$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/fe8cbfab-3150-44e8-b20f-de13abae11a8.roa File: fe8cbfab-3150-44e8-b20f-de13abae11a8.roa (raw, json) Hash identifier: +Oyn62l0aEnMP8Afrvt0WTq+Labv+k3voANyMEzk5/I= Subject key identifier: 2B:78:97:4F:53:6B:0C:16:38:25:33:3B:5C:60:B1:EE:9F:9E:A2:FD Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 35B3A47E42960DCBE22EF4EF04A69796C57DA460 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/fe8cbfab-3150-44e8-b20f-de13abae11a8.roa Signing time: Tue 07 Oct 2025 15:13:44 +0000 ROA not before: Tue 07 Oct 2025 15:13:44 +0000 ROA not after: Tue 11 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.124.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:b3:a4:7e:42:96:0d:cb:e2:2e:f4:ef:04:a6:97:96:c5:7d:a4:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 7 15:13:44 2025 GMT Not After : Nov 11 23:59:59 2025 GMT Subject: serialNumber=613cd8bd0036e356f77527144fbe4071a10f19da89de34c519ad5abf7e14ec39, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:9b:ab:9f:41:5b:08:a5:89:5c:ff:59:cc:2b: 09:7b:4b:d5:65:db:53:77:a8:7b:b9:74:e9:3a:96: d6:62:ea:d8:b8:1e:09:42:f8:cb:d6:bf:18:93:7a: e4:53:5e:59:2c:e2:7b:29:4c:1a:93:77:fa:0e:11: 8e:73:ea:f1:1d:d8:c5:94:80:93:28:b5:e6:97:9e: a8:b0:9d:d9:7a:7e:db:d3:6b:1d:c8:1f:72:21:04: ae:e6:95:43:6d:c4:8b:f3:ef:64:58:47:e6:be:b4: d2:f5:92:4e:b8:b3:74:4e:cd:33:24:2a:d0:7b:82: 0a:da:83:1e:b8:14:fe:64:c0:52:e8:c7:05:68:38: 4e:0f:1a:5d:87:37:e6:dd:d4:a0:b4:33:5e:16:0d: 00:32:38:68:9b:aa:10:d6:ad:dd:ee:f9:2a:d5:58: 03:8e:e0:58:bc:b7:6e:37:32:bc:65:10:b0:d8:84: 5a:e4:55:28:28:8b:1f:d7:15:34:7d:d7:59:c6:be: da:43:49:9e:ce:56:85:95:da:37:1a:a1:97:da:db: 64:e0:bd:12:d3:07:1f:5a:c4:b1:3d:6c:cf:cd:ac: 25:f2:7a:74:ae:4e:dc:02:bb:e9:0e:ed:66:72:f2: c6:43:1d:f6:85:5f:7c:e7:6a:e0:8c:b9:07:1f:26: f5:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:78:97:4F:53:6B:0C:16:38:25:33:3B:5C:60:B1:EE:9F:9E:A2:FD X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/fe8cbfab-3150-44e8-b20f-de13abae11a8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.124.128.0/18 Signature Algorithm: sha256WithRSAEncryption 42:6b:df:64:4c:aa:81:6a:a4:02:6a:69:a1:72:3a:a1:a8:2f: 83:b6:ca:6b:ff:81:43:5d:6d:39:79:7b:ab:fe:45:7d:2f:8a: 42:05:20:05:da:d9:29:1b:b6:fd:8c:d8:fa:8a:3f:58:71:82: 81:ea:cf:97:26:f6:ad:5c:e3:40:1b:be:37:05:b8:d7:45:7f: 9e:8b:69:65:d6:b2:70:d5:08:08:33:0b:58:a8:eb:53:f6:80: ba:28:69:76:df:b9:d5:f4:fb:32:fd:bd:64:17:47:5e:ee:e6: f4:02:0a:33:c6:35:a7:6a:81:ae:ab:e4:c9:8e:26:9c:25:4c: 8a:52:11:37:aa:23:aa:23:28:af:e1:e8:c2:cd:14:5d:5d:14: dc:2d:1d:1d:d5:a5:ce:0d:db:ae:41:be:ba:ee:a6:04:d7:4a: cc:ef:c1:78:da:2c:1d:a9:bf:9a:c2:71:3d:9b:03:65:a0:39: ec:64:b1:00:4c:90:75:fe:bb:31:ed:66:3e:47:b9:bb:f8:b6: 2e:4e:9d:0f:ad:45:c8:5d:61:f2:5e:61:fb:ef:d7:9a:53:13: 51:68:2c:97:e3:83:2b:9d:6a:c9:49:c1:76:01:41:0a:08:27: 88:a3:77:41:9e:22:82:2b:b3:1d:6d:05:91:85:b1:8d:29:89: 5f:fe:72:f5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNbOkfkKWDcviLvTvBKaXlsV9pGAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDA3MTUxMzQ0WhcNMjUxMTExMjM1OTU5 WjB6MUkwRwYDVQQFE0A2MTNjZDhiZDAwMzZlMzU2Zjc3NTI3MTQ0ZmJlNDA3MWEx MGYxOWRhODlkZTM0YzUxOWFkNWFiZjdlMTRlYzM5MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9m6ufQVsIpYlc/1nMKwl7S9Vl21N3qHu5dOk6ltZi6ti4 HglC+MvWvxiTeuRTXlks4nspTBqTd/oOEY5z6vEd2MWUgJMoteaXnqiwndl6ftvT ax3IH3IhBK7mlUNtxIvz72RYR+a+tNL1kk64s3ROzTMkKtB7ggragx64FP5kwFLo xwVoOE4PGl2HN+bd1KC0M14WDQAyOGibqhDWrd3u+SrVWAOO4Fi8t243MrxlELDY hFrkVSgoix/XFTR911nGvtpDSZ7OVoWV2jcaoZfa22TgvRLTBx9axLE9bM/NrCXy enSuTtwCu+kO7WZy8sZDHfaFX3znauCMuQcfJvVBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUK3iXT1NrDBY4JTM7XGCx7p+eov0wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2ZlOGNiZmFiLTMxNTAtNDRlOC1iMjBmLWRlMTNhYmFlMTFhOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYNfIAwDQYJKoZIhvcNAQELBQADggEBAEJr32RMqoFqpAJqaaFyOqGoL4O2 ymv/gUNdbTl5e6v+RX0vikIFIAXa2Skbtv2M2PqKP1hxgoHqz5cm9q1c40AbvjcF uNdFf56LaWXWsnDVCAgzC1io61P2gLooaXbfudX0+zL9vWQXR17u5vQCCjPGNadq ga6r5MmOJpwlTIpSETeqI6ojKK/h6MLNFF1dFNwtHR3Vpc4N265BvrrupgTXSszv wXjaLB2pv5rCcT2bA2WgOexksQBMkHX+uzHtZj5Hubv4ti5OnQ+tRchdYfJeYfvv 15pTE1FoLJfjgyudaslJwXYBQQoIJ4ijd0GeIoIrsx1tBZGFsY0piV/+cvU= -----END CERTIFICATE-----Generated at Mon Oct 20 03:03:54 2025 by rpki-client