$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a38ba82d-a5d0-4328-93af-0f3ff10fdd1c.roa File: a38ba82d-a5d0-4328-93af-0f3ff10fdd1c.roa (raw, json) Hash identifier: fZVIUoCoH5nIJq3ZMCIXC6R28SYNzefPDSMjoOo4q+E= Subject key identifier: C9:C2:CE:28:55:0F:F2:C1:20:EF:A4:38:73:B5:24:11:CF:98:54:B8 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 0516B6F9755BC1B784B2CEB8387B1FBA0A686DE6 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a38ba82d-a5d0-4328-93af-0f3ff10fdd1c.roa Signing time: Mon 27 Oct 2025 16:06:55 +0000 ROA not before: Mon 27 Oct 2025 16:06:55 +0000 ROA not after: Mon 01 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.32.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:16:b6:f9:75:5b:c1:b7:84:b2:ce:b8:38:7b:1f:ba:0a:68:6d:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 27 16:06:55 2025 GMT Not After : Dec 1 23:59:59 2025 GMT Subject: serialNumber=1405689c657d4b473b64f31817cd2aa63afbb77731d73843680b6b17f4efd882, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:77:ac:9d:a1:d5:99:73:4d:74:98:96:52:d6: 98:61:d5:7b:36:0f:74:a1:a2:76:3c:ab:c4:72:63: 74:a9:7a:49:90:03:89:38:69:c0:d1:1b:b0:a7:72: 84:4b:86:19:07:25:f0:11:14:09:a3:42:d3:a4:b0: 2c:0d:27:f9:20:8a:07:15:26:fd:8d:2f:97:73:53: 35:dc:5a:dd:9a:2e:54:84:a1:cc:cd:4e:88:da:54: 55:55:79:01:1a:eb:97:a8:f1:46:b8:98:89:d9:01: 0a:e1:ba:35:5c:45:e5:68:84:27:b6:31:5e:3e:5d: 87:8c:1f:44:a9:22:82:80:96:7b:a9:25:52:71:a3: 06:e1:37:e3:27:76:bd:e8:f6:a3:9d:ba:78:eb:fd: cc:66:c8:67:e1:b4:2a:f5:6b:e8:cd:d0:96:4d:56: e5:f3:9f:e7:a1:77:b2:04:70:4b:61:9c:6b:ff:24: 78:77:17:ba:a4:02:29:ce:de:13:55:e2:41:67:bd: b2:62:38:c9:a0:88:74:31:f2:dc:2c:f5:16:a0:96: 78:d5:bd:13:61:f3:6a:ea:d2:b4:60:75:c1:5b:8c: 94:34:ae:a3:eb:cb:55:59:50:ae:1a:65:c8:fa:9f: ca:f7:83:25:05:66:3f:a7:e4:24:9e:b2:49:34:0d: e4:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:C2:CE:28:55:0F:F2:C1:20:EF:A4:38:73:B5:24:11:CF:98:54:B8 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a38ba82d-a5d0-4328-93af-0f3ff10fdd1c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.32.0.0/18 Signature Algorithm: sha256WithRSAEncryption 63:28:ba:be:e6:4f:91:e7:c0:72:e3:2f:19:90:0e:c3:22:7b: 41:7d:70:16:1c:e9:3b:40:cc:05:af:76:76:92:ee:59:55:c2: 8a:0a:be:b6:3d:97:f8:d8:82:da:9b:24:68:45:fc:76:24:2c: 27:ed:96:62:ea:68:0a:e8:54:dc:24:26:d3:cc:73:16:df:16: 0e:4e:5b:54:9d:c4:92:93:48:12:42:df:c2:2c:d5:70:6f:2f: cb:60:56:77:c5:b5:e1:15:9e:b6:60:be:48:9a:f2:b9:4a:e6: cb:69:6b:05:18:54:b7:be:59:b1:bf:2b:7f:05:2f:3c:ed:eb: c0:5a:76:77:70:f1:0a:4c:a1:11:12:0f:db:35:cc:91:dd:71: 61:d5:28:ff:51:6a:ae:b1:61:0f:c1:5c:d7:66:d1:27:72:bb: a0:33:c5:77:c1:c7:68:74:ab:35:0f:69:a3:dd:7b:f8:58:16: 79:2f:68:9e:26:d7:16:00:65:55:e4:93:8e:fb:9e:5f:88:44: 6f:5d:f0:66:3a:4e:cc:fb:63:b5:63:5b:c0:13:6b:ba:7c:2a: c2:9f:ed:ef:74:f6:c1:23:fb:dd:9f:d5:f8:f2:fb:65:a8:c9: 26:6e:f8:0d:45:3b:f7:de:64:cb:53:28:6f:77:57:3b:a4:4f: e2:8f:6c:d5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBRa2+XVbwbeEss64OHsfugpobeYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDI3MTYwNjU1WhcNMjUxMjAxMjM1OTU5 WjB6MUkwRwYDVQQFE0AxNDA1Njg5YzY1N2Q0YjQ3M2I2NGYzMTgxN2NkMmFhNjNh ZmJiNzc3MzFkNzM4NDM2ODBiNmIxN2Y0ZWZkODgyMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCPd6ydodWZc010mJZS1phh1Xs2D3ShonY8q8RyY3SpekmQ A4k4acDRG7CncoRLhhkHJfARFAmjQtOksCwNJ/kgigcVJv2NL5dzUzXcWt2aLlSE oczNTojaVFVVeQEa65eo8Ua4mInZAQrhujVcReVohCe2MV4+XYeMH0SpIoKAlnup JVJxowbhN+Mndr3o9qOdunjr/cxmyGfhtCr1a+jN0JZNVuXzn+ehd7IEcEthnGv/ JHh3F7qkAinO3hNV4kFnvbJiOMmgiHQx8tws9RaglnjVvRNh82rq0rRgdcFbjJQ0 rqPry1VZUK4aZcj6n8r3gyUFZj+n5CSeskk0DeRfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUycLOKFUP8sEg76Q4c7UkEc+YVLgwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2EzOGJhODJkLWE1ZDAtNDMyOC05M2FmLTBmM2ZmMTBmZGQxYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYNIAAwDQYJKoZIhvcNAQELBQADggEBAGMour7mT5HnwHLjLxmQDsMie0F9 cBYc6TtAzAWvdnaS7llVwooKvrY9l/jYgtqbJGhF/HYkLCftlmLqaAroVNwkJtPM cxbfFg5OW1SdxJKTSBJC38Is1XBvL8tgVnfFteEVnrZgvkia8rlK5stpawUYVLe+ WbG/K38FLzzt68Badndw8QpMoRESD9s1zJHdcWHVKP9Raq6xYQ/BXNdm0Sdyu6Az xXfBx2h0qzUPaaPde/hYFnkvaJ4m1xYAZVXkk477nl+IRG9d8GY6Tsz7Y7VjW8AT a7p8KsKf7e909sEj+92f1fjy+2WoySZu+A1FO/feZMtTKG93VzukT+KPbNU= -----END CERTIFICATE-----Generated at Wed Nov 5 08:43:27 2025 by rpki-client