$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9cd42836-2ab7-4dea-ac47-f41584c49836.roa File: 9cd42836-2ab7-4dea-ac47-f41584c49836.roa (raw, json) Hash identifier: cYQv1xJdue143TUCdVT4tIHTgdHvTqtnrQkUeQ+Y7Ls= Subject key identifier: C8:E8:94:96:B3:43:BB:B4:FE:38:D1:FE:05:63:B8:86:E2:76:1D:44 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 0EE5C59AE29155FB3F6ECFC8EB23740640A41858 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9cd42836-2ab7-4dea-ac47-f41584c49836.roa Signing time: Tue 07 Oct 2025 15:13:41 +0000 ROA not before: Tue 07 Oct 2025 15:13:41 +0000 ROA not after: Tue 11 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.124.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:e5:c5:9a:e2:91:55:fb:3f:6e:cf:c8:eb:23:74:06:40:a4:18:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 7 15:13:41 2025 GMT Not After : Nov 11 23:59:59 2025 GMT Subject: serialNumber=fd3e695e2ed7a30c071f159455d9f4e8ec6487b5f95ba5b2def036a499012dc9, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:0e:49:7f:c7:fc:f8:f2:69:28:6d:f7:80:58: 3d:e4:81:52:46:95:06:6f:70:70:f4:ed:c8:8d:db: 02:fa:b0:17:94:e2:1c:50:73:7b:eb:ae:9f:fd:f0: 96:1e:e7:56:bd:45:98:ca:95:2e:ed:c9:d5:5a:b7: c6:3a:af:28:a8:f9:e9:1b:77:e9:dc:81:e6:2c:ad: 5c:67:e2:28:57:9d:67:c3:77:3f:6e:c1:44:b0:6b: 8b:60:99:65:43:83:81:90:d5:ca:99:96:83:92:de: d1:71:7e:c9:8f:a5:26:4a:7d:fb:b6:4b:c4:6a:e0: 42:d5:43:5e:0f:36:d1:71:8d:a1:c4:65:cd:75:4e: e9:b4:48:a1:dc:ce:84:5b:41:1b:04:7a:a5:5c:db: d4:8f:b5:5d:9c:88:14:11:6c:87:e9:f4:c8:87:db: 11:27:fb:43:08:03:a1:7a:c0:f0:20:0c:d8:df:7f: d6:76:9f:9c:00:0c:35:e7:97:6c:63:68:f1:5c:80: 8e:a5:8c:d2:89:ac:93:73:23:01:76:70:27:b8:44: ca:6b:96:e3:fc:e8:49:f9:e0:20:e9:ec:f0:97:03: 69:a4:f4:e8:4d:b8:7d:a5:f8:10:55:f3:cb:e4:6b: be:fd:5c:73:31:74:14:f2:be:4d:ed:78:20:33:3c: 0e:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:E8:94:96:B3:43:BB:B4:FE:38:D1:FE:05:63:B8:86:E2:76:1D:44 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9cd42836-2ab7-4dea-ac47-f41584c49836.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.124.64.0/18 Signature Algorithm: sha256WithRSAEncryption 84:19:07:d3:c6:b4:e7:c5:b0:d7:32:41:f2:91:f2:5a:a4:ea: 8b:e0:87:c7:bd:17:49:06:7b:9e:36:40:dc:9f:28:74:87:c7: 4c:c5:7e:e2:25:93:6a:b6:40:67:b4:cd:b1:66:49:27:9e:2b: 6f:ec:79:04:41:d6:31:fd:09:97:55:ad:76:0e:21:cf:b0:f8: 37:81:a9:aa:f9:6d:1c:84:be:7d:84:db:d2:e6:cf:b3:62:94: 72:23:47:52:49:fe:2b:5f:c8:dd:67:c5:af:0a:73:ca:b3:43: 5f:16:37:a1:b4:29:a3:01:d1:40:1f:0b:59:28:5f:00:a0:3a: 3a:26:f6:5c:56:92:71:cf:0e:ff:9c:c3:15:a6:4d:f7:be:d8: ca:a8:fc:af:03:ff:1d:28:44:20:d0:44:14:2f:53:7e:dd:a0: 2a:bf:b2:35:52:02:0f:a3:3b:64:aa:83:19:b8:f7:b3:c5:e1: 7b:61:66:0b:e5:74:12:af:6b:ec:c0:2b:f2:27:ad:26:cb:43: a9:71:c6:f7:3f:56:5b:0d:46:1f:84:85:72:0a:ca:b5:f2:d7: bf:20:c0:54:cc:21:30:b3:6f:2d:dd:27:49:1b:aa:cb:5d:f4: 87:ec:42:cd:ab:46:8e:1d:d1:c3:74:ed:3f:29:5d:19:5c:04: c1:54:da:1c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDuXFmuKRVfs/bs/I6yN0BkCkGFgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDA3MTUxMzQxWhcNMjUxMTExMjM1OTU5 WjB6MUkwRwYDVQQFE0BmZDNlNjk1ZTJlZDdhMzBjMDcxZjE1OTQ1NWQ5ZjRlOGVj NjQ4N2I1Zjk1YmE1YjJkZWYwMzZhNDk5MDEyZGM5MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCaDkl/x/z48mkobfeAWD3kgVJGlQZvcHD07ciN2wL6sBeU 4hxQc3vrrp/98JYe51a9RZjKlS7tydVat8Y6ryio+ekbd+ncgeYsrVxn4ihXnWfD dz9uwUSwa4tgmWVDg4GQ1cqZloOS3tFxfsmPpSZKffu2S8Rq4ELVQ14PNtFxjaHE Zc11Tum0SKHczoRbQRsEeqVc29SPtV2ciBQRbIfp9MiH2xEn+0MIA6F6wPAgDNjf f9Z2n5wADDXnl2xjaPFcgI6ljNKJrJNzIwF2cCe4RMprluP86En54CDp7PCXA2mk 9OhNuH2l+BBV88vka779XHMxdBTyvk3teCAzPA7DAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUyOiUlrNDu7T+ONH+BWO4huJ2HUQwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzljZDQyODM2LTJhYjctNGRlYS1hYzQ3LWY0MTU4NGM0OTgzNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYNfEAwDQYJKoZIhvcNAQELBQADggEBAIQZB9PGtOfFsNcyQfKR8lqk6ovg h8e9F0kGe542QNyfKHSHx0zFfuIlk2q2QGe0zbFmSSeeK2/seQRB1jH9CZdVrXYO Ic+w+DeBqar5bRyEvn2E29Lmz7NilHIjR1JJ/itfyN1nxa8Kc8qzQ18WN6G0KaMB 0UAfC1koXwCgOjom9lxWknHPDv+cwxWmTfe+2Mqo/K8D/x0oRCDQRBQvU37doCq/ sjVSAg+jO2Sqgxm497PF4XthZgvldBKva+zAK/InrSbLQ6lxxvc/VlsNRh+EhXIK yrXy178gwFTMITCzby3dJ0kbqstd9IfsQs2rRo4d0cN07T8pXRlcBMFU2hw= -----END CERTIFICATE-----Generated at Fri Oct 17 23:56:45 2025 by rpki-client