$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b157a5a2-0939-4a35-a8dc-263e7cf89e56.roa File: b157a5a2-0939-4a35-a8dc-263e7cf89e56.roa (raw, json) Hash identifier: 0zmvqYhhrxU0S8is5yhw/22+kVuvKfqgYl1tr43boYk= Subject key identifier: E6:4E:F9:D4:24:FC:A2:00:97:1B:43:E1:55:58:06:6C:CF:E2:A0:88 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 17703FC19A6C0E9B2B8EDFF6E96306F5F29B5B01 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b157a5a2-0939-4a35-a8dc-263e7cf89e56.roa Signing time: Wed 24 Sep 2025 19:32:27 +0000 ROA not before: Wed 24 Sep 2025 19:32:27 +0000 ROA not after: Wed 29 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.226.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 19 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:70:3f:c1:9a:6c:0e:9b:2b:8e:df:f6:e9:63:06:f5:f2:9b:5b:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 24 19:32:27 2025 GMT Not After : Oct 29 23:59:59 2025 GMT Subject: serialNumber=6ebb5d5874330b04629565938997d467d14f74d0b9fba80dbcc9bd0b2a9b9752, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:fb:d2:f2:ea:7e:4f:b5:bf:65:f1:3b:6b:4c: c7:b6:68:f2:ba:c7:93:e4:62:31:a9:d8:b2:27:e0: 7f:7a:f7:84:8c:1b:99:f9:c8:44:2c:d4:de:f6:47: 21:9e:c2:72:3e:b7:05:49:36:02:5e:2f:d7:00:9d: 00:a9:82:5d:aa:86:e2:0f:55:2d:5b:c1:8f:95:91: 91:3a:47:08:01:2d:3a:21:7f:9e:e0:7c:91:de:a4: 19:3b:60:8e:0c:51:57:d1:f1:e4:11:5c:98:68:9a: 69:2f:36:e4:a4:d0:ee:16:28:a8:9b:2f:0d:61:42: b7:7f:4c:88:45:cd:ff:41:38:fe:cc:3e:d0:b4:3c: 68:5c:e6:d7:10:51:72:51:e2:5e:44:3f:d1:04:85: f6:90:bf:e4:f8:c4:46:01:1f:ba:20:fb:7e:08:0b: 6c:2a:8d:16:e8:cf:dc:95:fc:b1:3a:55:38:a2:d2: 3a:f0:7e:bb:f4:b2:86:0f:7c:c3:ba:0f:fa:9d:5d: 34:06:d6:9f:37:2e:e6:3a:ce:0e:95:01:57:84:49: 37:91:e2:5b:81:f3:20:58:6b:94:2c:ec:6c:a6:4d: 8b:9c:59:df:b6:33:18:d8:f9:8e:1f:9d:b2:62:d6: 00:e7:b0:de:56:88:d4:ad:02:fd:73:f2:0b:03:4c: fc:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:4E:F9:D4:24:FC:A2:00:97:1B:43:E1:55:58:06:6C:CF:E2:A0:88 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b157a5a2-0939-4a35-a8dc-263e7cf89e56.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.226.143.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:75:61:d6:a0:ca:f9:1a:96:86:0a:8f:06:aa:8d:80:c8:94: b1:c8:df:2e:24:37:97:af:07:18:a7:a7:ad:cc:ea:76:dd:1c: 6a:18:c9:e1:94:c6:eb:43:3c:5b:7b:70:0b:fb:4c:8d:39:f0: 50:5c:0d:e2:a0:1a:70:bb:4b:f6:c3:7d:34:d5:70:9b:89:e1: 15:81:f0:d1:8f:4c:01:c5:31:f5:c5:ec:01:18:95:ed:98:f9: 49:c4:d9:6b:94:c7:02:c6:09:bc:fc:b1:c9:56:76:30:2d:93: 9b:3a:af:50:bb:0e:6b:42:e5:c3:e2:20:08:21:05:ca:90:c6: 38:de:4e:e7:95:45:81:3e:41:8a:b7:19:7a:e1:b2:2d:f3:f9: e8:b4:b1:0b:db:06:15:e7:64:87:25:f0:d0:aa:59:53:3a:4e: 47:11:47:5b:69:a7:12:d6:18:07:17:5e:42:15:15:5b:e0:3f: 21:e4:b5:aa:81:84:72:81:b3:e3:52:66:2f:e3:f6:a1:b3:21: a6:b1:df:97:e2:21:9a:3f:ea:b0:f8:ef:68:e6:da:5a:82:d9: ab:4e:e1:8e:f5:59:16:50:df:97:02:56:f2:a2:5d:a1:14:e7: 2b:42:3c:e8:22:27:15:5a:8f:d6:6f:e7:07:06:85:47:d7:f7: 2e:86:7e:67 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUF3A/wZpsDpsrjt/26WMG9fKbWwEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTI0MTkzMjI3WhcNMjUxMDI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZWJiNWQ1ODc0MzMwYjA0NjI5NTY1OTM4OTk3ZDQ2N2Qx NGY3NGQwYjlmYmE4MGRiY2M5YmQwYjJhOWI5NzUyMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDc+9Ly6n5Ptb9l8TtrTMe2aPK6x5PkYjGp2LIn4H9694SM G5n5yEQs1N72RyGewnI+twVJNgJeL9cAnQCpgl2qhuIPVS1bwY+VkZE6RwgBLToh f57gfJHepBk7YI4MUVfR8eQRXJhommkvNuSk0O4WKKibLw1hQrd/TIhFzf9BOP7M PtC0PGhc5tcQUXJR4l5EP9EEhfaQv+T4xEYBH7og+34IC2wqjRboz9yV/LE6VTii 0jrwfrv0soYPfMO6D/qdXTQG1p83LuY6zg6VAVeESTeR4luB8yBYa5Qs7GymTYuc Wd+2MxjY+Y4fnbJi1gDnsN5WiNStAv1z8gsDTPyTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU5k751CT8ogCXG0PhVVgGbM/ioIgwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2IxNTdhNWEyLTA5MzktNGEzNS1hOGRjLTI2M2U3Y2Y4OWU1Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAN4o8wDQYJKoZIhvcNAQELBQADggEBACp1YdagyvkaloYKjwaqjYDIlLHI 3y4kN5evBxinp63M6nbdHGoYyeGUxutDPFt7cAv7TI058FBcDeKgGnC7S/bDfTTV cJuJ4RWB8NGPTAHFMfXF7AEYle2Y+UnE2WuUxwLGCbz8sclWdjAtk5s6r1C7DmtC 5cPiIAghBcqQxjjeTueVRYE+QYq3GXrhsi3z+ei0sQvbBhXnZIcl8NCqWVM6TkcR R1tppxLWGAcXXkIVFVvgPyHktaqBhHKBs+NSZi/j9qGzIaax35fiIZo/6rD472jm 2lqC2atO4Y71WRZQ35cCVvKiXaEU5ytCPOgiJxVaj9Zv5wcGhUfX9y6Gfmc= -----END CERTIFICATE-----Generated at Fri Oct 17 23:48:25 2025 by rpki-client