$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b6431ef7-23f6-48f3-b936-f7d8d2b6f151.roa File: b6431ef7-23f6-48f3-b936-f7d8d2b6f151.roa (raw, json) Hash identifier: xZGFjB9dBbgP8A4Gy6tA9hB2SJeaRe+Zl/L8Te2Op9E= Subject key identifier: CD:F0:B9:EA:06:C1:47:6A:28:B9:9A:CB:9D:38:1F:32:CC:32:03:77 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 35E19D9A129CABF3ADAD06680D01F45769DF2D Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b6431ef7-23f6-48f3-b936-f7d8d2b6f151.roa Signing time: Sat 18 Oct 2025 20:10:04 +0000 ROA not before: Sat 18 Oct 2025 20:10:04 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.249.48.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:e1:9d:9a:12:9c:ab:f3:ad:ad:06:68:0d:01:f4:57:69:df:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 18 20:10:04 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=c41d3f1b393119435ef5f295cbafb23e13ce76dce3cd0e61fdf9ffe9afdcdb54, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:9c:15:88:05:92:95:4d:dd:d1:e1:aa:e7:71: 25:7d:98:37:38:56:cb:01:fb:04:b6:1d:4e:8b:17: 48:f0:90:aa:4e:1d:e5:21:68:f8:27:2e:ef:5a:6e: 51:62:1f:76:45:d6:61:98:3e:a5:49:e7:0e:05:8b: 2b:6b:03:20:1c:73:ac:27:38:7f:ef:10:9d:e5:88: 25:49:58:59:31:71:fb:68:db:5f:04:26:41:31:fe: ec:1c:4b:25:1e:01:1b:15:9f:7e:9a:2a:94:d3:98: aa:31:b8:78:7a:93:2a:b1:02:e0:37:b4:56:60:cb: 20:fb:38:fb:52:46:3c:1a:da:dc:93:23:b7:82:ff: 52:2b:c3:8d:a4:7b:50:72:79:d5:44:63:e4:ee:c7: ba:ff:01:81:35:20:7e:aa:f1:0e:80:bd:02:20:44: 5a:99:74:8f:69:e8:a5:87:9f:5a:d6:1b:b6:57:54: ac:9e:f5:df:ce:91:12:94:02:6c:3c:15:cf:8b:09: 86:6c:f7:5b:a4:a5:2a:df:81:50:67:3a:90:d0:6e: bb:33:e3:c0:a2:6e:a7:26:71:7f:bb:b2:c2:67:88: 32:50:aa:a2:db:f4:04:b8:ef:43:85:ae:c3:c8:05: ec:b7:0f:a0:fa:85:25:ca:5e:12:45:52:d2:a3:15: c3:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:F0:B9:EA:06:C1:47:6A:28:B9:9A:CB:9D:38:1F:32:CC:32:03:77 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b6431ef7-23f6-48f3-b936-f7d8d2b6f151.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.249.48.0/23 Signature Algorithm: sha256WithRSAEncryption 25:85:a6:8a:c3:44:b5:a1:1f:90:ce:91:d7:ca:55:66:3e:09: 48:79:5d:04:bf:84:c6:f8:14:be:25:b9:8c:a4:b6:3e:94:33: b6:2d:88:2e:0c:37:fd:5c:a1:dc:b1:c4:8c:a2:fb:98:7f:b1: 81:5c:a5:64:45:79:0c:95:69:ae:af:89:2a:79:39:5d:36:3f: 11:89:a7:dd:b9:d7:cb:8f:c5:cc:a1:e6:03:82:91:51:64:56: 2e:2f:46:d2:68:3a:c6:09:39:2d:3d:c3:f5:33:6b:ea:bd:ea: 0c:43:bc:b0:c1:1f:4a:31:07:2f:af:13:27:fc:f2:30:61:10: 65:0c:5a:4b:ab:8a:4c:ae:11:8d:0e:7b:5a:e4:bb:25:94:ba: f1:2e:49:2f:b1:ac:83:f0:ea:5e:87:b5:dc:c6:45:8a:66:c3: dc:be:ff:7c:e5:7d:d7:f3:52:39:ed:d2:06:85:15:e2:6c:60: 21:2d:12:5c:cb:f4:96:aa:ad:55:ad:63:3f:df:82:c1:e7:b8: f2:9a:fd:e2:6c:41:6b:52:7b:cd:92:49:69:c8:71:e0:05:3a: 1f:aa:84:f0:2d:df:1f:18:06:81:4c:7b:fb:db:e3:d4:ef:a2: 09:1f:f3:dd:9f:0c:32:fe:72:d3:61:34:8b:97:31:45:49:5f: bd:59:2d:42 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITNeGdmhKcq/OtrQZoDQH0V2nfLTANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzJkZjZmM2IzYTM0YjYzODZkMWEzMmQ4ZjRmYTMxNzhlZjMx ODg3ZDhiNDI4ZGZhYTQ3NjAeFw0yNTEwMTgyMDEwMDRaFw0yNTExMjIyMzU5NTla MHoxSTBHBgNVBAUTQGM0MWQzZjFiMzkzMTE5NDM1ZWY1ZjI5NWNiYWZiMjNlMTNj ZTc2ZGNlM2NkMGU2MWZkZjlmZmU5YWZkY2RiNTQxLTArBgNVBAMTJDVmMjc2MDQ1 LTViOWYtNDVlZi05MjNkLWYzZmNlMjRhNjIyNTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAJCcFYgFkpVN3dHhqudxJX2YNzhWywH7BLYdTosXSPCQqk4d 5SFo+Ccu71puUWIfdkXWYZg+pUnnDgWLK2sDIBxzrCc4f+8QneWIJUlYWTFx+2jb XwQmQTH+7BxLJR4BGxWffpoqlNOYqjG4eHqTKrEC4De0VmDLIPs4+1JGPBra3JMj t4L/UivDjaR7UHJ51URj5O7Huv8BgTUgfqrxDoC9AiBEWpl0j2nopYefWtYbtldU rJ71386REpQCbDwVz4sJhmz3W6SlKt+BUGc6kNBuuzPjwKJupyZxf7uywmeIMlCq otv0BLjvQ4Wuw8gF7LcPoPqFJcpeEkVS0qMVwx0CAwEAAaOCArEwggKtMB0GA1Ud DgQWBBTN8LnqBsFHaii5msudOB8yzDIDdzAfBgNVHSMEGDAWgBQlrdNCsB63pY6t GZAmiLVLP4H0uDAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzg1MWNlZjE3LTEz MmEtNDMzNy1iN2QxLWJmMTZhNTJmZmQwMy9kZjZmM2IzYTM0YjYzODZkMWEzMmQ4 ZjRmYTMxNzhlZjMxODg3ZDhiNDI4ZGZhYTQ3Ni5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9mNzAzNjk2ZS1lNDdiLTRjMjAtYmQ5My02Zjgw OTA0ZTQyZDIvYjY0MzFlZjctMjNmNi00OGYzLWI5MzYtZjdkOGQyYjZmMTUxLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMt NmY4MDkwNGU0MmQyL3RqaHRHakxZOVBveGVPOHhpSDJMUW8zNnBIWS5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAQ35MDANBgkqhkiG9w0BAQsFAAOCAQEAJYWmisNEtaEfkM6R18pVZj4JSHld BL+ExvgUviW5jKS2PpQzti2ILgw3/Vyh3LHEjKL7mH+xgVylZEV5DJVprq+JKnk5 XTY/EYmn3bnXy4/FzKHmA4KRUWRWLi9G0mg6xgk5LT3D9TNr6r3qDEO8sMEfSjEH L68TJ/zyMGEQZQxaS6uKTK4RjQ57WuS7JZS68S5JL7Gsg/DqXoe13MZFimbD3L7/ fOV91/NSOe3SBoUV4mxgIS0SXMv0lqqtVa1jP9+Cwee48pr94mxBa1J7zZJJachx 4AU6H6qE8C3fHxgGgUx7+9vj1O+iCR/z3Z8MMv5y02E0i5cxRUlfvVktQg== -----END CERTIFICATE-----Generated at Mon Oct 20 02:55:47 2025 by rpki-client