$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/63df5609-4c72-4c94-80a9-c50ac20da962.roa File: 63df5609-4c72-4c94-80a9-c50ac20da962.roa (raw, json) Hash identifier: p0nFkLkMLbjC0VSDA9Sn0oZXqi84uM6srJDuzohAUqw= Subject key identifier: 18:57:01:DB:73:4B:FD:11:AB:89:62:AC:7F:18:00:46:6C:C0:B5:0A Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 1149EAB7F8894FC15F6F2A864118BC9AFFB70CF3 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/63df5609-4c72-4c94-80a9-c50ac20da962.roa Signing time: Sun 19 Oct 2025 09:42:39 +0000 ROA not before: Sun 19 Oct 2025 09:42:39 +0000 ROA not after: Sun 23 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.33.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:49:ea:b7:f8:89:4f:c1:5f:6f:2a:86:41:18:bc:9a:ff:b7:0c:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 19 09:42:39 2025 GMT Not After : Nov 23 23:59:59 2025 GMT Subject: serialNumber=e48159fa953605e5473d1a69c0e0b5f9090512bf141c39d5a3fc43a58dbf88c4, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:ba:05:db:e2:34:32:2a:1e:a1:9a:05:3d:a3: d6:78:7b:c6:68:b5:61:8c:40:02:5b:c4:71:29:c2: 65:85:25:85:9a:86:fb:c4:58:14:ff:ec:a4:09:cd: 7a:18:d7:e7:49:03:51:a2:2b:e6:86:36:25:ce:61: 08:91:0b:57:22:ad:98:08:4b:3d:6a:e9:0f:3e:91: d0:de:ee:58:a4:81:d7:8e:68:40:8c:a8:89:4c:83: 68:12:22:9c:02:4a:56:b1:cd:85:cb:33:d0:ec:4f: 03:3e:e7:6b:77:d1:d7:bd:bb:50:45:7f:05:73:94: b1:89:ae:d6:5d:b8:6c:93:c1:36:14:29:ad:bd:46: a4:47:97:a5:31:23:0a:70:e6:1d:b6:94:11:ef:d2: 5b:fe:31:24:7f:27:5e:c5:41:33:9e:54:1d:34:b6: bb:33:74:6f:c8:8b:8d:ca:03:07:cf:0d:1e:ac:de: c2:6c:f2:06:be:9f:c2:cf:51:c1:ce:7d:17:99:b7: d7:7f:09:73:c2:84:b5:0d:bb:94:d5:ce:78:57:63: 7d:7c:5d:ac:57:a6:23:96:7b:48:43:0c:91:07:fb: 64:82:b8:84:c3:95:92:c3:b7:5b:43:5a:25:da:0a: 25:39:72:d9:03:7e:c3:92:9e:1d:12:54:4d:20:d3: dc:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:57:01:DB:73:4B:FD:11:AB:89:62:AC:7F:18:00:46:6C:C0:B5:0A X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/63df5609-4c72-4c94-80a9-c50ac20da962.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.33.167.0/24 Signature Algorithm: sha256WithRSAEncryption 67:e7:30:9d:ea:6b:7e:50:01:60:7a:99:c9:dc:ad:30:84:6d: dd:0f:45:af:9c:cd:17:f0:bf:26:28:25:fb:f2:d5:63:68:11: dc:e5:ac:b3:a9:c4:11:91:27:31:07:7c:07:9e:0d:6d:8d:1a: 06:27:eb:d0:87:c4:e7:42:27:d1:0b:53:f4:d0:44:44:f5:f8: 19:45:75:3d:03:63:ee:79:43:dd:66:c7:07:93:74:f7:b4:b3: 09:07:7a:7a:5b:43:26:b4:74:7a:44:b3:38:fa:61:a2:1c:1f: 00:c1:d2:8c:a7:15:ad:8a:63:fe:4a:f0:b9:ed:d5:a1:6c:26: 75:bb:bc:6f:95:0a:8e:7b:4f:fd:e7:3c:41:cb:79:5a:f9:f2: 39:c5:d8:5a:ce:c8:22:67:01:b7:bf:3e:49:85:44:fb:db:32: 0e:a0:47:0e:5d:d0:4d:41:78:ab:dd:d4:79:8d:2f:1f:96:87: 07:95:09:5e:d4:67:8b:89:af:33:4f:fc:a9:83:f0:c9:cb:b3: 15:da:b0:15:65:20:96:b4:d0:c9:91:61:86:12:d5:a2:8d:ab: d7:af:ee:35:46:2d:8d:73:df:15:f0:f0:9b:cc:bc:78:0e:06: f9:5a:ab:c4:7b:68:a0:02:68:40:c6:8d:be:16:14:12:70:c1: b6:9d:57:45 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEUnqt/iJT8FfbyqGQRi8mv+3DPMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE5MDk0MjM5WhcNMjUxMTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BlNDgxNTlmYTk1MzYwNWU1NDczZDFhNjljMGUwYjVmOTA5 MDUxMmJmMTQxYzM5ZDVhM2ZjNDNhNThkYmY4OGM0MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDSugXb4jQyKh6hmgU9o9Z4e8ZotWGMQAJbxHEpwmWFJYWa hvvEWBT/7KQJzXoY1+dJA1GiK+aGNiXOYQiRC1cirZgISz1q6Q8+kdDe7likgdeO aECMqIlMg2gSIpwCSlaxzYXLM9DsTwM+52t30de9u1BFfwVzlLGJrtZduGyTwTYU Ka29RqRHl6UxIwpw5h22lBHv0lv+MSR/J17FQTOeVB00trszdG/Ii43KAwfPDR6s 3sJs8ga+n8LPUcHOfReZt9d/CXPChLUNu5TVznhXY318XaxXpiOWe0hDDJEH+2SC uITDlZLDt1tDWiXaCiU5ctkDfsOSnh0SVE0g09w3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUGFcB23NL/RGriWKsfxgARmzAtQowHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzYzZGY1NjA5LTRjNzItNGM5NC04MGE5LWM1MGFjMjBkYTk2Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAANIacwDQYJKoZIhvcNAQELBQADggEBAGfnMJ3qa35QAWB6mcncrTCEbd0P Ra+czRfwvyYoJfvy1WNoEdzlrLOpxBGRJzEHfAeeDW2NGgYn69CHxOdCJ9ELU/TQ RET1+BlFdT0DY+55Q91mxweTdPe0swkHenpbQya0dHpEszj6YaIcHwDB0oynFa2K Y/5K8Lnt1aFsJnW7vG+VCo57T/3nPEHLeVr58jnF2FrOyCJnAbe/PkmFRPvbMg6g Rw5d0E1BeKvd1HmNLx+WhweVCV7UZ4uJrzNP/KmD8MnLsxXasBVlIJa00MmRYYYS 1aKNq9ev7jVGLY1z3xXw8JvMvHgOBvlaq8R7aKACaEDGjb4WFBJwwbadV0U= -----END CERTIFICATE-----Generated at Mon Oct 20 19:39:14 2025 by rpki-client