$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/926673fa-2a99-4a67-830e-3f0967580dd6.roa File: 926673fa-2a99-4a67-830e-3f0967580dd6.roa (raw, json) Hash identifier: +GUV474dL3LwYINvoDX/dxOL//eAGkWEJf8AkaLkd8Y= Subject key identifier: 94:B0:88:94:08:40:19:5F:AB:D7:AB:7F:30:0A:64:2D:8F:6D:99:96 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 71B7C824B11C82434482CF6DCC3B11620D96653B Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/926673fa-2a99-4a67-830e-3f0967580dd6.roa Signing time: Mon 01 Sep 2025 16:21:49 +0000 ROA not before: Mon 01 Sep 2025 16:21:49 +0000 ROA not after: Mon 06 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 136.13.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 17 Sep 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:b7:c8:24:b1:1c:82:43:44:82:cf:6d:cc:3b:11:62:0d:96:65:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 1 16:21:49 2025 GMT Not After : Oct 6 23:59:59 2025 GMT Subject: serialNumber=ba9f0eb483bc0c83732a50957b0ad18b8e1548e888ec5cb13dad9bdb7b072a0b, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:6d:3c:9d:71:1b:0c:f5:56:a5:58:21:57:07: 68:b1:37:a0:75:4e:0b:ce:e8:82:f8:4e:9a:fc:96: 4d:4c:fd:5f:c4:85:40:19:37:91:48:f9:1d:3f:f5: 6c:df:db:90:d8:65:b9:6d:23:bd:ba:cc:2c:13:bc: 22:90:da:e0:7f:73:cc:0c:1e:66:28:e9:86:be:58: 4a:dd:8a:8e:71:88:f1:9a:22:e3:39:a7:27:fe:8f: 77:4a:a5:bb:3a:40:95:5e:b4:d3:c9:51:06:e2:f2: 30:11:31:a9:4f:d7:6f:cf:77:9b:de:1a:51:ae:23: 27:28:8e:eb:e6:61:2d:0c:82:b2:da:a3:b5:b9:71: 69:7c:5b:b2:bb:6f:a0:28:b9:3f:a2:f9:84:dd:35: 9c:90:a2:13:91:24:07:49:e0:d4:a9:ec:ca:07:40: 2c:06:a3:68:65:9e:72:83:75:0c:fe:1d:0a:25:a8: 41:f8:17:e1:b0:9c:04:12:88:04:7d:b7:17:33:d0: e8:a6:7c:31:05:7e:7a:bd:d0:c0:ea:76:ab:08:b0: 38:77:ca:fb:db:e2:38:b0:ef:f5:9c:a4:11:c7:70: 3f:ca:8e:23:26:22:fa:5f:8b:4e:f5:44:e2:fe:38: bc:b2:c6:8f:d1:2d:66:40:69:68:c6:75:93:61:ee: 74:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:B0:88:94:08:40:19:5F:AB:D7:AB:7F:30:0A:64:2D:8F:6D:99:96 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/926673fa-2a99-4a67-830e-3f0967580dd6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.13.0.0/16 Signature Algorithm: sha256WithRSAEncryption ad:58:3d:9e:8d:89:72:ee:73:b7:4e:5c:73:7d:9f:54:0d:17: 17:08:c5:7f:6f:bd:c9:61:9e:d8:84:be:41:1a:36:e6:2e:d4: 4a:c6:8d:29:3a:e5:5b:0e:36:8f:58:9b:51:83:91:2b:d9:7f: 8d:e7:51:f2:a1:d7:94:d0:70:c6:d0:f0:2e:ee:11:ff:c3:d0: 8b:b2:1d:78:82:e0:7c:b1:ad:7d:a3:2e:13:77:0e:53:8c:d2: fe:b5:14:a6:08:e1:bf:9d:51:6e:b0:a8:04:de:0f:59:2e:2b: 36:8f:92:37:82:73:f5:b6:ea:13:f6:d7:0e:01:aa:78:f9:32: 17:5a:9e:a0:71:0d:89:af:eb:19:52:34:eb:9e:ce:6f:12:d3: 60:92:85:7f:91:19:80:9f:d6:ce:6d:c5:d2:ee:33:65:5d:07: f5:86:42:2d:45:19:78:96:9d:57:e7:0c:10:92:f7:34:50:eb: 91:dd:7f:d2:d5:86:4c:a9:c5:1e:b9:b5:9c:c7:f5:67:92:3d: d5:6a:73:ca:f5:58:3f:c5:12:8f:6a:d0:a9:6a:f2:65:4f:95: 35:9f:a3:79:70:c6:32:4f:8f:ca:4a:a8:97:6b:4b:f7:b1:db: 3e:a1:ab:59:3f:ce:ca:f6:84:54:ca:6f:db:80:d6:5b:f3:9d: a8:c2:8a:3e -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUcbfIJLEcgkNEgs9tzDsRYg2WZTswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTAxMTYyMTQ5WhcNMjUxMDA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BiYTlmMGViNDgzYmMwYzgzNzMyYTUwOTU3YjBhZDE4Yjhl MTU0OGU4ODhlYzVjYjEzZGFkOWJkYjdiMDcyYTBiMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwbTydcRsM9ValWCFXB2ixN6B1TgvO6IL4Tpr8lk1M/V/E hUAZN5FI+R0/9Wzf25DYZbltI726zCwTvCKQ2uB/c8wMHmYo6Ya+WErdio5xiPGa IuM5pyf+j3dKpbs6QJVetNPJUQbi8jARMalP12/Pd5veGlGuIycojuvmYS0MgrLa o7W5cWl8W7K7b6AouT+i+YTdNZyQohORJAdJ4NSp7MoHQCwGo2hlnnKDdQz+HQol qEH4F+GwnAQSiAR9txcz0OimfDEFfnq90MDqdqsIsDh3yvvb4jiw7/WcpBHHcD/K jiMmIvpfi071ROL+OLyyxo/RLWZAaWjGdZNh7nRbAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUlLCIlAhAGV+r16t/MApkLY9tmZYwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzkyNjY3M2ZhLTJhOTktNGE2Ny04MzBlLTNmMDk2NzU4MGRkNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCIDTANBgkqhkiG9w0BAQsFAAOCAQEArVg9no2Jcu5zt05cc32fVA0XFwjF f2+9yWGe2IS+QRo25i7USsaNKTrlWw42j1ibUYORK9l/jedR8qHXlNBwxtDwLu4R /8PQi7IdeILgfLGtfaMuE3cOU4zS/rUUpgjhv51RbrCoBN4PWS4rNo+SN4Jz9bbq E/bXDgGqePkyF1qeoHENia/rGVI0657ObxLTYJKFf5EZgJ/Wzm3F0u4zZV0H9YZC LUUZeJadV+cMEJL3NFDrkd1/0tWGTKnFHrm1nMf1Z5I91WpzyvVYP8USj2rQqWry ZU+VNZ+jeXDGMk+Pykqol2tL97HbPqGrWT/OyvaEVMpv24DWW/OdqMKKPg== -----END CERTIFICATE-----Generated at Tue Sep 16 19:47:29 2025 by rpki-client