$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d05d1ed6-0d98-42b2-8bd6-0ad727ddd58f.roa File: d05d1ed6-0d98-42b2-8bd6-0ad727ddd58f.roa (raw, json) Hash identifier: UQJonuY7kovTZaT8AKXnHW3SQcsYgFjtGJbqJcu9H+U= Subject key identifier: F5:AD:45:40:25:EF:87:57:E4:91:EC:07:BF:0D:CF:B5:A0:C0:E0:99 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 01771CAE1E29F8559B9E3410D5F5F07B67609A83 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d05d1ed6-0d98-42b2-8bd6-0ad727ddd58f.roa Signing time: Sat 01 Nov 2025 01:00:42 +0000 ROA not before: Sat 01 Nov 2025 01:00:42 +0000 ROA not after: Sat 06 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.53.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:77:1c:ae:1e:29:f8:55:9b:9e:34:10:d5:f5:f0:7b:67:60:9a:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Nov 1 01:00:42 2025 GMT Not After : Dec 6 23:59:59 2025 GMT Subject: serialNumber=17c324580d241a8ac0dc20138ced8df8e580aa6261eea1e8945c107990e502f7, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:78:16:74:5a:91:5d:86:61:37:b2:d8:fa:ee: 67:40:60:b9:12:ea:2e:8a:7f:6f:8d:e4:7c:a3:58: 12:52:8c:13:e5:d6:bc:56:8b:45:d1:59:67:44:b8: 06:3a:ef:2c:53:af:d6:73:49:21:35:c7:84:80:a6: 92:ce:6a:fd:99:c8:3d:d7:cc:fa:5e:68:ac:5d:3d: c0:ca:ba:1b:58:25:31:01:30:81:eb:64:a2:55:62: 7d:4e:2c:1e:13:4d:f7:45:e2:d1:be:fe:13:98:51: 7c:f4:fc:8f:a5:ed:cb:30:c9:97:74:c5:50:1b:7e: 86:34:1a:1d:ba:e0:19:10:cb:d5:55:e4:fa:01:b8: e4:54:68:43:b5:35:35:0f:92:72:97:5b:b7:79:7c: bb:09:31:eb:13:1a:a1:be:1e:6f:3d:d5:35:b6:af: 9f:fa:df:61:53:25:14:5d:f0:4c:c5:4d:bf:bf:91: 73:df:5b:72:65:76:7a:b7:e5:ef:d8:96:cb:d0:96: b1:25:a1:fb:eb:29:51:69:42:f3:64:d7:60:a8:a8: ef:48:d4:ee:0c:09:15:34:a4:24:f0:5d:37:30:11: 9e:78:08:8a:e2:d9:90:1d:09:49:d4:55:ab:8b:cc: dd:55:85:da:8c:1e:6f:b5:33:b0:9c:d6:35:38:3c: 41:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:AD:45:40:25:EF:87:57:E4:91:EC:07:BF:0D:CF:B5:A0:C0:E0:99 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d05d1ed6-0d98-42b2-8bd6-0ad727ddd58f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.53.128.0/17 Signature Algorithm: sha256WithRSAEncryption 86:65:e9:36:90:82:76:bf:16:f1:f4:03:91:61:bc:ec:6f:50: b0:94:68:0b:04:07:a5:cd:d5:d7:a8:16:40:7f:c2:85:47:9a: e2:6d:2d:7b:3e:cc:a5:26:54:6c:53:bc:69:d5:dd:bb:1e:94: c8:86:30:97:98:c3:f5:38:9b:29:60:c2:30:36:73:fc:82:dc: f3:bf:a1:f5:cd:4e:af:73:99:70:35:41:cd:0b:01:49:81:e4: 91:b5:4c:f2:73:4b:d9:d8:4b:50:6e:15:60:f4:dc:d8:55:61: 34:79:75:d4:7e:42:5e:74:46:38:2f:bd:5f:bf:2e:5c:fe:6a: f9:96:90:42:74:81:29:82:e5:e2:5c:c4:8b:ac:a6:0c:1d:36: 57:81:d4:78:68:04:ed:71:14:c5:27:bc:ed:61:4b:59:39:d8: ec:bb:8d:32:5c:91:6b:66:0e:fa:b1:4f:5d:b7:4a:db:80:f5: 5b:9f:54:47:ac:cd:f3:30:1f:3a:f5:25:80:bc:6a:65:20:9c: 55:f2:e2:94:c9:8e:29:74:ab:e0:64:8d:c7:02:74:b7:e6:43: e9:02:8b:62:8a:41:a9:2d:68:c7:36:2a:37:e3:9c:39:ae:18: af:7a:c1:85:f5:b1:ff:df:85:05:6e:f5:fe:4d:30:96:de:9e: ba:ad:e2:27 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAXccrh4p+FWbnjQQ1fXwe2dgmoMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMTAxMDEwMDQyWhcNMjUxMjA2MjM1OTU5 WjB6MUkwRwYDVQQFE0AxN2MzMjQ1ODBkMjQxYThhYzBkYzIwMTM4Y2VkOGRmOGU1 ODBhYTYyNjFlZWExZTg5NDVjMTA3OTkwZTUwMmY3MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDyeBZ0WpFdhmE3stj67mdAYLkS6i6Kf2+N5HyjWBJSjBPl 1rxWi0XRWWdEuAY67yxTr9ZzSSE1x4SAppLOav2ZyD3XzPpeaKxdPcDKuhtYJTEB MIHrZKJVYn1OLB4TTfdF4tG+/hOYUXz0/I+l7cswyZd0xVAbfoY0Gh264BkQy9VV 5PoBuORUaEO1NTUPknKXW7d5fLsJMesTGqG+Hm891TW2r5/632FTJRRd8EzFTb+/ kXPfW3Jldnq35e/YlsvQlrElofvrKVFpQvNk12CoqO9I1O4MCRU0pCTwXTcwEZ54 CIri2ZAdCUnUVauLzN1VhdqMHm+1M7Cc1jU4PEG/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU9a1FQCXvh1fkkewHvw3PtaDA4JkwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2QwNWQxZWQ2LTBkOTgtNDJiMi04YmQ2LTBhZDcyN2RkZDU4Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcNNYAwDQYJKoZIhvcNAQELBQADggEBAIZl6TaQgna/FvH0A5FhvOxvULCU aAsEB6XN1deoFkB/woVHmuJtLXs+zKUmVGxTvGnV3bselMiGMJeYw/U4mylgwjA2 c/yC3PO/ofXNTq9zmXA1Qc0LAUmB5JG1TPJzS9nYS1BuFWD03NhVYTR5ddR+Ql50 RjgvvV+/Llz+avmWkEJ0gSmC5eJcxIuspgwdNleB1HhoBO1xFMUnvO1hS1k52Oy7 jTJckWtmDvqxT123StuA9VufVEeszfMwHzr1JYC8amUgnFXy4pTJjil0q+BkjccC dLfmQ+kCi2KKQaktaMc2KjfjnDmuGK96wYX1sf/fhQVu9f5NMJbenrqt4ic= -----END CERTIFICATE-----Generated at Wed Nov 5 12:11:43 2025 by rpki-client