$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/fb8ccba5-58a7-43ef-9cd3-3413318d5764.roa File: fb8ccba5-58a7-43ef-9cd3-3413318d5764.roa (raw, json) Hash identifier: OyilK4PUkX6CAqMtUsucZcjd+9LW1pYCgfXdB9qdFgM= Subject key identifier: 36:FA:7A:19:B0:F3:4A:A4:67:5E:37:4B:01:52:CB:F0:65:34:D2:CE Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 38B232309C4A68307CCAAE09EF294B5277B7B9A6 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/fb8ccba5-58a7-43ef-9cd3-3413318d5764.roa Signing time: Sun 19 Oct 2025 22:13:54 +0000 ROA not before: Sun 19 Oct 2025 22:13:54 +0000 ROA not after: Sun 23 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.227.172.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:b2:32:30:9c:4a:68:30:7c:ca:ae:09:ef:29:4b:52:77:b7:b9:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 19 22:13:54 2025 GMT Not After : Nov 23 23:59:59 2025 GMT Subject: serialNumber=085f7a9f4bb748a78686e7d9e9f0ee620596802a6e410259b1a65bc03f1b9b40, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:7f:69:dc:ed:f1:27:68:c3:e5:2b:6e:fd:7b: aa:5e:87:7f:a2:90:7d:d2:12:e5:80:fe:3d:6a:a9: 79:fa:a1:60:d0:99:dd:02:2e:3d:4a:7f:a9:9d:4e: 61:14:23:1d:f1:8f:5c:2e:5b:cb:bc:bf:97:7f:6f: fc:ff:c1:62:45:1b:a8:8c:99:d6:82:1a:42:02:38: 0e:66:e0:91:ae:fd:09:0d:5d:d5:ba:bd:74:b7:20: c7:c1:fa:b6:8d:e6:e5:b7:5d:b4:02:e1:55:60:b0: a3:f3:e8:43:54:8e:60:78:70:b6:12:fe:a3:92:a8: e8:44:1d:f9:8b:74:be:c2:fe:7f:1a:b1:f8:3c:12: 37:f9:6c:be:9f:e8:02:42:7a:c5:5b:5b:83:12:92: ba:7e:93:a3:d8:7d:80:8e:0a:b5:ee:03:f0:ab:53: 6f:ee:44:f0:f7:c1:f9:a4:fa:b5:79:5b:05:ba:2c: 39:aa:c8:68:45:ca:13:f1:c4:ed:50:d1:13:88:be: 05:8a:43:a2:0c:2f:23:74:ae:e6:e9:0e:a3:47:14: 1b:7b:a0:52:43:0a:43:7e:8f:75:4a:a2:b8:a9:a8: 70:bc:5b:5c:3b:f7:a0:09:0c:2f:b7:4a:1b:96:2d: e7:4a:e0:4e:6b:66:e9:a1:f4:65:f3:eb:1a:6a:83: 09:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:FA:7A:19:B0:F3:4A:A4:67:5E:37:4B:01:52:CB:F0:65:34:D2:CE X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/fb8ccba5-58a7-43ef-9cd3-3413318d5764.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.227.172.0/23 Signature Algorithm: sha256WithRSAEncryption 20:34:a1:4a:e5:a2:08:43:25:b2:ee:00:d2:47:5d:34:51:cb: bc:48:41:ba:be:e7:5a:2c:0e:ba:78:96:8a:76:16:0f:a6:5a: af:66:46:56:80:bf:1f:7f:f0:e6:ad:ed:f1:ca:94:e3:fc:25: 0e:e2:e8:22:cb:80:10:00:d4:1f:4c:24:a0:a8:4e:71:f0:9e: 64:70:20:e8:a6:00:4d:41:dc:2e:26:66:a1:4a:17:fb:52:3f: d9:b1:3c:08:3e:32:0c:05:72:cf:7b:ae:0a:20:b0:ea:6a:71: 00:0f:20:e1:86:b7:6a:b5:98:7c:55:d5:28:b1:82:43:50:5e: 52:bd:ff:fa:f3:d0:db:04:7a:fe:05:32:eb:35:23:ba:42:fe: 27:c6:00:93:a6:c2:99:9d:dc:87:3f:80:88:58:94:ba:15:85: be:46:bb:ac:82:c6:66:88:96:09:64:de:7b:94:99:78:cf:53: a1:ea:80:3c:88:1c:21:ce:a4:36:38:85:53:39:d3:c5:0f:aa: 9e:fd:06:aa:4a:4c:de:66:a8:26:da:65:c0:66:dd:11:a7:95: 8e:3b:13:1e:41:d5:28:91:d2:d3:35:48:ba:98:dd:42:34:e5: 42:28:71:1b:9c:5d:a9:48:1a:e7:86:33:e6:48:f9:85:8a:c2: 56:4e:1d:6c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOLIyMJxKaDB8yq4J7ylLUne3uaYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDE5MjIxMzU0WhcNMjUxMTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AwODVmN2E5ZjRiYjc0OGE3ODY4NmU3ZDllOWYwZWU2MjA1 OTY4MDJhNmU0MTAyNTliMWE2NWJjMDNmMWI5YjQwMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2f2nc7fEnaMPlK279e6peh3+ikH3SEuWA/j1qqXn6oWDQ md0CLj1Kf6mdTmEUIx3xj1wuW8u8v5d/b/z/wWJFG6iMmdaCGkICOA5m4JGu/QkN XdW6vXS3IMfB+raN5uW3XbQC4VVgsKPz6ENUjmB4cLYS/qOSqOhEHfmLdL7C/n8a sfg8Ejf5bL6f6AJCesVbW4MSkrp+k6PYfYCOCrXuA/CrU2/uRPD3wfmk+rV5WwW6 LDmqyGhFyhPxxO1Q0ROIvgWKQ6IMLyN0rubpDqNHFBt7oFJDCkN+j3VKoripqHC8 W1w796AJDC+3ShuWLedK4E5rZumh9GXz6xpqgwm3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUNvp6GbDzSqRnXjdLAVLL8GU00s4wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2ZiOGNjYmE1LTU4YTctNDNlZi05Y2QzLTM0MTMzMThkNTc2NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEN46wwDQYJKoZIhvcNAQELBQADggEBACA0oUrloghDJbLuANJHXTRRy7xI Qbq+51osDrp4lop2Fg+mWq9mRlaAvx9/8Oat7fHKlOP8JQ7i6CLLgBAA1B9MJKCo TnHwnmRwIOimAE1B3C4mZqFKF/tSP9mxPAg+MgwFcs97rgogsOpqcQAPIOGGt2q1 mHxV1SixgkNQXlK9//rz0NsEev4FMus1I7pC/ifGAJOmwpmd3Ic/gIhYlLoVhb5G u6yCxmaIlglk3nuUmXjPU6HqgDyIHCHOpDY4hVM508UPqp79BqpKTN5mqCbaZcBm 3RGnlY47Ex5B1SiR0tM1SLqY3UI05UIocRucXalIGueGM+ZI+YWKwlZOHWw= -----END CERTIFICATE-----Generated at Mon Oct 20 11:10:58 2025 by rpki-client