$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f9bf519b-0041-4437-a33e-465a0742915a.roa File: f9bf519b-0041-4437-a33e-465a0742915a.roa (raw, json) Hash identifier: ZWMPMJmmiPew/0fNdO0WC6+hG5KHbGIVVRisgDdfly0= Subject key identifier: B4:1C:C5:CE:60:0A:0E:93:AD:3F:92:DC:6D:B6:21:45:81:F3:0E:FF Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 49369F687AC18D12886D895BAE67CF2786B24A2D Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f9bf519b-0041-4437-a33e-465a0742915a.roa Signing time: Fri 26 Sep 2025 02:09:27 +0000 ROA not before: Fri 26 Sep 2025 02:09:27 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.170.192.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:36:9f:68:7a:c1:8d:12:88:6d:89:5b:ae:67:cf:27:86:b2:4a:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 26 02:09:27 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=584be7f57748b9bb61e839ca7204106f7e096c769a9176d4b5a6709416051a94, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:82:db:68:d9:ce:57:f4:f5:7f:30:05:dc:f3: 8e:32:b6:6f:4e:ae:af:74:3a:e4:26:68:94:39:c1: 9c:fc:ba:1c:e2:78:48:f0:c3:35:6d:3b:3d:03:5e: 40:b1:a6:d0:7c:82:b9:ae:a0:5a:7a:12:29:06:6a: 18:34:ce:8d:b3:ed:58:70:5a:8e:72:58:76:67:f7: 4b:c2:e0:2e:86:38:bd:22:9e:48:31:c9:09:70:af: fc:dc:32:ac:6e:06:a9:4c:ee:ab:c3:18:66:c6:09: 60:9e:47:b2:3f:d6:7c:a7:7f:cd:16:57:8d:17:33: f9:96:c4:18:bd:49:7c:12:28:24:99:1a:22:f5:1a: e6:a2:02:1d:72:2e:93:2c:6d:d3:bb:cf:16:97:70: 12:e8:82:b8:eb:a6:b3:cf:04:4c:da:6a:42:18:f2: de:40:cc:c6:7c:f6:84:ce:cf:a6:93:f0:17:50:71: 6d:83:82:d8:8b:03:45:f2:3e:61:6a:bd:ce:f3:de: 02:a6:e4:3d:bf:f9:a4:c9:dc:b2:ca:7b:f6:91:74: 00:ca:37:d5:5c:d6:3a:0c:b9:92:2e:11:a5:93:c6: 20:9d:6a:52:53:ec:20:8e:53:11:f8:98:94:9c:f3: 2e:cf:4d:23:2b:ac:8a:dd:ea:2f:70:df:ee:8a:74: c1:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:1C:C5:CE:60:0A:0E:93:AD:3F:92:DC:6D:B6:21:45:81:F3:0E:FF X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f9bf519b-0041-4437-a33e-465a0742915a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.170.192.0/19 Signature Algorithm: sha256WithRSAEncryption 43:0b:b9:e1:25:81:60:24:d1:b4:91:45:a7:4e:2d:a2:ef:34: 54:34:5d:62:91:4b:35:31:05:e5:75:08:2a:c9:4f:eb:87:54: 4d:07:b9:7b:d7:d3:b3:82:29:7a:5f:42:81:0d:ae:cd:bd:4c: d0:ec:ba:29:ed:5e:e8:ee:85:96:dd:62:98:58:13:df:46:19: 72:67:a4:f7:fe:1c:83:2a:08:3b:0b:42:6a:e1:e0:5e:c7:19: ae:cc:63:a0:b2:f7:e5:38:fe:88:37:db:99:dc:ea:13:49:b2: 2e:8f:70:7d:4a:a2:55:7e:48:f0:34:03:37:90:d8:f6:e7:21: 17:d9:a0:1b:57:04:df:1d:6a:be:c5:b2:5b:9c:e1:7f:2e:c6: 41:60:37:06:9f:07:22:0b:0b:c0:86:7c:92:dd:e3:42:9f:c1: df:56:5f:8d:aa:24:0d:b7:3a:f4:38:7a:cf:8d:12:1b:13:e7: cf:e9:5e:40:4c:e6:e8:db:2e:e2:aa:79:d4:ab:dd:bd:91:a6: 44:91:00:60:94:6a:09:0f:6d:fa:fd:e7:00:bd:68:ff:32:2b: cc:6f:d0:c8:71:48:7f:30:d7:31:45:4a:fc:02:a4:a6:e6:37: a6:c8:3c:bc:93:02:7a:bc:57:5c:a9:1d:68:27:5c:6c:9e:b0: 49:e7:d6:ff -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSTafaHrBjRKIbYlbrmfPJ4aySi0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTI2MDIwOTI3WhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0A1ODRiZTdmNTc3NDhiOWJiNjFlODM5Y2E3MjA0MTA2Zjdl MDk2Yzc2OWE5MTc2ZDRiNWE2NzA5NDE2MDUxYTk0MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIgtto2c5X9PV/MAXc844ytm9Orq90OuQmaJQ5wZz8uhzi eEjwwzVtOz0DXkCxptB8grmuoFp6EikGahg0zo2z7VhwWo5yWHZn90vC4C6GOL0i nkgxyQlwr/zcMqxuBqlM7qvDGGbGCWCeR7I/1nynf80WV40XM/mWxBi9SXwSKCSZ GiL1GuaiAh1yLpMsbdO7zxaXcBLogrjrprPPBEzaakIY8t5AzMZ89oTOz6aT8BdQ cW2DgtiLA0XyPmFqvc7z3gKm5D2/+aTJ3LLKe/aRdADKN9Vc1joMuZIuEaWTxiCd alJT7CCOUxH4mJSc8y7PTSMrrIrd6i9w3+6KdMF/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUtBzFzmAKDpOtP5LcbbYhRYHzDv8wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2Y5YmY1MTliLTAwNDEtNDQzNy1hMzNlLTQ2NWEwNzQyOTE1YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUDqsAwDQYJKoZIhvcNAQELBQADggEBAEMLueElgWAk0bSRRadOLaLvNFQ0 XWKRSzUxBeV1CCrJT+uHVE0HuXvX07OCKXpfQoENrs29TNDsuintXujuhZbdYphY E99GGXJnpPf+HIMqCDsLQmrh4F7HGa7MY6Cy9+U4/og325nc6hNJsi6PcH1KolV+ SPA0AzeQ2PbnIRfZoBtXBN8dar7Fsluc4X8uxkFgNwafByILC8CGfJLd40Kfwd9W X42qJA23OvQ4es+NEhsT58/pXkBM5ujbLuKqedSr3b2RpkSRAGCUagkPbfr95wC9 aP8yK8xv0MhxSH8w1zFFSvwCpKbmN6bIPLyTAnq8V1ypHWgnXGyesEnn1v8= -----END CERTIFICATE-----Generated at Mon Oct 20 21:11:40 2025 by rpki-client