$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/485009d1-d135-4106-a876-5dd2f923a157.roa File: 485009d1-d135-4106-a876-5dd2f923a157.roa (raw, json) Hash identifier: M+xJnsAndL6Fvlk7wyrEgsdO23PyKOMI8pTRhxEvAkw= Subject key identifier: B6:B3:78:6C:21:03:74:D4:C8:9C:50:0D:29:97:DD:A1:AE:41:87:78 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 02A99A83475ED5F89657F4887C4D92526CCAF064 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/485009d1-d135-4106-a876-5dd2f923a157.roa Signing time: Sat 01 Nov 2025 01:11:02 +0000 ROA not before: Sat 01 Nov 2025 01:11:02 +0000 ROA not after: Sat 06 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.210.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:a9:9a:83:47:5e:d5:f8:96:57:f4:88:7c:4d:92:52:6c:ca:f0:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Nov 1 01:11:02 2025 GMT Not After : Dec 6 23:59:59 2025 GMT Subject: serialNumber=319781887ceaf7639bbc42888aa3409b8751f71f3b67b591bb7468d1e4014714, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:43:fc:df:0e:30:c5:1a:bb:7e:b0:9f:34:5a: 98:48:2d:95:22:b0:a3:bb:1a:95:3c:49:92:02:5e: 5f:c6:c0:70:d6:69:89:43:1b:93:6b:1a:d0:e4:3c: 31:0e:20:92:62:7f:70:ae:cf:a3:ac:f5:0d:15:43: e3:4b:45:09:48:a2:c2:e5:8f:47:26:f5:e6:32:cc: 68:a8:f7:d1:56:f6:0c:1f:23:63:97:40:6c:7d:71: fb:34:ed:f3:05:53:4a:ff:1e:7f:bc:1f:c0:b3:5d: 02:fa:e5:ed:18:64:5a:85:11:49:53:8f:ff:0d:12: a5:f2:55:84:98:a7:67:1e:2c:fa:d8:0d:8a:8b:3e: 30:29:4e:c7:97:1b:ce:33:8a:61:1c:53:3b:8b:61: d6:5e:72:47:c6:8b:65:ca:f4:c3:42:b2:50:35:d8: e8:8d:22:43:47:9e:e2:9d:e0:ab:bf:ae:ed:66:a5: 74:f1:fa:61:7b:a9:63:e8:a0:f8:c0:bc:12:3d:b0: e8:49:bd:4f:d0:b7:09:15:05:c5:63:d8:86:95:34: e8:74:cc:39:86:5d:c2:9f:d5:c4:c7:92:53:30:be: 7d:a3:97:4d:00:e2:4d:ea:0f:c9:1b:76:c6:4a:fa: a1:10:9e:63:a4:96:64:ac:2f:37:c7:f5:a4:0f:5f: fe:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:B3:78:6C:21:03:74:D4:C8:9C:50:0D:29:97:DD:A1:AE:41:87:78 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/485009d1-d135-4106-a876-5dd2f923a157.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.210.0.0/15 Signature Algorithm: sha256WithRSAEncryption a9:5f:f1:f8:7a:ae:ae:84:0e:70:bf:3f:dc:7a:b8:d5:4e:43: 8f:29:0d:08:10:c5:b6:22:53:b4:02:fe:4a:b7:9d:7e:07:34: 5c:98:0c:bb:8b:75:d5:de:ba:55:6f:a5:12:18:aa:df:62:ea: b4:35:d5:38:15:73:80:9e:2f:85:8c:6f:85:be:9b:c9:51:94: 6c:48:80:7e:44:30:fc:b7:e8:7c:a2:cc:58:bb:8d:45:f6:c4: 86:62:cc:62:30:0c:01:94:3d:89:6f:6e:82:8e:17:f6:f4:28: da:71:4c:7e:a8:90:17:b2:a9:e9:55:5a:a0:3d:58:1b:c1:0e: bb:a5:3c:3d:1f:45:1b:88:85:4b:f4:a3:33:6d:4b:2b:43:11: 3c:23:3a:34:04:a9:cf:1b:05:69:66:bb:78:41:22:3b:8d:b0: f5:0b:4a:68:7f:8b:7a:a7:39:96:1e:7a:87:f8:d2:0e:18:92: 96:80:07:4b:9f:2d:6d:0b:77:64:d2:af:b2:0e:01:46:7c:d3: 87:89:55:c3:a4:e6:4c:36:fa:ec:52:0b:24:99:3d:2b:45:40: 2c:67:af:83:5f:77:d2:d8:c9:31:3c:04:2e:ba:35:30:25:db: 11:b0:bd:f5:fb:46:80:e5:e0:d9:3c:64:ca:87:f1:bd:7c:64: c1:65:98:f4 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUAqmag0de1fiWV/SIfE2SUmzK8GQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMTAxMDExMTAyWhcNMjUxMjA2MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMTk3ODE4ODdjZWFmNzYzOWJiYzQyODg4YWEzNDA5Yjg3 NTFmNzFmM2I2N2I1OTFiYjc0NjhkMWU0MDE0NzE0MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDVQ/zfDjDFGrt+sJ80WphILZUisKO7GpU8SZICXl/GwHDW aYlDG5NrGtDkPDEOIJJif3Cuz6Os9Q0VQ+NLRQlIosLlj0cm9eYyzGio99FW9gwf I2OXQGx9cfs07fMFU0r/Hn+8H8CzXQL65e0YZFqFEUlTj/8NEqXyVYSYp2ceLPrY DYqLPjApTseXG84zimEcUzuLYdZeckfGi2XK9MNCslA12OiNIkNHnuKd4Ku/ru1m pXTx+mF7qWPooPjAvBI9sOhJvU/QtwkVBcVj2IaVNOh0zDmGXcKf1cTHklMwvn2j l00A4k3qD8kbdsZK+qEQnmOklmSsLzfH9aQPX/4PAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUtrN4bCEDdNTInFANKZfdoa5Bh3gwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzQ4NTAwOWQxLWQxMzUtNDEwNi1hODc2LTVkZDJmOTIzYTE1Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEN0jANBgkqhkiG9w0BAQsFAAOCAQEAqV/x+HquroQOcL8/3Hq41U5DjykN CBDFtiJTtAL+Sredfgc0XJgMu4t11d66VW+lEhiq32LqtDXVOBVzgJ4vhYxvhb6b yVGUbEiAfkQw/LfofKLMWLuNRfbEhmLMYjAMAZQ9iW9ugo4X9vQo2nFMfqiQF7Kp 6VVaoD1YG8EOu6U8PR9FG4iFS/SjM21LK0MRPCM6NASpzxsFaWa7eEEiO42w9QtK aH+Leqc5lh56h/jSDhiSloAHS58tbQt3ZNKvsg4BRnzTh4lVw6TmTDb67FILJJk9 K0VALGevg1930tjJMTwELro1MCXbEbC99ftGgOXg2TxkyofxvXxkwWWY9A== -----END CERTIFICATE-----Generated at Wed Nov 5 01:56:21 2025 by rpki-client