$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6f217476-59fd-48b0-bb3b-8d550d8fc546.roa File: 6f217476-59fd-48b0-bb3b-8d550d8fc546.roa (raw, json) Hash identifier: 8tlEhHXjJPITdA0GnLNkD3N+IgljkjcxAGXN4Rz3ooo= Subject key identifier: 4A:B2:F5:39:BC:8A:4E:D5:E3:22:CB:D1:2C:E5:DD:3C:14:58:FD:7A Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 3420E214A9FFB5766600DF7FF986BE8422179CDA Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6f217476-59fd-48b0-bb3b-8d550d8fc546.roa Signing time: Sun 19 Oct 2025 09:01:30 +0000 ROA not before: Sun 19 Oct 2025 09:01:30 +0000 ROA not after: Sun 23 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.35.84.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:20:e2:14:a9:ff:b5:76:66:00:df:7f:f9:86:be:84:22:17:9c:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 19 09:01:30 2025 GMT Not After : Nov 23 23:59:59 2025 GMT Subject: serialNumber=3e3aa2fc31323701d59bc7bf3d3edba46856e6810aae5f41d2dd618c6e1033e9, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:6b:d0:01:aa:0f:77:ce:f0:66:d5:99:27:ad: 8c:7f:3a:5b:bf:68:89:44:7c:ce:11:8b:67:6a:85: 45:47:ca:63:11:a5:80:a0:93:d4:0b:81:6f:5f:c9: 7f:77:5a:ec:44:d7:72:6e:0d:8a:89:3c:9b:d2:d9: 2a:0e:f0:d2:4b:bd:65:1c:2d:d3:fa:46:ac:60:a6: 15:34:8d:d5:95:2d:a5:05:9e:bc:ea:31:2e:bd:bf: 59:6b:08:a2:b7:f3:96:4f:97:e0:c3:75:89:86:ef: c5:7f:04:50:a4:7b:09:6d:26:bc:b3:81:84:3f:7c: 89:25:c5:a2:c7:e5:fa:c0:d6:a9:16:2f:5f:55:22: 93:23:d2:48:3f:59:0d:d7:99:e3:07:a2:0c:c5:a5: 26:0a:9f:cb:8d:d2:4e:59:c3:23:ff:6c:93:d3:c4: 02:ac:3d:11:0c:ed:c0:3a:a2:11:ae:54:95:4e:18: 76:99:fd:2b:44:cb:06:24:b6:b0:3a:d1:11:af:cc: 95:a2:c2:e8:3b:24:b2:5a:fc:90:2b:9a:63:26:97: 5d:74:2e:c6:de:f1:f9:53:23:f8:fd:bc:2b:4b:4b: 9c:e9:9b:ef:cc:76:2b:6c:f4:aa:62:da:20:79:bb: ef:f9:53:35:d5:02:70:79:4a:e2:8b:2e:46:b6:46: 17:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:B2:F5:39:BC:8A:4E:D5:E3:22:CB:D1:2C:E5:DD:3C:14:58:FD:7A X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6f217476-59fd-48b0-bb3b-8d550d8fc546.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.35.84.0/24 Signature Algorithm: sha256WithRSAEncryption 03:0b:3d:46:04:9c:04:8c:ec:6a:3c:87:2f:8e:99:1c:1a:c5: 37:f0:6c:e8:ae:6e:7a:c5:5d:28:25:c6:97:ab:1f:6a:d6:c5: fb:a0:2a:87:99:99:9e:4c:8c:20:c3:29:69:75:a9:99:99:15: 8c:40:d9:be:8a:12:2c:36:b2:79:7c:33:ee:6d:74:c8:01:4b: 0b:3e:95:c6:c1:32:0c:0d:9e:44:55:a2:7a:62:f6:a7:72:22: ce:c5:03:e8:9d:8d:0e:e3:1f:00:b8:c3:10:07:2a:9f:45:1d: f1:41:c9:a9:c2:d7:2d:99:e9:46:00:c4:24:3e:26:5c:05:7f: 3a:05:c5:26:24:e8:53:04:c4:db:e1:2b:03:b5:73:15:0d:c7: d4:0f:6d:25:14:18:b5:98:a3:d1:89:37:c1:5a:d8:2f:36:ca: 08:f9:e8:bd:48:0b:b3:ae:3a:bf:93:da:fa:1c:08:6e:db:53: 9b:b0:a1:a6:57:6e:d0:c0:6e:2b:c2:aa:08:0f:98:44:a8:7d: 23:87:0d:00:1d:53:8e:03:e7:69:6f:41:ee:e0:7b:2f:f2:a3: f5:81:ff:74:38:25:b1:64:16:40:f4:0d:d3:76:51:5f:ff:ff: 08:8e:e4:ba:05:2c:4b:51:81:db:83:79:7a:54:ed:58:6a:28: c7:3b:31:d9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNCDiFKn/tXZmAN9/+Ya+hCIXnNowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE5MDkwMTMwWhcNMjUxMTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AzZTNhYTJmYzMxMzIzNzAxZDU5YmM3YmYzZDNlZGJhNDY4 NTZlNjgxMGFhZTVmNDFkMmRkNjE4YzZlMTAzM2U5MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5a9ABqg93zvBm1ZknrYx/Olu/aIlEfM4Ri2dqhUVHymMR pYCgk9QLgW9fyX93WuxE13JuDYqJPJvS2SoO8NJLvWUcLdP6RqxgphU0jdWVLaUF nrzqMS69v1lrCKK385ZPl+DDdYmG78V/BFCkewltJryzgYQ/fIklxaLH5frA1qkW L19VIpMj0kg/WQ3XmeMHogzFpSYKn8uN0k5ZwyP/bJPTxAKsPREM7cA6ohGuVJVO GHaZ/StEywYktrA60RGvzJWiwug7JLJa/JArmmMml110Lsbe8flTI/j9vCtLS5zp m+/Mdits9Kpi2iB5u+/5UzXVAnB5SuKLLka2RhfpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUSrL1ObyKTtXjIsvRLOXdPBRY/XowHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzZmMjE3NDc2LTU5ZmQtNDhiMC1iYjNiLThkNTUwZDhmYzU0Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAANI1QwDQYJKoZIhvcNAQELBQADggEBAAMLPUYEnASM7Go8hy+OmRwaxTfw bOiubnrFXSglxperH2rWxfugKoeZmZ5MjCDDKWl1qZmZFYxA2b6KEiw2snl8M+5t dMgBSws+lcbBMgwNnkRVonpi9qdyIs7FA+idjQ7jHwC4wxAHKp9FHfFByanC1y2Z 6UYAxCQ+JlwFfzoFxSYk6FMExNvhKwO1cxUNx9QPbSUUGLWYo9GJN8Fa2C82ygj5 6L1IC7OuOr+T2vocCG7bU5uwoaZXbtDAbivCqggPmESofSOHDQAdU44D52lvQe7g ey/yo/WB/3Q4JbFkFkD0DdN2UV///wiO5LoFLEtRgduDeXpU7VhqKMc7Mdk= -----END CERTIFICATE-----Generated at Mon Oct 20 03:11:06 2025 by rpki-client