$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f0e2ddf8-394f-406a-b7a5-3b8200ca545c.roa File: f0e2ddf8-394f-406a-b7a5-3b8200ca545c.roa (raw, json) Hash identifier: byNd/tLOPrNxiuDOBCx/jE9RHg/gVXSPxB9mjBUCj2c= Subject key identifier: AF:CD:1C:25:A9:F2:B6:43:01:B9:3C:59:22:C2:82:5F:E3:7B:61:22 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 5EF36EE708D07B3EF284364CCB22581C97B8D882 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f0e2ddf8-394f-406a-b7a5-3b8200ca545c.roa Signing time: Thu 25 Sep 2025 18:29:45 +0000 ROA not before: Thu 25 Sep 2025 18:29:45 +0000 ROA not after: Thu 30 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.166.113.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:f3:6e:e7:08:d0:7b:3e:f2:84:36:4c:cb:22:58:1c:97:b8:d8:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 25 18:29:45 2025 GMT Not After : Oct 30 23:59:59 2025 GMT Subject: serialNumber=601c1900e561bb24390f3d6da2abbff779f681ed697dbd8bbfa05f1d85289ddc, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:e5:39:ef:17:bc:bc:f0:0a:d5:67:4b:ad:ef: 92:d9:50:9f:02:97:5e:f3:35:6f:8a:f0:1d:ff:3d: e8:23:09:b8:f8:a0:db:e1:fe:c7:25:42:f5:63:74: 09:f9:cd:23:49:92:fc:0a:d2:d9:73:32:4a:ad:5b: fa:84:8a:28:10:e0:74:ea:00:1f:27:ef:ce:75:be: bd:d9:c6:6f:b2:67:17:e0:b8:03:3f:8d:35:9c:14: d3:2b:fb:bc:ed:ad:19:78:96:a6:11:4e:47:30:a5: 10:a8:08:c6:ce:14:a6:d1:ad:ac:c7:88:dc:8d:16: 52:d8:37:04:50:9f:a3:f8:b0:05:ce:8c:15:84:c2: 83:b6:43:a2:fc:6b:48:4c:ae:9e:ff:ad:da:9c:ca: 5f:c7:3c:b2:5d:19:5c:7c:c2:f6:0b:dc:21:b4:0c: 8b:fe:e7:df:6b:ac:4f:2c:fd:c5:4a:73:a6:91:17: df:3d:58:c4:5c:74:15:f3:5a:8d:e1:01:8f:e8:f3: 38:80:1f:28:3f:28:72:6f:63:67:58:9f:1c:73:af: e3:40:83:08:58:c7:27:8a:09:6b:5e:cf:f5:5f:88: 19:58:07:d3:a6:5c:15:4a:d7:fb:51:69:d2:2f:12: a4:c8:16:a6:35:1e:96:64:51:98:12:ea:2e:51:ff: bc:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:CD:1C:25:A9:F2:B6:43:01:B9:3C:59:22:C2:82:5F:E3:7B:61:22 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f0e2ddf8-394f-406a-b7a5-3b8200ca545c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.166.113.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:c7:e8:48:58:2d:92:56:ed:a3:ff:84:7d:6a:26:c0:72:b2: e7:b1:85:5e:95:56:57:82:9b:d4:66:93:35:2a:02:8c:27:56: 86:77:6c:59:dd:9d:82:6d:46:e4:a0:73:fa:6c:17:d2:a5:9d: d4:20:e9:84:12:9b:e1:9f:fd:cb:35:fc:e4:d4:d4:5f:b5:67: ca:a4:f5:d4:14:93:8c:f4:92:e2:39:de:70:6a:c5:a0:93:51: 24:b5:60:db:f3:7c:19:30:2c:27:c1:3e:c0:67:08:a1:78:0f: 91:7c:0f:d5:2a:20:ae:b1:5d:b4:dd:24:23:8e:43:c9:37:19: 70:a9:01:bf:3a:20:70:c4:42:e4:5d:3f:73:3c:92:00:53:e7: 3d:8d:df:f7:6f:b7:72:8e:ae:cc:cf:4a:e2:31:5b:36:1b:0c: 46:14:94:1b:7f:16:fa:86:83:29:cd:d7:87:7b:85:4c:fb:64: 9c:e5:94:87:16:4f:4c:cc:b6:2c:c5:80:ed:f9:6e:8c:62:11: 0e:e2:c8:ee:d3:62:58:73:79:76:f6:a7:01:d7:b4:db:a7:5d: 05:80:42:ba:32:29:40:0b:32:13:aa:11:e4:e6:c1:c0:3e:55: 3c:9d:f1:62:32:9e:3a:e3:5f:aa:a1:99:f4:8f:ea:2e:af:f9: b3:c4:6b:33 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXvNu5wjQez7yhDZMyyJYHJe42IIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTI1MTgyOTQ1WhcNMjUxMDMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2MDFjMTkwMGU1NjFiYjI0MzkwZjNkNmRhMmFiYmZmNzc5 ZjY4MWVkNjk3ZGJkOGJiZmEwNWYxZDg1Mjg5ZGRjMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCj5TnvF7y88ArVZ0ut75LZUJ8Cl17zNW+K8B3/PegjCbj4 oNvh/sclQvVjdAn5zSNJkvwK0tlzMkqtW/qEiigQ4HTqAB8n7851vr3Zxm+yZxfg uAM/jTWcFNMr+7ztrRl4lqYRTkcwpRCoCMbOFKbRrazHiNyNFlLYNwRQn6P4sAXO jBWEwoO2Q6L8a0hMrp7/rdqcyl/HPLJdGVx8wvYL3CG0DIv+599rrE8s/cVKc6aR F989WMRcdBXzWo3hAY/o8ziAHyg/KHJvY2dYnxxzr+NAgwhYxyeKCWtez/VfiBlY B9OmXBVK1/tRadIvEqTIFqY1HpZkUZgS6i5R/7zBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUr80cJanytkMBuTxZIsKCX+N7YSIwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2YwZTJkZGY4LTM5NGYtNDA2YS1iN2E1LTNiODIwMGNhNTQ1Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAADpnEwDQYJKoZIhvcNAQELBQADggEBAE/H6EhYLZJW7aP/hH1qJsBysuex hV6VVleCm9RmkzUqAownVoZ3bFndnYJtRuSgc/psF9KlndQg6YQSm+Gf/cs1/OTU 1F+1Z8qk9dQUk4z0kuI53nBqxaCTUSS1YNvzfBkwLCfBPsBnCKF4D5F8D9UqIK6x XbTdJCOOQ8k3GXCpAb86IHDEQuRdP3M8kgBT5z2N3/dvt3KOrszPSuIxWzYbDEYU lBt/FvqGgynN14d7hUz7ZJzllIcWT0zMtizFgO35boxiEQ7iyO7TYlhzeXb2pwHX tNunXQWAQroyKUALMhOqEeTmwcA+VTyd8WIynjrjX6qhmfSP6i6v+bPEazM= -----END CERTIFICATE-----Generated at Mon Oct 20 08:29:36 2025 by rpki-client