$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b81a7599-a98c-48b7-9c67-9c5fa846e606.roa File: b81a7599-a98c-48b7-9c67-9c5fa846e606.roa (raw, json) Hash identifier: JU9iR2Lfg6EJrNNvKVnVWwu4XGtCULwK4w47N/FkNDQ= Subject key identifier: E3:F8:F3:88:B7:AE:0C:15:F7:4A:1B:DE:6B:17:57:61:F3:07:6A:C7 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 2E0FDEF7F839A3A151AF41FFA2157D246FF15605 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b81a7599-a98c-48b7-9c67-9c5fa846e606.roa Signing time: Sun 19 Oct 2025 12:25:02 +0000 ROA not before: Sun 19 Oct 2025 12:25:02 +0000 ROA not after: Sun 23 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.35.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:0f:de:f7:f8:39:a3:a1:51:af:41:ff:a2:15:7d:24:6f:f1:56:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 19 12:25:02 2025 GMT Not After : Nov 23 23:59:59 2025 GMT Subject: serialNumber=7bdcffa484c7c5cea31ac947864bb73fb0fec25d4aac874f13b60e77517c05cb, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:3e:c1:c4:a4:ce:7f:73:55:50:54:30:85:20: 60:fd:ae:2c:09:28:e7:0f:2b:5e:f2:25:fb:f9:00: 1b:1c:5e:35:5a:0d:ec:e0:34:ed:68:e9:1d:1f:c7: c0:ba:26:01:c4:ee:3a:8b:a5:4c:f9:83:69:f1:1d: ca:d2:a5:43:98:0b:57:6a:0f:59:08:72:76:13:9b: 45:53:ea:bb:51:5a:58:42:23:e0:6e:f4:e9:5f:13: 9b:dc:9c:8b:36:4a:7b:78:ab:5c:ab:e2:5e:e7:50: d9:c3:be:d7:e4:54:30:d0:31:d9:95:3e:61:4f:1e: d5:f4:62:49:7d:84:0c:ef:4e:a1:52:a0:8c:58:50: c6:96:f4:a3:15:a8:ef:18:1f:7b:1c:f1:6a:fa:84: 6c:52:b9:7b:6d:6c:fa:3b:22:0e:44:b6:6e:66:87: 1b:77:e6:ca:e1:35:6c:9f:02:78:3a:80:9e:86:0e: 26:38:1e:b6:09:0c:bf:42:29:69:2d:1f:ab:14:ff: 4a:56:bc:f7:7f:86:35:0f:2c:dd:19:c7:08:2c:0b: eb:01:56:18:7e:6f:cc:b6:e6:92:25:d0:0d:42:54: 91:c9:a4:b7:14:2f:df:62:32:80:13:70:78:90:51: c8:bd:76:6a:f0:f6:d5:45:77:b4:2c:54:c1:6c:7f: a7:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:F8:F3:88:B7:AE:0C:15:F7:4A:1B:DE:6B:17:57:61:F3:07:6A:C7 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b81a7599-a98c-48b7-9c67-9c5fa846e606.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.35.8.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:b9:23:4f:a1:04:a8:0d:a5:c0:63:e2:7d:51:56:df:05:d4: f6:02:76:6f:33:93:a0:70:ce:90:93:61:f3:27:90:02:41:57: 92:45:39:cb:83:97:0e:0e:a9:7a:70:2e:ee:6b:85:03:67:bb: 5d:3e:af:9d:0b:4d:fb:09:66:bd:38:56:3e:be:d2:ef:de:7c: 64:dc:ba:ed:d9:b9:a2:11:00:23:bb:d3:49:d7:2a:a9:75:8b: e2:f4:b6:c8:a9:49:df:2f:17:38:9b:cb:c0:8f:32:1f:c8:0f: 77:ef:5f:05:bb:bf:0c:fe:8c:39:bf:fa:c1:b5:36:b4:0a:d9: a4:a0:91:23:0d:0f:96:fa:b8:49:dd:23:11:97:4c:65:10:90: 45:d3:03:c4:46:64:eb:0b:ad:ae:44:e4:c5:7d:8b:1d:c5:08: 79:27:fa:93:0e:e6:24:34:af:08:48:e1:70:92:45:d6:5d:3a: 3f:8b:8f:95:94:95:3f:df:cb:c6:72:45:64:f7:0c:c0:d5:16: 18:80:0d:08:94:f5:d5:f0:c0:8a:4c:fd:3a:3b:c1:dd:ae:d5: fb:b7:b4:e4:1d:96:7c:de:8e:c3:bc:43:66:cf:6f:58:79:62: 81:47:a2:3e:27:cd:3c:38:76:06:98:45:0c:fc:58:85:0a:0e: b5:61:ee:d0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULg/e9/g5o6FRr0H/ohV9JG/xVgUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE5MTIyNTAyWhcNMjUxMTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A3YmRjZmZhNDg0YzdjNWNlYTMxYWM5NDc4NjRiYjczZmIw ZmVjMjVkNGFhYzg3NGYxM2I2MGU3NzUxN2MwNWNiMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/PsHEpM5/c1VQVDCFIGD9riwJKOcPK17yJfv5ABscXjVa DezgNO1o6R0fx8C6JgHE7jqLpUz5g2nxHcrSpUOYC1dqD1kIcnYTm0VT6rtRWlhC I+Bu9OlfE5vcnIs2Snt4q1yr4l7nUNnDvtfkVDDQMdmVPmFPHtX0Ykl9hAzvTqFS oIxYUMaW9KMVqO8YH3sc8Wr6hGxSuXttbPo7Ig5Etm5mhxt35srhNWyfAng6gJ6G DiY4HrYJDL9CKWktH6sU/0pWvPd/hjUPLN0ZxwgsC+sBVhh+b8y25pIl0A1CVJHJ pLcUL99iMoATcHiQUci9dmrw9tVFd7QsVMFsf6c/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU4/jziLeuDBX3ShveaxdXYfMHascwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2I4MWE3NTk5LWE5OGMtNDhiNy05YzY3LTljNWZhODQ2ZTYwNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAANIwgwDQYJKoZIhvcNAQELBQADggEBAEu5I0+hBKgNpcBj4n1RVt8F1PYC dm8zk6BwzpCTYfMnkAJBV5JFOcuDlw4OqXpwLu5rhQNnu10+r50LTfsJZr04Vj6+ 0u/efGTcuu3ZuaIRACO700nXKql1i+L0tsipSd8vFziby8CPMh/ID3fvXwW7vwz+ jDm/+sG1NrQK2aSgkSMND5b6uEndIxGXTGUQkEXTA8RGZOsLra5E5MV9ix3FCHkn +pMO5iQ0rwhI4XCSRdZdOj+Lj5WUlT/fy8ZyRWT3DMDVFhiADQiU9dXwwIpM/To7 wd2u1fu3tOQdlnzejsO8Q2bPb1h5YoFHoj4nzTw4dgaYRQz8WIUKDrVh7tA= -----END CERTIFICATE-----Generated at Mon Oct 20 17:29:42 2025 by rpki-client