$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1f07712b-6608-4bb3-8955-c83b86e81b2e.roa File: 1f07712b-6608-4bb3-8955-c83b86e81b2e.roa (raw, json) Hash identifier: MrxJr5R2pYwP2obEap1DSTwd4GyPslLrpq+MGywlN0Y= Subject key identifier: 48:77:F0:BF:CE:FD:15:92:A3:07:F6:D8:E7:00:D2:F5:60:DD:82:29 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 19CA2D78DFD1360175F7BCCFA4370E40C9EBEF06 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1f07712b-6608-4bb3-8955-c83b86e81b2e.roa Signing time: Wed 24 Sep 2025 17:32:45 +0000 ROA not before: Wed 24 Sep 2025 17:32:45 +0000 ROA not after: Wed 29 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.32.54.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:ca:2d:78:df:d1:36:01:75:f7:bc:cf:a4:37:0e:40:c9:eb:ef:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 24 17:32:45 2025 GMT Not After : Oct 29 23:59:59 2025 GMT Subject: serialNumber=14ecd50abe80ffa3191e14c38db0983ca3ac5f095d97b59045f7021ae031bba5, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:39:88:53:bd:69:62:a8:f1:37:09:ca:af:21: d7:6d:ad:16:ae:d7:26:40:40:5c:b7:50:38:ea:08: 1c:c1:45:ac:3e:60:f3:88:08:1a:b5:5f:d2:4f:18: 5a:87:56:8a:d4:7b:7f:a0:ba:0f:5d:f0:2c:9e:32: a9:b8:bc:f0:49:00:1a:f6:f6:64:2b:41:27:4e:29: 5a:b8:d7:d2:40:5b:7f:69:4e:f3:44:a0:ad:23:9d: 7a:a4:fe:02:44:86:b9:25:e0:1f:da:18:57:87:ce: 04:17:c9:c8:d7:b6:fb:82:bc:62:54:0a:0f:f3:45: d1:8f:9e:20:1d:15:52:44:50:ee:ca:b7:f5:3f:23: a0:bc:cc:09:03:75:24:b1:cf:7b:fa:7f:db:5a:8f: a6:95:0a:83:b9:03:f2:98:f6:ff:60:32:ba:fc:a8: 32:bd:31:1a:fe:f5:cc:65:40:4f:3f:60:61:3d:84: 3d:1e:ed:9b:e3:b0:f8:e1:4a:28:88:ca:9f:7c:a9: 1d:92:42:26:cd:ff:09:6e:b3:cc:65:bd:da:63:a0: db:4f:2d:23:3d:64:eb:9e:d0:a8:ce:22:b9:51:84: 4e:ab:21:65:6d:aa:1f:b3:e7:ac:41:81:3e:0b:84: 80:62:b5:09:3d:cb:3d:2d:c4:55:b6:fc:09:7c:ad: 85:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:77:F0:BF:CE:FD:15:92:A3:07:F6:D8:E7:00:D2:F5:60:DD:82:29 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1f07712b-6608-4bb3-8955-c83b86e81b2e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.32.54.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:1b:b0:4c:a0:a9:7e:bf:66:ff:b6:87:48:bd:ae:cf:fd:58: 1c:d5:71:35:c0:b0:ad:b1:10:da:75:35:4d:e9:06:ab:35:fd: be:20:cf:8d:b6:85:13:be:a8:c5:56:02:87:41:c4:ed:dd:be: 7a:28:c5:2d:da:c7:47:0e:7d:27:df:7e:e1:d3:3a:10:ed:86: e2:24:af:02:14:e9:33:da:39:24:18:92:26:6f:70:4b:50:57: 45:1f:e1:cc:20:e8:fc:19:98:57:d3:f2:67:fa:81:0b:0e:eb: 7e:f5:4f:51:2a:c4:63:92:61:43:83:b8:f1:10:26:de:17:f0: 6a:71:12:9d:65:10:46:81:51:a2:d7:5b:2e:d4:fd:b0:93:f0: e7:b4:b4:6a:42:ea:39:59:94:5e:68:a6:e9:ca:0b:15:88:74: 3f:28:32:d5:69:9b:d3:63:0a:b0:fc:5d:8a:9c:dc:1a:ea:e0: 9e:0f:1e:8d:43:6c:93:05:a5:66:a3:52:08:ec:e0:3b:c9:5b: e4:f1:17:26:8d:f6:5c:83:7f:7b:8c:ae:5e:7a:81:29:f3:72: b4:7b:70:08:d6:5f:a6:58:9f:b7:f4:55:7f:3e:14:ec:07:4d: b8:cb:10:9a:9c:60:3e:da:a7:bb:df:e1:03:46:b4:06:b1:52: 7d:c9:35:58 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGcoteN/RNgF197zPpDcOQMnr7wYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTI0MTczMjQ1WhcNMjUxMDI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNGVjZDUwYWJlODBmZmEzMTkxZTE0YzM4ZGIwOTgzY2Ez YWM1ZjA5NWQ5N2I1OTA0NWY3MDIxYWUwMzFiYmE1MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvOYhTvWliqPE3CcqvIddtrRau1yZAQFy3UDjqCBzBRaw+ YPOICBq1X9JPGFqHVorUe3+gug9d8CyeMqm4vPBJABr29mQrQSdOKVq419JAW39p TvNEoK0jnXqk/gJEhrkl4B/aGFeHzgQXycjXtvuCvGJUCg/zRdGPniAdFVJEUO7K t/U/I6C8zAkDdSSxz3v6f9taj6aVCoO5A/KY9v9gMrr8qDK9MRr+9cxlQE8/YGE9 hD0e7ZvjsPjhSiiIyp98qR2SQibN/wlus8xlvdpjoNtPLSM9ZOue0KjOIrlRhE6r IWVtqh+z56xBgT4LhIBitQk9yz0txFW2/Al8rYUjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUSHfwv879FZKjB/bY5wDS9WDdgikwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzFmMDc3MTJiLTY2MDgtNGJiMy04OTU1LWM4M2I4NmU4MWIyZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAANIDYwDQYJKoZIhvcNAQELBQADggEBAIobsEygqX6/Zv+2h0i9rs/9WBzV cTXAsK2xENp1NU3pBqs1/b4gz422hRO+qMVWAodBxO3dvnooxS3ax0cOfSfffuHT OhDthuIkrwIU6TPaOSQYkiZvcEtQV0Uf4cwg6PwZmFfT8mf6gQsO6371T1EqxGOS YUODuPEQJt4X8GpxEp1lEEaBUaLXWy7U/bCT8Oe0tGpC6jlZlF5opunKCxWIdD8o MtVpm9NjCrD8XYqc3Brq4J4PHo1DbJMFpWajUgjs4DvJW+TxFyaN9lyDf3uMrl56 gSnzcrR7cAjWX6ZYn7f0VX8+FOwHTbjLEJqcYD7ap7vf4QNGtAaxUn3JNVg= -----END CERTIFICATE-----Generated at Sat Oct 18 00:16:16 2025 by rpki-client