$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/223e524d-e479-447f-b741-e8c4b9c91a6b.roa File: 223e524d-e479-447f-b741-e8c4b9c91a6b.roa (raw, json) Hash identifier: 3MpRQaOvvfVZSw6slaFBjqnwCehHjJSO0ZoeLb1tZFc= Subject key identifier: E8:6E:E6:54:7E:A9:C9:07:5E:D6:4A:B6:4D:28:51:29:93:EC:86:6A Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 2CE36074A42BBFF2B6FF56A95FCC2E021E604AF2 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/223e524d-e479-447f-b741-e8c4b9c91a6b.roa Signing time: Sun 19 Oct 2025 08:03:35 +0000 ROA not before: Sun 19 Oct 2025 08:03:35 +0000 ROA not after: Sun 23 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.248.32.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:e3:60:74:a4:2b:bf:f2:b6:ff:56:a9:5f:cc:2e:02:1e:60:4a:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 19 08:03:35 2025 GMT Not After : Nov 23 23:59:59 2025 GMT Subject: serialNumber=680b9cb0ed90f2d7ed3b12cdfcd4dac465461b10a0998b5a49327a3381400f5d, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:86:59:cb:ab:71:2c:28:b3:17:b0:4f:4e:32: 24:d8:07:06:39:b5:95:5b:42:db:5d:07:b1:23:bd: d5:d0:5c:72:d0:cf:3f:e4:4a:c9:b3:87:72:8d:d5: 1f:38:a5:dc:52:5c:be:ee:c7:4f:ea:d2:b1:28:ce: 6b:96:ac:9a:3a:f7:e3:d6:3c:59:4c:d8:ce:77:56: a6:0d:81:14:e9:b3:e7:89:47:8f:cb:53:d6:05:38: 4e:6a:98:74:af:06:18:2e:87:cf:16:83:57:5c:31: e5:31:1d:80:56:d1:1a:6e:1d:34:d7:ee:24:43:1c: 32:50:75:9d:79:12:d5:6d:52:46:c1:55:fd:d9:0e: 03:4d:db:16:a3:e4:7c:e5:69:23:c5:c5:fd:ca:87: 66:ae:f4:72:04:49:ed:11:4d:10:40:b6:79:d3:31: 1c:00:57:7a:25:6d:9b:84:c2:93:a5:18:d0:c2:33: 08:16:29:d0:8e:40:f3:76:d9:a0:0c:f8:2d:d0:02: 72:1b:81:7c:a6:77:d6:7e:df:e1:36:bb:6b:f5:ea: 7a:29:c6:4d:97:11:1a:05:17:97:f2:14:9c:9f:f5: 21:5c:6b:30:2e:05:18:83:09:23:5f:42:c4:9e:e0: 84:ff:b3:88:3a:86:0c:aa:9f:11:7d:e0:73:11:aa: 89:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:6E:E6:54:7E:A9:C9:07:5E:D6:4A:B6:4D:28:51:29:93:EC:86:6A X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/223e524d-e479-447f-b741-e8c4b9c91a6b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.248.32.0/20 Signature Algorithm: sha256WithRSAEncryption af:14:68:67:45:e6:fc:33:fb:b4:2b:b1:f8:74:3c:5d:db:32: 9a:d6:3e:20:ce:c8:64:23:5f:c6:86:1d:48:34:f4:19:8c:bc: 58:e7:bd:65:00:28:a5:92:af:67:91:17:b5:a3:d2:f5:56:97: f8:9e:e9:e4:2b:bf:df:98:8d:6f:b6:6e:ad:d5:76:c5:77:79: ce:e9:da:9f:e1:56:d3:71:48:b6:ff:e1:86:34:3d:d4:0c:86: 0b:35:8e:9b:5b:7d:26:85:30:06:09:da:70:cc:9d:a9:74:fb: d2:77:ed:5c:b6:1d:da:f5:4f:f5:84:04:da:21:e5:33:0b:d3: 2f:2b:42:f3:00:36:23:c4:b1:eb:d7:d7:44:62:02:96:07:30: c8:d3:85:65:0d:97:d7:94:2e:e2:5b:1f:9b:51:83:1e:ac:4c: 03:99:da:48:62:57:7a:a9:cd:4e:c7:b1:6a:37:46:51:61:a9: 1e:82:bb:a1:ed:62:61:e2:bc:c4:09:68:0d:70:a7:43:cd:23: 7f:40:cf:8b:d7:c9:f0:c2:c2:3d:99:34:7c:86:22:af:51:ea: e4:9a:fd:bf:15:e1:16:d5:e9:69:a5:9b:9e:ef:2c:6f:b0:d7: 59:83:63:ad:75:5f:4c:ea:67:50:6f:76:54:63:80:fb:04:d7: dc:99:8c:f8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULONgdKQrv/K2/1apX8wuAh5gSvIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE5MDgwMzM1WhcNMjUxMTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A2ODBiOWNiMGVkOTBmMmQ3ZWQzYjEyY2RmY2Q0ZGFjNDY1 NDYxYjEwYTA5OThiNWE0OTMyN2EzMzgxNDAwZjVkMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD6hlnLq3EsKLMXsE9OMiTYBwY5tZVbQttdB7EjvdXQXHLQ zz/kSsmzh3KN1R84pdxSXL7ux0/q0rEozmuWrJo69+PWPFlM2M53VqYNgRTps+eJ R4/LU9YFOE5qmHSvBhguh88Wg1dcMeUxHYBW0RpuHTTX7iRDHDJQdZ15EtVtUkbB Vf3ZDgNN2xaj5HzlaSPFxf3Kh2au9HIESe0RTRBAtnnTMRwAV3olbZuEwpOlGNDC MwgWKdCOQPN22aAM+C3QAnIbgXymd9Z+3+E2u2v16nopxk2XERoFF5fyFJyf9SFc azAuBRiDCSNfQsSe4IT/s4g6hgyqnxF94HMRqonfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU6G7mVH6pyQde1kq2TShRKZPshmowHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzIyM2U1MjRkLWU0NzktNDQ3Zi1iNzQxLWU4YzRiOWM5MWE2Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQN+CAwDQYJKoZIhvcNAQELBQADggEBAK8UaGdF5vwz+7Qrsfh0PF3bMprW PiDOyGQjX8aGHUg09BmMvFjnvWUAKKWSr2eRF7Wj0vVWl/ie6eQrv9+YjW+2bq3V dsV3ec7p2p/hVtNxSLb/4YY0PdQMhgs1jptbfSaFMAYJ2nDMnal0+9J37Vy2Hdr1 T/WEBNoh5TML0y8rQvMANiPEsevX10RiApYHMMjThWUNl9eULuJbH5tRgx6sTAOZ 2khiV3qpzU7HsWo3RlFhqR6Cu6HtYmHivMQJaA1wp0PNI39Az4vXyfDCwj2ZNHyG Iq9R6uSa/b8V4RbV6Wmlm57vLG+w11mDY611X0zqZ1BvdlRjgPsE19yZjPg= -----END CERTIFICATE-----Generated at Mon Oct 20 06:13:01 2025 by rpki-client