0c:e1:e6:b4:78:42:08:0a:8b:70:15:50:30:e3:b0: c5:24:86:f1:d5:8e:d7:5b:9a:29:59:6c:fa:a8:01:f7:4d:4c: e1:83:fe:a4:48:8d:ca:22:14:5f:d9:ac:e4:e5:a5:9f:54:d6: 28:49:76:51:17:b9:31:4f:3a:55:26:03:6c:f1:67:0c:f6:c7: 80:b0:7d:8e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCpy9a/n3j2pJ0ByCfP4cpooemR8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE1MjAyODM4WhcNMjUxMTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0AzYTYwNDNiOTU0YWJjOTBmYjQ5NWE4MTQ1MTcwYWExYTUz OWE1YzFjMWE3NTU5MTQ4YTQ0Yzk1NzhhOWUzYmY5MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4hfPso9L5cH3EOoTSV+LtJUzJvxkXoIqbMFqmuKOQBZ+3 pkKMyK6/RDklOKcIlk1felkPdzA0vRHrYNdhK+bvYkTBcayy145T/UvYLW2OJb4x pwGFORubPRKalm7yrrtVr4dKB9VjB6P1w6QwaVcVs0yvGqooABPUA05hkc4fWCi9 cCp5Qeiac+eFg9FyhJGyJNG74f8wTWh2IzHkHIs6Dx4L0LHqPKbZJ/JN8jHP8d9B e1zmZeXyXCb6FcjlSmDEt7Do7eO7ZgoOLneFKMgBcH5nRifqQkz6MTKq++Gl5c/S vU6r61uL0K3bGAduayyOxp6BUFsNqiLtQP0UM8m3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUI23Q+hwcwfl89uxqxvJpULZ6xj8wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2UzZDFiZjUxLTYwZjMtNDEyYS1hNmMyLTgxYWY4YzJjYjdhNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACPzIAwDQYJKoZIhvcNAQELBQADggEBAIItirddzYsC1NMoUIcx+FU7D5bP eQa2qppJGwC0bZ45tX+SD6L4lwwkz17AWVWvAgX52VvoAJYt4gAF8xgZ5Ag4YTiI BlVXxR8OcOrV9e88fhc+2KNF22foOhnLgFyxsTEkjq76OPUXVbRyarCqtvByxkjc XgXx/WYwORLYMAz3RvI7w+hR60k1xGpBZdGeuahJNyzDGnoxAXYjdIM9PoBtywXQ hfFm/F6Xxzcc9LyUi4pS8iFVZQzh5rR4QggKi3AVUDDjsMUkhvHVjtdbmilZbPqo AfdNTOGD/qRIjcoiFF/ZrOTlpZ9U1ihJdlEXuTFPOlUmA2zxZwz2x4CwfY4= -----END CERTIFICATE-----Generated at Mon Oct 20 02:55:58 2025 by rpki-client