$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/88ec7857-cdd9-4948-a3be-15abac907354.roa File: 88ec7857-cdd9-4948-a3be-15abac907354.roa (raw, json) Hash identifier: LnDTQ4orzYmgCUaf5TWBNzhjsfeYKlVS/RT+Cnjrg90= Subject key identifier: 9D:18:72:5C:13:9A:1C:11:47:F5:1C:3D:17:5A:BA:5E:25:52:BE:FC Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 555A74A6D23443F332CDC4C65DE99880DFE7D89E Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/88ec7857-cdd9-4948-a3be-15abac907354.roa Signing time: Wed 24 Sep 2025 17:53:35 +0000 ROA not before: Wed 24 Sep 2025 17:53:35 +0000 ROA not after: Wed 29 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.35.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:5a:74:a6:d2:34:43:f3:32:cd:c4:c6:5d:e9:98:80:df:e7:d8:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 24 17:53:35 2025 GMT Not After : Oct 29 23:59:59 2025 GMT Subject: serialNumber=e85a71421d5cc09f4e676ba44bea7f1dd92f0d126bebf891cfb45dcda6717706, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:65:90:41:c8:e8:8c:44:79:97:24:5e:e3:e5: 1b:df:83:eb:e6:e9:f2:c0:dc:25:fc:20:cf:71:70: d0:bf:75:62:27:4b:17:27:5a:9f:25:d5:e3:9b:35: d0:7c:bc:76:b4:f6:e9:9c:f7:be:2e:10:c7:3f:91: 7d:9c:92:7d:92:e1:54:19:59:bd:1c:0b:ee:36:eb: 12:41:27:95:4f:26:64:44:0c:d4:99:4e:4d:d2:9d: 85:e4:0f:ac:6d:a3:ef:21:3d:18:4e:93:e4:06:b2: 8f:d8:f6:a4:82:3b:99:13:74:3b:a6:34:4d:a8:f5: 1e:ef:6f:07:30:92:55:f1:a7:7e:e3:c3:7f:a2:e4: 7b:ae:d1:fb:c3:34:c9:68:4e:b9:44:a0:55:02:18: d5:0d:a0:c3:2b:42:9b:4d:89:7a:a4:3e:58:70:90: 30:2d:64:5e:31:6a:90:2a:80:12:42:5b:51:92:d5: ff:67:c8:52:56:71:cf:34:70:1d:7d:41:84:9b:ab: 69:11:1d:f8:03:d0:61:65:f0:a6:31:14:dc:c5:5d: 74:62:e4:74:74:2f:80:bf:5c:54:3e:04:ac:58:58: 71:98:ea:93:2e:d9:6b:6f:07:61:e2:d7:4a:8b:94: 25:22:b4:19:f1:61:33:64:5c:47:d6:84:67:a8:2f: 7f:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:18:72:5C:13:9A:1C:11:47:F5:1C:3D:17:5A:BA:5E:25:52:BE:FC X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/88ec7857-cdd9-4948-a3be-15abac907354.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.35.11.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:0e:59:32:3c:b0:fb:07:4e:76:08:81:28:6b:ad:31:68:b6: a8:ff:7d:57:94:00:eb:2e:c1:68:ce:56:fc:9e:23:b6:36:4a: ff:25:21:92:40:23:80:52:42:8a:11:64:76:97:75:5a:5b:3d: a3:1b:1f:4b:44:b3:5b:7d:0c:95:de:31:9c:58:c9:1d:65:cc: ef:8a:a2:0a:4d:66:39:ee:5b:7c:4e:4c:80:6a:c1:95:5e:eb: 8d:f0:ea:c8:ff:56:2f:e4:17:c4:bb:21:ed:ee:13:6b:90:8d: 05:f9:0d:30:1f:bf:00:56:92:33:70:16:e0:17:31:dc:0d:c9: d7:46:cb:b0:b5:49:14:0a:20:74:27:53:d1:1f:f8:f5:a3:fa: 20:9f:7a:d5:d7:59:d5:2b:39:3c:7a:a2:93:f1:66:27:79:dc: fc:bf:0a:08:9e:45:04:59:73:d6:e2:8f:b2:0e:b8:69:06:43: 4d:48:b1:1b:42:2d:0e:0f:f7:33:36:cf:79:2e:cb:cc:dd:45: c5:c3:cb:41:54:7d:dc:cd:66:2d:93:4a:87:9d:46:90:fd:cd: be:10:22:3f:20:57:b9:82:cb:f6:a9:64:2d:ff:09:7f:0c:4a: c4:29:5c:d8:e6:64:77:e8:0c:eb:8f:8a:27:29:99:2a:30:ea: d7:bf:e8:c8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVVp0ptI0Q/MyzcTGXemYgN/n2J4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTI0MTc1MzM1WhcNMjUxMDI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BlODVhNzE0MjFkNWNjMDlmNGU2NzZiYTQ0YmVhN2YxZGQ5 MmYwZDEyNmJlYmY4OTFjZmI0NWRjZGE2NzE3NzA2MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLZZBByOiMRHmXJF7j5Rvfg+vm6fLA3CX8IM9xcNC/dWIn SxcnWp8l1eObNdB8vHa09umc974uEMc/kX2ckn2S4VQZWb0cC+426xJBJ5VPJmRE DNSZTk3SnYXkD6xto+8hPRhOk+QGso/Y9qSCO5kTdDumNE2o9R7vbwcwklXxp37j w3+i5Huu0fvDNMloTrlEoFUCGNUNoMMrQptNiXqkPlhwkDAtZF4xapAqgBJCW1GS 1f9nyFJWcc80cB19QYSbq2kRHfgD0GFl8KYxFNzFXXRi5HR0L4C/XFQ+BKxYWHGY 6pMu2WtvB2Hi10qLlCUitBnxYTNkXEfWhGeoL3+7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUnRhyXBOaHBFH9Rw9F1q6XiVSvvwwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzg4ZWM3ODU3LWNkZDktNDk0OC1hM2JlLTE1YWJhYzkwNzM1NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAANIwswDQYJKoZIhvcNAQELBQADggEBAD0OWTI8sPsHTnYIgShrrTFotqj/ fVeUAOsuwWjOVvyeI7Y2Sv8lIZJAI4BSQooRZHaXdVpbPaMbH0tEs1t9DJXeMZxY yR1lzO+KogpNZjnuW3xOTIBqwZVe643w6sj/Vi/kF8S7Ie3uE2uQjQX5DTAfvwBW kjNwFuAXMdwNyddGy7C1SRQKIHQnU9Ef+PWj+iCfetXXWdUrOTx6opPxZid53Py/ CgieRQRZc9bij7IOuGkGQ01IsRtCLQ4P9zM2z3kuy8zdRcXDy0FUfdzNZi2TSoed RpD9zb4QIj8gV7mCy/apZC3/CX8MSsQpXNjmZHfoDOuPiicpmSow6te/6Mg= -----END CERTIFICATE-----Generated at Fri Oct 17 22:04:12 2025 by rpki-client