$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/e44250bb-888f-4b56-808b-0fb22c8590f2.roa File: e44250bb-888f-4b56-808b-0fb22c8590f2.roa (raw, json) Hash identifier: TFGQYACqTNOtG3Yt9Xr19JBQ2C0f3Y11Pko28eQ22Xc= Subject key identifier: 49:58:E8:2F:51:9E:19:62:7A:CC:4C:15:82:6D:7B:FD:04:1F:33:2C Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 4DB51FBE2E75C9DBC7AB3C54C4581C5AC086979A Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/e44250bb-888f-4b56-808b-0fb22c8590f2.roa Signing time: Sun 19 Oct 2025 15:53:28 +0000 ROA not before: Sun 19 Oct 2025 15:53:28 +0000 ROA not after: Sun 23 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.227.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:b5:1f:be:2e:75:c9:db:c7:ab:3c:54:c4:58:1c:5a:c0:86:97:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 19 15:53:28 2025 GMT Not After : Nov 23 23:59:59 2025 GMT Subject: serialNumber=1416dc5b019ba7995c3006491a91227f502e6d03e8e64783c4576a3c80c187f8, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:66:33:b3:94:a1:7d:db:ae:3f:05:97:37:b2: 16:43:84:86:74:a3:cf:ad:18:fb:99:7b:51:f6:72: 90:bb:c8:17:bb:a5:8e:f5:51:dc:0e:f2:f0:b2:14: 6c:4c:7f:fd:d7:2e:10:41:c3:96:7d:c0:c0:a3:82: 8f:58:30:91:9e:a9:cb:c3:2d:c8:a9:e5:a4:ee:04: ad:7d:4d:fb:11:4a:37:44:3f:9a:f9:23:6f:56:8a: a8:c7:4d:a9:77:7e:8d:d7:8e:0a:1f:cb:e2:76:5a: 41:21:89:01:04:be:41:2b:3f:96:25:15:2e:ee:4b: 6f:e7:6e:13:a2:19:1f:6a:6c:25:52:82:12:a5:ea: e4:11:56:04:28:1b:5c:86:d7:de:8a:3d:ee:57:1e: e7:9f:ac:1b:1a:17:ee:de:ad:f2:6e:87:38:27:f2: ba:16:8c:fa:32:f4:15:1b:ea:94:e8:3d:5a:b1:5f: ef:56:77:28:3f:78:e5:43:23:0e:43:50:36:00:eb: be:6c:97:bb:3c:5f:31:cf:e8:32:fe:a6:b1:fb:23: f1:4f:dc:7c:32:e9:36:47:72:0e:e3:7d:91:71:f6: e2:61:e8:b6:88:31:f1:d7:97:69:46:3b:5a:c9:e2: 65:b4:53:6e:f2:06:22:da:61:5a:38:53:46:32:ba: c1:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:58:E8:2F:51:9E:19:62:7A:CC:4C:15:82:6D:7B:FD:04:1F:33:2C X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/e44250bb-888f-4b56-808b-0fb22c8590f2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.227.23.0/24 Signature Algorithm: sha256WithRSAEncryption 8b:0e:0b:9d:e1:e9:46:fb:fb:03:39:12:24:a5:ee:1a:66:45: 3d:3d:8b:65:0d:e9:75:02:ec:10:f0:c2:07:69:12:32:01:d2: b0:2e:e8:a9:93:d3:9e:fd:ac:1a:a8:02:21:5d:84:4c:95:03: db:96:8e:bc:9c:bf:f9:82:0a:3b:bd:9d:7a:78:bb:a5:31:c8: ed:da:0f:fb:8a:0a:9c:96:f2:ea:51:08:cd:9f:0a:56:8f:89: bf:25:ff:d3:50:f8:c2:2a:7d:33:cf:51:3f:40:8a:b6:7f:c3: 3e:b0:a9:17:58:61:0a:53:29:4d:22:a5:ec:ab:c3:a1:9c:4a: e8:ce:8a:37:1b:77:c7:14:12:c3:d3:db:db:8d:08:cd:9c:9d: 7c:23:e6:f5:00:f7:58:f1:10:40:72:1b:b7:d4:d7:df:7a:b2: fe:0c:6e:8e:35:d5:e4:8d:58:f5:83:60:41:1f:aa:f4:c4:e4: bc:1d:e3:b7:03:c1:cb:e8:c9:d2:86:a4:b0:4e:f2:52:b0:84: 67:0e:3e:ce:aa:83:23:c1:1e:73:43:b0:43:07:9a:73:d7:ae: f6:f9:4c:11:5d:1d:c9:ae:dd:54:13:d3:35:04:36:05:b8:4d: 8e:d5:db:0a:44:0e:fc:40:99:d2:f9:27:bb:6f:88:e3:93:92: 04:a4:d6:d2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTbUfvi51ydvHqzxUxFgcWsCGl5owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE5MTU1MzI4WhcNMjUxMTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AxNDE2ZGM1YjAxOWJhNzk5NWMzMDA2NDkxYTkxMjI3ZjUw MmU2ZDAzZThlNjQ3ODNjNDU3NmEzYzgwYzE4N2Y4MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPZjOzlKF9264/BZc3shZDhIZ0o8+tGPuZe1H2cpC7yBe7 pY71UdwO8vCyFGxMf/3XLhBBw5Z9wMCjgo9YMJGeqcvDLcip5aTuBK19TfsRSjdE P5r5I29WiqjHTal3fo3Xjgofy+J2WkEhiQEEvkErP5YlFS7uS2/nbhOiGR9qbCVS ghKl6uQRVgQoG1yG196KPe5XHuefrBsaF+7erfJuhzgn8roWjPoy9BUb6pToPVqx X+9Wdyg/eOVDIw5DUDYA675sl7s8XzHP6DL+prH7I/FP3Hwy6TZHcg7jfZFx9uJh 6LaIMfHXl2lGO1rJ4mW0U27yBiLaYVo4U0YyusH/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUSVjoL1GeGWJ6zEwVgm17/QQfMywwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2U0NDI1MGJiLTg4OGYtNGI1Ni04MDhiLTBmYjIyYzg1OTBmMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAN4xcwDQYJKoZIhvcNAQELBQADggEBAIsOC53h6Ub7+wM5EiSl7hpmRT09 i2UN6XUC7BDwwgdpEjIB0rAu6KmT0579rBqoAiFdhEyVA9uWjrycv/mCCju9nXp4 u6UxyO3aD/uKCpyW8upRCM2fClaPib8l/9NQ+MIqfTPPUT9AirZ/wz6wqRdYYQpT KU0ipeyrw6GcSujOijcbd8cUEsPT29uNCM2cnXwj5vUA91jxEEByG7fU1996sv4M bo411eSNWPWDYEEfqvTE5Lwd47cDwcvoydKGpLBO8lKwhGcOPs6qgyPBHnNDsEMH mnPXrvb5TBFdHcmu3VQT0zUENgW4TY7V2wpEDvxAmdL5J7tviOOTkgSk1tI= -----END CERTIFICATE-----Generated at Mon Oct 20 21:11:34 2025 by rpki-client