$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/11c62a43-0d11-461d-abca-31c90ff9b8f6.roa File: 11c62a43-0d11-461d-abca-31c90ff9b8f6.roa (raw, json) Hash identifier: 3i+gYyNw07u7b2WcU9TjgHbo36x7RFyuJyaX8jn/ZEE= Subject key identifier: 5D:49:82:F7:F6:28:30:FF:0F:79:95:8E:43:4B:DE:60:0C:A9:E5:C7 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 5709E8FD5A60097BE36A6320C1E7E67FC9BDDCA1 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/11c62a43-0d11-461d-abca-31c90ff9b8f6.roa Signing time: Sat 18 Oct 2025 20:42:30 +0000 ROA not before: Sat 18 Oct 2025 20:42:30 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.249.126.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 23 Oct 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:09:e8:fd:5a:60:09:7b:e3:6a:63:20:c1:e7:e6:7f:c9:bd:dc:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 18 20:42:30 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=0ba20458e1227f5c765717e754044e93bde888cf3fdabae4d9e560aa88d19889, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:2e:b8:61:6a:49:df:67:f9:e4:ef:95:84:a6: 70:38:4f:85:1d:dd:93:26:92:d0:1c:92:17:c6:ca: 42:b5:d7:c5:af:d1:b0:8c:3d:ce:99:99:aa:bf:16: 06:c8:b9:5c:ef:22:5a:7a:6a:50:0e:42:24:06:fb: 65:4b:6c:40:9b:84:9c:92:4a:e3:70:a7:d4:ea:74: 28:5c:a5:f6:d0:e8:a3:81:a4:02:5b:6c:3c:3c:60: 1c:06:c2:54:17:ce:6b:97:2f:2d:c5:3d:36:1d:d6: 2e:90:a9:b1:3a:31:00:61:13:6e:4b:9d:ee:4b:be: ea:52:8a:16:e4:b7:98:90:82:26:c7:a8:68:95:3d: f5:c3:03:1a:d6:10:41:3f:7e:76:3f:4b:8d:cd:3a: a8:21:c3:30:33:9d:8b:92:fc:6e:10:61:69:11:ae: 7b:c9:54:81:5b:08:bc:8a:f6:2d:4b:4c:0d:d6:41: 40:24:2b:7f:ef:cf:ff:8a:61:a0:fe:e3:c6:a4:f8: 20:d5:aa:14:96:4a:16:99:ee:09:c9:7d:0f:b1:3d: 6c:9e:87:49:b8:d2:8d:42:42:33:d4:92:d8:a2:28: e4:1f:d4:d2:ed:5c:31:2c:01:c8:44:b6:92:1c:f0: 60:e8:ad:4b:79:ca:8c:e9:7b:95:c4:81:88:18:ac: 77:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:49:82:F7:F6:28:30:FF:0F:79:95:8E:43:4B:DE:60:0C:A9:E5:C7 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/11c62a43-0d11-461d-abca-31c90ff9b8f6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.249.126.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:da:b2:79:ce:b9:08:60:f6:b8:be:85:4f:0c:1b:bd:5d:99: 28:21:1a:7a:da:3b:d4:d8:4e:4f:5f:df:4c:67:94:ca:a1:0d: 6d:08:b6:5f:73:08:e0:a5:7c:8f:34:bc:95:91:de:76:27:df: 55:f3:b8:4c:0a:02:cf:dd:10:6b:3a:28:ab:62:60:6c:4b:5f: 96:91:c4:54:16:74:18:3e:b7:b8:da:1f:a4:74:ab:1d:5d:77: 13:3e:e2:76:d4:19:c1:d3:7b:fd:eb:49:ed:b9:4a:86:b0:48: 15:00:9f:1a:f8:af:06:c7:a2:05:1b:cd:8f:68:54:20:5b:50: 72:00:60:1a:00:2c:cb:03:b8:56:bc:95:d2:f6:81:9a:ee:53: ec:ef:ba:a8:9c:99:fa:23:2b:ff:1e:5c:26:73:70:69:db:91: ff:56:01:8e:6e:89:e1:16:b3:31:f9:05:fb:c2:19:ef:ed:18: 06:dc:5b:26:8a:a7:0b:62:93:53:c1:3e:85:ca:55:90:5e:1e: 0c:44:05:6e:ac:ab:73:e8:9b:3d:dd:73:26:ac:ba:2b:0e:17: 94:32:3e:f5:6a:fc:ec:a6:bb:62:d6:fe:94:ce:b5:91:b2:78: 27:bd:fc:5c:81:a2:19:b9:4d:4a:30:2b:0e:de:60:7b:72:ea: 19:95:d6:29 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVwno/VpgCXvjamMgwefmf8m93KEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE4MjA0MjMwWhcNMjUxMTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0AwYmEyMDQ1OGUxMjI3ZjVjNzY1NzE3ZTc1NDA0NGU5M2Jk ZTg4OGNmM2ZkYWJhZTRkOWU1NjBhYTg4ZDE5ODg5MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCYLrhhaknfZ/nk75WEpnA4T4Ud3ZMmktAckhfGykK118Wv 0bCMPc6Zmaq/FgbIuVzvIlp6alAOQiQG+2VLbECbhJySSuNwp9TqdChcpfbQ6KOB pAJbbDw8YBwGwlQXzmuXLy3FPTYd1i6QqbE6MQBhE25Lne5LvupSihbkt5iQgibH qGiVPfXDAxrWEEE/fnY/S43NOqghwzAznYuS/G4QYWkRrnvJVIFbCLyK9i1LTA3W QUAkK3/vz/+KYaD+48ak+CDVqhSWShaZ7gnJfQ+xPWyeh0m40o1CQjPUktiiKOQf 1NLtXDEsAchEtpIc8GDorUt5yozpe5XEgYgYrHcbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUXUmC9/YoMP8PeZWOQ0veYAyp5ccwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzExYzYyYTQzLTBkMTEtNDYxZC1hYmNhLTMxYzkwZmY5YjhmNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAN+X4wDQYJKoZIhvcNAQELBQADggEBAB/asnnOuQhg9ri+hU8MG71dmSgh GnraO9TYTk9f30xnlMqhDW0Itl9zCOClfI80vJWR3nYn31XzuEwKAs/dEGs6KKti YGxLX5aRxFQWdBg+t7jaH6R0qx1ddxM+4nbUGcHTe/3rSe25SoawSBUAnxr4rwbH ogUbzY9oVCBbUHIAYBoALMsDuFa8ldL2gZruU+zvuqicmfojK/8eXCZzcGnbkf9W AY5uieEWszH5BfvCGe/tGAbcWyaKpwtik1PBPoXKVZBeHgxEBW6sq3Pomz3dcyas uisOF5QyPvVq/Oymu2LW/pTOtZGyeCe9/FyBohm5TUowKw7eYHty6hmV1ik= -----END CERTIFICATE-----Generated at Tue Oct 21 06:44:05 2025 by rpki-client