$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/72077ef2-b493-43fe-85b8-b9bdfb6b2511.roa File: 72077ef2-b493-43fe-85b8-b9bdfb6b2511.roa (raw, json) Hash identifier: KwDUgvFAsXb0VvmsNq50JtrEq5LD78BNlDzu5aX1pqA= Subject key identifier: 00:D8:6A:E4:BD:80:47:72:33:73:8E:7C:04:F3:E0:D1:46:EB:94:01 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 7BF4CBEDF65A10513106E905AF87A2F22BFBEF55 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/72077ef2-b493-43fe-85b8-b9bdfb6b2511.roa Signing time: Wed 24 Sep 2025 18:44:23 +0000 ROA not before: Wed 24 Sep 2025 18:44:23 +0000 ROA not after: Wed 29 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.32.136.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:f4:cb:ed:f6:5a:10:51:31:06:e9:05:af:87:a2:f2:2b:fb:ef:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 24 18:44:23 2025 GMT Not After : Oct 29 23:59:59 2025 GMT Subject: serialNumber=a421a3704c5eefadd41b1e1be568dd9c50acf0947af1f2e0ae10809916968040, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fe:59:4e:9b:ef:22:b1:b4:9e:08:a0:ce:51:a9: e2:f7:cb:79:69:f7:47:4e:7f:74:c2:18:73:4d:8d: 73:c6:0e:95:de:97:d3:9c:b0:b9:6b:8f:1b:cf:ae: 78:f1:59:bd:20:43:76:56:20:bb:20:bc:d0:72:93: 0f:c0:ba:94:b2:f6:a2:e4:dc:50:54:6f:72:f7:18: 2b:db:36:de:ec:55:e8:50:10:dc:d0:32:77:e5:7f: 21:16:65:9c:f7:86:e9:33:e5:56:d2:b9:86:b2:7a: c6:85:91:4f:fb:ae:34:93:18:c4:6b:44:2d:9c:f6: 74:3a:8b:04:c0:a9:42:34:6b:59:da:79:86:a7:ba: 83:d4:fc:17:14:6e:0a:bc:32:5b:dc:79:ee:53:19: e8:67:9a:9c:34:ec:3b:1b:67:c8:ca:cf:bc:6a:bc: 7d:cb:23:8d:79:02:1c:ab:5d:2b:48:2b:34:e8:2b: 20:67:d3:d1:7d:eb:a8:20:9d:ce:53:88:60:76:59: 9c:a9:f9:d1:bf:9d:92:62:a5:94:b7:4c:48:b5:de: 78:78:07:de:e5:75:b3:c4:62:16:91:68:49:dd:0a: 99:d7:91:e3:d5:7f:40:c2:7d:c6:36:ec:71:bc:84: 19:a0:f8:c3:a7:af:c2:38:ff:b2:f2:2b:19:31:ed: 0a:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:D8:6A:E4:BD:80:47:72:33:73:8E:7C:04:F3:E0:D1:46:EB:94:01 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/72077ef2-b493-43fe-85b8-b9bdfb6b2511.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.32.136.0/21 Signature Algorithm: sha256WithRSAEncryption 86:16:b8:e7:44:1e:e7:c8:97:c2:40:e7:2c:43:83:85:fd:49: fe:f7:87:75:50:18:36:30:d1:77:75:d2:1a:d4:52:43:2c:68: aa:8c:0d:32:20:78:3e:da:50:37:ed:83:96:10:a5:1f:5d:d5: a4:3d:52:8e:e8:74:dc:cc:72:4e:b8:71:3a:7f:8b:33:f1:8a: 78:2d:ee:a8:96:a0:21:0d:c2:da:8a:7a:c3:c0:1b:54:01:bc: ec:c2:3e:3f:ba:e3:5c:53:a4:ba:71:e5:91:4a:22:d1:64:87: c2:1d:14:ef:87:69:b6:5f:56:35:e4:33:22:76:6f:bd:3f:21: b7:12:4b:c4:6d:b2:60:8a:2f:46:31:67:bf:81:df:c3:fe:24: 58:81:16:21:9d:9d:a6:84:b9:94:3e:39:4a:1f:24:80:d4:66: 4b:0d:b5:8e:c1:2b:44:80:80:bd:71:d3:88:e7:f9:a0:a9:69: b7:ce:23:d3:8c:dc:09:47:44:6b:c2:8a:42:b7:76:3c:22:c7: 94:c0:d1:56:e5:5b:05:3e:98:80:b7:dd:09:6d:6a:10:dd:f6: 7d:64:12:ed:29:59:bd:fd:0f:c3:84:0d:4d:f9:99:07:a4:ab: ac:c1:cf:89:74:05:fc:a7:47:12:ca:be:b0:e2:8a:cb:b7:35: 3a:33:8b:0e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUe/TL7fZaEFExBukFr4ei8iv771UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTI0MTg0NDIzWhcNMjUxMDI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNDIxYTM3MDRjNWVlZmFkZDQxYjFlMWJlNTY4ZGQ5YzUw YWNmMDk0N2FmMWYyZTBhZTEwODA5OTE2OTY4MDQwMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD+WU6b7yKxtJ4IoM5RqeL3y3lp90dOf3TCGHNNjXPGDpXe l9OcsLlrjxvPrnjxWb0gQ3ZWILsgvNBykw/AupSy9qLk3FBUb3L3GCvbNt7sVehQ ENzQMnflfyEWZZz3hukz5VbSuYayesaFkU/7rjSTGMRrRC2c9nQ6iwTAqUI0a1na eYanuoPU/BcUbgq8Mlvcee5TGehnmpw07DsbZ8jKz7xqvH3LI415AhyrXStIKzTo KyBn09F966ggnc5TiGB2WZyp+dG/nZJipZS3TEi13nh4B97ldbPEYhaRaEndCpnX kePVf0DCfcY27HG8hBmg+MOnr8I4/7LyKxkx7QrtAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUANhq5L2AR3Izc458BPPg0UbrlAEwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzcyMDc3ZWYyLWI0OTMtNDNmZS04NWI4LWI5YmRmYjZiMjUxMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMNIIgwDQYJKoZIhvcNAQELBQADggEBAIYWuOdEHufIl8JA5yxDg4X9Sf73 h3VQGDYw0Xd10hrUUkMsaKqMDTIgeD7aUDftg5YQpR9d1aQ9Uo7odNzMck64cTp/ izPxingt7qiWoCENwtqKesPAG1QBvOzCPj+641xTpLpx5ZFKItFkh8IdFO+HabZf VjXkMyJ2b70/IbcSS8RtsmCKL0YxZ7+B38P+JFiBFiGdnaaEuZQ+OUofJIDUZksN tY7BK0SAgL1x04jn+aCpabfOI9OM3AlHRGvCikK3djwix5TA0VblWwU+mIC33Qlt ahDd9n1kEu0pWb39D8OEDU35mQekq6zBz4l0BfynRxLKvrDiisu3NToziw4= -----END CERTIFICATE-----Generated at Fri Oct 17 21:57:32 2025 by rpki-client