$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2cd07291-b2d9-47fc-8fb5-78cd56f3f79d.roa File: 2cd07291-b2d9-47fc-8fb5-78cd56f3f79d.roa (raw, json) Hash identifier: k8r9U3HlvyeokvnzFXQhrNrJhmlQ4VKt0mAQo+MY6k0= Subject key identifier: 53:59:3E:FC:47:75:3C:FD:7A:9E:56:2E:55:7D:CE:13:83:7A:1A:C1 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 2ABEB8DE303DA717B47459AB17BCA6F0F55B5B86 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2cd07291-b2d9-47fc-8fb5-78cd56f3f79d.roa Signing time: Wed 24 Sep 2025 18:36:50 +0000 ROA not before: Wed 24 Sep 2025 18:36:50 +0000 ROA not after: Wed 29 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.32.84.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:be:b8:de:30:3d:a7:17:b4:74:59:ab:17:bc:a6:f0:f5:5b:5b:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 24 18:36:50 2025 GMT Not After : Oct 29 23:59:59 2025 GMT Subject: serialNumber=52af23934310636094efc123c2a319e1ad6a07d0dc0459a16225f86de339a31d, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:1b:90:20:44:91:78:00:3b:52:24:d5:54:be: cb:94:ab:fa:73:de:48:d2:79:a2:cc:97:95:76:8f: 65:d3:17:48:24:b0:d4:5f:82:3d:0e:5e:7f:d8:15: 60:69:8e:78:02:df:e6:55:ca:a7:45:c4:ee:8a:93: 13:05:c4:03:16:37:d9:5b:4b:18:f0:3d:fb:5c:1e: 45:13:83:81:ec:ae:41:8b:b5:32:a3:a4:8c:09:2c: 40:9e:d9:48:4c:a5:ac:1b:66:bd:86:23:26:b2:73: 19:69:95:e6:f9:8f:9a:e8:d9:4a:c1:f7:06:49:8e: c5:db:03:b4:58:a9:9c:79:d2:1e:89:61:96:33:a7: 91:dd:a3:24:e4:5d:12:65:55:9c:3d:62:6f:84:ce: f0:3a:17:e0:c3:83:cd:5e:3a:84:f5:e3:f1:3d:66: f9:61:96:f2:2a:a9:58:73:11:03:55:24:47:88:f1: ee:a7:4b:3c:08:55:a8:7f:78:d5:b0:e6:30:94:f6: 83:8f:72:0d:55:8b:14:75:f8:20:fb:5d:89:f5:51: c2:a1:75:93:54:87:04:fb:7c:7b:82:92:35:47:5d: 3d:ae:24:f0:7d:b8:31:75:0e:1e:02:ea:0a:a7:7b: 5c:cd:ea:3d:e7:6e:a9:2e:e6:15:38:c0:37:1e:15: 9d:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:59:3E:FC:47:75:3C:FD:7A:9E:56:2E:55:7D:CE:13:83:7A:1A:C1 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2cd07291-b2d9-47fc-8fb5-78cd56f3f79d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.32.84.0/22 Signature Algorithm: sha256WithRSAEncryption ab:9b:cc:db:30:f0:9a:3b:98:9c:78:e4:17:99:87:55:29:39: cd:56:f2:6e:f4:35:1b:9c:a6:2b:53:28:50:66:81:93:34:fa: 65:0f:3e:e9:b3:5b:f8:80:1d:14:bc:9f:35:74:6d:90:2b:5d: 5f:48:f4:f2:32:c3:8b:64:b2:fe:79:94:14:5d:b5:7d:84:40: bb:21:1a:5e:63:cc:72:0c:47:f2:b1:a3:e9:66:59:95:48:fa: 28:78:8c:97:07:43:ab:e5:6f:4d:d3:56:1b:4e:fd:76:69:2b: d6:31:40:03:a1:97:fe:59:1c:92:1d:c7:a4:67:1d:70:42:e3: 27:2c:05:7b:e6:dd:29:1b:bc:aa:de:43:b9:42:44:a3:a2:99: 12:8d:e0:1b:37:84:94:33:40:9f:49:d4:88:6f:3e:a7:6a:c6: 80:03:5c:40:bb:ba:60:a9:93:1b:0a:b7:26:95:15:71:ca:aa: ad:87:fa:86:8d:e0:ee:65:67:d6:18:48:12:cc:90:b6:f8:92: d0:a8:e3:8e:13:35:f4:9b:b5:cd:6f:9b:8d:8d:83:0a:ce:ee: 86:48:1a:0c:b4:2d:98:1c:f6:49:d9:be:68:9e:68:19:dc:c6: 0b:e1:e1:ea:45:6c:2c:fe:cb:dd:b1:16:0a:40:5d:6e:cf:af: f3:10:6d:3c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKr643jA9pxe0dFmrF7ym8PVbW4YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTI0MTgzNjUwWhcNMjUxMDI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A1MmFmMjM5MzQzMTA2MzYwOTRlZmMxMjNjMmEzMTllMWFk NmEwN2QwZGMwNDU5YTE2MjI1Zjg2ZGUzMzlhMzFkMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDWG5AgRJF4ADtSJNVUvsuUq/pz3kjSeaLMl5V2j2XTF0gk sNRfgj0OXn/YFWBpjngC3+ZVyqdFxO6KkxMFxAMWN9lbSxjwPftcHkUTg4HsrkGL tTKjpIwJLECe2UhMpawbZr2GIyaycxlpleb5j5ro2UrB9wZJjsXbA7RYqZx50h6J YZYzp5HdoyTkXRJlVZw9Ym+EzvA6F+DDg81eOoT14/E9ZvlhlvIqqVhzEQNVJEeI 8e6nSzwIVah/eNWw5jCU9oOPcg1VixR1+CD7XYn1UcKhdZNUhwT7fHuCkjVHXT2u JPB9uDF1Dh4C6gqne1zN6j3nbqku5hU4wDceFZ21AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUU1k+/Ed1PP16nlYuVX3OE4N6GsEwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzJjZDA3MjkxLWIyZDktNDdmYy04ZmI1LTc4Y2Q1NmYzZjc5ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAINIFQwDQYJKoZIhvcNAQELBQADggEBAKubzNsw8Jo7mJx45BeZh1UpOc1W 8m70NRucpitTKFBmgZM0+mUPPumzW/iAHRS8nzV0bZArXV9I9PIyw4tksv55lBRd tX2EQLshGl5jzHIMR/Kxo+lmWZVI+ih4jJcHQ6vlb03TVhtO/XZpK9YxQAOhl/5Z HJIdx6RnHXBC4ycsBXvm3SkbvKreQ7lCRKOimRKN4Bs3hJQzQJ9J1IhvPqdqxoAD XEC7umCpkxsKtyaVFXHKqq2H+oaN4O5lZ9YYSBLMkLb4ktCo444TNfSbtc1vm42N gwrO7oZIGgy0LZgc9knZvmieaBncxgvh4epFbCz+y92xFgpAXW7Pr/MQbTw= -----END CERTIFICATE-----Generated at Sat Oct 18 05:06:20 2025 by rpki-client