$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f17d5b87-7c85-49ca-a165-3a9f24efd642.roa File: f17d5b87-7c85-49ca-a165-3a9f24efd642.roa (raw, json) Hash identifier: AgUG3l12zlTs6Gy3xbA08+EOim7TiwHInZnEJOcnHdE= Subject key identifier: 85:F7:69:E7:9A:46:92:40:08:D0:22:95:A3:0E:07:55:72:B2:0D:77 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 1E183BC80CDA4E946676340976D7A4467D3BD7D1 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f17d5b87-7c85-49ca-a165-3a9f24efd642.roa Signing time: Fri 10 Oct 2025 15:57:52 +0000 ROA not before: Fri 10 Oct 2025 15:57:52 +0000 ROA not after: Fri 14 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.13.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:18:3b:c8:0c:da:4e:94:66:76:34:09:76:d7:a4:46:7d:3b:d7:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 10 15:57:52 2025 GMT Not After : Nov 14 23:59:59 2025 GMT Subject: serialNumber=9d7c21cb84d72fa331bb4d3eee47743abee9f14c3f53dbd63929e97ca92a1534, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:a1:aa:83:17:46:11:40:07:d0:60:a2:96:8a: 29:e3:e4:88:1f:4f:23:bf:7a:40:99:aa:64:30:51: 53:5c:be:bb:92:1a:4e:c8:c1:9e:7b:fe:6a:5c:c1: 3a:06:ac:19:ea:6b:05:d0:f5:b8:36:da:7b:39:7f: 67:7b:3d:a4:87:b4:cb:c9:8e:2e:d2:2b:b9:20:e9: b6:51:c9:77:64:df:73:b0:88:12:96:20:da:77:17: 3a:1f:b3:bc:7b:ed:92:cb:ae:e0:80:ee:f6:8b:b5: 67:be:3e:75:78:11:83:68:7e:ba:eb:15:dc:54:63: 17:7a:1c:78:37:2f:46:82:a5:80:32:d7:92:ed:b8: b5:07:48:ef:eb:59:0d:2a:26:4d:6f:84:04:15:c6: 30:ca:1a:95:b1:f6:cd:b2:d8:50:03:96:03:d9:ae: eb:ab:58:36:bb:5d:49:0a:a7:db:23:6f:09:d6:e0: fd:6d:45:3a:57:dc:f6:65:e3:f5:86:f3:9d:af:f7: 38:49:a2:d1:a1:dd:10:ff:ec:0d:4a:db:24:64:56: 3b:05:9c:99:74:7d:5f:44:eb:01:a4:f7:a7:86:d3: de:cc:a6:f8:1f:37:75:29:c3:3f:c7:cb:21:aa:8f: 3c:19:2a:95:6e:24:d1:79:f7:c0:df:98:3e:8b:3b: f3:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:F7:69:E7:9A:46:92:40:08:D0:22:95:A3:0E:07:55:72:B2:0D:77 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f17d5b87-7c85-49ca-a165-3a9f24efd642.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.13.128.0/18 Signature Algorithm: sha256WithRSAEncryption 68:d1:48:0c:16:f4:01:cc:5b:57:ce:64:5c:5c:df:d3:ca:6e: 98:90:be:9b:35:e9:0a:aa:72:5a:66:c6:bd:be:77:fc:8d:b1: cc:27:f2:15:ab:0d:97:b8:50:66:13:ce:8b:1b:6e:8c:be:b2: 84:7d:77:c2:21:d7:ac:78:4b:2d:94:5d:44:42:a5:39:54:f9: f2:71:48:1f:c3:b5:61:c0:c9:02:f7:ac:cf:f8:14:0e:73:25: fb:dc:5d:72:10:47:ff:ec:ce:9b:41:99:14:3c:36:d5:4e:79: 32:fd:03:0a:ba:8f:79:53:37:ab:27:74:8b:09:6d:5a:45:6b: ee:56:4f:1e:19:5f:f1:4d:7c:1e:1c:3a:27:f1:c7:96:16:18: 3f:ce:94:8a:86:c5:53:65:4f:84:cb:50:85:53:b4:94:5d:87: a6:2d:d7:c7:ed:92:60:1a:22:fe:20:7e:e3:77:4c:20:62:7e: 79:c5:15:5f:76:e0:46:41:f4:e9:ab:91:31:14:5b:76:2b:eb: 84:7e:cc:ed:e5:d9:e4:d6:fa:75:1a:f8:9b:f1:5d:58:fe:25: cc:15:2d:ef:3c:0c:91:86:36:ff:2b:55:96:a9:12:c8:1e:dc: e2:e0:6c:39:62:6f:74:3e:dd:53:d4:58:0d:69:63:a9:fe:84: 44:32:71:20 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHhg7yAzaTpRmdjQJdtekRn0719EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDEwMTU1NzUyWhcNMjUxMTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZDdjMjFjYjg0ZDcyZmEzMzFiYjRkM2VlZTQ3NzQzYWJl ZTlmMTRjM2Y1M2RiZDYzOTI5ZTk3Y2E5MmExNTM0MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDmoaqDF0YRQAfQYKKWiinj5IgfTyO/ekCZqmQwUVNcvruS Gk7IwZ57/mpcwToGrBnqawXQ9bg22ns5f2d7PaSHtMvJji7SK7kg6bZRyXdk33Ow iBKWINp3Fzofs7x77ZLLruCA7vaLtWe+PnV4EYNofrrrFdxUYxd6HHg3L0aCpYAy 15LtuLUHSO/rWQ0qJk1vhAQVxjDKGpWx9s2y2FADlgPZruurWDa7XUkKp9sjbwnW 4P1tRTpX3PZl4/WG852v9zhJotGh3RD/7A1K2yRkVjsFnJl0fV9E6wGk96eG097M pvgfN3Upwz/HyyGqjzwZKpVuJNF598DfmD6LO/O7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUhfdp55pGkkAI0CKVow4HVXKyDXcwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2YxN2Q1Yjg3LTdjODUtNDljYS1hMTY1LTNhOWYyNGVmZDY0Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAY0DYAwDQYJKoZIhvcNAQELBQADggEBAGjRSAwW9AHMW1fOZFxc39PKbpiQ vps16Qqqclpmxr2+d/yNscwn8hWrDZe4UGYTzosbboy+soR9d8Ih16x4Sy2UXURC pTlU+fJxSB/DtWHAyQL3rM/4FA5zJfvcXXIQR//szptBmRQ8NtVOeTL9Awq6j3lT N6sndIsJbVpFa+5WTx4ZX/FNfB4cOifxx5YWGD/OlIqGxVNlT4TLUIVTtJRdh6Yt 18ftkmAaIv4gfuN3TCBifnnFFV924EZB9OmrkTEUW3Yr64R+zO3l2eTW+nUa+Jvx XVj+JcwVLe88DJGGNv8rVZapEsge3OLgbDlib3Q+3VPUWA1pY6n+hEQycSA= -----END CERTIFICATE-----Generated at Mon Oct 20 16:31:44 2025 by rpki-client