$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9ea6c7bd-8bf8-4e61-aad0-285b15ee1f7d.roa File: 9ea6c7bd-8bf8-4e61-aad0-285b15ee1f7d.roa (raw, json) Hash identifier: qgBJOWYamhLMxcmEva1V5LzvPbjLGi5VnRnlW0lKxJU= Subject key identifier: 47:3A:0C:B2:7B:D3:BA:CD:46:A8:F9:EF:B5:A2:15:6A:3F:16:BF:15 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 61D1E477D7F7FA8BE55E1CECE4E3D7C69FD756BE Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9ea6c7bd-8bf8-4e61-aad0-285b15ee1f7d.roa Signing time: Mon 22 Sep 2025 16:42:27 +0000 ROA not before: Mon 22 Sep 2025 16:42:27 +0000 ROA not after: Mon 27 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.249.241.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:d1:e4:77:d7:f7:fa:8b:e5:5e:1c:ec:e4:e3:d7:c6:9f:d7:56:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 22 16:42:27 2025 GMT Not After : Oct 27 23:59:59 2025 GMT Subject: serialNumber=6a110f0030ea5f7792ba5248cf0d40cf17819cc0ca9f6268349dff57cc8e83e1, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:c7:3e:59:44:7e:c6:79:4a:ec:77:43:34:e1: 49:fb:2b:f3:2f:c4:dd:37:7c:56:f8:d2:fa:bc:43: 1d:c4:38:6c:8b:02:d2:ee:d2:46:72:8d:a1:3b:f3: dd:9d:34:49:ad:b3:65:e1:0e:98:82:84:b8:3c:f9: 40:f4:2c:4f:f4:2e:ca:41:8f:1a:d1:13:65:f8:a5: 25:c0:b6:f4:bd:db:15:6a:74:51:0d:3c:c6:72:12: 19:3c:65:83:69:af:b4:3b:2d:40:0f:1a:ed:d1:36: bf:40:d4:36:50:b8:bb:a3:a5:ec:e7:29:9b:8d:fa: 9e:90:83:84:6b:35:5f:1a:04:40:b7:6b:21:1c:57: 8d:7c:a1:fb:e0:93:fc:b3:04:7a:ab:55:44:bc:8b: 55:67:8d:90:98:30:94:d7:93:f3:b3:a4:e2:0c:8a: 01:43:90:57:c9:ce:ce:4c:7f:b4:aa:12:a7:62:fe: fa:a9:29:7f:a2:82:4c:1b:90:e2:92:58:0a:f6:b9: 47:84:af:41:2b:e7:ce:4f:c6:20:10:17:df:8d:c1: 79:a6:58:19:2c:9d:82:06:51:16:22:dc:3d:ce:8a: a3:9c:75:12:dc:24:5d:02:27:84:fe:1e:98:9c:73: ad:fd:92:a0:f5:73:25:e7:2c:47:30:0d:03:83:40: 0e:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:3A:0C:B2:7B:D3:BA:CD:46:A8:F9:EF:B5:A2:15:6A:3F:16:BF:15 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9ea6c7bd-8bf8-4e61-aad0-285b15ee1f7d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.249.241.0/24 Signature Algorithm: sha256WithRSAEncryption 32:2e:8a:bd:66:e4:2f:e2:f0:56:1f:53:0a:c9:5a:a2:2e:03: a6:62:f9:6a:51:a5:a8:78:82:88:d5:41:9a:07:70:da:fd:bc: c1:13:81:bc:24:f7:51:63:1f:e6:ad:91:5b:20:12:d9:d2:95: 37:03:c3:b9:e8:ac:b0:f1:73:63:7f:fc:66:30:3d:a3:27:8d: 3a:f2:2f:36:dc:f3:df:cb:a5:ad:f0:7f:6f:c6:e5:3d:80:ec: 30:65:ce:12:a1:23:39:f9:7f:c9:7c:ad:6c:25:9d:94:84:7b: b8:4a:21:cd:c1:96:fa:5d:90:ba:84:ea:54:d8:13:4b:c6:6d: 9d:c0:d1:a9:79:d8:22:60:4b:07:86:8b:0a:2d:48:03:57:a8: be:f8:3c:38:a5:e8:6c:e9:44:98:7e:0a:d5:62:d4:69:14:e7: bc:f9:e5:32:55:13:57:a9:ca:2b:b2:47:61:be:6a:63:32:8c: c8:f0:e7:dd:c6:02:af:f8:bb:9c:ef:f5:5b:88:b1:7c:4a:3f: 7d:49:42:d6:31:48:85:ec:b3:0c:4d:6a:7b:21:2d:cf:6b:62: 02:d9:66:65:fa:1d:0c:15:50:c4:af:79:2b:f9:20:a1:0c:42: b9:6e:24:73:92:11:7c:62:35:fd:df:a7:28:52:ac:99:05:b0: 6e:12:00:96 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYdHkd9f3+ovlXhzs5OPXxp/XVr4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTIyMTY0MjI3WhcNMjUxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A2YTExMGYwMDMwZWE1Zjc3OTJiYTUyNDhjZjBkNDBjZjE3 ODE5Y2MwY2E5ZjYyNjgzNDlkZmY1N2NjOGU4M2UxMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCoxz5ZRH7GeUrsd0M04Un7K/MvxN03fFb40vq8Qx3EOGyL AtLu0kZyjaE7892dNEmts2XhDpiChLg8+UD0LE/0LspBjxrRE2X4pSXAtvS92xVq dFENPMZyEhk8ZYNpr7Q7LUAPGu3RNr9A1DZQuLujpeznKZuN+p6Qg4RrNV8aBEC3 ayEcV418ofvgk/yzBHqrVUS8i1VnjZCYMJTXk/OzpOIMigFDkFfJzs5Mf7SqEqdi /vqpKX+igkwbkOKSWAr2uUeEr0Er585PxiAQF9+NwXmmWBksnYIGURYi3D3OiqOc dRLcJF0CJ4T+Hpicc639kqD1cyXnLEcwDQODQA6DAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQURzoMsnvTus1GqPnvtaIVaj8WvxUwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzllYTZjN2JkLThiZjgtNGU2MS1hYWQwLTI4NWIxNWVlMWY3ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAN+fEwDQYJKoZIhvcNAQELBQADggEBADIuir1m5C/i8FYfUwrJWqIuA6Zi +WpRpah4gojVQZoHcNr9vMETgbwk91FjH+atkVsgEtnSlTcDw7norLDxc2N//GYw PaMnjTryLzbc89/Lpa3wf2/G5T2A7DBlzhKhIzn5f8l8rWwlnZSEe7hKIc3Blvpd kLqE6lTYE0vGbZ3A0al52CJgSweGiwotSANXqL74PDil6GzpRJh+CtVi1GkU57z5 5TJVE1epyiuyR2G+amMyjMjw593GAq/4u5zv9VuIsXxKP31JQtYxSIXsswxNansh Lc9rYgLZZmX6HQwVUMSveSv5IKEMQrluJHOSEXxiNf3fpyhSrJkFsG4SAJY= -----END CERTIFICATE-----Generated at Sat Oct 18 02:17:43 2025 by rpki-client