$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7480f87d-8490-47d2-aba1-22f9e4e250ad.roa File: 7480f87d-8490-47d2-aba1-22f9e4e250ad.roa (raw, json) Hash identifier: BQcejdXT5Gj/MnkhBZZWKV7TcxS2/Y2vDeYzuieO7iw= Subject key identifier: C5:AE:B6:7B:30:01:81:8D:A0:00:5A:17:D6:7C:B1:58:67:54:98:51 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 0A6F9F568F86E921CD13CC713BA229EB30410716 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7480f87d-8490-47d2-aba1-22f9e4e250ad.roa Signing time: Sun 19 Oct 2025 19:11:17 +0000 ROA not before: Sun 19 Oct 2025 19:11:17 +0000 ROA not after: Sun 23 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.225.32.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:6f:9f:56:8f:86:e9:21:cd:13:cc:71:3b:a2:29:eb:30:41:07:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 19 19:11:17 2025 GMT Not After : Nov 23 23:59:59 2025 GMT Subject: serialNumber=4f17b4a9333121097d8ff6fdfc3f88db57ddeb630ca31f3e07e89aee01b641ff, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:23:9e:34:7c:ee:a2:e8:7c:6a:42:bf:7a:8a: 96:ce:dc:34:a7:a3:a0:ca:91:37:17:b0:13:e2:d4: ed:81:99:db:36:38:73:ec:7c:56:5a:8b:44:5b:91: b2:e8:29:cc:79:8b:66:fa:1e:d6:4b:d8:45:e7:6f: 95:6c:fa:24:97:70:d6:40:e5:05:08:8c:b6:9d:12: 8c:54:b7:ab:24:9e:7f:f9:73:3c:cc:0e:42:9f:f5: f7:ba:59:82:a4:ea:68:d8:28:88:9e:ab:d6:cb:4e: e3:a0:b5:3c:74:0c:b1:53:5e:e6:df:ed:5d:11:ea: 63:55:e8:74:02:64:99:c3:1c:fd:4f:c4:20:d0:72: ce:42:f6:a2:ec:20:39:7e:22:fc:90:c0:9e:51:19: 67:98:83:54:af:b5:60:13:cf:62:59:6d:78:a5:1a: 85:9e:ea:9a:44:2e:86:33:8c:b8:b9:06:79:66:33: 50:05:f1:61:a4:d8:f3:50:5d:e7:5d:16:8b:63:ab: c8:cd:a1:d0:e4:c7:85:69:2d:d5:2b:98:53:6b:ab: f5:c8:60:6a:b1:89:33:e6:a3:dc:26:3b:e2:70:77: 65:b4:59:f7:ee:55:86:2c:f3:c1:24:5f:c1:db:26: 01:70:b3:ae:c3:4e:0e:99:3e:90:e5:26:0c:19:e7: 4c:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:AE:B6:7B:30:01:81:8D:A0:00:5A:17:D6:7C:B1:58:67:54:98:51 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7480f87d-8490-47d2-aba1-22f9e4e250ad.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.225.32.0/22 Signature Algorithm: sha256WithRSAEncryption 42:19:16:42:9d:68:c7:1a:a1:69:4e:3e:bd:8a:4c:ec:e8:6b: 79:83:d4:7d:21:7d:e3:0d:ec:06:df:67:9d:be:d9:82:b8:76: 3a:b3:fe:08:48:7c:8b:f3:70:6a:91:64:1e:aa:0d:d7:45:94: 6a:37:ef:e6:8d:2f:8c:5b:3a:6e:6a:af:3e:3d:3a:12:4c:7f: f9:c6:b5:09:d1:95:d9:32:aa:b5:e3:14:10:80:52:11:20:32: 2d:f2:60:53:fa:49:28:a3:ea:42:33:a8:5b:40:45:5e:24:ce: d9:67:45:23:01:db:ac:8c:ef:48:eb:05:e3:d0:be:0f:90:3e: ec:3b:df:76:48:1c:76:6a:6d:43:84:4b:e4:0a:71:ba:60:be: 8d:59:49:ab:7f:ff:96:32:e1:14:58:b3:d2:11:83:2f:01:ce: bc:72:62:7e:75:06:e0:d3:9f:d2:e7:1c:6c:05:8f:90:01:cc: b6:2e:0c:aa:a3:9e:ae:95:de:7d:6d:36:2d:8d:58:2f:bc:01: 18:6a:78:9b:ea:06:09:d9:42:27:36:0d:14:d2:c1:34:5b:03: 8c:70:c1:02:0e:88:38:2b:53:77:b8:d6:91:c1:2b:72:29:a2: cf:1c:7f:b2:d9:d3:49:9f:db:2d:f8:c2:21:fa:1c:a0:b1:af: 24:a1:ca:d4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCm+fVo+G6SHNE8xxO6Ip6zBBBxYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE5MTkxMTE3WhcNMjUxMTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZjE3YjRhOTMzMzEyMTA5N2Q4ZmY2ZmRmYzNmODhkYjU3 ZGRlYjYzMGNhMzFmM2UwN2U4OWFlZTAxYjY0MWZmMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5I540fO6i6HxqQr96ipbO3DSno6DKkTcXsBPi1O2Bmds2 OHPsfFZai0RbkbLoKcx5i2b6HtZL2EXnb5Vs+iSXcNZA5QUIjLadEoxUt6sknn/5 czzMDkKf9fe6WYKk6mjYKIieq9bLTuOgtTx0DLFTXubf7V0R6mNV6HQCZJnDHP1P xCDQcs5C9qLsIDl+IvyQwJ5RGWeYg1SvtWATz2JZbXilGoWe6ppELoYzjLi5Bnlm M1AF8WGk2PNQXeddFotjq8jNodDkx4VpLdUrmFNrq/XIYGqxiTPmo9wmO+Jwd2W0 WffuVYYs88EkX8HbJgFws67DTg6ZPpDlJgwZ50yBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUxa62ezABgY2gAFoX1nyxWGdUmFEwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzc0ODBmODdkLTg0OTAtNDdkMi1hYmExLTIyZjllNGUyNTBhZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIN4SAwDQYJKoZIhvcNAQELBQADggEBAEIZFkKdaMcaoWlOPr2KTOzoa3mD 1H0hfeMN7AbfZ52+2YK4djqz/ghIfIvzcGqRZB6qDddFlGo37+aNL4xbOm5qrz49 OhJMf/nGtQnRldkyqrXjFBCAUhEgMi3yYFP6SSij6kIzqFtARV4kztlnRSMB26yM 70jrBePQvg+QPuw733ZIHHZqbUOES+QKcbpgvo1ZSat//5Yy4RRYs9IRgy8Bzrxy Yn51BuDTn9LnHGwFj5ABzLYuDKqjnq6V3n1tNi2NWC+8ARhqeJvqBgnZQic2DRTS wTRbA4xwwQIOiDgrU3e41pHBK3Ipos8cf7LZ00mf2y34wiH6HKCxryShytQ= -----END CERTIFICATE-----Generated at Mon Oct 20 02:57:47 2025 by rpki-client