$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/22e3b2c9-652b-4801-988d-8e720545e3f8.roa File: 22e3b2c9-652b-4801-988d-8e720545e3f8.roa (raw, json) Hash identifier: BuLeFlDif0tHZr6zdvTVhjIDPnuS8gyTPKO35r72s3w= Subject key identifier: E6:B9:1E:09:EC:47:0A:39:8C:70:74:57:51:66:AF:F0:4F:6F:F6:4B Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 741FD937125A62C8B77431C19E7DBCEC8E0102CD Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/22e3b2c9-652b-4801-988d-8e720545e3f8.roa Signing time: Sun 19 Oct 2025 16:01:19 +0000 ROA not before: Sun 19 Oct 2025 16:01:19 +0000 ROA not after: Sun 23 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.226.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:1f:d9:37:12:5a:62:c8:b7:74:31:c1:9e:7d:bc:ec:8e:01:02:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 19 16:01:19 2025 GMT Not After : Nov 23 23:59:59 2025 GMT Subject: serialNumber=04c8629c35f8520b98dd6bc0e996ed55dffac9e1884632ab6c79f3695897720e, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:68:e1:cd:38:a6:95:85:05:29:b5:7b:39:98: eb:d9:7f:13:2e:66:99:69:d8:d2:56:d5:75:10:a3: 42:25:e6:bf:58:c2:9f:d2:82:f5:b1:8e:b7:42:56: dd:dc:5f:76:f1:08:bf:a2:5a:6b:0d:74:51:91:7f: b5:c3:76:05:e2:a8:9c:bf:85:bc:12:93:da:9b:cf: e2:5d:52:a7:dc:04:45:4a:de:ad:08:81:e3:57:46: 89:5e:5d:b0:3e:42:95:de:d1:bc:7d:92:19:57:81: 8a:03:57:c7:47:71:3b:4c:27:1f:bb:33:73:91:1d: 47:47:b5:ca:a9:43:18:5d:78:f3:72:bd:19:fb:5a: a0:bf:43:71:61:2b:44:93:24:21:d1:ad:93:1e:31: 23:13:37:1f:72:5e:12:d5:f6:8d:1f:5b:a8:f3:7a: ed:d0:98:da:49:83:0f:26:d5:0a:c1:d1:e0:e6:c6: dc:21:1b:b7:57:da:33:75:09:15:67:f9:30:78:bd: 38:b2:59:a1:68:b6:db:bc:50:3d:42:a4:95:47:a3: fe:8d:d4:03:87:6d:db:46:ae:d8:df:bd:70:93:c1: 69:90:7d:b3:fe:d3:f8:b3:b0:d3:69:f3:64:4d:2d: 1b:98:6b:04:32:c8:4d:25:08:8d:dc:c0:ed:61:3a: ca:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:B9:1E:09:EC:47:0A:39:8C:70:74:57:51:66:AF:F0:4F:6F:F6:4B X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/22e3b2c9-652b-4801-988d-8e720545e3f8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.226.21.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:e6:dc:92:84:40:4c:8c:35:53:fd:ef:1f:74:d6:6f:2c:66: 37:21:46:cd:b6:87:8f:e9:8b:fe:40:b4:de:3d:c2:e2:02:6c: 53:61:5b:67:9e:64:79:2a:3d:fc:e4:ac:96:ba:0d:1f:6e:fc: 66:0d:37:cd:03:dd:c3:53:b5:04:81:06:ec:7e:79:4c:b4:fb: d9:04:44:bc:e8:63:87:06:3b:65:72:6d:e5:e3:bd:10:63:5e: b5:84:6a:d2:33:bf:88:3c:f9:d1:19:a3:fa:3d:db:46:0f:84: f3:f0:96:10:e4:ad:5c:6e:0c:75:5a:de:36:e4:6e:a2:6d:9a: c6:30:61:7e:f1:b6:83:cb:cd:c2:53:64:90:3b:52:8d:2f:05: c2:3a:81:9d:05:af:30:cb:71:eb:30:d8:b8:63:1e:ff:e7:d5: ce:5b:f0:03:fd:8f:2b:c5:07:89:01:f8:6a:da:0c:8e:d1:0e: 57:8a:d5:f0:8a:25:47:8f:30:75:59:23:52:7c:e1:73:13:cb: f4:d1:63:fd:ec:26:f8:95:a0:ce:f3:2f:65:54:4f:90:e1:99: fb:95:9d:2e:9b:3f:ae:f3:e5:4c:cd:aa:46:48:14:e4:08:d5: 30:90:6c:af:24:06:dd:14:ec:3d:63:90:c1:0c:ee:57:ec:18: 6c:58:7c:15 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdB/ZNxJaYsi3dDHBnn287I4BAs0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE5MTYwMTE5WhcNMjUxMTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AwNGM4NjI5YzM1Zjg1MjBiOThkZDZiYzBlOTk2ZWQ1NWRm ZmFjOWUxODg0NjMyYWI2Yzc5ZjM2OTU4OTc3MjBlMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmaOHNOKaVhQUptXs5mOvZfxMuZplp2NJW1XUQo0Il5r9Y wp/SgvWxjrdCVt3cX3bxCL+iWmsNdFGRf7XDdgXiqJy/hbwSk9qbz+JdUqfcBEVK 3q0IgeNXRoleXbA+QpXe0bx9khlXgYoDV8dHcTtMJx+7M3ORHUdHtcqpQxhdePNy vRn7WqC/Q3FhK0STJCHRrZMeMSMTNx9yXhLV9o0fW6jzeu3QmNpJgw8m1QrB0eDm xtwhG7dX2jN1CRVn+TB4vTiyWaFottu8UD1CpJVHo/6N1AOHbdtGrtjfvXCTwWmQ fbP+0/izsNNp82RNLRuYawQyyE0lCI3cwO1hOsoxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU5rkeCexHCjmMcHRXUWav8E9v9kswHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzIyZTNiMmM5LTY1MmItNDgwMS05ODhkLThlNzIwNTQ1ZTNmOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAN4hUwDQYJKoZIhvcNAQELBQADggEBAD7m3JKEQEyMNVP97x901m8sZjch Rs22h4/pi/5AtN49wuICbFNhW2eeZHkqPfzkrJa6DR9u/GYNN80D3cNTtQSBBux+ eUy0+9kERLzoY4cGO2VybeXjvRBjXrWEatIzv4g8+dEZo/o920YPhPPwlhDkrVxu DHVa3jbkbqJtmsYwYX7xtoPLzcJTZJA7Uo0vBcI6gZ0FrzDLcesw2LhjHv/n1c5b 8AP9jyvFB4kB+GraDI7RDleK1fCKJUePMHVZI1J84XMTy/TRY/3sJviVoM7zL2VU T5DhmfuVnS6bP67z5UzNqkZIFOQI1TCQbK8kBt0U7D1jkMEM7lfsGGxYfBU= -----END CERTIFICATE-----Generated at Mon Oct 20 03:06:00 2025 by rpki-client