$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/08c9433d-303d-4a49-a365-2dd7417b9cbd.roa File: 08c9433d-303d-4a49-a365-2dd7417b9cbd.roa (raw, json) Hash identifier: HGSmQizswwA8M21vZEGIzW5E6hKDlSiWQGqukv4NZEY= Subject key identifier: 8D:3C:2D:84:1E:55:CC:82:34:9E:C1:84:F9:0D:19:2D:EB:57:8B:08 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 5135C5A5C483F40138207D1E6E4730982CCA8FCC Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/08c9433d-303d-4a49-a365-2dd7417b9cbd.roa Signing time: Wed 24 Sep 2025 18:06:51 +0000 ROA not before: Wed 24 Sep 2025 18:06:51 +0000 ROA not after: Wed 29 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.35.82.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:35:c5:a5:c4:83:f4:01:38:20:7d:1e:6e:47:30:98:2c:ca:8f:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 24 18:06:51 2025 GMT Not After : Oct 29 23:59:59 2025 GMT Subject: serialNumber=001a51cc6a6c66dd66335e9fe15ef1bfba1690944799b8f6c3ff962f07a4b5bb, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:01:fd:d5:9c:58:9a:fa:a2:d5:ff:d0:db:4a: f4:81:fd:da:db:7a:2a:0e:42:08:3c:3b:11:2c:37: 8e:92:ca:65:5b:62:1b:fa:40:2d:b6:68:f8:56:9c: ca:33:85:37:43:e2:b4:ff:98:f0:ca:15:b1:06:66: da:10:cf:fb:ad:45:e6:54:6d:15:3d:a7:14:18:4e: 0c:d5:34:82:55:8c:e1:6d:aa:8f:2d:fb:5f:39:01: 9f:81:5b:c9:cc:10:69:17:62:5f:af:81:5f:3e:8c: ce:bc:4c:39:59:89:1d:a7:6b:55:a7:2d:03:2a:5a: 94:66:38:e6:27:76:50:c8:33:76:e0:b8:f3:8c:af: 25:25:8c:4a:73:70:16:5f:97:0a:a8:c8:c0:45:53: 4d:49:f0:46:1c:4b:04:ac:8d:fd:46:b6:6d:ff:88: 66:6f:02:4a:cc:1a:04:09:65:67:c2:88:8c:4c:62: 24:f2:37:bf:7a:72:cb:b7:37:7c:90:c1:79:84:b9: 70:b7:9f:30:5a:b2:17:28:6f:dd:17:c6:34:93:f4: fd:f0:52:09:ca:ea:ba:47:0f:0c:bd:3f:0b:fe:03: c8:9f:8c:1a:f3:c1:4d:38:9e:a5:3f:16:06:e2:3a: fe:79:7b:48:ef:12:10:53:c6:3b:8c:6f:bf:12:23: 6d:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:3C:2D:84:1E:55:CC:82:34:9E:C1:84:F9:0D:19:2D:EB:57:8B:08 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/08c9433d-303d-4a49-a365-2dd7417b9cbd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.35.82.0/24 Signature Algorithm: sha256WithRSAEncryption 80:d0:90:5d:7e:93:91:e7:06:7f:a2:b2:9b:39:71:0e:6d:cd: e2:bc:b8:f9:62:20:2e:03:84:7e:ec:da:c7:4f:55:a9:3f:4c: a8:9a:da:07:c6:6b:17:6c:ef:6b:4b:18:64:96:e4:ae:29:55: f5:5e:65:9e:bb:49:d2:66:a0:1f:68:87:c3:5a:4e:98:20:85: 6f:01:07:1c:38:af:7e:d8:c3:67:1d:72:4e:7e:a0:0e:33:1f: 87:39:c2:1d:ac:ca:dc:9b:47:a6:6f:0c:ce:b1:4e:5d:17:52: 6e:07:08:8e:95:8f:96:5f:c7:bd:6c:f9:79:f9:77:42:13:1c: 61:ec:e7:41:f9:22:f9:0e:e3:83:3b:ec:48:8d:b6:37:c0:fb: 30:f2:63:1c:aa:37:e6:c6:fa:e4:84:23:24:2a:b1:57:c7:fe: 0f:17:8e:8b:8d:6f:9c:77:f0:38:14:00:a6:ab:f5:a8:21:b2: a0:e6:ce:e5:6d:80:c3:48:4e:09:9b:2f:eb:60:c2:08:3c:97: 5e:e8:7c:2f:ca:5b:2c:28:08:e3:25:0f:51:29:2f:20:a3:86: 58:69:4e:32:8b:07:ff:8f:a9:0a:0a:e0:e1:1a:ca:03:bd:88: 06:e6:6f:53:74:0e:b8:87:fe:b1:ea:c0:0b:50:e5:19:a6:d0: 5c:7c:45:76 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUTXFpcSD9AE4IH0ebkcwmCzKj8wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTI0MTgwNjUxWhcNMjUxMDI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMDFhNTFjYzZhNmM2NmRkNjYzMzVlOWZlMTVlZjFiZmJh MTY5MDk0NDc5OWI4ZjZjM2ZmOTYyZjA3YTRiNWJiMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCAf3VnFia+qLV/9DbSvSB/drbeioOQgg8OxEsN46SymVb Yhv6QC22aPhWnMozhTdD4rT/mPDKFbEGZtoQz/utReZUbRU9pxQYTgzVNIJVjOFt qo8t+185AZ+BW8nMEGkXYl+vgV8+jM68TDlZiR2na1WnLQMqWpRmOOYndlDIM3bg uPOMryUljEpzcBZflwqoyMBFU01J8EYcSwSsjf1Gtm3/iGZvAkrMGgQJZWfCiIxM YiTyN796csu3N3yQwXmEuXC3nzBashcob90XxjST9P3wUgnK6rpHDwy9Pwv+A8if jBrzwU04nqU/FgbiOv55e0jvEhBTxjuMb78SI235AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUjTwthB5VzII0nsGE+Q0ZLetXiwgwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzA4Yzk0MzNkLTMwM2QtNGE0OS1hMzY1LTJkZDc0MTdiOWNiZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAANI1IwDQYJKoZIhvcNAQELBQADggEBAIDQkF1+k5HnBn+isps5cQ5tzeK8 uPliIC4DhH7s2sdPVak/TKia2gfGaxds72tLGGSW5K4pVfVeZZ67SdJmoB9oh8Na TpgghW8BBxw4r37Yw2cdck5+oA4zH4c5wh2sytybR6ZvDM6xTl0XUm4HCI6Vj5Zf x71s+Xn5d0ITHGHs50H5IvkO44M77EiNtjfA+zDyYxyqN+bG+uSEIyQqsVfH/g8X jouNb5x38DgUAKar9aghsqDmzuVtgMNITgmbL+tgwgg8l17ofC/KWywoCOMlD1Ep LyCjhlhpTjKLB/+PqQoK4OEaygO9iAbmb1N0DriH/rHqwAtQ5Rmm0Fx8RXY= -----END CERTIFICATE-----Generated at Fri Oct 17 22:17:33 2025 by rpki-client