$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3ba6cdb2-4752-4cba-b3ef-d76cfb4ad96f.roa File: 3ba6cdb2-4752-4cba-b3ef-d76cfb4ad96f.roa (raw, json) Hash identifier: BauBpIS/xIG/6ws2jHB75VZu7jUwXVzVSfANW1vZeBg= Subject key identifier: 3D:71:5A:84:C9:9B:DC:BD:18:4E:7E:D8:A3:82:2C:61:DA:5A:C0:C3 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 418D6DF4F8BA6A9090636F0BB0DBD1A80E8E4D45 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3ba6cdb2-4752-4cba-b3ef-d76cfb4ad96f.roa Signing time: Tue 21 Oct 2025 07:00:03 +0000 ROA not before: Tue 21 Oct 2025 07:00:03 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 150.222.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:8d:6d:f4:f8:ba:6a:90:90:63:6f:0b:b0:db:d1:a8:0e:8e:4d:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 21 07:00:03 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=bc665543ffc33609d3bf85a73d048e9ec8a73eae47b338a337180609f0d98fa5, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:c1:2e:c3:a0:ec:6e:ee:cc:2b:00:e1:a0:ce: 97:f8:01:f1:d0:db:2a:95:ef:42:b5:d9:70:5f:8d: 61:c2:0e:99:39:c5:4b:1b:7a:81:82:bc:c2:94:49: 2d:2d:74:d1:20:79:e7:b2:7f:5d:df:a3:8b:c1:61: 4e:75:4f:8d:95:a9:75:65:f8:12:2c:14:99:98:05: 77:f4:c3:90:e2:f7:f5:e5:1d:fc:eb:79:4e:56:af: fa:a5:92:0e:14:a7:3c:16:1d:7a:8d:e2:bc:98:19: 0c:01:4b:37:22:c1:f4:4f:a5:9f:9d:76:6f:c9:77: 9a:fc:36:a2:ab:85:1b:03:6c:7d:7e:84:b9:68:81: 69:38:47:7a:a1:de:96:22:5b:f2:cf:71:5e:ed:7c: 2d:4f:cc:a2:98:a9:fc:de:dd:19:b7:c6:15:f1:d1: e5:71:95:31:e8:38:78:bb:2c:44:ac:16:f4:41:07: a9:74:27:78:52:51:2a:89:c7:d9:13:68:0e:a4:0f: f8:04:dd:bd:02:75:58:7b:08:20:a6:9f:e5:61:78: b7:8e:57:15:e4:e6:6c:d5:35:71:c7:04:98:d9:c9: b9:c2:01:a4:b2:df:32:63:0b:e9:55:8f:f2:d6:bc: 31:59:6f:31:35:2d:4f:ac:ca:13:c4:18:1e:65:ac: 23:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:71:5A:84:C9:9B:DC:BD:18:4E:7E:D8:A3:82:2C:61:DA:5A:C0:C3 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3ba6cdb2-4752-4cba-b3ef-d76cfb4ad96f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.222.236.0/24 Signature Algorithm: sha256WithRSAEncryption ab:54:32:aa:7d:37:11:37:3f:39:75:c6:2e:a0:6a:74:7b:d2: 8b:bc:2e:1d:90:c4:f1:2a:c3:35:b0:75:64:f5:32:64:b8:1f: 2a:e0:e9:ae:dd:5f:13:23:4f:c7:65:13:fc:fa:9a:44:0a:86: 1b:bb:0c:2c:8f:69:a5:a2:29:0d:0d:5f:5c:0f:59:da:a7:a8: 38:74:16:3f:8c:1d:ea:13:b5:4f:fc:03:22:3d:9e:2f:5e:43: 69:53:aa:97:87:5b:e8:11:c6:c4:2f:b8:54:c6:03:66:77:90: 96:1a:3a:b0:ef:67:30:41:11:68:9e:cb:00:fb:a9:f0:83:25: 14:b9:0c:3c:3d:0f:06:2f:4f:f5:30:46:e5:f1:73:0e:53:51: ec:22:3b:44:8b:7b:b1:d7:3b:f0:02:06:1a:89:58:37:05:99: 6f:b6:c5:b6:36:84:3f:57:80:6d:fb:ed:bb:dd:71:82:62:be: 4f:94:1b:39:8a:2b:5e:a1:36:05:ee:68:43:b9:eb:91:4d:3b: 84:ed:8e:c6:13:45:66:17:49:0f:88:08:89:bb:16:d8:8d:aa: 5a:9c:f9:e1:a0:3b:6c:65:ae:c4:c6:ee:fb:a0:ee:8e:24:36: 06:bc:a5:85:31:6e:66:70:a0:d2:9d:4f:38:67:4e:82:be:e1: 4e:0d:91:c3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQY1t9Pi6apCQY28LsNvRqA6OTUUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDIxMDcwMDAzWhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BiYzY2NTU0M2ZmYzMzNjA5ZDNiZjg1YTczZDA0OGU5ZWM4 YTczZWFlNDdiMzM4YTMzNzE4MDYwOWYwZDk4ZmE1MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3wS7DoOxu7swrAOGgzpf4AfHQ2yqV70K12XBfjWHCDpk5 xUsbeoGCvMKUSS0tdNEgeeeyf13fo4vBYU51T42VqXVl+BIsFJmYBXf0w5Di9/Xl HfzreU5Wr/qlkg4UpzwWHXqN4ryYGQwBSzciwfRPpZ+ddm/Jd5r8NqKrhRsDbH1+ hLlogWk4R3qh3pYiW/LPcV7tfC1PzKKYqfze3Rm3xhXx0eVxlTHoOHi7LESsFvRB B6l0J3hSUSqJx9kTaA6kD/gE3b0CdVh7CCCmn+VheLeOVxXk5mzVNXHHBJjZybnC AaSy3zJjC+lVj/LWvDFZbzE1LU+syhPEGB5lrCMBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUPXFahMmb3L0YTn7Yo4IsYdpawMMwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzNiYTZjZGIyLTQ3NTItNGNiYS1iM2VmLWQ3NmNmYjRhZDk2Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACW3uwwDQYJKoZIhvcNAQELBQADggEBAKtUMqp9NxE3Pzl1xi6ganR70ou8 Lh2QxPEqwzWwdWT1MmS4Hyrg6a7dXxMjT8dlE/z6mkQKhhu7DCyPaaWiKQ0NX1wP WdqnqDh0Fj+MHeoTtU/8AyI9ni9eQ2lTqpeHW+gRxsQvuFTGA2Z3kJYaOrDvZzBB EWieywD7qfCDJRS5DDw9DwYvT/UwRuXxcw5TUewiO0SLe7HXO/ACBhqJWDcFmW+2 xbY2hD9XgG377bvdcYJivk+UGzmKK16hNgXuaEO565FNO4TtjsYTRWYXSQ+ICIm7 FtiNqlqc+eGgO2xlrsTG7vug7o4kNga8pYUxbmZwoNKdTzhnToK+4U4NkcM= -----END CERTIFICATE-----Generated at Wed Nov 5 03:26:07 2025 by rpki-client