$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/eeebd245-2882-4076-b684-661c8f96c60e.roa File: eeebd245-2882-4076-b684-661c8f96c60e.roa (raw, json) Hash identifier: pgOOiJh/WcfXxyScU+wwhB5s6d98aGZpcVyiN1ECGZk= Subject key identifier: 9B:32:00:EF:FB:6C:EE:F3:F8:EC:FB:2A:DC:7D:0D:17:35:42:50:22 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 0622A120FE28689D9E097172A2DEB49D9AB3BF02 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/eeebd245-2882-4076-b684-661c8f96c60e.roa Signing time: Thu 25 Sep 2025 20:52:14 +0000 ROA not before: Thu 25 Sep 2025 20:52:14 +0000 ROA not after: Thu 30 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.174.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:22:a1:20:fe:28:68:9d:9e:09:71:72:a2:de:b4:9d:9a:b3:bf:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 25 20:52:14 2025 GMT Not After : Oct 30 23:59:59 2025 GMT Subject: serialNumber=1bd351eb0cce4e65c4188f4f68729e4cf68c8307bf514d1a8e61e25f1a4d40d5, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:3b:45:c4:86:4d:f2:a9:23:28:2c:ab:ab:b2: 2b:21:fd:73:60:18:9a:1d:ac:d2:f7:53:5c:40:ac: d5:e7:14:28:12:d7:40:9d:82:4a:6d:41:08:43:4c: 3e:2d:f5:47:c3:66:b1:9d:cb:c5:13:25:d8:20:d3: 99:c3:5e:6c:23:3e:4d:ff:3f:07:01:7c:ac:5c:8a: 62:63:2d:e9:4b:fa:6c:14:0d:2d:11:e9:1a:d9:81: 9d:69:b4:aa:bb:c6:f2:f3:cf:17:7b:1a:7e:ec:63: 56:82:40:cf:16:a6:0c:4c:8e:98:b8:91:90:a8:70: 7a:03:84:8c:1c:dc:80:11:bf:16:92:e5:d0:e1:f8: 07:fd:d8:5a:8b:e6:7f:49:cb:3b:f1:df:20:34:df: 45:6d:1a:21:4a:2e:95:a8:6e:8e:a5:93:b0:4c:4a: 99:00:13:01:05:2e:83:4e:6f:5a:76:d3:c1:fd:68: 71:7e:66:84:90:85:68:ea:00:e0:62:7d:5c:9d:db: d0:0a:91:97:4e:af:41:6d:cb:38:7e:64:8e:5b:e7: e5:e3:8e:0b:1d:4a:98:ae:17:fd:9c:1c:0a:39:ba: 6f:0f:94:56:95:cc:34:33:6a:b2:87:8e:64:83:d3: a3:a2:6d:66:48:89:12:18:dd:a8:d7:23:06:fc:bc: 73:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:32:00:EF:FB:6C:EE:F3:F8:EC:FB:2A:DC:7D:0D:17:35:42:50:22 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/eeebd245-2882-4076-b684-661c8f96c60e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.174.18.0/24 Signature Algorithm: sha256WithRSAEncryption 56:18:32:af:d3:52:5c:3e:24:ce:c8:1b:7e:85:2f:c2:77:c5: c5:5c:50:9f:cc:13:51:d7:38:9d:c7:ee:64:da:29:e1:af:ee: 2a:7a:58:d9:33:dd:d6:28:b2:d2:91:90:00:7a:cb:04:15:d9: 70:10:8b:61:0a:23:b2:33:4b:5b:9b:a6:f9:67:3a:c7:26:59: 78:30:5f:32:0e:20:b5:b5:01:f7:13:cb:46:b8:93:1d:7d:66: 33:2f:fb:00:58:c5:35:74:b7:07:42:02:21:ce:2f:c9:a5:97: c4:c2:a6:7c:5d:73:85:15:27:89:17:95:80:3b:76:62:b4:30: 99:30:34:94:d1:c3:73:0c:b3:0c:3b:9d:2e:b3:9d:b7:de:0b: da:82:35:a8:7f:b0:cf:55:bc:26:ed:c9:26:fd:20:c6:41:a4: 21:c6:c1:4c:84:52:9f:14:dd:7d:e1:03:90:be:17:f7:e9:55: 8f:99:9f:61:77:ef:81:bb:81:a9:da:2a:65:e0:d2:35:ed:6d: 12:85:72:b7:56:23:e0:89:53:cf:99:c3:e6:1e:d4:3c:69:65: 8b:cb:49:e0:00:17:b7:de:a5:4d:66:6e:b8:d4:30:91:dd:11: 99:e1:b9:ba:b4:1c:51:b8:fb:08:bd:73:1f:4c:2e:84:2d:7e: 95:36:7f:a0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBiKhIP4oaJ2eCXFyot60nZqzvwIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTI1MjA1MjE0WhcNMjUxMDMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxYmQzNTFlYjBjY2U0ZTY1YzQxODhmNGY2ODcyOWU0Y2Y2 OGM4MzA3YmY1MTRkMWE4ZTYxZTI1ZjFhNGQ0MGQ1MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8O0XEhk3yqSMoLKursish/XNgGJodrNL3U1xArNXnFCgS 10CdgkptQQhDTD4t9UfDZrGdy8UTJdgg05nDXmwjPk3/PwcBfKxcimJjLelL+mwU DS0R6RrZgZ1ptKq7xvLzzxd7Gn7sY1aCQM8WpgxMjpi4kZCocHoDhIwc3IARvxaS 5dDh+Af92FqL5n9Jyzvx3yA030VtGiFKLpWobo6lk7BMSpkAEwEFLoNOb1p208H9 aHF+ZoSQhWjqAOBifVyd29AKkZdOr0Ftyzh+ZI5b5+XjjgsdSpiuF/2cHAo5um8P lFaVzDQzarKHjmSD06OibWZIiRIY3ajXIwb8vHPXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUmzIA7/ts7vP47Psq3H0NFzVCUCIwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2VlZWJkMjQ1LTI4ODItNDA3Ni1iNjg0LTY2MWM4Zjk2YzYwZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAADrhIwDQYJKoZIhvcNAQELBQADggEBAFYYMq/TUlw+JM7IG36FL8J3xcVc UJ/ME1HXOJ3H7mTaKeGv7ip6WNkz3dYostKRkAB6ywQV2XAQi2EKI7IzS1ubpvln OscmWXgwXzIOILW1AfcTy0a4kx19ZjMv+wBYxTV0twdCAiHOL8mll8TCpnxdc4UV J4kXlYA7dmK0MJkwNJTRw3MMsww7nS6znbfeC9qCNah/sM9VvCbtySb9IMZBpCHG wUyEUp8U3X3hA5C+F/fpVY+Zn2F374G7ganaKmXg0jXtbRKFcrdWI+CJU8+Zw+Ye 1DxpZYvLSeAAF7fepU1mbrjUMJHdEZnhubq0HFG4+wi9cx9MLoQtfpU2f6A= -----END CERTIFICATE-----Generated at Mon Oct 20 06:06:44 2025 by rpki-client