$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/331f37f4-65f9-49bd-b581-5c26d7f79db6.roa File: 331f37f4-65f9-49bd-b581-5c26d7f79db6.roa (raw, json) Hash identifier: BPygYZBvMjIHW40wsZ4kb5v1GTB/yyqEU6L/QjWCa/g= Subject key identifier: 5C:50:24:0E:EB:91:66:D8:84:68:33:6E:36:86:C5:8D:B0:E5:D7:B0 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 585A2511ED15F68583207D954662D0525067B702 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/331f37f4-65f9-49bd-b581-5c26d7f79db6.roa Signing time: Wed 24 Sep 2025 20:56:11 +0000 ROA not before: Wed 24 Sep 2025 20:56:11 +0000 ROA not after: Wed 29 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.227.96.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:5a:25:11:ed:15:f6:85:83:20:7d:95:46:62:d0:52:50:67:b7:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 24 20:56:11 2025 GMT Not After : Oct 29 23:59:59 2025 GMT Subject: serialNumber=da069c01dca9cc9a9bf0d4548102622f11ddd1f1c632665f2951dff4579997a4, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:00:7f:dc:39:a2:03:cf:79:e4:eb:c3:cb:49: 12:05:df:d5:17:fc:c0:f4:9f:6c:24:5f:9e:d8:9b: 23:ae:a5:43:20:e6:1f:4f:9a:79:be:00:65:99:1c: ed:0b:8f:c4:64:2c:6b:25:0b:1b:fe:9b:7c:60:69: 26:4a:19:93:8f:82:22:3a:fa:b4:a5:f0:b4:71:9a: 00:5d:75:f0:8e:0e:e9:6c:3b:5a:6a:9f:dd:e1:23: 11:3a:b4:fc:79:4d:ff:73:cd:8f:73:5c:0b:1c:d4: 8c:e3:c4:97:cf:76:81:8e:07:e5:ae:62:1f:ff:7e: bf:30:ac:b5:27:45:1c:c3:e4:a1:89:a8:95:68:b0: 52:44:d1:ef:a0:de:c6:e6:dc:e8:07:ed:f4:00:e6: 98:52:f4:47:a2:33:ed:64:6b:89:31:be:c3:7a:dd: 26:dc:19:fb:98:14:51:ed:bf:21:57:97:6a:2d:87: 13:b6:22:f8:0e:90:08:66:db:29:3a:92:51:6c:d3: a9:ef:17:bf:64:f8:9a:18:d7:cc:9a:cf:79:b5:fb: 51:88:5e:fd:ba:96:62:ff:9b:b2:9c:06:25:df:34: a4:e8:bf:cc:d2:dd:a7:03:6c:f8:8e:de:e8:03:59: 5f:f7:cc:7f:60:44:f5:92:a4:95:54:26:fa:72:37: 64:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:50:24:0E:EB:91:66:D8:84:68:33:6E:36:86:C5:8D:B0:E5:D7:B0 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/331f37f4-65f9-49bd-b581-5c26d7f79db6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.227.96.0/21 Signature Algorithm: sha256WithRSAEncryption 25:f3:a6:71:d8:24:1d:2b:b7:f7:c2:df:7c:7a:48:f3:5d:68: 3a:42:fe:cf:e7:33:13:e3:ab:62:8b:b1:a9:3d:db:86:f7:4b: 2e:7c:c5:ef:fe:d1:38:05:86:a7:9f:6d:eb:69:71:e6:e1:0b: 45:75:8e:f3:fb:21:16:80:e6:d2:53:3a:d3:f0:ef:eb:13:6a: e6:c5:3a:0e:a4:c2:1a:ad:8a:f2:c7:68:7e:e9:b1:c6:64:ca: ec:31:a6:3c:55:ac:b8:1b:b2:7d:83:8c:06:61:3a:6b:be:6e: 23:7a:c4:55:02:c5:9e:26:b8:fb:19:f9:23:3d:c1:57:86:c6: f1:8a:9d:ca:6c:a9:86:20:7a:bf:de:a5:7e:0c:95:de:b1:0a: 41:a4:59:ca:1c:f5:41:8d:2d:6a:d4:30:53:0f:4d:9d:6d:53: 81:d5:a6:96:af:01:5b:15:c6:f8:a5:65:4f:9a:6d:2a:28:e6: 55:63:d2:5c:3d:e0:1c:d3:8b:b1:2b:f0:96:04:37:04:77:34: 3c:e8:82:cf:9e:92:76:6a:24:fd:bd:95:d9:48:ab:b5:e8:2a: 51:01:5c:c6:03:55:d3:41:ee:37:4c:af:fc:40:f1:c4:4f:95: 9c:2a:e3:db:95:98:6a:01:93:42:45:14:88:d9:78:10:34:5b: 0b:71:b2:9c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWFolEe0V9oWDIH2VRmLQUlBntwIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTI0MjA1NjExWhcNMjUxMDI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BkYTA2OWMwMWRjYTljYzlhOWJmMGQ0NTQ4MTAyNjIyZjEx ZGRkMWYxYzYzMjY2NWYyOTUxZGZmNDU3OTk5N2E0MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJAH/cOaIDz3nk68PLSRIF39UX/MD0n2wkX57YmyOupUMg 5h9Pmnm+AGWZHO0Lj8RkLGslCxv+m3xgaSZKGZOPgiI6+rSl8LRxmgBddfCODuls O1pqn93hIxE6tPx5Tf9zzY9zXAsc1IzjxJfPdoGOB+WuYh//fr8wrLUnRRzD5KGJ qJVosFJE0e+g3sbm3OgH7fQA5phS9EeiM+1ka4kxvsN63SbcGfuYFFHtvyFXl2ot hxO2IvgOkAhm2yk6klFs06nvF79k+JoY18yaz3m1+1GIXv26lmL/m7KcBiXfNKTo v8zS3acDbPiO3ugDWV/3zH9gRPWSpJVUJvpyN2RbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUXFAkDuuRZtiEaDNuNobFjbDl17AwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzMzMWYzN2Y0LTY1ZjktNDliZC1iNTgxLTVjMjZkN2Y3OWRiNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMN42AwDQYJKoZIhvcNAQELBQADggEBACXzpnHYJB0rt/fC33x6SPNdaDpC /s/nMxPjq2KLsak924b3Sy58xe/+0TgFhqefbetpcebhC0V1jvP7IRaA5tJTOtPw 7+sTaubFOg6kwhqtivLHaH7pscZkyuwxpjxVrLgbsn2DjAZhOmu+biN6xFUCxZ4m uPsZ+SM9wVeGxvGKncpsqYYger/epX4Mld6xCkGkWcoc9UGNLWrUMFMPTZ1tU4HV ppavAVsVxvilZU+abSoo5lVj0lw94BzTi7Er8JYENwR3NDzogs+eknZqJP29ldlI q7XoKlEBXMYDVdNB7jdMr/xA8cRPlZwq49uVmGoBk0JFFIjZeBA0Wwtxspw= -----END CERTIFICATE-----Generated at Fri Oct 17 22:19:09 2025 by rpki-client