$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/278471fe-038a-4b0e-b986-3919aa7bc995.roa File: 278471fe-038a-4b0e-b986-3919aa7bc995.roa (raw, json) Hash identifier: dbXMYfiyP/yGi7CwiljCtYbsAMBMQaLW4mgaNS/R+8s= Subject key identifier: 8F:73:4E:59:70:93:C5:74:EA:46:61:4C:9A:45:FC:54:87:17:0C:CF Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 4F8F21906475F112E882BBC2B80D08296080654A Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/278471fe-038a-4b0e-b986-3919aa7bc995.roa Signing time: Sun 19 Oct 2025 22:50:06 +0000 ROA not before: Sun 19 Oct 2025 22:50:06 +0000 ROA not after: Sun 23 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.35.84.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:8f:21:90:64:75:f1:12:e8:82:bb:c2:b8:0d:08:29:60:80:65:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 19 22:50:06 2025 GMT Not After : Nov 23 23:59:59 2025 GMT Subject: serialNumber=42c168aaabf0e749629ea38ce63623b34e5fb6009039da19ef678d8c4cb6b4e1, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:fc:95:5e:c3:24:2a:fd:4d:0a:2c:33:08:76: 71:e4:58:7b:60:09:e7:6c:81:44:a4:98:e7:67:90: b6:c4:20:cb:3a:2a:77:f8:9c:9c:1f:31:cd:14:ea: a7:e9:dd:44:30:6c:12:26:c7:50:a9:a5:8e:b1:09: 10:a4:dc:a3:01:ed:c3:44:43:17:a4:2a:df:99:07: 71:45:d5:58:1f:c6:2a:aa:39:47:b3:03:73:4b:99: 0c:fb:72:c3:4c:86:7c:e1:aa:47:6f:6f:f7:8e:f1: f0:57:52:52:80:c6:a9:0e:af:9c:59:41:1d:58:79: c5:30:53:2d:82:b5:60:c0:11:48:19:8f:ae:ad:f4: 5b:19:15:30:35:03:d1:55:74:68:7a:fb:32:d8:dc: 6f:7a:a9:f1:08:2d:2b:ba:33:a7:8f:95:7f:11:4c: 94:ad:d0:c9:c1:39:eb:68:15:c1:f7:b6:9c:d9:a7: 97:e4:d0:50:d4:d9:d5:d4:83:98:0b:ff:9b:ee:9f: 43:14:6b:4b:a6:94:74:39:ad:64:bc:d5:8e:1c:7c: 50:83:dd:08:b9:84:52:19:e3:be:f4:39:fe:74:48: 2d:7e:87:16:6f:02:7f:1e:9d:c2:a1:a6:59:76:31: a1:54:47:5b:e7:77:1d:0a:fe:13:d2:47:9b:3b:2e: 00:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:73:4E:59:70:93:C5:74:EA:46:61:4C:9A:45:FC:54:87:17:0C:CF X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/278471fe-038a-4b0e-b986-3919aa7bc995.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.35.84.0/22 Signature Algorithm: sha256WithRSAEncryption 0b:b1:b0:fa:3f:45:5a:23:e3:31:26:40:c8:e0:30:e2:8e:41: 7a:fb:cf:b2:f5:79:98:bb:f5:07:29:0f:9a:80:9a:6d:7c:e3: 0f:d7:99:48:ed:19:f0:8e:05:ef:1c:55:dc:ea:31:dc:c4:b4: e8:49:3c:87:c4:28:d4:cc:81:2e:9b:1c:b5:31:2a:9d:f2:28: f6:46:c2:75:9b:57:85:0f:f1:f7:57:33:c9:96:d5:ee:e5:53: 19:0e:31:a1:30:55:1a:22:8e:20:69:1d:d9:bd:e8:27:89:70: df:7e:c6:67:ca:66:ba:15:b4:b5:a6:fb:87:87:8e:a9:3c:12: 7b:bc:e2:b4:60:d4:e2:22:a6:6a:88:11:32:a4:33:e1:de:d5: af:f8:65:8e:ea:91:05:6c:9d:2f:fd:11:5f:b4:44:11:d1:ce: 8f:c6:fb:1f:8a:ec:0b:02:09:59:3d:97:3c:2f:15:dc:3f:28: 3b:df:ac:8e:c8:39:46:83:59:27:f3:e0:e5:9c:46:02:0b:93: a1:67:ab:c4:1d:5c:81:37:23:0c:a9:3f:fc:3b:81:8c:b8:5f: 90:d1:4d:17:a4:05:56:70:4b:65:76:ea:5f:7d:bf:68:c8:88: 6b:1d:8a:b4:62:cb:3c:83:07:37:79:12:39:ca:fd:db:8b:e6: 2c:05:4c:1a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUT48hkGR18RLogrvCuA0IKWCAZUowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE5MjI1MDA2WhcNMjUxMTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A0MmMxNjhhYWFiZjBlNzQ5NjI5ZWEzOGNlNjM2MjNiMzRl NWZiNjAwOTAzOWRhMTllZjY3OGQ4YzRjYjZiNGUxMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZ/JVewyQq/U0KLDMIdnHkWHtgCedsgUSkmOdnkLbEIMs6 Knf4nJwfMc0U6qfp3UQwbBImx1CppY6xCRCk3KMB7cNEQxekKt+ZB3FF1Vgfxiqq OUezA3NLmQz7csNMhnzhqkdvb/eO8fBXUlKAxqkOr5xZQR1YecUwUy2CtWDAEUgZ j66t9FsZFTA1A9FVdGh6+zLY3G96qfEILSu6M6ePlX8RTJSt0MnBOetoFcH3tpzZ p5fk0FDU2dXUg5gL/5vun0MUa0umlHQ5rWS81Y4cfFCD3Qi5hFIZ4770Of50SC1+ hxZvAn8encKhpll2MaFUR1vndx0K/hPSR5s7LgCfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUj3NOWXCTxXTqRmFMmkX8VIcXDM8wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzI3ODQ3MWZlLTAzOGEtNGIwZS1iOTg2LTM5MTlhYTdiYzk5NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAINI1QwDQYJKoZIhvcNAQELBQADggEBAAuxsPo/RVoj4zEmQMjgMOKOQXr7 z7L1eZi79QcpD5qAmm184w/XmUjtGfCOBe8cVdzqMdzEtOhJPIfEKNTMgS6bHLUx Kp3yKPZGwnWbV4UP8fdXM8mW1e7lUxkOMaEwVRoijiBpHdm96CeJcN9+xmfKZroV tLWm+4eHjqk8Enu84rRg1OIipmqIETKkM+He1a/4ZY7qkQVsnS/9EV+0RBHRzo/G +x+K7AsCCVk9lzwvFdw/KDvfrI7IOUaDWSfz4OWcRgILk6Fnq8QdXIE3IwypP/w7 gYy4X5DRTRekBVZwS2V26l99v2jIiGsdirRiyzyDBzd5EjnK/duL5iwFTBo= -----END CERTIFICATE-----Generated at Mon Oct 20 06:09:15 2025 by rpki-client