$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/eca36373-2c2b-4810-b0c5-c530f9afed33.roa File: eca36373-2c2b-4810-b0c5-c530f9afed33.roa (raw, json) Hash identifier: qj/lIhqe1ckjIVePH5uGdODGel8E8ZDE1+3tFjw3gWw= Subject key identifier: 1F:36:37:B4:75:DB:1D:51:E7:3C:F4:83:93:B2:8C:86:29:68:3D:69 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 3D22DF117861599BE16ED87407A49279AD0C07C1 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/eca36373-2c2b-4810-b0c5-c530f9afed33.roa Signing time: Fri 26 Sep 2025 15:29:21 +0000 ROA not before: Fri 26 Sep 2025 15:29:21 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.177.88.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:22:df:11:78:61:59:9b:e1:6e:d8:74:07:a4:92:79:ad:0c:07:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 26 15:29:21 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=e4f934e8bacf022613b45d0567b64e7dc4082739e3221e63fc3c7f670f787bb6, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:66:59:c8:99:e7:7a:44:1a:55:15:a1:5b:bc: 76:38:70:1f:f3:b2:0d:a8:c2:e9:70:c7:47:07:7a: 07:3f:e9:8b:69:c9:7e:94:0d:06:eb:5e:9e:06:53: 2b:12:99:41:3b:81:25:c5:58:a4:14:44:fd:38:46: 78:1b:bd:ac:00:df:31:b7:b5:0a:a7:39:75:24:ff: 14:16:4e:26:63:8e:4f:ba:f4:46:a5:16:07:56:9d: 11:28:33:4f:3a:b6:fe:e9:f5:75:c4:96:7c:5e:bb: 72:70:19:5e:af:cc:43:a5:41:7a:63:c9:07:5b:5d: bd:d3:cc:32:93:d5:f1:7d:bb:bb:17:e6:c7:83:1f: e6:9b:54:c0:55:45:d6:0b:50:f0:f3:71:ca:c7:8b: d5:97:c4:df:2a:91:f3:92:81:0a:00:0c:7d:69:e9: 0d:3d:8c:fe:d2:28:6e:e3:b7:da:95:71:ee:ab:38: ae:1e:58:08:c3:d4:47:73:eb:ed:39:9c:c7:3a:4e: 10:d9:8c:6b:e4:a6:d0:2b:a0:77:cc:07:e7:16:2e: 6c:64:15:87:13:13:14:f3:dc:f8:fa:2b:2b:c6:0c: b6:e0:df:a5:5d:42:4d:05:41:05:ce:ad:b0:22:59: 4c:20:08:5a:40:49:03:78:a4:6b:4e:02:91:a0:7b: 3d:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:36:37:B4:75:DB:1D:51:E7:3C:F4:83:93:B2:8C:86:29:68:3D:69 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/eca36373-2c2b-4810-b0c5-c530f9afed33.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.177.88.0/24 Signature Algorithm: sha256WithRSAEncryption 66:d1:1c:33:d8:6e:5f:6e:8b:93:6a:8a:21:3c:df:5b:0a:92: 3b:d7:9c:e1:5f:81:3b:f0:cc:f9:8c:e9:96:b8:57:e0:85:07: 73:bc:bc:0c:4f:9e:9f:d9:b7:db:db:9f:b1:31:17:52:2a:ed: 14:1e:f9:8d:47:bc:8e:68:34:a8:f3:62:af:53:78:1f:fd:ef: e2:28:bb:c8:c4:2b:02:e8:49:ff:be:38:c2:71:b6:d0:9e:bb: e0:17:5d:52:00:f0:d8:d8:1c:b7:c5:a4:3d:7f:a5:bf:81:7f: 3a:df:90:e9:e3:94:ba:e5:54:01:db:63:07:d1:60:54:44:a5: 65:b4:31:f0:4b:e7:52:69:14:32:9e:30:5f:7e:35:eb:6c:40: 1f:11:a8:d3:64:6d:a3:1b:ad:ab:1c:ab:b5:56:12:13:47:8d: 35:25:94:8d:f8:9f:7e:03:d4:9e:36:bd:2d:55:c9:ed:f9:4c: c3:2d:74:fc:11:59:bd:ee:a6:1e:9f:a4:fc:a8:61:be:6f:13: a1:3d:9c:8b:33:8d:0e:e7:ba:2c:47:99:6e:6a:7d:59:7b:8c: 41:50:01:79:39:14:ce:60:ea:a4:53:87:68:be:29:b3:48:30: ae:e1:4f:c1:69:39:f8:f1:a8:3c:bc:f3:91:4a:8a:f4:81:62: f1:e8:27:54 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPSLfEXhhWZvhbth0B6SSea0MB8EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTI2MTUyOTIxWhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0BlNGY5MzRlOGJhY2YwMjI2MTNiNDVkMDU2N2I2NGU3ZGM0 MDgyNzM5ZTMyMjFlNjNmYzNjN2Y2NzBmNzg3YmI2MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpZlnImed6RBpVFaFbvHY4cB/zsg2owulwx0cHegc/6Ytp yX6UDQbrXp4GUysSmUE7gSXFWKQURP04RngbvawA3zG3tQqnOXUk/xQWTiZjjk+6 9EalFgdWnREoM086tv7p9XXElnxeu3JwGV6vzEOlQXpjyQdbXb3TzDKT1fF9u7sX 5seDH+abVMBVRdYLUPDzccrHi9WXxN8qkfOSgQoADH1p6Q09jP7SKG7jt9qVce6r OK4eWAjD1Edz6+05nMc6ThDZjGvkptAroHfMB+cWLmxkFYcTExTz3Pj6KyvGDLbg 36VdQk0FQQXOrbAiWUwgCFpASQN4pGtOApGgez2VAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUHzY3tHXbHVHnPPSDk7KMhiloPWkwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2VjYTM2MzczLTJjMmItNDgxMC1iMGM1LWM1MzBmOWFmZWQzMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAPsVgwDQYJKoZIhvcNAQELBQADggEBAGbRHDPYbl9ui5NqiiE831sKkjvX nOFfgTvwzPmM6Za4V+CFB3O8vAxPnp/Zt9vbn7ExF1Iq7RQe+Y1HvI5oNKjzYq9T eB/97+Iou8jEKwLoSf++OMJxttCeu+AXXVIA8NjYHLfFpD1/pb+BfzrfkOnjlLrl VAHbYwfRYFREpWW0MfBL51JpFDKeMF9+NetsQB8RqNNkbaMbrascq7VWEhNHjTUl lI34n34D1J42vS1Vye35TMMtdPwRWb3uph6fpPyoYb5vE6E9nIszjQ7nuixHmW5q fVl7jEFQAXk5FM5g6qRTh2i+KbNIMK7hT8FpOfjxqDy885FKivSBYvHoJ1Q= -----END CERTIFICATE-----Generated at Mon Oct 20 09:02:24 2025 by rpki-client