$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/16e38074-2bb1-45d4-bdad-37eaf03741c5.roa File: 16e38074-2bb1-45d4-bdad-37eaf03741c5.roa (raw, json) Hash identifier: b7gNwjpqp4C0KkjofnVTEbWdaVIFsP2NudXrJGOTb8E= Subject key identifier: C7:62:3E:7D:B1:2A:3E:C7:AE:2B:C9:96:13:13:40:3D:E6:7E:F6:CF Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 254F3D4B816FE47B656528547215817CAFA15B3C Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/16e38074-2bb1-45d4-bdad-37eaf03741c5.roa Signing time: Tue 21 Oct 2025 06:31:22 +0000 ROA not before: Tue 21 Oct 2025 06:31:22 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 161.188.148.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:4f:3d:4b:81:6f:e4:7b:65:65:28:54:72:15:81:7c:af:a1:5b:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 21 06:31:22 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=24f28b442da2c86b50f1af4a9533d1b763d8533b670d26a2c007422b38e15d53, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ea:9c:cc:23:e9:38:9c:85:df:cb:9a:cf:ce: 90:1e:38:24:af:98:b8:6e:be:dc:32:28:25:f5:ea: af:86:3e:9d:7e:95:cc:16:8a:da:3a:bf:8e:c8:7f: f4:74:dd:11:ca:58:b4:8c:ea:ea:9c:82:86:df:b5: ee:ec:8e:f9:10:93:08:5d:65:bb:9e:37:aa:16:32: 2f:f2:aa:ec:38:c3:90:2f:a5:db:23:ba:37:a9:37: 0f:5e:c5:2c:b1:75:06:9a:96:dc:37:b5:f2:73:63: 79:7b:64:e5:99:ea:f5:e5:1e:2c:05:c8:39:da:a6: 3a:1c:19:1f:e0:02:22:4d:8a:29:c2:e7:7a:78:a0: 50:c3:66:c0:31:68:b2:52:e5:24:c5:63:16:2a:af: b2:dc:0d:a3:b7:97:16:73:fb:fa:ba:9c:98:7b:0f: 1c:9d:a8:17:a2:25:e1:b0:58:7a:c6:8d:ab:8f:c7: a1:b8:c9:4d:22:76:a9:83:7e:97:16:01:f3:ba:02: 93:be:5c:0e:8b:0e:5a:d8:5f:ba:f6:3b:a0:d0:d1: 47:c3:3c:1d:d6:5f:57:a8:67:ea:ee:17:5e:95:1f: fb:7b:2b:37:ee:1f:38:f9:09:ae:81:fe:e3:dc:ef: c4:d9:86:8e:65:3d:92:cc:38:8e:db:24:c7:bb:fd: 70:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:62:3E:7D:B1:2A:3E:C7:AE:2B:C9:96:13:13:40:3D:E6:7E:F6:CF X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/16e38074-2bb1-45d4-bdad-37eaf03741c5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 161.188.148.0/23 Signature Algorithm: sha256WithRSAEncryption a7:b6:0b:3f:27:9b:72:ef:c3:bc:23:78:de:ea:bc:ca:0c:66: 84:5e:41:12:db:31:5f:a9:07:5b:6c:72:33:78:0d:f2:ba:32: 6c:5d:c6:f7:7d:30:5e:0b:a6:ec:07:d0:23:a0:6a:5e:69:ee: 87:1a:46:d5:1a:56:81:5e:04:50:0d:24:4d:40:64:c4:06:61: f2:8b:4c:74:74:20:ee:7e:1c:75:ee:02:13:12:e7:53:e7:20: 85:f9:68:88:b9:05:4c:91:bf:49:f6:5f:28:1b:9b:d3:8f:54: 58:e3:12:11:8b:bf:04:df:a2:ae:fa:ba:8c:96:db:60:59:19: 4e:c6:e0:ba:44:43:9a:9b:38:49:ee:e2:23:77:9a:88:9c:97: c0:78:6a:b5:d8:0e:cf:1f:b3:9f:d7:f0:81:62:d8:65:00:ea: 89:76:e8:f7:0c:43:a7:5f:da:d6:7e:e3:69:39:e5:87:71:d5: d4:b6:1f:aa:0e:00:36:d8:a6:49:c0:35:03:65:f2:84:9e:18: 69:78:f7:49:06:48:14:62:28:3d:92:d4:17:a8:44:55:9d:c6: ea:2b:31:c7:5a:12:4d:bb:06:26:bc:e2:58:e1:fd:5b:09:03: 3b:57:63:57:12:72:de:5a:d2:8c:35:ca:9e:48:80:85:41:86: 1e:2c:33:99 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJU89S4Fv5HtlZShUchWBfK+hWzwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDIxMDYzMTIyWhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AyNGYyOGI0NDJkYTJjODZiNTBmMWFmNGE5NTMzZDFiNzYz ZDg1MzNiNjcwZDI2YTJjMDA3NDIyYjM4ZTE1ZDUzMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDD6pzMI+k4nIXfy5rPzpAeOCSvmLhuvtwyKCX16q+GPp1+ lcwWito6v47If/R03RHKWLSM6uqcgobfte7sjvkQkwhdZbueN6oWMi/yquw4w5Av pdsjujepNw9exSyxdQaaltw3tfJzY3l7ZOWZ6vXlHiwFyDnapjocGR/gAiJNiinC 53p4oFDDZsAxaLJS5STFYxYqr7LcDaO3lxZz+/q6nJh7DxydqBeiJeGwWHrGjauP x6G4yU0idqmDfpcWAfO6ApO+XA6LDlrYX7r2O6DQ0UfDPB3WX1eoZ+ruF16VH/t7 KzfuHzj5Ca6B/uPc78TZho5lPZLMOI7bJMe7/XDlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUx2I+fbEqPseuK8mWExNAPeZ+9s8wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzE2ZTM4MDc0LTJiYjEtNDVkNC1iZGFkLTM3ZWFmMDM3NDFjNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAGhvJQwDQYJKoZIhvcNAQELBQADggEBAKe2Cz8nm3Lvw7wjeN7qvMoMZoRe QRLbMV+pB1tscjN4DfK6Mmxdxvd9MF4LpuwH0COgal5p7ocaRtUaVoFeBFANJE1A ZMQGYfKLTHR0IO5+HHXuAhMS51PnIIX5aIi5BUyRv0n2Xygbm9OPVFjjEhGLvwTf oq76uoyW22BZGU7G4LpEQ5qbOEnu4iN3moicl8B4arXYDs8fs5/X8IFi2GUA6ol2 6PcMQ6df2tZ+42k55Ydx1dS2H6oOADbYpknANQNl8oSeGGl490kGSBRiKD2S1Beo RFWdxuorMcdaEk27Bia84ljh/VsJAztXY1cSct5a0ow1yp5IgIVBhh4sM5k= -----END CERTIFICATE-----Generated at Wed Nov 5 01:48:33 2025 by rpki-client