$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/24487e32-8bcd-4878-8d68-7d972644b0b9.roa File: 24487e32-8bcd-4878-8d68-7d972644b0b9.roa (raw, json) Hash identifier: 4Ue+/OfIYbS3PhKp/an8a5o8663aX6nR4a6lvlTmTBM= Subject key identifier: 5F:69:EE:8F:D2:FB:D9:B1:F1:E9:1A:6F:D9:D8:B2:6A:AB:6B:8F:5D Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 4CD1D258F36E0C7769C56625E35BD49939E04442 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/24487e32-8bcd-4878-8d68-7d972644b0b9.roa Signing time: Tue 28 Oct 2025 17:36:46 +0000 ROA not before: Tue 28 Oct 2025 17:36:46 +0000 ROA not after: Tue 02 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.174.186.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:d1:d2:58:f3:6e:0c:77:69:c5:66:25:e3:5b:d4:99:39:e0:44:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 28 17:36:46 2025 GMT Not After : Dec 2 23:59:59 2025 GMT Subject: serialNumber=2aec85d4c9d15c36c265bed0ece56b0e6f3981bd5f5b586c958709fcdb6fb5aa, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:ab:f6:47:a0:6c:80:0b:b3:94:a0:a5:37:40: 91:c8:3c:6c:d4:70:a4:45:42:b0:30:a9:df:62:68: f2:55:8d:d8:72:20:9b:b1:7d:a9:c6:45:82:80:5b: ec:18:06:67:ca:8c:b6:e6:ed:9e:93:3b:db:a6:15: 0e:35:29:40:3c:eb:96:83:2b:de:5e:da:ee:5e:e8: ea:b1:c0:ea:94:34:5e:f5:3b:03:01:07:1d:a6:7c: 12:53:e4:ac:1c:68:ae:f3:af:0b:b7:f9:ae:f8:cb: 52:3c:bc:6d:7a:40:d6:d7:c1:08:c0:bd:7e:e1:d2: 57:3f:d9:c1:c5:86:47:b9:60:90:ef:24:a5:41:3e: 5d:ba:52:c9:1b:a5:59:02:3d:33:17:c9:fa:1a:0e: 29:22:46:40:47:a6:5d:92:8d:cd:93:ee:54:16:57: b0:1b:5a:4f:2f:ef:19:1a:18:13:f9:98:1c:3d:a1: c6:79:20:41:fd:c4:45:63:57:21:de:31:a9:7d:de: 42:a4:ae:a3:0a:38:e3:7a:8c:a4:da:d6:55:c3:d0: d9:ed:06:8e:91:28:78:57:5b:83:38:63:6a:2e:c7: 7d:76:39:9e:9d:3e:e9:1f:96:3f:41:e2:b6:37:c3: 6d:af:61:78:1a:96:7a:d2:f5:23:8d:48:c6:f1:52: 4e:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:69:EE:8F:D2:FB:D9:B1:F1:E9:1A:6F:D9:D8:B2:6A:AB:6B:8F:5D X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/24487e32-8bcd-4878-8d68-7d972644b0b9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.174.186.0/23 Signature Algorithm: sha256WithRSAEncryption 57:64:2e:8c:06:0e:58:df:94:46:ab:eb:8f:c3:e1:35:41:91: 7c:1e:b0:79:1f:b6:d3:07:db:e2:08:30:99:b5:19:b0:1c:01: 42:b1:a1:95:c1:5d:26:7c:ee:09:72:60:10:41:70:98:74:0c: 3c:cf:30:72:a9:5f:f9:59:2e:6e:78:04:53:22:75:04:84:8f: 44:2b:fd:f0:7c:6c:5e:32:9c:6d:3e:a6:22:80:8b:5a:59:e5: 83:b0:a3:3c:df:67:e6:e4:26:71:d1:72:ff:e2:63:32:a1:a6: 4d:36:86:26:d8:97:49:ac:11:1e:b9:ec:2e:26:47:f7:99:af: 8c:71:b5:9d:cf:87:a6:8f:34:ea:78:21:e7:28:82:43:bf:fe: f6:de:10:ac:86:1b:15:ae:fc:cb:47:41:63:ad:93:19:6d:2d: 64:f2:f7:03:55:dd:49:2c:a9:f6:09:05:b1:ee:49:84:6b:88: 96:fb:89:f2:19:4b:30:60:c8:14:60:22:3d:e3:d0:c4:eb:93: 2e:b9:6c:c3:a8:2f:63:2e:f8:76:34:37:31:aa:f2:4e:28:2e: bb:26:18:cb:c9:5b:e1:ec:14:fa:aa:51:1d:67:d5:78:84:c5: 7a:c2:f1:cd:68:76:21:c2:34:7b:15:55:0e:f6:6a:ef:63:7b: da:e3:09:50 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTNHSWPNuDHdpxWYl41vUmTngREIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDI4MTczNjQ2WhcNMjUxMjAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AyYWVjODVkNGM5ZDE1YzM2YzI2NWJlZDBlY2U1NmIwZTZm Mzk4MWJkNWY1YjU4NmM5NTg3MDlmY2RiNmZiNWFhMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDWq/ZHoGyAC7OUoKU3QJHIPGzUcKRFQrAwqd9iaPJVjdhy IJuxfanGRYKAW+wYBmfKjLbm7Z6TO9umFQ41KUA865aDK95e2u5e6OqxwOqUNF71 OwMBBx2mfBJT5KwcaK7zrwu3+a74y1I8vG16QNbXwQjAvX7h0lc/2cHFhke5YJDv JKVBPl26UskbpVkCPTMXyfoaDikiRkBHpl2Sjc2T7lQWV7AbWk8v7xkaGBP5mBw9 ocZ5IEH9xEVjVyHeMal93kKkrqMKOON6jKTa1lXD0NntBo6RKHhXW4M4Y2oux312 OZ6dPukflj9B4rY3w22vYXgalnrS9SONSMbxUk4rAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUX2nuj9L72bHx6Rpv2diyaqtrj10wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzI0NDg3ZTMyLThiY2QtNDg3OC04ZDY4LTdkOTcyNjQ0YjBiOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEDrrowDQYJKoZIhvcNAQELBQADggEBAFdkLowGDljflEar64/D4TVBkXwe sHkfttMH2+IIMJm1GbAcAUKxoZXBXSZ87glyYBBBcJh0DDzPMHKpX/lZLm54BFMi dQSEj0Qr/fB8bF4ynG0+piKAi1pZ5YOwozzfZ+bkJnHRcv/iYzKhpk02hibYl0ms ER657C4mR/eZr4xxtZ3Ph6aPNOp4IecogkO//vbeEKyGGxWu/MtHQWOtkxltLWTy 9wNV3UksqfYJBbHuSYRriJb7ifIZSzBgyBRgIj3j0MTrky65bMOoL2Mu+HY0NzGq 8k4oLrsmGMvJW+HsFPqqUR1n1XiExXrC8c1odiHCNHsVVQ72au9je9rjCVA= -----END CERTIFICATE-----Generated at Wed Nov 5 01:53:18 2025 by rpki-client