$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a6c99457-d6e4-410f-b770-4179301bd116.roa File: a6c99457-d6e4-410f-b770-4179301bd116.roa (raw, json) Hash identifier: Z6AYzJESovTkbLF+oz0lZfTv+egni1n++n3Ic19bAVQ= Subject key identifier: E3:03:68:A5:12:2D:83:DD:2D:95:C2:4A:AC:24:B0:3F:75:B1:E3:AD Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 4CDA926CE0AE269B9BE6B04162316C6A99469848 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a6c99457-d6e4-410f-b770-4179301bd116.roa Signing time: Tue 21 Oct 2025 07:31:18 +0000 ROA not before: Tue 21 Oct 2025 07:31:18 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 136.136.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:da:92:6c:e0:ae:26:9b:9b:e6:b0:41:62:31:6c:6a:99:46:98:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 21 07:31:18 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=d4717009d02f58ef58dd018b1baefa204d459e9b4d965c4f48e1ab7fe308795d, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:74:29:a5:79:bb:22:7c:e0:94:4c:85:0e:8c: 3e:67:a0:fe:72:54:cf:46:b9:17:d2:d0:c0:82:ce: 44:b7:8a:32:92:6a:33:19:5c:aa:3b:1b:0f:10:14: ce:5b:5d:5d:09:dc:ae:5b:cc:25:90:29:47:f9:cd: 80:09:b4:a4:a0:a1:69:5b:be:c9:c4:4d:9b:43:ec: 74:2a:b4:44:a9:5f:36:26:f5:f1:54:57:5f:51:30: b1:57:5e:71:67:e2:71:cb:eb:09:97:3c:3d:82:15: 79:9e:27:4a:68:21:15:31:d7:6c:d8:8c:24:4a:00: 66:47:75:75:02:7e:37:41:b7:e4:58:3c:15:b1:46: 02:15:c2:51:8c:4a:37:22:5e:17:48:31:3e:44:00: 55:c5:d8:7c:ee:51:c5:9f:ec:1e:37:41:91:41:77: 3d:8a:a3:c0:5e:ca:76:8c:d4:f8:97:9c:01:3f:2a: 21:b1:47:ea:25:a2:45:b8:47:a7:f4:77:61:25:9e: 7f:46:56:ce:37:a5:5e:01:59:6a:96:16:4f:e1:2d: fb:c0:f7:4b:a5:21:83:db:d8:f8:af:10:e5:6d:a5: c4:2c:36:dc:c6:8b:5e:b5:cc:fb:f3:8c:45:8f:20: 12:44:68:41:95:47:50:8c:b6:af:d6:f6:ed:6a:87: 10:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:03:68:A5:12:2D:83:DD:2D:95:C2:4A:AC:24:B0:3F:75:B1:E3:AD X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a6c99457-d6e4-410f-b770-4179301bd116.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.136.0.0/14 Signature Algorithm: sha256WithRSAEncryption 36:24:50:ee:f0:56:68:7e:eb:85:38:af:22:59:35:a4:dd:45: 89:56:52:f6:f7:d6:ac:3c:b2:bd:f8:ee:cf:51:99:4d:1c:f0: 36:fa:27:62:ca:fb:c8:64:17:84:41:db:6b:ac:e5:e3:d3:63: 78:7f:ef:f2:5f:ac:86:ba:f0:f7:da:d7:18:ff:86:db:54:14: 90:06:b5:c1:df:51:56:a1:56:ed:10:92:af:68:bd:31:1d:af: 30:d8:be:5d:24:36:67:99:bd:cd:b6:cb:37:ef:04:5c:61:da: e0:89:6b:d8:e1:34:05:21:38:82:5c:e1:60:c2:00:0f:ad:02: 9e:e0:de:b2:ba:e9:11:c6:36:bc:87:82:d8:d8:58:8b:90:73: ff:4e:e3:21:c9:0d:bc:02:61:b0:61:0d:e9:ae:f6:9f:8c:60: 10:05:0e:ba:6c:87:33:64:81:a7:aa:4e:62:68:6d:e5:15:0d: e1:31:c7:5f:88:62:a3:3b:b8:89:f9:44:c9:70:d1:07:0a:05: 52:b8:37:fc:a5:1c:80:8b:3c:66:56:4b:9f:e4:b3:83:46:8b: 9b:9a:ed:5f:4f:0a:ad:13:09:32:23:aa:a9:af:58:63:eb:ef: 3d:62:af:27:73:67:ae:81:d4:d2:d6:74:86:66:45:30:90:36: 34:96:9e:6a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUTNqSbOCuJpub5rBBYjFsaplGmEgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDIxMDczMTE4WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNDcxNzAwOWQwMmY1OGVmNThkZDAxOGIxYmFlZmEyMDRk NDU5ZTliNGQ5NjVjNGY0OGUxYWI3ZmUzMDg3OTVkMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLdCmlebsifOCUTIUOjD5noP5yVM9GuRfS0MCCzkS3ijKS ajMZXKo7Gw8QFM5bXV0J3K5bzCWQKUf5zYAJtKSgoWlbvsnETZtD7HQqtESpXzYm 9fFUV19RMLFXXnFn4nHL6wmXPD2CFXmeJ0poIRUx12zYjCRKAGZHdXUCfjdBt+RY PBWxRgIVwlGMSjciXhdIMT5EAFXF2HzuUcWf7B43QZFBdz2Ko8BeynaM1PiXnAE/ KiGxR+olokW4R6f0d2Elnn9GVs43pV4BWWqWFk/hLfvA90ulIYPb2PivEOVtpcQs NtzGi161zPvzjEWPIBJEaEGVR1CMtq/W9u1qhxC1AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU4wNopRItg90tlcJKrCSwP3Wx460wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2E2Yzk5NDU3LWQ2ZTQtNDEwZi1iNzcwLTQxNzkzMDFiZDExNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwKIiDANBgkqhkiG9w0BAQsFAAOCAQEANiRQ7vBWaH7rhTivIlk1pN1FiVZS 9vfWrDyyvfjuz1GZTRzwNvonYsr7yGQXhEHba6zl49NjeH/v8l+shrrw99rXGP+G 21QUkAa1wd9RVqFW7RCSr2i9MR2vMNi+XSQ2Z5m9zbbLN+8EXGHa4Ilr2OE0BSE4 glzhYMIAD60CnuDesrrpEcY2vIeC2NhYi5Bz/07jIckNvAJhsGEN6a72n4xgEAUO umyHM2SBp6pOYmht5RUN4THHX4hiozu4iflEyXDRBwoFUrg3/KUcgIs8ZlZLn+Sz g0aLm5rtX08KrRMJMiOqqa9YY+vvPWKvJ3NnroHU0tZ0hmZFMJA2NJaeag== -----END CERTIFICATE-----Generated at Wed Nov 5 01:50:12 2025 by rpki-client