$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2ee2b5d8-c8c5-45ef-a28e-bf086b45bbc7.roa File: 2ee2b5d8-c8c5-45ef-a28e-bf086b45bbc7.roa (raw, json) Hash identifier: BQZO8yNwtztP1L/BSDSkvAxGlT/uC6CW9RtHgpuL9/M= Subject key identifier: B0:10:B7:11:77:70:0B:41:C3:8D:6E:AA:A4:F1:BA:69:6A:8A:82:1C Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 39A1B608CE29F845FBECB0643E8166046C5EC5AF Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2ee2b5d8-c8c5-45ef-a28e-bf086b45bbc7.roa Signing time: Sun 19 Oct 2025 09:33:55 +0000 ROA not before: Sun 19 Oct 2025 09:33:55 +0000 ROA not after: Sun 23 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.227.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:a1:b6:08:ce:29:f8:45:fb:ec:b0:64:3e:81:66:04:6c:5e:c5:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 19 09:33:55 2025 GMT Not After : Nov 23 23:59:59 2025 GMT Subject: serialNumber=6552b4250b586185630fa0354454a785c144f228387d493282c6518e5aaa220a, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:c2:68:19:92:6a:6c:58:aa:39:73:fe:f4:fe: 10:f1:ae:28:38:01:bb:44:f8:89:b9:6f:1b:de:8e: 80:fc:63:33:bf:62:7f:7f:15:e5:75:11:50:89:46: 9b:b6:1f:9a:01:ec:20:73:1b:ec:0a:ef:34:f4:71: 11:4d:5e:fe:06:88:c0:39:ef:ef:c2:ca:ce:41:d8: 90:a3:3e:7f:05:c7:7c:fb:d0:45:df:1a:af:db:bd: 6a:ab:5e:2b:4d:da:f6:4c:91:eb:ef:68:a3:49:ab: 7f:dc:3d:16:da:57:53:9d:61:e8:55:56:f6:63:b5: 16:49:5f:f9:dd:b4:5f:3b:e9:4f:3d:74:3b:2f:17: 31:65:21:e4:d0:39:b0:e3:e1:e6:8b:78:48:16:8d: 2e:2f:7e:50:cc:c5:55:e5:10:59:47:6c:05:ce:fe: ab:1d:83:a0:5f:11:a1:28:6a:9e:07:c6:77:cb:4b: 51:b0:bf:ef:99:1b:47:01:7c:d5:c6:b1:50:94:27: 70:5c:da:83:bc:15:6a:a3:e8:16:18:86:da:5b:c9: 8b:c2:0d:ef:52:0f:4f:df:78:18:a9:9d:d1:45:7b: ce:19:4c:ce:2f:27:ab:ca:0a:71:8d:2e:ee:46:47: b0:f8:32:2f:82:fe:55:43:79:db:ba:c9:25:a1:c4: e2:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:10:B7:11:77:70:0B:41:C3:8D:6E:AA:A4:F1:BA:69:6A:8A:82:1C X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2ee2b5d8-c8c5-45ef-a28e-bf086b45bbc7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.227.20.0/24 Signature Algorithm: sha256WithRSAEncryption b0:04:71:13:91:f2:fb:da:95:0e:5f:65:7d:51:91:81:b7:16: 9e:f1:f3:f7:59:59:de:d2:67:cb:77:ae:d7:31:c7:f1:8d:d6: ea:1d:08:ca:17:27:ee:1e:e9:33:f3:d6:ee:f8:48:ac:03:dc: 5c:85:3b:7a:80:24:2c:23:50:0f:83:16:62:83:7a:01:f4:e5: b3:55:90:58:90:9f:80:7b:70:b8:36:71:d5:34:40:42:bc:e4: 0f:66:ba:bc:2d:73:88:81:e4:a2:47:ee:8b:f1:58:e3:9c:c1: f3:ef:71:33:11:bc:af:9f:d8:9b:a8:af:3d:7e:97:27:2a:7f: 99:fb:d2:2d:44:a2:28:19:53:6e:2f:2f:aa:47:b8:74:e5:42: 2b:b6:a4:19:8e:db:0f:46:d1:85:a6:46:97:b7:ae:99:12:55: ed:13:d7:89:aa:40:48:0b:a8:f8:79:49:5a:a2:e2:f3:8f:9e: 1a:a2:37:c0:f0:04:ab:36:e1:16:be:ab:fa:77:26:df:dc:2c: 6d:45:25:77:94:43:c8:75:d1:6c:6a:ef:92:ec:5b:72:47:34: b7:81:bc:af:b3:47:8d:15:0d:5b:99:be:f4:57:09:8d:ec:88: 3d:f1:08:ab:72:51:98:83:51:67:d2:b7:41:3a:e2:c2:78:f3: 66:f6:f8:51 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOaG2CM4p+EX77LBkPoFmBGxexa8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE5MDkzMzU1WhcNMjUxMTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A2NTUyYjQyNTBiNTg2MTg1NjMwZmEwMzU0NDU0YTc4NWMx NDRmMjI4Mzg3ZDQ5MzI4MmM2NTE4ZTVhYWEyMjBhMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwwmgZkmpsWKo5c/70/hDxrig4AbtE+Im5bxvejoD8YzO/ Yn9/FeV1EVCJRpu2H5oB7CBzG+wK7zT0cRFNXv4GiMA57+/Cys5B2JCjPn8Fx3z7 0EXfGq/bvWqrXitN2vZMkevvaKNJq3/cPRbaV1OdYehVVvZjtRZJX/ndtF876U89 dDsvFzFlIeTQObDj4eaLeEgWjS4vflDMxVXlEFlHbAXO/qsdg6BfEaEoap4HxnfL S1Gwv++ZG0cBfNXGsVCUJ3Bc2oO8FWqj6BYYhtpbyYvCDe9SD0/feBipndFFe84Z TM4vJ6vKCnGNLu5GR7D4Mi+C/lVDedu6ySWhxOI9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUsBC3EXdwC0HDjW6qpPG6aWqKghwwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzJlZTJiNWQ4LWM4YzUtNDVlZi1hMjhlLWJmMDg2YjQ1YmJjNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAN4xQwDQYJKoZIhvcNAQELBQADggEBALAEcROR8vvalQ5fZX1RkYG3Fp7x 8/dZWd7SZ8t3rtcxx/GN1uodCMoXJ+4e6TPz1u74SKwD3FyFO3qAJCwjUA+DFmKD egH05bNVkFiQn4B7cLg2cdU0QEK85A9murwtc4iB5KJH7ovxWOOcwfPvcTMRvK+f 2Juorz1+lycqf5n70i1EoigZU24vL6pHuHTlQiu2pBmO2w9G0YWmRpe3rpkSVe0T 14mqQEgLqPh5SVqi4vOPnhqiN8DwBKs24Ra+q/p3Jt/cLG1FJXeUQ8h10Wxq75Ls W3JHNLeBvK+zR40VDVuZvvRXCY3siD3xCKtyUZiDUWfSt0E64sJ482b2+FE= -----END CERTIFICATE-----Generated at Mon Oct 20 17:29:59 2025 by rpki-client