$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/cf2d7f93-ee41-4b8a-924d-7d43f5feb2be.roa File: cf2d7f93-ee41-4b8a-924d-7d43f5feb2be.roa (raw, json) Hash identifier: C9FLP2whBF7eu45Chf8KhcH4+lTx7DSdFNCjREPp+To= Subject key identifier: FD:28:AC:97:6A:41:52:42:68:C2:CD:F6:07:E8:CB:D7:27:23:BF:56 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 5E193114D0B90E62AE44430333EC0C405B009B2D Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/cf2d7f93-ee41-4b8a-924d-7d43f5feb2be.roa Signing time: Sun 19 Oct 2025 11:11:13 +0000 ROA not before: Sun 19 Oct 2025 11:11:13 +0000 ROA not after: Sun 23 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.226.208.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:19:31:14:d0:b9:0e:62:ae:44:43:03:33:ec:0c:40:5b:00:9b:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 19 11:11:13 2025 GMT Not After : Nov 23 23:59:59 2025 GMT Subject: serialNumber=d46d810dad5be9b90d6008bdd09557e67f5e1aaec20c1ac0a261204808cd8179, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:56:8a:52:ea:3c:0a:dc:93:04:21:47:f6:f5: 2c:21:e3:e6:01:b4:82:e4:78:6a:84:96:05:37:0c: 6b:ef:b3:9d:c8:4f:12:ba:00:89:1f:47:7c:c4:aa: ea:2d:ee:1e:7f:3c:0e:4c:10:68:b7:7a:e0:a9:91: ee:85:77:39:73:cd:c7:39:e0:44:eb:3e:d1:8e:d2: 35:dd:62:f1:47:9a:75:fb:8a:cd:30:e6:9a:97:37: 4f:63:47:74:93:91:40:65:23:1e:0a:9e:b8:91:e7: 04:57:f1:12:13:e2:c8:3d:e5:f8:31:21:21:fa:43: b8:83:9a:5e:cf:3f:5d:6d:91:96:c6:49:09:c5:d6: 10:1b:db:17:fa:e0:8f:6c:4e:7b:a2:ba:c1:45:9f: 13:4f:9c:84:8c:a0:c9:52:44:3a:72:b8:ba:32:5a: 56:d1:20:38:42:c2:a6:06:f3:fa:00:02:7a:17:a6: 74:7d:bb:19:b5:f1:27:a2:cf:0a:4e:10:ba:34:88: ff:87:e6:ad:96:01:ac:95:73:49:67:0b:b8:f1:e0: 6a:ba:c6:d2:f4:04:9d:da:5f:a4:35:40:ac:42:3a: 96:a6:4d:a0:a4:4c:c0:13:7a:78:ce:0d:36:53:0c: 3d:8c:73:46:51:3e:b6:03:89:c4:e0:5a:aa:48:f3: d3:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:28:AC:97:6A:41:52:42:68:C2:CD:F6:07:E8:CB:D7:27:23:BF:56 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/cf2d7f93-ee41-4b8a-924d-7d43f5feb2be.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.226.208.0/21 Signature Algorithm: sha256WithRSAEncryption 2c:f2:06:62:a4:89:5a:fe:c6:9b:0e:88:d2:43:c2:79:00:f9: b4:af:80:8a:d0:93:1d:de:9e:e1:e9:b8:42:4f:34:63:62:65: 73:cf:19:32:34:68:ba:47:a0:75:46:81:3f:52:ba:7d:39:9e: 74:69:14:c9:fa:67:1b:1b:4c:39:fc:30:6c:a8:5b:dd:ce:a8: 9e:43:2f:3e:43:07:2b:fc:60:b8:19:a6:e6:97:4b:a2:49:be: e6:56:3f:b7:69:a4:a3:36:d4:25:2c:ce:2c:69:95:6e:53:32: ac:9a:58:a4:d8:ef:a9:af:7f:f2:29:93:3f:ae:31:9d:e9:87: 2a:38:b6:46:99:af:5e:90:f6:0a:59:01:17:d0:b7:8e:c7:19: cb:5f:34:b1:64:ee:9d:a9:8e:68:a0:df:71:59:2b:47:ab:52: c9:58:b8:2f:b7:bb:c8:24:c5:e5:00:26:38:32:51:1c:57:0a: bf:2a:33:11:55:7f:c7:dc:c9:ad:79:59:3e:22:d9:6c:27:d8: 01:3b:5e:1c:5f:d7:2c:74:fc:75:10:7c:59:dd:dc:fe:bc:82: 4a:3d:98:56:44:66:20:ad:68:80:de:cb:93:e7:fc:12:5b:6b: 8c:9b:d2:97:b1:1d:14:ce:06:43:c8:5b:45:3b:de:c4:0b:dd: 06:7c:34:1c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXhkxFNC5DmKuREMDM+wMQFsAmy0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE5MTExMTEzWhcNMjUxMTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BkNDZkODEwZGFkNWJlOWI5MGQ2MDA4YmRkMDk1NTdlNjdm NWUxYWFlYzIwYzFhYzBhMjYxMjA0ODA4Y2Q4MTc5MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIVopS6jwK3JMEIUf29Swh4+YBtILkeGqElgU3DGvvs53I TxK6AIkfR3zEquot7h5/PA5MEGi3euCpke6Fdzlzzcc54ETrPtGO0jXdYvFHmnX7 is0w5pqXN09jR3STkUBlIx4KnriR5wRX8RIT4sg95fgxISH6Q7iDml7PP11tkZbG SQnF1hAb2xf64I9sTnuiusFFnxNPnISMoMlSRDpyuLoyWlbRIDhCwqYG8/oAAnoX pnR9uxm18SeizwpOELo0iP+H5q2WAayVc0lnC7jx4Gq6xtL0BJ3aX6Q1QKxCOpam TaCkTMATenjODTZTDD2Mc0ZRPrYDicTgWqpI89MhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU/Sisl2pBUkJows32B+jL1ycjv1YwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2NmMmQ3ZjkzLWVlNDEtNGI4YS05MjRkLTdkNDNmNWZlYjJiZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMN4tAwDQYJKoZIhvcNAQELBQADggEBACzyBmKkiVr+xpsOiNJDwnkA+bSv gIrQkx3enuHpuEJPNGNiZXPPGTI0aLpHoHVGgT9Sun05nnRpFMn6ZxsbTDn8MGyo W93OqJ5DLz5DByv8YLgZpuaXS6JJvuZWP7dppKM21CUszixplW5TMqyaWKTY76mv f/Ipkz+uMZ3phyo4tkaZr16Q9gpZARfQt47HGctfNLFk7p2pjmig33FZK0erUslY uC+3u8gkxeUAJjgyURxXCr8qMxFVf8fcya15WT4i2Wwn2AE7Xhxf1yx0/HUQfFnd 3P68gko9mFZEZiCtaIDey5Pn/BJba4yb0pexHRTOBkPIW0U73sQL3QZ8NBw= -----END CERTIFICATE-----Generated at Mon Oct 20 19:16:22 2025 by rpki-client