$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7782903c-b18b-453d-943a-a7588d6fdfdc.roa File: 7782903c-b18b-453d-943a-a7588d6fdfdc.roa (raw, json) Hash identifier: A8TKMQopbIEQoegWU7/q0Nj/i2gFca7zZ4c4g6Qhq0k= Subject key identifier: 07:64:D2:EB:43:EF:6A:25:04:3A:85:F2:D4:DF:46:38:3A:85:AF:CE Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 5D989F96B4460864CDED5E949207E64F32B7B017 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7782903c-b18b-453d-943a-a7588d6fdfdc.roa Signing time: Wed 24 Sep 2025 20:57:44 +0000 ROA not before: Wed 24 Sep 2025 20:57:44 +0000 ROA not after: Wed 29 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.224.224.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:98:9f:96:b4:46:08:64:cd:ed:5e:94:92:07:e6:4f:32:b7:b0:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 24 20:57:44 2025 GMT Not After : Oct 29 23:59:59 2025 GMT Subject: serialNumber=221f63596b1daf40b2ca1643e83d5b3556338450b0bd511960f4bed6d42c43c7, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:8c:e5:e2:5d:40:39:34:fd:8f:08:02:8e:b3: ec:54:38:6e:61:aa:6a:27:4c:41:c1:4e:76:dd:8e: 0b:72:0c:2e:d2:d3:fd:ef:7c:cf:ca:2a:4b:82:e3: f1:81:cc:62:1e:9b:23:2b:87:f9:e1:40:32:e6:ff: 5f:d2:c6:6c:69:23:21:79:25:5f:4a:42:0b:4b:14: ef:4d:03:57:4a:81:e0:f5:c8:a8:0b:c0:9a:b6:9f: f6:40:6b:3a:86:d3:6b:7e:80:4f:3d:b2:ff:0f:23: fe:3c:0c:93:9f:06:1d:d6:88:78:d7:0f:5b:ed:1d: 27:c4:6a:89:4e:36:30:5a:08:bd:66:9d:43:88:e6: 22:bb:b2:4f:82:23:7a:d1:8f:42:41:ca:3d:d9:78: 3f:1e:60:fb:69:96:6e:b3:e0:4a:bf:cd:5d:1a:be: 23:b8:77:29:9a:39:60:c6:e1:b9:02:b5:70:c7:b2: d9:92:c1:47:50:46:75:de:62:5a:d1:8d:fd:03:3a: 7f:7e:53:3c:d3:f9:db:14:11:a3:32:b4:5e:a1:2e: 06:55:c0:a3:3f:33:ab:f5:54:5d:1f:2e:7e:eb:22: d4:0d:17:8a:13:ae:5e:34:1a:0f:73:70:92:e3:be: a2:10:5c:f8:06:2a:e6:31:8c:b3:97:cc:82:8c:61: dd:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:64:D2:EB:43:EF:6A:25:04:3A:85:F2:D4:DF:46:38:3A:85:AF:CE X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7782903c-b18b-453d-943a-a7588d6fdfdc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.224.224.0/20 Signature Algorithm: sha256WithRSAEncryption 12:e6:35:f5:08:d3:9a:5e:d2:60:6c:7f:79:55:11:61:9c:b0: 13:66:89:55:96:28:ad:05:67:f9:22:29:95:94:0f:83:f4:f6: 98:e4:eb:19:de:8e:13:6a:f3:0f:67:82:38:27:71:ca:82:28: ef:60:09:90:66:16:63:ac:0c:a9:aa:56:d6:ba:ec:d8:11:20: 61:24:99:9a:47:2d:b9:ce:0d:86:1f:23:d4:c4:d0:a0:2f:f4: 9e:f6:d8:69:e4:70:54:59:03:f3:a9:81:71:6b:79:74:d5:ea: 35:38:01:b8:ea:8b:70:04:ea:35:86:d2:d3:0f:7f:c5:f8:c0: 48:2c:1f:53:35:bd:4d:31:a7:45:90:3c:c0:d8:d8:df:2a:4a: 64:9a:18:d1:00:83:b3:2a:2b:b4:de:9e:e9:6d:4e:1f:64:0d: 08:4f:d6:07:b9:d1:4b:57:b0:c3:6f:76:5a:cc:a3:91:c1:ed: 6e:3a:f4:45:31:75:ef:b0:7f:87:c5:90:fe:0d:ed:75:88:d2: 54:8c:e5:c4:8b:5e:16:46:94:7c:05:3c:fa:b3:21:ef:b3:4a: cb:7c:fb:d0:aa:3b:5f:c9:55:13:38:24:ec:2e:3f:d7:f3:96: ea:e3:5d:f9:43:b3:6b:21:97:58:4b:5c:60:9e:dc:87:d9:0d: b2:c0:c5:a2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXZiflrRGCGTN7V6UkgfmTzK3sBcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTI0MjA1NzQ0WhcNMjUxMDI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMjFmNjM1OTZiMWRhZjQwYjJjYTE2NDNlODNkNWIzNTU2 MzM4NDUwYjBiZDUxMTk2MGY0YmVkNmQ0MmM0M2M3MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7jOXiXUA5NP2PCAKOs+xUOG5hqmonTEHBTnbdjgtyDC7S 0/3vfM/KKkuC4/GBzGIemyMrh/nhQDLm/1/SxmxpIyF5JV9KQgtLFO9NA1dKgeD1 yKgLwJq2n/ZAazqG02t+gE89sv8PI/48DJOfBh3WiHjXD1vtHSfEaolONjBaCL1m nUOI5iK7sk+CI3rRj0JByj3ZeD8eYPtplm6z4Eq/zV0aviO4dymaOWDG4bkCtXDH stmSwUdQRnXeYlrRjf0DOn9+UzzT+dsUEaMytF6hLgZVwKM/M6v1VF0fLn7rItQN F4oTrl40Gg9zcJLjvqIQXPgGKuYxjLOXzIKMYd3PAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUB2TS60PvaiUEOoXy1N9GODqFr84wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzc3ODI5MDNjLWIxOGItNDUzZC05NDNhLWE3NTg4ZDZmZGZkYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQN4OAwDQYJKoZIhvcNAQELBQADggEBABLmNfUI05pe0mBsf3lVEWGcsBNm iVWWKK0FZ/kiKZWUD4P09pjk6xnejhNq8w9ngjgnccqCKO9gCZBmFmOsDKmqVta6 7NgRIGEkmZpHLbnODYYfI9TE0KAv9J722GnkcFRZA/OpgXFreXTV6jU4Abjqi3AE 6jWG0tMPf8X4wEgsH1M1vU0xp0WQPMDY2N8qSmSaGNEAg7MqK7TenultTh9kDQhP 1ge50UtXsMNvdlrMo5HB7W469EUxde+wf4fFkP4N7XWI0lSM5cSLXhZGlHwFPPqz Ie+zSst8+9CqO1/JVRM4JOwuP9fzlurjXflDs2shl1hLXGCe3IfZDbLAxaI= -----END CERTIFICATE-----Generated at Fri Oct 17 22:02:31 2025 by rpki-client