$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/00740707-6d52-42e8-8e5d-2aefaa364561.roa File: 00740707-6d52-42e8-8e5d-2aefaa364561.roa (raw, json) Hash identifier: OJ3K1BffopX6+0UMqHj+neo7RTF/2NC5Wu7tVTXOalw= Subject key identifier: 68:8E:A9:BC:97:44:C7:4A:CF:CF:DF:12:2B:92:5A:61:22:65:1D:16 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 1D6791DB9ED4DF44913352E9E704D5F22991AE41 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/00740707-6d52-42e8-8e5d-2aefaa364561.roa Signing time: Mon 20 Oct 2025 10:34:06 +0000 ROA not before: Mon 20 Oct 2025 10:34:06 +0000 ROA not after: Mon 24 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.170.46.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:67:91:db:9e:d4:df:44:91:33:52:e9:e7:04:d5:f2:29:91:ae:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 20 10:34:06 2025 GMT Not After : Nov 24 23:59:59 2025 GMT Subject: serialNumber=491ceacd48c2e3715ac6e8027a66ae9f69a5d016501a17d7e57a7459be7e9953, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:a6:d6:d5:d3:60:e7:af:16:d1:6f:ac:49:7e: 92:11:cc:47:5a:a2:50:8b:f3:e4:d7:68:3f:12:3f: 81:c3:4d:92:02:00:15:a5:b1:81:91:d6:d2:a6:36: 83:4d:cf:29:5a:17:aa:e4:6c:1c:a8:05:a5:c1:69: a7:f0:41:92:54:35:ae:7c:a1:bc:6d:ea:0e:f2:3f: d3:07:3b:19:07:a2:2d:8c:67:b2:1d:37:9b:53:df: 5c:0b:19:d3:c6:8c:ed:11:dd:6f:de:a7:ae:a6:dc: 90:de:07:b5:f4:58:d0:0d:b8:e1:45:ba:70:57:c0: ad:b7:a5:db:ef:f0:c9:fa:12:7e:ac:1a:ce:47:33: 2f:36:d8:2f:e5:b5:0c:7d:7b:25:83:42:6d:52:72: 34:7b:cf:64:52:0f:f1:59:ed:00:41:f5:4d:9f:33: a3:86:98:58:29:d8:43:fc:49:6e:1a:3e:2e:58:fd: 2d:35:e5:38:53:b2:63:13:4b:15:79:10:59:c0:1a: a8:7d:86:cd:b8:1c:1b:c6:56:c1:72:f3:58:34:f0: d8:6c:41:ad:f6:c1:a8:33:e7:ed:74:66:65:63:fb: 87:da:77:07:f6:9b:5d:a6:c1:8f:e8:b3:a4:e3:79: bb:a1:5a:86:2c:92:51:5d:c2:dd:c6:b9:c4:68:2b: ad:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:8E:A9:BC:97:44:C7:4A:CF:CF:DF:12:2B:92:5A:61:22:65:1D:16 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/00740707-6d52-42e8-8e5d-2aefaa364561.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.170.46.0/23 Signature Algorithm: sha256WithRSAEncryption b4:79:4d:05:13:3b:b7:0a:8d:c8:2f:e0:5e:71:b4:a5:c8:79: 0d:2e:96:7f:f2:fe:45:41:82:00:09:1a:23:23:17:f2:9d:08: e4:78:07:aa:6f:6a:c4:e5:e8:4e:d4:10:2b:58:a7:6f:66:a3: e4:e4:d1:0c:c2:ce:66:19:db:da:99:12:fa:8a:f4:f7:91:ed: 47:c8:76:a1:cc:d6:a2:e2:42:39:09:de:13:cc:8e:dd:1e:97: 35:fe:37:1e:e4:41:bb:33:00:b2:44:03:ef:64:89:07:d5:50: 87:94:f3:b7:b4:fe:c4:84:9c:1d:3c:fa:f0:76:ae:9b:a6:2a: 29:fa:db:d9:26:d7:e1:23:c1:a9:7a:bf:cb:93:8c:5b:1a:dc: 99:95:69:85:be:95:e8:a7:60:bf:b7:50:9b:52:b6:1e:83:75: 81:f7:78:db:b0:c2:72:bb:bb:4e:05:6f:42:3c:46:a8:02:8a: de:74:70:f9:d2:e1:f5:58:76:95:45:30:2c:5d:c1:28:e9:6f: 52:7a:88:65:ad:13:b2:46:c8:7f:4e:79:e0:24:8f:30:93:ae: 37:b9:a8:96:1a:07:5e:d8:5d:7e:a5:65:7a:a4:47:f8:22:24: ca:83:37:e6:cf:57:c0:8e:a2:92:81:10:2d:aa:3a:a8:7a:fd: bb:21:b8:8f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHWeR257U30SRM1Lp5wTV8imRrkEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDIwMTAzNDA2WhcNMjUxMTI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0OTFjZWFjZDQ4YzJlMzcxNWFjNmU4MDI3YTY2YWU5ZjY5 YTVkMDE2NTAxYTE3ZDdlNTdhNzQ1OWJlN2U5OTUzMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCiptbV02DnrxbRb6xJfpIRzEdaolCL8+TXaD8SP4HDTZIC ABWlsYGR1tKmNoNNzylaF6rkbByoBaXBaafwQZJUNa58obxt6g7yP9MHOxkHoi2M Z7IdN5tT31wLGdPGjO0R3W/ep66m3JDeB7X0WNANuOFFunBXwK23pdvv8Mn6En6s Gs5HMy822C/ltQx9eyWDQm1ScjR7z2RSD/FZ7QBB9U2fM6OGmFgp2EP8SW4aPi5Y /S015ThTsmMTSxV5EFnAGqh9hs24HBvGVsFy81g08NhsQa32wagz5+10ZmVj+4fa dwf2m12mwY/os6TjebuhWoYsklFdwt3GucRoK61vAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUaI6pvJdEx0rPz98SK5JaYSJlHRYwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzAwNzQwNzA3LTZkNTItNDJlOC04ZTVkLTJhZWZhYTM2NDU2MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEDqi4wDQYJKoZIhvcNAQELBQADggEBALR5TQUTO7cKjcgv4F5xtKXIeQ0u ln/y/kVBggAJGiMjF/KdCOR4B6pvasTl6E7UECtYp29mo+Tk0QzCzmYZ29qZEvqK 9PeR7UfIdqHM1qLiQjkJ3hPMjt0elzX+Nx7kQbszALJEA+9kiQfVUIeU87e0/sSE nB08+vB2rpumKin629km1+Ejwal6v8uTjFsa3JmVaYW+leinYL+3UJtSth6DdYH3 eNuwwnK7u04Fb0I8RqgCit50cPnS4fVYdpVFMCxdwSjpb1J6iGWtE7JGyH9OeeAk jzCTrje5qJYaB17YXX6lZXqkR/giJMqDN+bPV8COopKBEC2qOqh6/bshuI8= -----END CERTIFICATE-----Generated at Wed Nov 5 01:45:35 2025 by rpki-client