$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a1546a99-a48f-48cd-80c7-0b3484fb8409.roa File: a1546a99-a48f-48cd-80c7-0b3484fb8409.roa (raw, json) Hash identifier: FwCatAoCFsPrPy5HZmrYTPOdiM00mTrUg4eglYRyaAc= Subject key identifier: 81:C5:FA:E4:0E:84:D6:7B:E1:67:A3:2D:C9:FD:40:7F:F1:C9:32:3B Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 11FCDE52E9C9A5526FFE9BAB96CAAD541992944C Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a1546a99-a48f-48cd-80c7-0b3484fb8409.roa Signing time: Wed 24 Sep 2025 19:43:38 +0000 ROA not before: Wed 24 Sep 2025 19:43:38 +0000 ROA not after: Wed 29 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.226.76.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:fc:de:52:e9:c9:a5:52:6f:fe:9b:ab:96:ca:ad:54:19:92:94:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 24 19:43:38 2025 GMT Not After : Oct 29 23:59:59 2025 GMT Subject: serialNumber=a7edb40f6b5992e2365d5fe1d3174d49a5f6014181391c65cf1411b23fa259cd, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:86:9f:ee:5a:98:92:c4:45:e6:bd:02:21:01: 96:2a:fe:03:9c:4b:8a:4c:f6:9d:ff:92:41:f4:79: 2b:1f:b5:93:f6:2c:96:46:f3:d2:ec:f5:d8:e8:cd: 95:3e:7b:8a:88:10:92:a8:21:bb:54:f2:22:44:ae: a2:d2:fa:02:84:da:1b:61:1b:87:57:30:cd:d5:f1: be:3e:ca:77:f4:0a:2b:4b:96:32:15:dd:2c:c6:b9: 1e:61:2c:9b:c5:da:e6:8d:c4:ff:a2:45:2d:98:fe: 2b:cf:52:6d:54:43:ad:75:1b:93:08:67:bc:57:65: 17:0c:6c:a7:0b:6e:34:c7:02:b0:88:88:4e:3d:49: 2d:dc:7c:42:5a:ad:9d:07:b4:eb:03:3e:72:45:c6: 11:cc:36:ee:d5:be:56:bb:26:36:35:30:b3:93:ce: 1c:fc:11:36:6b:95:0e:50:21:80:eb:93:85:69:33: fc:79:db:a7:51:76:66:96:30:ad:6a:58:d0:fb:44: 6d:db:0f:5e:5d:74:fd:11:98:7b:3a:01:43:06:e2: cf:dd:bf:74:00:1c:77:5e:06:f5:3e:76:fe:a5:5b: 81:4c:78:d6:f9:81:9d:83:64:1b:62:52:3f:9b:f3: 38:a8:3c:3c:44:95:c8:b0:54:81:c2:cf:6b:4b:bc: f1:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:C5:FA:E4:0E:84:D6:7B:E1:67:A3:2D:C9:FD:40:7F:F1:C9:32:3B X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a1546a99-a48f-48cd-80c7-0b3484fb8409.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.226.76.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:d4:84:d5:43:cf:9e:1c:cd:2f:0e:1b:38:1d:4e:88:4d:fe: 88:97:43:ac:6d:43:82:e6:a7:a2:db:ab:9a:86:d9:33:c6:9b: ae:9d:a6:b4:0d:17:83:49:f9:f7:32:ab:80:0c:e5:77:06:a4: 3e:6d:1f:1c:fc:ad:8f:49:89:db:db:c8:46:c8:a3:47:92:0e: bc:4c:78:36:06:39:aa:a6:aa:9d:37:f8:94:6d:00:16:10:2f: 65:03:90:1c:9d:7a:3a:9d:84:88:fa:a7:32:f0:7c:2f:f6:92: cd:a5:77:85:32:dd:db:92:c0:93:4e:64:9a:dd:ee:ee:29:27: a9:0d:d2:86:a1:f9:72:64:48:0b:cc:75:cb:f9:e7:ea:77:24: 2d:ef:c5:2a:10:5e:3c:75:b5:7c:6f:55:68:87:ee:07:bb:88: 6d:cf:ee:60:07:dc:5b:46:19:5d:a9:18:cc:de:b5:20:a9:bb: fd:03:79:c6:b4:b0:4f:70:1b:56:7a:b5:00:8f:94:4d:0b:db: f2:24:43:f0:5c:4d:50:d6:ed:36:ac:94:96:46:72:c2:f5:02: 95:95:59:ee:4f:85:22:0c:86:29:a8:a6:71:00:b8:2c:fc:1c: 8f:8c:c6:11:ec:59:b2:29:54:2b:70:e4:8b:c6:0d:f7:d4:ad: 03:61:12:30 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEfzeUunJpVJv/purlsqtVBmSlEwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTI0MTk0MzM4WhcNMjUxMDI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BhN2VkYjQwZjZiNTk5MmUyMzY1ZDVmZTFkMzE3NGQ0OWE1 ZjYwMTQxODEzOTFjNjVjZjE0MTFiMjNmYTI1OWNkMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwhp/uWpiSxEXmvQIhAZYq/gOcS4pM9p3/kkH0eSsftZP2 LJZG89Ls9djozZU+e4qIEJKoIbtU8iJErqLS+gKE2hthG4dXMM3V8b4+ynf0CitL ljIV3SzGuR5hLJvF2uaNxP+iRS2Y/ivPUm1UQ611G5MIZ7xXZRcMbKcLbjTHArCI iE49SS3cfEJarZ0HtOsDPnJFxhHMNu7Vvla7JjY1MLOTzhz8ETZrlQ5QIYDrk4Vp M/x526dRdmaWMK1qWND7RG3bD15ddP0RmHs6AUMG4s/dv3QAHHdeBvU+dv6lW4FM eNb5gZ2DZBtiUj+b8zioPDxElciwVIHCz2tLvPHlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUgcX65A6E1nvhZ6Mtyf1Af/HJMjswHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2ExNTQ2YTk5LWE0OGYtNDhjZC04MGM3LTBiMzQ4NGZiODQwOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAN4kwwDQYJKoZIhvcNAQELBQADggEBAGrUhNVDz54czS8OGzgdTohN/oiX Q6xtQ4Lmp6Lbq5qG2TPGm66dprQNF4NJ+fcyq4AM5XcGpD5tHxz8rY9JidvbyEbI o0eSDrxMeDYGOaqmqp03+JRtABYQL2UDkBydejqdhIj6pzLwfC/2ks2ld4Uy3duS wJNOZJrd7u4pJ6kN0oah+XJkSAvMdcv55+p3JC3vxSoQXjx1tXxvVWiH7ge7iG3P 7mAH3FtGGV2pGMzetSCpu/0Deca0sE9wG1Z6tQCPlE0L2/IkQ/BcTVDW7TaslJZG csL1ApWVWe5PhSIMhimopnEAuCz8HI+MxhHsWbIpVCtw5IvGDffUrQNhEjA= -----END CERTIFICATE-----Generated at Fri Oct 17 23:41:34 2025 by rpki-client