$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a41e9ad6-c43e-4764-b0d1-801b9237c612.roa File: a41e9ad6-c43e-4764-b0d1-801b9237c612.roa (raw, json) Hash identifier: GgDuz4abeUEjrv/k0HcrUoCkJ5itb9xMLa0mt98lh08= Subject key identifier: 1E:75:BD:F5:14:E7:39:A6:74:5C:4A:0F:BA:AF:93:FF:92:AC:EA:8B Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 292A7F434A7CBCA6B88D8F7DFCDDD2052397F3F5 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a41e9ad6-c43e-4764-b0d1-801b9237c612.roa Signing time: Sun 19 Oct 2025 19:12:29 +0000 ROA not before: Sun 19 Oct 2025 19:12:29 +0000 ROA not after: Sun 23 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.225.140.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:2a:7f:43:4a:7c:bc:a6:b8:8d:8f:7d:fc:dd:d2:05:23:97:f3:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 19 19:12:29 2025 GMT Not After : Nov 23 23:59:59 2025 GMT Subject: serialNumber=88c44f5c1b15b4f99de9200a29a9552fa7da4af3c2013f51db08540188744361, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:08:a8:cd:cf:d6:8b:81:2f:ab:d4:2e:46:1e: d4:f4:16:80:d0:c0:ac:da:29:db:96:b3:1a:3f:21: d7:02:7b:d0:c0:86:18:c4:f0:93:85:38:f5:36:f3: 5c:b1:4e:98:47:93:1b:3b:e0:65:ac:16:f9:9d:e8: fd:66:6b:bc:07:5e:e2:4d:db:2a:11:45:66:73:4f: b3:97:9a:f3:49:a7:d6:2c:93:c5:fd:21:3d:59:fb: 94:64:34:8a:27:e0:47:7e:00:a9:9e:7b:f7:73:24: ab:c2:ad:9f:07:00:57:1e:cb:e4:17:12:3f:90:83: 76:a4:83:39:01:5b:df:d8:05:d4:ce:04:04:7b:cb: 26:20:dc:6f:b2:c0:04:d5:43:3e:b6:45:be:0c:1b: c0:4d:b4:1c:f2:be:0d:1b:d0:23:64:20:24:da:1f: ec:49:58:4e:b3:1d:8e:83:58:57:36:7e:8a:c1:35: e9:83:f5:44:14:44:d7:2b:b3:24:c9:ab:44:35:0f: db:02:0a:7a:6b:1e:77:cc:7e:69:e7:fe:44:99:89: bf:9c:60:81:d6:7e:0e:4c:0a:3e:c1:f4:bf:87:77: f0:2a:db:0d:52:72:14:37:ac:ab:ce:5f:17:04:2e: d2:20:6a:92:1b:39:82:03:d5:ce:cc:44:b5:5e:af: eb:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:75:BD:F5:14:E7:39:A6:74:5C:4A:0F:BA:AF:93:FF:92:AC:EA:8B X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a41e9ad6-c43e-4764-b0d1-801b9237c612.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.225.140.0/22 Signature Algorithm: sha256WithRSAEncryption 98:7f:a9:a7:f7:e4:4d:0c:98:ce:3f:ab:07:91:c9:62:70:c7: f5:28:e3:8c:70:14:23:52:b3:65:0d:92:5f:62:2e:72:a7:9f: 87:ec:b7:ea:3a:c4:ad:d7:3d:53:99:75:b2:9e:46:f2:c2:83: 95:09:50:ea:4c:bf:e2:5e:4f:75:8a:85:15:ef:b7:70:57:b3: 64:b1:85:d6:27:b1:5f:62:8e:37:df:49:0b:30:6b:36:f7:24: 6a:32:91:6e:8b:f9:c8:ea:fc:e9:bb:43:43:9f:c1:ff:e0:ab: 64:70:5f:79:51:5c:b9:4a:01:5f:97:a7:90:ee:27:55:49:a3: db:dd:3e:d6:a2:d8:d2:e0:f9:62:ee:c8:ea:ff:ff:64:e9:e3: 82:bc:a6:a4:99:c4:1a:bb:88:cc:04:fa:9f:72:e4:4c:21:8e: 1b:6d:30:95:a0:64:7c:61:d4:38:87:a1:be:20:fd:79:22:60: aa:b2:2c:de:b8:92:4c:31:60:88:70:d1:43:cc:ca:b8:16:42: 11:b0:50:c9:d3:82:9e:a0:bb:9e:25:40:4d:7e:5b:30:04:d6: 4a:d6:ba:0b:c0:e0:00:17:26:13:6a:82:ae:e0:de:62:46:fa: 70:dc:7d:d3:e7:b2:d8:ac:8f:a2:0d:c8:67:4c:82:85:e3:3e: 32:05:7a:7f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKSp/Q0p8vKa4jY99/N3SBSOX8/UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE5MTkxMjI5WhcNMjUxMTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A4OGM0NGY1YzFiMTViNGY5OWRlOTIwMGEyOWE5NTUyZmE3 ZGE0YWYzYzIwMTNmNTFkYjA4NTQwMTg4NzQ0MzYxMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRCKjNz9aLgS+r1C5GHtT0FoDQwKzaKduWsxo/IdcCe9DA hhjE8JOFOPU281yxTphHkxs74GWsFvmd6P1ma7wHXuJN2yoRRWZzT7OXmvNJp9Ys k8X9IT1Z+5RkNIon4Ed+AKmee/dzJKvCrZ8HAFcey+QXEj+Qg3akgzkBW9/YBdTO BAR7yyYg3G+ywATVQz62Rb4MG8BNtBzyvg0b0CNkICTaH+xJWE6zHY6DWFc2forB NemD9UQURNcrsyTJq0Q1D9sCCnprHnfMfmnn/kSZib+cYIHWfg5MCj7B9L+Hd/Aq 2w1SchQ3rKvOXxcELtIgapIbOYID1c7MRLVer+tXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUHnW99RTnOaZ0XEoPuq+T/5Ks6oswHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2E0MWU5YWQ2LWM0M2UtNDc2NC1iMGQxLTgwMWI5MjM3YzYxMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIN4YwwDQYJKoZIhvcNAQELBQADggEBAJh/qaf35E0MmM4/qweRyWJwx/Uo 44xwFCNSs2UNkl9iLnKnn4fst+o6xK3XPVOZdbKeRvLCg5UJUOpMv+JeT3WKhRXv t3BXs2SxhdYnsV9ijjffSQswazb3JGoykW6L+cjq/Om7Q0Ofwf/gq2RwX3lRXLlK AV+Xp5DuJ1VJo9vdPtai2NLg+WLuyOr//2Tp44K8pqSZxBq7iMwE+p9y5Ewhjhtt MJWgZHxh1DiHob4g/XkiYKqyLN64kkwxYIhw0UPMyrgWQhGwUMnTgp6gu54lQE1+ WzAE1krWugvA4AAXJhNqgq7g3mJG+nDcfdPnstisj6INyGdMgoXjPjIFen8= -----END CERTIFICATE-----Generated at Mon Oct 20 02:57:29 2025 by rpki-client