$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8e3e61d4-d511-4b5c-b686-ca4337a7cd4c.roa File: 8e3e61d4-d511-4b5c-b686-ca4337a7cd4c.roa (raw, json) Hash identifier: 5YPn8j4WdHUOZlyCGJQQhu+HP3/t3/bn8b96Wpu2HJ8= Subject key identifier: 98:E9:5E:DC:5F:2C:8C:19:BD:37:C1:E7:7D:7C:14:9C:09:50:D9:B0 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 2B3CEE214B8822F706DD327A471DA9071DE12AFA Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8e3e61d4-d511-4b5c-b686-ca4337a7cd4c.roa Signing time: Tue 04 Nov 2025 00:30:11 +0000 ROA not before: Tue 04 Nov 2025 00:30:11 +0000 ROA not after: Tue 09 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.136.0.0/13 maxlen: 13 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:3c:ee:21:4b:88:22:f7:06:dd:32:7a:47:1d:a9:07:1d:e1:2a:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Nov 4 00:30:11 2025 GMT Not After : Dec 9 23:59:59 2025 GMT Subject: serialNumber=edcb01015c02333f5ed8eb264c3dff97ad1281239dcb77239fc22e9464ff148d, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:2f:73:3e:6e:32:74:47:0e:14:93:54:3f:f3: 10:9a:d6:10:ce:18:19:53:6b:67:20:c4:27:c7:ef: 69:2b:08:31:e6:85:bc:dd:5e:6d:c7:9d:c5:4c:63: fd:87:1b:5a:1a:cf:b2:0d:e4:b1:cb:9c:b2:fd:09: da:d8:5f:76:db:58:84:23:7e:fd:6d:f4:26:94:cc: 93:39:01:3b:9a:94:cd:71:3a:bf:78:ca:25:07:f8: 4d:4c:84:b4:07:c0:3c:7e:c8:2e:33:b4:35:fa:4e: 4b:38:8d:8b:b7:46:79:1f:ee:47:95:29:52:26:df: f0:c5:a0:39:b8:37:f8:af:55:e8:a5:72:c0:ae:b3: 70:b4:80:84:01:fb:0e:25:8d:55:24:0d:2a:93:33: 77:13:b2:e9:10:2d:d0:91:8a:47:c5:1b:e1:e6:40: d3:13:0b:a4:a0:14:76:f6:9b:39:0e:bd:30:51:a6: 0b:b3:78:98:8a:28:34:3f:34:01:4d:47:f2:48:30: fa:6f:cc:23:4f:d6:d5:e2:79:c9:1a:41:fa:b4:ea: e3:8b:b6:e9:ea:df:0f:da:7f:72:59:a7:d0:9c:24: 7f:45:14:6d:bb:d6:99:c3:9d:17:57:c8:e2:98:80: 3a:86:53:5a:6d:96:64:a3:9b:77:0e:5d:75:53:d0: c0:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:E9:5E:DC:5F:2C:8C:19:BD:37:C1:E7:7D:7C:14:9C:09:50:D9:B0 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8e3e61d4-d511-4b5c-b686-ca4337a7cd4c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.136.0.0/13 Signature Algorithm: sha256WithRSAEncryption 28:58:ee:6e:7c:25:a4:c3:69:46:4d:88:70:30:e8:49:84:79: 3a:85:f3:3b:c4:a2:bf:6e:b9:39:93:ec:9c:cb:02:a6:ff:ca: 9a:3b:f8:a7:52:11:6b:05:2c:57:62:df:8f:99:26:08:fb:6f: 25:6a:8d:d4:82:81:9c:ce:26:43:9e:f3:09:d2:b5:97:1f:f5: f8:79:76:cb:38:a2:e9:12:54:59:91:b7:0d:4f:0e:4e:9d:71: ca:29:cc:7a:59:dd:13:fe:7a:9c:f2:92:7c:e2:a4:46:7e:a0: 74:b1:56:ce:c1:8f:85:07:50:de:82:7e:02:7b:6c:e6:1f:2a: 72:06:93:d8:b1:67:6d:f3:f5:77:f3:ca:4e:a2:ea:57:a5:e0: 59:ca:e7:9a:1a:24:ed:fa:0a:97:c0:ca:3f:41:f6:b5:38:ad: aa:5e:f0:5e:9a:e0:ae:05:e1:66:dc:5d:76:04:6c:25:3d:fd: 7c:fb:f8:29:58:2d:4d:85:67:e8:1d:6e:b1:47:39:f3:6b:e1: 52:e0:74:ed:40:90:23:09:9b:94:53:ec:0f:23:1c:20:d4:88: 96:b1:42:81:f0:d0:39:3d:6a:f8:e5:76:22:f9:1f:33:77:e0: 7d:8d:b0:c4:0a:73:ed:57:35:6b:dd:a3:6e:56:b9:d0:02:30: e3:50:f6:1b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUKzzuIUuIIvcG3TJ6Rx2pBx3hKvowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMTA0MDAzMDExWhcNMjUxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BlZGNiMDEwMTVjMDIzMzNmNWVkOGViMjY0YzNkZmY5N2Fk MTI4MTIzOWRjYjc3MjM5ZmMyMmU5NDY0ZmYxNDhkMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQChL3M+bjJ0Rw4Uk1Q/8xCa1hDOGBlTa2cgxCfH72krCDHm hbzdXm3HncVMY/2HG1oaz7IN5LHLnLL9CdrYX3bbWIQjfv1t9CaUzJM5ATualM1x Or94yiUH+E1MhLQHwDx+yC4ztDX6Tks4jYu3Rnkf7keVKVIm3/DFoDm4N/ivVeil csCus3C0gIQB+w4ljVUkDSqTM3cTsukQLdCRikfFG+HmQNMTC6SgFHb2mzkOvTBR pguzeJiKKDQ/NAFNR/JIMPpvzCNP1tXieckaQfq06uOLtunq3w/af3JZp9CcJH9F FG271pnDnRdXyOKYgDqGU1ptlmSjm3cOXXVT0MD1AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUmOle3F8sjBm9N8HnfXwUnAlQ2bAwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzhlM2U2MWQ0LWQ1MTEtNGI1Yy1iNjg2LWNhNDMzN2E3Y2Q0Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwMDiDANBgkqhkiG9w0BAQsFAAOCAQEAKFjubnwlpMNpRk2IcDDoSYR5OoXz O8Siv265OZPsnMsCpv/Kmjv4p1IRawUsV2Lfj5kmCPtvJWqN1IKBnM4mQ57zCdK1 lx/1+Hl2yzii6RJUWZG3DU8OTp1xyinMelndE/56nPKSfOKkRn6gdLFWzsGPhQdQ 3oJ+Ants5h8qcgaT2LFnbfP1d/PKTqLqV6XgWcrnmhok7foKl8DKP0H2tTitql7w XprgrgXhZtxddgRsJT39fPv4KVgtTYVn6B1usUc582vhUuB07UCQIwmblFPsDyMc INSIlrFCgfDQOT1q+OV2IvkfM3fgfY2wxApz7Vc1a92jbla50AIw41D2Gw== -----END CERTIFICATE-----Generated at Wed Nov 5 07:25:30 2025 by rpki-client