$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/591d659e-61c5-42c8-876e-4dd35852d25a.roa File: 591d659e-61c5-42c8-876e-4dd35852d25a.roa (raw, json) Hash identifier: kdJu+glAi/y16+b/MPlZULuLoRJh45UbFg9M3PyQliI= Subject key identifier: CE:97:BF:6D:F7:38:D6:64:48:02:DE:D4:FD:97:6A:BE:27:3C:E5:71 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 2992B6A2512E420363D78C4FDAD2A501150DD4AC Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/591d659e-61c5-42c8-876e-4dd35852d25a.roa Signing time: Sat 01 Nov 2025 01:20:06 +0000 ROA not before: Sat 01 Nov 2025 01:20:06 +0000 ROA not after: Sat 06 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.208.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:92:b6:a2:51:2e:42:03:63:d7:8c:4f:da:d2:a5:01:15:0d:d4:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Nov 1 01:20:06 2025 GMT Not After : Dec 6 23:59:59 2025 GMT Subject: serialNumber=e2b70f5568ea03695805c2ed32868b946fccc6affd5b84309051ab0fc51a60b5, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:f5:d2:75:1d:b6:8a:23:0a:8a:52:f6:32:99: c3:e6:fd:c7:59:0e:55:2b:84:cb:fa:eb:8c:6d:4d: de:89:3f:a5:d7:23:72:14:17:8a:12:69:48:22:3a: 87:a0:ee:4e:ed:58:55:38:5f:1a:46:66:a9:79:82: bb:99:91:b4:bf:d5:20:bf:45:f2:78:49:ee:e6:28: 4d:37:0f:7d:1b:7a:ad:b8:2a:2a:2a:ee:98:73:13: 71:f4:2a:84:45:c0:91:aa:3f:e8:71:33:f0:af:4f: 48:b6:5c:52:a3:a2:18:5c:fe:6a:55:c2:0f:53:78: 59:20:19:79:19:6a:0d:93:88:3e:e8:d5:79:f2:66: 09:cc:ac:4e:79:07:8d:b5:11:07:a4:f0:fb:20:5f: dd:04:44:6c:7f:18:74:b1:f9:dd:0e:e5:3a:ec:03: ab:8e:16:43:f3:26:5c:df:9d:53:2d:92:9a:ea:bf: a6:fc:72:20:ce:1d:97:40:a2:47:fc:10:f7:76:a6: 16:74:ac:34:1b:2c:09:0c:7f:59:c6:04:b0:42:93: fd:fb:4e:b2:02:ee:ac:a3:8d:d1:aa:ae:dc:7b:9f: f7:1e:98:6a:fd:01:90:06:99:1e:7f:7f:62:f7:04: 51:c9:45:7d:51:da:60:e4:71:2e:ab:ae:ee:9d:23: 19:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:97:BF:6D:F7:38:D6:64:48:02:DE:D4:FD:97:6A:BE:27:3C:E5:71 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/591d659e-61c5-42c8-876e-4dd35852d25a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.208.128.0/17 Signature Algorithm: sha256WithRSAEncryption a8:79:4e:b5:01:97:51:35:a7:e3:c6:32:9e:32:0b:fa:35:d9: b9:4b:6d:ed:1c:7f:ad:87:58:54:07:6e:64:1f:6a:b8:42:2d: e8:9c:ae:96:b9:7e:ff:67:72:a3:ce:e9:9a:b7:8f:36:90:70: e2:c7:3c:1d:dc:c5:ce:8e:2c:23:67:3b:fa:a6:10:c9:30:c1: 29:51:94:f5:b9:da:cf:8a:e6:e9:c6:b8:35:43:78:51:e2:83: 1a:0e:94:24:73:69:93:8c:97:10:51:42:8e:d0:35:27:8b:17: ea:04:78:1e:f3:00:94:8d:0f:78:65:0f:1e:41:29:c9:50:8d: 8b:6b:19:d6:c6:ae:21:08:76:2e:07:41:3f:f4:2a:2c:22:fb: aa:07:39:c8:73:c6:6b:a0:05:fe:98:b5:20:80:2c:58:72:a1: a6:6f:55:25:51:fe:97:c0:58:44:6e:7d:90:4b:84:98:c6:18: ed:2a:81:cf:d2:a3:a0:e2:7b:d0:d2:06:99:4e:a3:8d:15:e6: 2f:dc:7c:67:42:f8:cd:fa:42:24:24:e2:53:2f:ab:90:b9:06: 4a:33:03:bf:7c:f0:6e:76:de:70:2f:44:75:c5:c8:6c:81:b2: a5:42:dd:8f:23:2d:d4:53:0c:c7:50:d1:cc:f6:6a:a4:3b:b8: 59:13:58:6b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKZK2olEuQgNj14xP2tKlARUN1KwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMTAxMDEyMDA2WhcNMjUxMjA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BlMmI3MGY1NTY4ZWEwMzY5NTgwNWMyZWQzMjg2OGI5NDZm Y2NjNmFmZmQ1Yjg0MzA5MDUxYWIwZmM1MWE2MGI1MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDz9dJ1HbaKIwqKUvYymcPm/cdZDlUrhMv664xtTd6JP6XX I3IUF4oSaUgiOoeg7k7tWFU4XxpGZql5gruZkbS/1SC/RfJ4Se7mKE03D30beq24 Kioq7phzE3H0KoRFwJGqP+hxM/CvT0i2XFKjohhc/mpVwg9TeFkgGXkZag2TiD7o 1XnyZgnMrE55B421EQek8PsgX90ERGx/GHSx+d0O5TrsA6uOFkPzJlzfnVMtkprq v6b8ciDOHZdAokf8EPd2phZ0rDQbLAkMf1nGBLBCk/37TrIC7qyjjdGqrtx7n/ce mGr9AZAGmR5/f2L3BFHJRX1R2mDkcS6rru6dIxkxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUzpe/bfc41mRIAt7U/Zdqvic85XEwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzU5MWQ2NTllLTYxYzUtNDJjOC04NzZlLTRkZDM1ODUyZDI1YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcN0IAwDQYJKoZIhvcNAQELBQADggEBAKh5TrUBl1E1p+PGMp4yC/o12blL be0cf62HWFQHbmQfarhCLeicrpa5fv9ncqPO6Zq3jzaQcOLHPB3cxc6OLCNnO/qm EMkwwSlRlPW52s+K5unGuDVDeFHigxoOlCRzaZOMlxBRQo7QNSeLF+oEeB7zAJSN D3hlDx5BKclQjYtrGdbGriEIdi4HQT/0Kiwi+6oHOchzxmugBf6YtSCALFhyoaZv VSVR/pfAWERufZBLhJjGGO0qgc/So6Die9DSBplOo40V5i/cfGdC+M36QiQk4lMv q5C5BkozA7988G523nAvRHXFyGyBsqVC3Y8jLdRTDMdQ0cz2aqQ7uFkTWGs= -----END CERTIFICATE-----Generated at Wed Nov 5 01:47:05 2025 by rpki-client