$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/108c123b-d77f-44ac-93dd-6931cc2dcb94.roa File: 108c123b-d77f-44ac-93dd-6931cc2dcb94.roa (raw, json) Hash identifier: TLTE8JwoycRicJ7qrWl6YdXVMs0esgldIBhcLR6mRmQ= Subject key identifier: FB:64:DA:5A:C9:3B:F2:62:B2:5E:FE:8C:FD:AC:EF:12:57:7B:29:4D Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 4A48E2019DF9CEFE255D13FC3670220004097521 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/108c123b-d77f-44ac-93dd-6931cc2dcb94.roa Signing time: Sun 19 Oct 2025 20:21:18 +0000 ROA not before: Sun 19 Oct 2025 20:21:18 +0000 ROA not after: Sun 23 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.32.148.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:48:e2:01:9d:f9:ce:fe:25:5d:13:fc:36:70:22:00:04:09:75:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 19 20:21:18 2025 GMT Not After : Nov 23 23:59:59 2025 GMT Subject: serialNumber=42a92f0021beee8b1a532c134d2b6a6550f9783b36f1cfa3a260868ecdf79079, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c8:5b:eb:dc:90:8d:8b:19:d2:a0:0b:30:5a: 2d:43:f2:af:d0:6c:0d:d1:0f:7a:d7:94:d7:98:b5: f3:01:c5:e9:2f:51:40:73:d4:3a:4f:79:57:59:66: 8e:64:9b:7b:45:0d:4e:f9:ea:44:44:1d:7e:b9:e9: 72:45:b7:3b:83:8b:bb:0d:6a:0e:84:c9:ff:86:5b: 5c:c5:ef:4d:9e:5c:ba:ef:13:b8:84:14:53:db:ed: 9f:40:19:10:c1:90:7c:74:d5:1a:44:92:6b:eb:e5: e9:53:3e:7c:11:d6:41:8f:1d:25:e9:fb:13:97:9b: 11:34:01:47:c0:64:29:9a:23:ce:e4:eb:4f:54:da: 95:e7:06:38:17:8a:79:8f:75:88:89:f9:6e:71:c5: aa:83:70:b7:93:ca:02:4b:e3:22:86:8c:9f:9d:b5: ff:d9:62:f7:84:48:e5:5b:95:65:1f:f2:5e:3f:ab: b4:07:05:dc:83:0e:69:b2:b6:f9:54:46:b9:d2:9f: 99:f4:53:38:a9:f7:d6:48:60:c3:a1:f5:c7:f8:dc: 81:18:80:a7:46:be:17:dd:d8:54:d5:f6:0d:28:dc: df:0e:df:60:a8:41:3c:74:01:c3:92:ee:3f:33:7d: 51:e0:35:3a:72:d8:e1:a8:f6:e4:a3:a8:d3:e3:d7: c8:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:64:DA:5A:C9:3B:F2:62:B2:5E:FE:8C:FD:AC:EF:12:57:7B:29:4D X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/108c123b-d77f-44ac-93dd-6931cc2dcb94.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.32.148.0/22 Signature Algorithm: sha256WithRSAEncryption 90:be:41:08:d5:ef:18:82:be:cf:57:02:16:86:24:6d:97:fe: 47:d3:94:71:d4:2f:18:84:58:52:b6:38:23:42:35:e4:b1:76: 34:be:33:74:d0:ab:e0:e2:68:aa:cf:bb:ca:ca:7c:cb:0f:b2: 21:a3:ab:49:c8:4c:b9:6a:fa:0c:21:60:dc:a0:51:b1:40:39: f8:6a:b7:5a:4b:5b:de:c7:8f:c7:c7:87:b9:0e:8c:15:33:4e: 1d:01:69:4b:7b:6e:87:33:bb:f8:12:3e:a6:b6:2b:fb:e4:6e: 79:37:2d:2d:41:c4:e3:8f:a1:3c:93:03:b3:2a:ad:16:61:fe: 25:94:10:52:0a:1e:89:b9:44:6c:00:25:8e:3c:80:9c:6e:3c: bc:15:a2:9c:78:76:2a:a5:73:ea:bb:58:d5:e4:1a:18:e6:e3: 60:11:57:db:61:e6:9e:dd:76:aa:67:11:ac:0f:26:8d:cf:fd: 1c:f4:49:a3:bc:ca:b3:3f:5d:3b:77:f2:94:ff:48:75:fd:37: 0a:c9:9f:08:b6:59:69:bd:14:7d:17:f7:e4:44:f2:3c:fe:d3: 19:d6:6e:ba:64:1e:7b:c5:62:55:74:74:59:bd:67:f6:70:32: 2e:6e:26:8c:b6:be:db:f6:e2:88:3d:01:fd:17:90:b5:27:ea: c0:6a:75:1a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSkjiAZ35zv4lXRP8NnAiAAQJdSEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE5MjAyMTE4WhcNMjUxMTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A0MmE5MmYwMDIxYmVlZThiMWE1MzJjMTM0ZDJiNmE2NTUw Zjk3ODNiMzZmMWNmYTNhMjYwODY4ZWNkZjc5MDc5MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCryFvr3JCNixnSoAswWi1D8q/QbA3RD3rXlNeYtfMBxekv UUBz1DpPeVdZZo5km3tFDU756kREHX656XJFtzuDi7sNag6Eyf+GW1zF702eXLrv E7iEFFPb7Z9AGRDBkHx01RpEkmvr5elTPnwR1kGPHSXp+xOXmxE0AUfAZCmaI87k 609U2pXnBjgXinmPdYiJ+W5xxaqDcLeTygJL4yKGjJ+dtf/ZYveESOVblWUf8l4/ q7QHBdyDDmmytvlURrnSn5n0Uzip99ZIYMOh9cf43IEYgKdGvhfd2FTV9g0o3N8O 32CoQTx0AcOS7j8zfVHgNTpy2OGo9uSjqNPj18gTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU+2TaWsk78mKyXv6M/azvEld7KU0wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzEwOGMxMjNiLWQ3N2YtNDRhYy05M2RkLTY5MzFjYzJkY2I5NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAINIJQwDQYJKoZIhvcNAQELBQADggEBAJC+QQjV7xiCvs9XAhaGJG2X/kfT lHHULxiEWFK2OCNCNeSxdjS+M3TQq+DiaKrPu8rKfMsPsiGjq0nITLlq+gwhYNyg UbFAOfhqt1pLW97Hj8fHh7kOjBUzTh0BaUt7boczu/gSPqa2K/vkbnk3LS1BxOOP oTyTA7MqrRZh/iWUEFIKHom5RGwAJY48gJxuPLwVopx4diqlc+q7WNXkGhjm42AR V9th5p7ddqpnEawPJo3P/Rz0SaO8yrM/XTt38pT/SHX9NwrJnwi2WWm9FH0X9+RE 8jz+0xnWbrpkHnvFYlV0dFm9Z/ZwMi5uJoy2vtv24og9Af0XkLUn6sBqdRo= -----END CERTIFICATE-----Generated at Mon Oct 20 11:55:51 2025 by rpki-client