$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3ae1ba2b-193c-40d3-9ad5-7e6126ae6f18.roa File: 3ae1ba2b-193c-40d3-9ad5-7e6126ae6f18.roa (raw, json) Hash identifier: t3f8WXJpdUrlg+AeYmtzuRmfBmLLFTGJr7b1ld4a6OE= Subject key identifier: AC:CC:9D:89:6C:F0:50:AA:A8:42:E6:69:6B:C4:52:14:CC:A9:14:E2 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 406D85014DC162B94D57E4AF79BAC1F59663F50D Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3ae1ba2b-193c-40d3-9ad5-7e6126ae6f18.roa Signing time: Tue 21 Oct 2025 04:01:25 +0000 ROA not before: Tue 21 Oct 2025 04:01:25 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.248.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:6d:85:01:4d:c1:62:b9:4d:57:e4:af:79:ba:c1:f5:96:63:f5:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 21 04:01:25 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=aa0207b94e1c4429dfd9b4dda80ffb810747238ec7642afb2e614e29e5dd05a2, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:b2:bb:a6:9a:a3:c5:04:d8:18:cd:64:22:47: 39:0c:7c:ab:80:71:86:c0:a8:4d:d6:8b:1b:da:2f: c7:1e:cb:15:d0:bd:bf:f3:0c:54:fb:5b:f9:34:02: 47:d5:58:92:da:a7:8f:dc:d4:93:e7:49:20:ec:d1: 3a:5d:49:c5:47:a1:fc:35:39:73:9b:ca:ab:d1:a4: 24:58:31:1b:2c:f5:9b:89:3a:40:59:75:68:1f:f7: 67:fa:22:d9:5f:52:ce:87:20:f2:ae:a0:6f:aa:8c: a2:23:24:07:2c:d8:32:89:61:ae:65:0e:40:99:1a: db:8c:22:3e:b9:ee:c1:04:df:a2:ec:a7:fa:2d:2a: e4:9f:38:9b:89:be:33:b9:d3:a5:2c:1c:7d:86:3d: ac:91:8a:70:99:95:9a:a1:67:c2:c9:f4:45:08:23: d8:8b:45:af:d8:d8:c6:dc:5f:54:b1:43:61:a2:c8: f2:bf:45:d5:24:47:fa:17:9f:bd:cb:01:58:f8:26: d9:8e:8a:ff:0e:15:70:e9:51:da:a7:c6:68:b0:c6: 49:3b:4f:63:0a:ee:23:fb:18:68:6d:ce:53:db:9c: f0:07:0a:15:08:5e:05:6e:02:79:04:7c:7e:72:0e: 89:41:54:0b:f3:f7:59:89:f1:c7:63:f6:be:9c:09: be:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:CC:9D:89:6C:F0:50:AA:A8:42:E6:69:6B:C4:52:14:CC:A9:14:E2 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3ae1ba2b-193c-40d3-9ad5-7e6126ae6f18.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.248.115.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:bf:88:61:6b:10:2a:98:de:b1:ca:38:e6:f4:40:77:f9:d9: 46:85:f8:2e:6c:84:47:ac:82:91:41:6a:b6:c0:a4:8c:fd:0d: 2d:8f:a1:c3:02:0b:0b:4c:fd:03:a1:71:e6:70:cd:2a:85:bf: 20:db:fd:ca:04:08:81:fc:25:32:93:d7:22:9d:1c:2b:93:02: 06:11:8e:70:34:a6:4b:f9:ad:b3:88:d2:0f:59:fe:01:90:fc: 47:81:30:90:62:7f:d7:a7:4c:50:29:a2:85:ba:72:55:14:65: 59:7a:23:2a:72:55:18:e7:78:d8:99:2a:2b:85:cf:8a:ff:77: 99:89:5a:6b:71:b3:e4:4c:3d:ce:99:c7:f0:d1:ef:42:b7:35: f9:f4:c6:81:75:66:d1:2a:69:99:77:6c:aa:4c:50:a4:fb:82: 9d:63:5b:b0:90:9c:d7:a5:6c:66:f7:16:4d:61:29:f2:59:fb: 9a:b7:07:85:e9:80:0a:af:92:8e:2b:a7:46:6c:58:9b:02:e7: 16:4c:17:83:09:7e:9c:6d:43:0e:0e:f4:67:f7:b6:6e:53:6d: 0d:94:70:63:d2:2f:39:41:0f:3a:ef:c9:46:57:e6:e7:94:c1: 23:b3:2a:bc:4a:ab:4c:3b:90:47:88:e7:2a:fb:5f:e0:24:22: 56:62:31:60 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQG2FAU3BYrlNV+SvebrB9ZZj9Q0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDIxMDQwMTI1WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYTAyMDdiOTRlMWM0NDI5ZGZkOWI0ZGRhODBmZmI4MTA3 NDcyMzhlYzc2NDJhZmIyZTYxNGUyOWU1ZGQwNWEyMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCssrummqPFBNgYzWQiRzkMfKuAcYbAqE3WixvaL8ceyxXQ vb/zDFT7W/k0AkfVWJLap4/c1JPnSSDs0TpdScVHofw1OXObyqvRpCRYMRss9ZuJ OkBZdWgf92f6ItlfUs6HIPKuoG+qjKIjJAcs2DKJYa5lDkCZGtuMIj657sEE36Ls p/otKuSfOJuJvjO506UsHH2GPayRinCZlZqhZ8LJ9EUII9iLRa/Y2MbcX1SxQ2Gi yPK/RdUkR/oXn73LAVj4JtmOiv8OFXDpUdqnxmiwxkk7T2MK7iP7GGhtzlPbnPAH ChUIXgVuAnkEfH5yDolBVAvz91mJ8cdj9r6cCb4FAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUrMydiWzwUKqoQuZpa8RSFMypFOIwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzNhZTFiYTJiLTE5M2MtNDBkMy05YWQ1LTdlNjEyNmFlNmYxOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAP+HMwDQYJKoZIhvcNAQELBQADggEBAEu/iGFrECqY3rHKOOb0QHf52UaF +C5shEesgpFBarbApIz9DS2PocMCCwtM/QOhceZwzSqFvyDb/coECIH8JTKT1yKd HCuTAgYRjnA0pkv5rbOI0g9Z/gGQ/EeBMJBif9enTFApooW6clUUZVl6IypyVRjn eNiZKiuFz4r/d5mJWmtxs+RMPc6Zx/DR70K3Nfn0xoF1ZtEqaZl3bKpMUKT7gp1j W7CQnNelbGb3Fk1hKfJZ+5q3B4XpgAqvko4rp0ZsWJsC5xZMF4MJfpxtQw4O9Gf3 tm5TbQ2UcGPSLzlBDzrvyUZX5ueUwSOzKrxKq0w7kEeI5yr7X+AkIlZiMWA= -----END CERTIFICATE-----Generated at Wed Nov 5 07:25:16 2025 by rpki-client