$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/30c11db1-9c04-4011-bf57-be23ae9b7665.roa File: 30c11db1-9c04-4011-bf57-be23ae9b7665.roa (raw, json) Hash identifier: JmhWs1nY41iJMs3h/euPYeO9rAxh+coP4a0GSxmAu6c= Subject key identifier: A4:94:2A:EA:B7:8C:C8:B0:BA:1A:BD:B0:90:51:12:7A:E8:7C:57:91 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 2A76B963DB1407B87D1BA016CF3CC667E54BF661 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/30c11db1-9c04-4011-bf57-be23ae9b7665.roa Signing time: Fri 31 Oct 2025 20:07:08 +0000 ROA not before: Fri 31 Oct 2025 20:07:08 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.33.160.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:76:b9:63:db:14:07:b8:7d:1b:a0:16:cf:3c:c6:67:e5:4b:f6:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 31 20:07:08 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=0200c88caba47309dd52b921f3e12a9ff4ad5cd7c285371241c4cc1198c98790, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:eb:a7:0f:71:c8:b2:bc:02:e8:8d:69:3d:70: df:80:40:ce:41:3b:1c:c1:0c:db:80:c4:b7:d7:9e: ba:ba:78:f4:12:a3:e7:d9:a2:93:ce:eb:e5:83:0f: f2:a6:7a:f2:23:bd:56:38:72:84:2c:38:99:48:b7: 2a:2e:a7:44:6a:8e:37:da:bc:76:4d:16:dd:67:c0: 7e:00:92:67:17:b6:0d:f9:5f:e5:cc:5f:d0:f4:ed: 2c:f1:62:f1:81:72:93:0d:7a:48:b7:eb:52:ea:4a: 29:b2:f5:e1:4f:62:a9:9e:75:10:50:4f:f1:a2:13: e3:de:91:25:6f:7d:1c:cb:97:4c:93:cd:5e:99:dd: 6c:38:92:c8:33:a3:af:3f:3b:9d:f7:4b:35:75:1e: 48:0c:6a:14:26:15:d4:fa:ec:51:af:44:4f:29:a6: 9b:3b:3b:4f:94:00:a7:2d:fe:8c:95:15:68:66:82: c8:68:b0:2f:d7:39:7b:c0:09:b5:19:58:3b:c4:b1: e0:75:b8:25:9f:de:dc:d5:d2:a6:d4:84:96:05:cb: 98:76:db:ee:79:16:0a:bf:3c:28:86:12:7f:ae:ea: f1:b2:43:eb:3c:ba:cf:0f:b3:53:9d:d7:56:eb:47: 7f:d8:1f:a3:55:98:f8:18:fc:f9:9c:f9:a9:b3:01: e2:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:94:2A:EA:B7:8C:C8:B0:BA:1A:BD:B0:90:51:12:7A:E8:7C:57:91 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/30c11db1-9c04-4011-bf57-be23ae9b7665.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.33.160.0/20 Signature Algorithm: sha256WithRSAEncryption 55:49:60:59:e0:09:c2:83:2c:a6:e8:6f:11:f1:9c:ad:a4:50: 08:1c:59:26:11:5f:27:45:82:46:e0:95:be:2e:5e:dd:52:3b: 4c:2a:5b:65:90:df:c9:be:11:44:3f:09:d2:3e:3a:10:99:f3: 24:bf:39:60:4f:6a:54:2f:eb:46:91:6d:08:a2:7b:89:c1:6a: 72:38:22:72:65:e4:66:a8:69:fd:20:c7:e4:b7:ed:e7:c5:38: 6e:16:c8:3a:8d:b1:63:62:43:c3:60:9e:55:d4:8e:7a:27:22: 4b:de:c3:3e:9e:52:bf:b9:79:12:02:bf:24:ec:c2:95:f3:f2: 04:a6:ab:90:60:8a:2c:32:e2:de:9d:e0:d5:1c:fb:eb:03:bc: fa:7e:ad:dd:f3:3d:2d:c4:5a:77:17:25:e4:7b:d3:3d:93:25: 88:c3:15:3f:6c:cf:40:06:7b:00:9c:db:e6:e1:18:3f:2c:77: 48:18:e5:e8:af:2b:40:8b:b5:d3:71:aa:1e:a1:47:d7:0b:4f: a2:3b:7e:31:d4:60:fd:47:e1:09:6c:11:07:ec:2d:fb:d5:96: 94:f2:b9:1c:6d:79:12:65:63:fb:a5:2c:36:86:19:b2:0f:3a: 5d:2f:c9:5f:0f:b1:8f:ba:a9:07:a5:0a:9e:97:c1:27:fb:8c: db:dc:f8:e9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKna5Y9sUB7h9G6AWzzzGZ+VL9mEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDMxMjAwNzA4WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMjAwYzg4Y2FiYTQ3MzA5ZGQ1MmI5MjFmM2UxMmE5ZmY0 YWQ1Y2Q3YzI4NTM3MTI0MWM0Y2MxMTk4Yzk4NzkwMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDN66cPcciyvALojWk9cN+AQM5BOxzBDNuAxLfXnrq6ePQS o+fZopPO6+WDD/KmevIjvVY4coQsOJlItyoup0RqjjfavHZNFt1nwH4AkmcXtg35 X+XMX9D07SzxYvGBcpMNeki361LqSimy9eFPYqmedRBQT/GiE+PekSVvfRzLl0yT zV6Z3Ww4ksgzo68/O533SzV1HkgMahQmFdT67FGvRE8ppps7O0+UAKct/oyVFWhm gshosC/XOXvACbUZWDvEseB1uCWf3tzV0qbUhJYFy5h22+55Fgq/PCiGEn+u6vGy Q+s8us8Ps1Od11brR3/YH6NVmPgY/Pmc+amzAeKnAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUpJQq6reMyLC6Gr2wkFESeuh8V5EwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzMwYzExZGIxLTljMDQtNDAxMS1iZjU3LWJlMjNhZTliNzY2NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQDIaAwDQYJKoZIhvcNAQELBQADggEBAFVJYFngCcKDLKbobxHxnK2kUAgc WSYRXydFgkbglb4uXt1SO0wqW2WQ38m+EUQ/CdI+OhCZ8yS/OWBPalQv60aRbQii e4nBanI4InJl5Gaoaf0gx+S37efFOG4WyDqNsWNiQ8NgnlXUjnonIkvewz6eUr+5 eRICvyTswpXz8gSmq5Bgiiwy4t6d4NUc++sDvPp+rd3zPS3EWncXJeR70z2TJYjD FT9sz0AGewCc2+bhGD8sd0gY5eivK0CLtdNxqh6hR9cLT6I7fjHUYP1H4QlsEQfs LfvVlpTyuRxteRJlY/ulLDaGGbIPOl0vyV8PsY+6qQelCp6XwSf7jNvc+Ok= -----END CERTIFICATE-----Generated at Wed Nov 5 01:46:15 2025 by rpki-client