$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0b64e6b5-1531-42af-82dd-e89d9298266a.roa File: 0b64e6b5-1531-42af-82dd-e89d9298266a.roa (raw, json) Hash identifier: y3sxavyTmaDEXtcSKE4Tg8W74mViNzHJMFj7v+hxH5o= Subject key identifier: E6:CA:A8:68:DD:C5:AB:34:9B:2F:27:AC:90:19:AE:9F:FB:73:32:4F Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 64DD02EC03F1136327DC32F71852DE0DFCC7DDD8 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0b64e6b5-1531-42af-82dd-e89d9298266a.roa Signing time: Mon 22 Sep 2025 16:42:05 +0000 ROA not before: Mon 22 Sep 2025 16:42:05 +0000 ROA not after: Mon 27 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.249.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:dd:02:ec:03:f1:13:63:27:dc:32:f7:18:52:de:0d:fc:c7:dd:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 22 16:42:05 2025 GMT Not After : Oct 27 23:59:59 2025 GMT Subject: serialNumber=e5bba81a5442660b2af8f07c976a24b27154c582e78f0dde2daf7c92e5c612bd, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:12:83:ba:f3:ae:2f:b2:31:c7:f8:08:c0:51: 4c:c3:98:3a:75:71:64:1c:c1:c9:51:73:81:10:1a: 95:d8:42:52:68:51:38:f2:2d:2b:13:7d:fc:83:ba: 83:46:34:fc:9e:7f:c1:07:67:7a:da:f6:be:35:26: 55:42:87:50:52:a9:5b:c9:eb:9a:cf:8d:36:9f:12: 89:80:c7:31:48:6a:e9:24:7d:48:4f:60:1d:26:c0: 60:7a:8c:7f:b0:a5:44:d9:97:51:15:a2:c9:10:ec: 15:be:0d:dc:e9:64:97:66:70:e6:16:e2:13:2b:56: 53:c1:be:13:fd:2e:63:fd:c1:af:32:9d:b1:bd:44: 1d:91:31:9f:43:52:c8:ff:67:c5:65:f5:d8:70:22: f3:de:f2:31:57:c2:ba:18:d5:35:47:e9:6c:4e:39: 05:5f:17:ac:28:db:f8:fc:fc:38:b6:4b:14:e0:fb: a5:77:7e:3e:49:04:72:65:37:3f:14:9c:9d:9b:68: bf:67:8e:d8:02:86:54:ad:73:78:d0:fd:ed:fe:19: e3:44:5a:a8:de:70:b3:7f:6e:4a:7a:aa:b5:b4:e4: 36:2c:89:31:02:10:0d:24:30:52:22:6e:0e:eb:15: ea:25:e2:03:b0:53:54:dc:73:fc:8f:88:c1:f6:ad: b6:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:CA:A8:68:DD:C5:AB:34:9B:2F:27:AC:90:19:AE:9F:FB:73:32:4F X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0b64e6b5-1531-42af-82dd-e89d9298266a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.249.220.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:b6:44:bb:81:5f:2e:d7:02:92:a4:fd:c0:bb:bb:aa:d7:bc: 51:8e:da:7d:0c:ca:2b:70:38:47:5e:21:a3:3c:ad:27:8a:f0: 63:d8:7a:ac:d4:8d:6a:96:39:b9:15:ed:8a:a4:38:31:25:57: d3:0b:cc:94:6a:c6:82:bf:27:16:77:ff:89:c6:e5:e3:10:93: 53:5f:37:8e:e9:ff:f0:d9:3e:c3:03:d3:2f:54:46:34:f4:5c: c5:32:75:03:7b:2f:16:58:95:21:d5:e7:2d:1d:d0:81:50:48: 9d:c5:5f:07:7d:a8:87:5d:a0:9e:f9:f0:e3:cf:28:ab:1c:ee: 8a:8d:90:45:d0:6e:c7:f5:95:ee:39:91:ff:70:9a:f6:09:20: 36:84:b2:a5:57:c5:26:b7:ab:2c:1c:de:c3:9c:ba:89:96:9c: 49:7f:29:4a:8e:97:d7:d8:b3:60:41:a4:38:cc:62:e3:76:16: 72:c3:a3:a6:e0:d5:43:5b:09:8d:93:06:e8:cb:15:98:cb:7a: a3:76:27:c6:9d:54:a8:b2:da:92:4a:77:0b:61:5a:8d:b5:fb: 6a:0b:6c:91:ed:eb:82:70:07:c8:54:26:a8:67:e1:f7:52:1e: 74:a9:16:f5:87:6b:a0:23:7f:7d:7c:39:24:20:87:a5:e0:04: eb:37:5d:e1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZN0C7APxE2Mn3DL3GFLeDfzH3dgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTIyMTY0MjA1WhcNMjUxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNWJiYTgxYTU0NDI2NjBiMmFmOGYwN2M5NzZhMjRiMjcx NTRjNTgyZTc4ZjBkZGUyZGFmN2M5MmU1YzYxMmJkMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjEoO6864vsjHH+AjAUUzDmDp1cWQcwclRc4EQGpXYQlJo UTjyLSsTffyDuoNGNPyef8EHZ3ra9r41JlVCh1BSqVvJ65rPjTafEomAxzFIaukk fUhPYB0mwGB6jH+wpUTZl1EVoskQ7BW+DdzpZJdmcOYW4hMrVlPBvhP9LmP9wa8y nbG9RB2RMZ9DUsj/Z8Vl9dhwIvPe8jFXwroY1TVH6WxOOQVfF6wo2/j8/Di2SxTg +6V3fj5JBHJlNz8UnJ2baL9njtgChlStc3jQ/e3+GeNEWqjecLN/bkp6qrW05DYs iTECEA0kMFIibg7rFeol4gOwU1Tcc/yPiMH2rbabAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU5sqoaN3FqzSbLyeskBmun/tzMk8wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzBiNjRlNmI1LTE1MzEtNDJhZi04MmRkLWU4OWQ5Mjk4MjY2YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAN+dwwDQYJKoZIhvcNAQELBQADggEBAEq2RLuBXy7XApKk/cC7u6rXvFGO 2n0MyitwOEdeIaM8rSeK8GPYeqzUjWqWObkV7YqkODElV9MLzJRqxoK/JxZ3/4nG 5eMQk1NfN47p//DZPsMD0y9URjT0XMUydQN7LxZYlSHV5y0d0IFQSJ3FXwd9qIdd oJ758OPPKKsc7oqNkEXQbsf1le45kf9wmvYJIDaEsqVXxSa3qywc3sOcuomWnEl/ KUqOl9fYs2BBpDjMYuN2FnLDo6bg1UNbCY2TBujLFZjLeqN2J8adVKiy2pJKdwth Wo21+2oLbJHt64JwB8hUJqhn4fdSHnSpFvWHa6Ajf318OSQgh6XgBOs3XeE= -----END CERTIFICATE-----Generated at Sat Oct 18 05:11:44 2025 by rpki-client