$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/85a6f8ee-9136-442c-8895-578c6af6b6cb.roa File: 85a6f8ee-9136-442c-8895-578c6af6b6cb.roa (raw, json) Hash identifier: +7a6qdJD6wwbKupedFlY2BX+QYdvZxwVS9yYhvqAoRY= Subject key identifier: F1:84:8B:4E:B6:4D:7B:54:36:50:21:7C:51:BB:6D:3B:71:99:AF:45 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 50EBBDE38EE38D3D2BFAA0CB60A852A025E75480 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/85a6f8ee-9136-442c-8895-578c6af6b6cb.roa Signing time: Sat 18 Oct 2025 12:01:18 +0000 ROA not before: Sat 18 Oct 2025 12:01:18 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.249.160.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:eb:bd:e3:8e:e3:8d:3d:2b:fa:a0:cb:60:a8:52:a0:25:e7:54:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 18 12:01:18 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=a9e672bcc8073bd14223a377ea6939a23b5259d049b7b9b357d6e3923dd318a7, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:bf:61:fb:ad:4a:f4:63:36:8c:32:77:36:95: 3f:b3:28:fd:7a:91:c2:05:4d:f9:18:4f:a2:b8:ba: c1:bd:d4:64:e5:1e:c9:cf:8b:ea:ce:f9:43:7c:86: 10:21:f9:d3:51:96:ee:a0:a7:c0:8b:48:26:c2:c1: eb:84:9a:7b:5d:b5:24:0b:38:9f:d5:7d:0f:30:aa: a6:5c:a9:cd:ae:76:ca:13:3e:34:a1:a2:c1:08:ff: 09:5a:a0:95:1f:4d:12:f5:a8:41:4c:23:45:70:1a: 32:b3:ae:97:b3:df:0f:51:02:df:68:15:26:b5:b8: 78:47:63:04:f2:08:6a:22:2c:3a:8b:5e:af:7b:26: 56:c2:64:6d:7b:27:3b:50:ef:a7:62:87:95:6c:72: 5a:bf:34:34:ef:7f:49:5d:37:97:d2:f7:dd:a9:61: cc:3f:3c:e4:58:14:ba:1b:95:7b:18:84:3e:1e:a1: 7e:77:80:13:8d:7a:1a:d3:25:ae:0e:e2:68:8a:0b: 2f:8e:95:7e:80:36:25:31:57:f4:a6:27:40:00:5b: ad:74:fb:ba:62:91:10:b4:a1:ad:38:49:81:0a:e8: 25:2d:f2:a3:47:14:d4:1c:fc:d8:ff:b5:c3:4a:6a: e4:44:d9:fa:67:c7:75:c0:e5:2f:3f:57:6a:25:d0: ed:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:84:8B:4E:B6:4D:7B:54:36:50:21:7C:51:BB:6D:3B:71:99:AF:45 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/85a6f8ee-9136-442c-8895-578c6af6b6cb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.249.160.0/22 Signature Algorithm: sha256WithRSAEncryption 2c:5e:c3:0c:79:fd:9d:f6:17:df:c7:83:c6:80:da:8b:86:f0: 40:39:28:b3:6f:c3:27:1d:c2:26:6e:c6:6b:4d:6d:7e:a3:db: 86:49:4a:67:8b:40:b6:e2:21:b4:cd:fa:75:c8:4b:bd:1d:cf: f2:88:46:2a:eb:58:c1:8e:8c:78:36:55:c0:05:8b:f3:ee:4b: 9a:95:d8:cd:16:37:16:3d:66:cf:c4:01:6d:07:c3:98:d3:e3: c2:f7:2f:fa:be:26:75:77:01:d3:e7:80:28:e3:f8:9a:f6:45: 7b:59:aa:e1:9c:da:33:62:08:0f:90:6d:a3:19:e9:7f:c1:ef: 77:25:86:0f:32:88:c5:8a:f3:fd:7e:ff:74:2d:d2:c3:4e:13: 76:b2:52:c7:d5:69:03:55:ca:01:d7:d8:98:86:0e:a1:1f:4e: c6:c8:60:9a:6d:1a:5b:9c:a3:56:7f:60:95:18:d7:de:78:a1: e6:9b:69:36:84:fb:e1:14:3d:0b:90:85:59:8b:5f:43:42:29: 88:2b:37:d3:9b:93:d4:fa:80:4e:5d:a5:b1:5a:6b:6f:9d:6f: f7:68:0f:e8:e3:d8:f8:3f:79:9b:8b:bc:1c:4c:6d:36:be:c4: d8:1f:de:a5:2b:bf:e1:6e:1c:5c:5f:a2:c5:72:cd:fc:62:ae: 8b:1e:3f:df -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUOu9447jjT0r+qDLYKhSoCXnVIAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE4MTIwMTE4WhcNMjUxMTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BhOWU2NzJiY2M4MDczYmQxNDIyM2EzNzdlYTY5MzlhMjNi NTI1OWQwNDliN2I5YjM1N2Q2ZTM5MjNkZDMxOGE3MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmv2H7rUr0YzaMMnc2lT+zKP16kcIFTfkYT6K4usG91GTl HsnPi+rO+UN8hhAh+dNRlu6gp8CLSCbCweuEmntdtSQLOJ/VfQ8wqqZcqc2udsoT PjShosEI/wlaoJUfTRL1qEFMI0VwGjKzrpez3w9RAt9oFSa1uHhHYwTyCGoiLDqL Xq97JlbCZG17JztQ76dih5Vsclq/NDTvf0ldN5fS992pYcw/PORYFLoblXsYhD4e oX53gBONehrTJa4O4miKCy+OlX6ANiUxV/SmJ0AAW610+7pikRC0oa04SYEK6CUt 8qNHFNQc/Nj/tcNKauRE2fpnx3XA5S8/V2ol0O3zAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU8YSLTrZNe1Q2UCF8UbttO3GZr0UwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzg1YTZmOGVlLTkxMzYtNDQyYy04ODk1LTU3OGM2YWY2YjZjYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIN+aAwDQYJKoZIhvcNAQELBQADggEBACxewwx5/Z32F9/Hg8aA2ouG8EA5 KLNvwycdwiZuxmtNbX6j24ZJSmeLQLbiIbTN+nXIS70dz/KIRirrWMGOjHg2VcAF i/PuS5qV2M0WNxY9Zs/EAW0Hw5jT48L3L/q+JnV3AdPngCjj+Jr2RXtZquGc2jNi CA+QbaMZ6X/B73clhg8yiMWK8/1+/3Qt0sNOE3ayUsfVaQNVygHX2JiGDqEfTsbI YJptGluco1Z/YJUY1954oeabaTaE++EUPQuQhVmLX0NCKYgrN9Obk9T6gE5dpbFa a2+db/doD+jj2Pg/eZuLvBxMbTa+xNgf3qUrv+FuHFxfosVyzfxiroseP98= -----END CERTIFICATE-----Generated at Mon Oct 20 08:29:44 2025 by rpki-client