$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/35ca3140-11fa-467b-b947-c88e9275d128.roa File: 35ca3140-11fa-467b-b947-c88e9275d128.roa (raw, json) Hash identifier: gjeWomtpITHrbisaZnJmkikzZY7tTGCa0eTK+rf6OcY= Subject key identifier: 70:FB:B2:6A:FB:E4:BB:A7:EE:5A:49:A4:AC:B4:91:CC:06:B3:5A:F9 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 0C11D381B8455829427AA1FA614287F0BE6DC18C Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/35ca3140-11fa-467b-b947-c88e9275d128.roa Signing time: Tue 04 Nov 2025 00:40:10 +0000 ROA not before: Tue 04 Nov 2025 00:40:10 +0000 ROA not after: Tue 09 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 150.222.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 08 Nov 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:11:d3:81:b8:45:58:29:42:7a:a1:fa:61:42:87:f0:be:6d:c1:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Nov 4 00:40:10 2025 GMT Not After : Dec 9 23:59:59 2025 GMT Subject: serialNumber=25b2698a445d57029e2cfea2d85e4820ff9bbb0567f7bfd6ca412e874df012e8, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:37:dc:1c:78:5d:27:ef:d2:e3:64:cf:fc:0a: 6c:8c:68:45:de:c5:28:fd:8e:43:fb:27:e9:61:e3: ed:e9:c5:d4:11:31:3f:9a:e1:ad:38:30:a7:6e:6d: db:32:37:e2:f8:fd:67:bf:7a:2d:38:96:5a:15:0d: 8f:0d:16:05:90:f4:9a:6c:80:92:c7:72:8e:6a:99: 57:e2:fd:4b:39:d4:ce:85:cc:93:48:eb:15:22:dd: 7d:83:53:14:5e:8c:2d:5a:1e:84:e0:83:eb:24:16: 62:8d:95:29:6b:1c:5d:90:5d:fa:f3:cd:89:ad:7b: 5b:3f:2e:ed:ed:3c:f0:78:4f:d7:1d:46:69:d4:fe: 25:08:b3:d1:b0:13:ee:55:a0:6c:f4:c7:b6:dd:62: fb:16:97:b1:57:02:30:45:f3:04:60:7f:7a:0f:4b: b3:2c:37:d1:7d:fd:a9:91:d1:e5:6a:96:a6:bc:ac: e4:99:16:4f:4f:c9:bb:3e:bb:d0:4f:93:ae:2b:10: aa:af:81:f4:5e:5b:8e:df:ba:0c:82:cb:4c:45:9e: 34:11:44:6c:a1:c3:ec:a8:d0:6f:a5:91:be:85:ae: 58:1b:14:ee:f9:5d:93:48:cf:b8:53:6a:63:fd:62: 3e:cd:2d:0b:00:fd:db:45:30:14:2c:e4:e4:fd:d7: 58:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:FB:B2:6A:FB:E4:BB:A7:EE:5A:49:A4:AC:B4:91:CC:06:B3:5A:F9 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/35ca3140-11fa-467b-b947-c88e9275d128.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.222.143.0/24 Signature Algorithm: sha256WithRSAEncryption 93:c6:52:4e:0b:4c:b3:de:6f:e0:47:80:76:bb:31:57:9b:53: a2:fb:97:83:a7:69:e0:a5:3f:46:a4:0f:4e:63:c0:ff:64:ea: e9:66:c6:61:b7:b6:e3:fb:82:7f:73:23:67:2a:9a:93:a2:f9: 36:9b:69:d6:20:c1:a4:40:37:26:05:47:80:01:54:2d:28:66: f1:d1:2d:8f:c0:8b:f7:6d:3b:4f:88:52:ad:c9:78:d4:82:c1: 1b:ee:0a:f6:4d:10:19:83:17:78:4e:39:88:30:76:eb:b6:b9: 58:81:f0:4e:09:e1:05:90:49:84:06:bf:74:71:10:8b:fc:1c: 3e:70:a8:5d:d3:7d:b5:fb:b6:0c:fb:d4:06:34:03:0f:e6:da: e1:09:33:70:1e:e0:3e:ec:01:56:9a:96:65:61:e9:23:33:fb: c2:e2:a5:41:00:b7:d0:3c:b5:d1:6c:29:3d:33:e6:8e:f6:e2: 60:ba:7f:83:48:d7:68:4f:cf:ec:c4:0e:6b:42:28:bb:54:a4: f9:f4:e0:51:ef:49:4a:eb:83:41:e4:5e:be:21:5d:06:e4:16: 20:cb:5d:2e:57:13:3e:56:df:c4:b2:7b:09:16:a6:a3:cc:3b: 88:ec:db:72:c3:f7:0e:d0:b9:0a:39:5a:19:e2:e8:5c:ae:b3: 90:31:bf:75 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDBHTgbhFWClCeqH6YUKH8L5twYwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMTA0MDA0MDEwWhcNMjUxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AyNWIyNjk4YTQ0NWQ1NzAyOWUyY2ZlYTJkODVlNDgyMGZm OWJiYjA1NjdmN2JmZDZjYTQxMmU4NzRkZjAxMmU4MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDuN9wceF0n79LjZM/8CmyMaEXexSj9jkP7J+lh4+3pxdQR MT+a4a04MKdubdsyN+L4/We/ei04lloVDY8NFgWQ9JpsgJLHco5qmVfi/Us51M6F zJNI6xUi3X2DUxRejC1aHoTgg+skFmKNlSlrHF2QXfrzzYmte1s/Lu3tPPB4T9cd RmnU/iUIs9GwE+5VoGz0x7bdYvsWl7FXAjBF8wRgf3oPS7MsN9F9/amR0eVqlqa8 rOSZFk9Pybs+u9BPk64rEKqvgfReW47fugyCy0xFnjQRRGyhw+yo0G+lkb6Frlgb FO75XZNIz7hTamP9Yj7NLQsA/dtFMBQs5OT911g7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUcPuyavvku6fuWkmkrLSRzAazWvkwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzM1Y2EzMTQwLTExZmEtNDY3Yi1iOTQ3LWM4OGU5Mjc1ZDEyOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACW3o8wDQYJKoZIhvcNAQELBQADggEBAJPGUk4LTLPeb+BHgHa7MVebU6L7 l4OnaeClP0akD05jwP9k6ulmxmG3tuP7gn9zI2cqmpOi+TabadYgwaRANyYFR4AB VC0oZvHRLY/Ai/dtO0+IUq3JeNSCwRvuCvZNEBmDF3hOOYgwduu2uViB8E4J4QWQ SYQGv3RxEIv8HD5wqF3TfbX7tgz71AY0Aw/m2uEJM3Ae4D7sAVaalmVh6SMz+8Li pUEAt9A8tdFsKT0z5o724mC6f4NI12hPz+zEDmtCKLtUpPn04FHvSUrrg0HkXr4h XQbkFiDLXS5XEz5W38SyewkWpqPMO4js23LD9w7QuQo5Whni6Fyus5Axv3U= -----END CERTIFICATE-----Generated at Wed Nov 5 22:51:32 2025 by rpki-client