$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f6871b4f-70b6-4d48-9455-cff2212cda8a.roa File: f6871b4f-70b6-4d48-9455-cff2212cda8a.roa (raw, json) Hash identifier: hQx6jfL4s9HS4pOy8gKhbUqTNBKiroTddH5kBBTbIAc= Subject key identifier: EF:10:5D:76:0D:30:2A:BD:63:16:D0:09:38:AE:2B:61:E5:BE:78:00 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 1EE8E7E70A9A913D9CE7D2CC588ABE6E5BF634C9 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f6871b4f-70b6-4d48-9455-cff2212cda8a.roa Signing time: Sun 19 Oct 2025 23:23:39 +0000 ROA not before: Sun 19 Oct 2025 23:23:39 +0000 ROA not after: Sun 23 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.35.178.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:e8:e7:e7:0a:9a:91:3d:9c:e7:d2:cc:58:8a:be:6e:5b:f6:34:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 19 23:23:39 2025 GMT Not After : Nov 23 23:59:59 2025 GMT Subject: serialNumber=bcf5273588f064a74201b0a258989ba8eea6d37b2e666e3454d3ce654885e0ea, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:91:19:85:c9:87:c8:74:51:9c:89:47:58:7f: 56:ba:a1:16:06:a9:f9:85:76:cc:35:7d:e3:88:3a: c9:32:dd:9e:8b:d5:84:41:9a:ff:09:06:4c:c2:74: e4:e1:a0:86:08:b5:01:0e:3c:16:20:7a:f9:db:06: 07:ee:0b:82:20:55:b3:6f:47:d5:a3:92:fb:64:c5: ba:3d:19:18:39:99:ea:41:a1:7d:37:ac:be:46:1b: 69:96:8f:2a:cc:b4:a5:26:2a:0b:0f:8f:99:5a:d1: e8:04:8f:28:22:af:d9:2e:ba:14:1c:6d:f5:ac:cc: a0:73:f8:4e:9a:11:9f:52:21:07:58:4b:ef:b1:39: 1e:b5:4b:4b:e6:ba:97:dd:60:6f:2c:d8:88:fd:d9: 65:3f:88:16:9f:96:d5:31:cc:60:33:fe:f4:60:7a: 55:a0:5e:64:f1:c4:1a:6f:0b:65:f9:cb:8d:6f:b8: c4:db:be:44:35:9b:3a:ae:ef:d7:e2:3c:56:bc:84: 98:2a:78:43:56:77:8c:94:10:72:dc:71:87:52:83: 54:52:ec:f6:58:b9:5f:66:51:60:52:4b:c6:b1:23: d1:fa:7f:d9:25:c7:62:31:c5:53:9f:ba:e3:0b:88: 79:bb:a6:fe:30:f4:5f:4e:6f:ab:e7:55:d8:cd:a5: 72:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:10:5D:76:0D:30:2A:BD:63:16:D0:09:38:AE:2B:61:E5:BE:78:00 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f6871b4f-70b6-4d48-9455-cff2212cda8a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.35.178.0/23 Signature Algorithm: sha256WithRSAEncryption 76:e2:24:28:11:3b:4e:45:40:83:61:c1:79:36:5f:23:8d:60: a6:2a:60:6e:d9:d5:01:1e:66:bc:c8:59:87:94:58:33:2f:ba: 59:24:60:a3:0d:5e:3c:93:23:b7:97:cf:54:ec:99:62:1b:e9: 06:36:92:3a:02:98:73:d9:af:e3:79:8d:8b:73:9c:ef:63:8a: 48:a9:d7:42:1e:94:7d:ee:ec:14:84:04:e1:29:57:c2:2b:79: 1f:39:66:ad:a4:4d:34:bc:f4:92:5a:c1:87:f6:57:34:14:85: 37:bd:7a:09:a7:7b:7d:1c:0d:50:ec:69:4b:39:f6:ee:28:75: 8d:b2:8a:a2:90:a3:dd:6a:a1:8d:e7:0c:d8:2b:98:9d:81:f2: 31:9c:04:df:cb:a4:90:81:68:ca:ba:ac:ba:9c:01:01:b5:87: 30:21:2c:92:bf:63:ef:b6:49:c6:92:ef:9e:8c:40:a1:a3:67: 84:e3:28:1b:7b:89:80:c9:e4:f4:e3:d3:d7:94:14:14:af:06: e9:d6:09:e9:bc:b9:a5:fa:b3:a7:a6:16:f1:7c:e0:a8:35:a2: 07:6b:a2:7d:53:ff:1a:0e:8b:bf:34:96:df:a0:ad:50:18:82: c1:04:fe:a4:5c:9f:ee:ee:bb:b2:1f:64:50:0c:9c:8d:8e:0c: 2e:58:9f:57 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHujn5wqakT2c59LMWIq+blv2NMkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE5MjMyMzM5WhcNMjUxMTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BiY2Y1MjczNTg4ZjA2NGE3NDIwMWIwYTI1ODk4OWJhOGVl YTZkMzdiMmU2NjZlMzQ1NGQzY2U2NTQ4ODVlMGVhMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCMkRmFyYfIdFGciUdYf1a6oRYGqfmFdsw1feOIOsky3Z6L 1YRBmv8JBkzCdOThoIYItQEOPBYgevnbBgfuC4IgVbNvR9Wjkvtkxbo9GRg5mepB oX03rL5GG2mWjyrMtKUmKgsPj5la0egEjygir9kuuhQcbfWszKBz+E6aEZ9SIQdY S++xOR61S0vmupfdYG8s2Ij92WU/iBafltUxzGAz/vRgelWgXmTxxBpvC2X5y41v uMTbvkQ1mzqu79fiPFa8hJgqeENWd4yUEHLccYdSg1RS7PZYuV9mUWBSS8axI9H6 f9klx2IxxVOfuuMLiHm7pv4w9F9Ob6vnVdjNpXJnAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU7xBddg0wKr1jFtAJOK4rYeW+eAAwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2Y2ODcxYjRmLTcwYjYtNGQ0OC05NDU1LWNmZjIyMTJjZGE4YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAENI7IwDQYJKoZIhvcNAQELBQADggEBAHbiJCgRO05FQINhwXk2XyONYKYq YG7Z1QEeZrzIWYeUWDMvulkkYKMNXjyTI7eXz1TsmWIb6QY2kjoCmHPZr+N5jYtz nO9jikip10IelH3u7BSEBOEpV8IreR85Zq2kTTS89JJawYf2VzQUhTe9egmne30c DVDsaUs59u4odY2yiqKQo91qoY3nDNgrmJ2B8jGcBN/LpJCBaMq6rLqcAQG1hzAh LJK/Y++2ScaS756MQKGjZ4TjKBt7iYDJ5PTj09eUFBSvBunWCem8uaX6s6emFvF8 4Kg1ogdron1T/xoOi780lt+grVAYgsEE/qRcn+7uu7IfZFAMnI2ODC5Yn1c= -----END CERTIFICATE-----Generated at Mon Oct 20 18:12:13 2025 by rpki-client