$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/02983dab-f4b3-415e-82e5-fbff6d93b88f.roa File: 02983dab-f4b3-415e-82e5-fbff6d93b88f.roa (raw, json) Hash identifier: bdIosFHpv5BIUmT5QgOSXO27oFuRYXFCe7ARga5bMBs= Subject key identifier: 27:89:C1:8B:98:B5:1B:9F:93:9A:CA:D0:F2:CD:3A:DB:5B:40:5D:84 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 3E55930D352345A3BBDA280BB9DD513B38BE5119 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/02983dab-f4b3-415e-82e5-fbff6d93b88f.roa Signing time: Mon 01 Sep 2025 18:10:43 +0000 ROA not before: Mon 01 Sep 2025 18:10:43 +0000 ROA not after: Mon 06 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.94.96.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 17 Sep 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:55:93:0d:35:23:45:a3:bb:da:28:0b:b9:dd:51:3b:38:be:51:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 1 18:10:43 2025 GMT Not After : Oct 6 23:59:59 2025 GMT Subject: serialNumber=52d01024af2d1d7c94760af5697d9831f9d97cf5eaf20757053c1341f4f65608, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d4:6d:b1:9f:69:67:c5:0e:22:4e:66:9a:47: 0f:5b:5e:f4:8e:0f:4d:dd:06:9a:40:94:d6:28:20: e3:7a:53:a3:c0:67:31:23:3e:34:b3:e4:55:a5:9f: e1:1a:3c:c8:95:e0:f6:5a:a8:f1:40:53:81:af:6c: 87:43:2d:99:b7:5a:5b:3e:81:f7:fd:b4:31:72:93: 27:06:d1:d0:a0:43:14:45:9b:f4:ec:b4:72:15:0e: 52:10:e4:a4:74:b8:33:ad:46:0d:36:90:e1:75:70: 49:00:1e:10:fe:84:e5:b1:73:8e:44:37:69:0d:1f: de:4b:5e:ae:17:f7:df:e9:f3:3b:ad:e7:ba:a4:6e: 0d:2e:d3:b2:b6:b7:23:b0:cc:ff:cb:0e:09:0e:24: df:97:0f:42:be:55:c0:02:94:1d:07:97:8a:7c:25: 3f:7c:92:08:a1:d7:d5:7a:3a:bb:45:85:cf:ac:f3: 50:19:0b:17:10:41:63:7e:f8:d2:c2:d4:33:0c:7d: b7:00:51:41:8b:4a:02:60:25:d8:4a:0e:ce:75:61: d2:5c:53:1e:0c:c0:85:49:5b:5d:51:50:b8:eb:c6: 8c:8a:d1:24:51:f6:46:70:4f:93:81:04:4f:25:49: ed:fe:53:38:41:3c:d1:38:85:c3:3b:bf:1c:a5:d0: 95:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:89:C1:8B:98:B5:1B:9F:93:9A:CA:D0:F2:CD:3A:DB:5B:40:5D:84 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/02983dab-f4b3-415e-82e5-fbff6d93b88f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.94.96.0/20 Signature Algorithm: sha256WithRSAEncryption 89:e7:67:37:c4:2d:15:54:af:ae:27:57:cf:ca:c1:a4:8e:10: 57:0f:f7:fc:b6:fc:b3:60:26:3f:33:a0:47:47:09:7d:3f:1a: e5:dd:71:ca:fc:17:4b:85:a7:9b:78:dc:25:09:7e:4c:99:9c: 86:ae:65:7e:0f:cf:4c:87:e1:8e:47:a4:5e:61:4e:f1:66:02: 90:0a:42:dc:ca:99:fb:02:30:36:63:07:eb:9f:ad:1b:b1:8c: 90:a2:36:9e:3a:64:4a:37:d9:de:f6:0e:21:97:d5:9f:29:68: 23:bf:d7:c6:ca:1e:c7:a6:b3:52:25:7f:ed:0c:4b:20:70:9d: 6d:b6:1f:a1:19:32:21:87:3d:37:0f:c0:55:7c:a8:22:26:ab: 89:d4:87:07:d3:16:c6:30:1d:fa:b5:bb:93:18:87:ac:03:e3: b7:f5:cc:69:9b:ed:b2:27:09:c4:1f:0e:8c:fd:bc:8a:f0:58: 62:86:63:57:46:13:f8:ec:63:c7:e5:5c:39:8b:88:18:47:f1: a4:91:05:56:3b:96:d0:aa:76:18:bc:b7:47:e2:80:41:d6:14: 95:f7:3c:2f:54:e8:9b:0b:c4:85:ef:96:04:f1:24:f6:cb:24: a9:d3:2c:ca:e8:da:27:a1:80:86:80:b4:15:56:79:1b:1c:0c: b4:13:fd:cb -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPlWTDTUjRaO72igLud1ROzi+URkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTAxMTgxMDQzWhcNMjUxMDA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A1MmQwMTAyNGFmMmQxZDdjOTQ3NjBhZjU2OTdkOTgzMWY5 ZDk3Y2Y1ZWFmMjA3NTcwNTNjMTM0MWY0ZjY1NjA4MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC81G2xn2lnxQ4iTmaaRw9bXvSOD03dBppAlNYoION6U6PA ZzEjPjSz5FWln+EaPMiV4PZaqPFAU4GvbIdDLZm3Wls+gff9tDFykycG0dCgQxRF m/TstHIVDlIQ5KR0uDOtRg02kOF1cEkAHhD+hOWxc45EN2kNH95LXq4X99/p8zut 57qkbg0u07K2tyOwzP/LDgkOJN+XD0K+VcAClB0Hl4p8JT98kgih19V6OrtFhc+s 81AZCxcQQWN++NLC1DMMfbcAUUGLSgJgJdhKDs51YdJcUx4MwIVJW11RULjrxoyK 0SRR9kZwT5OBBE8lSe3+UzhBPNE4hcM7vxyl0JWtAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUJ4nBi5i1G5+TmsrQ8s0621tAXYQwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzAyOTgzZGFiLWY0YjMtNDE1ZS04MmU1LWZiZmY2ZDkzYjg4Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQ0XmAwDQYJKoZIhvcNAQELBQADggEBAInnZzfELRVUr64nV8/KwaSOEFcP 9/y2/LNgJj8zoEdHCX0/GuXdccr8F0uFp5t43CUJfkyZnIauZX4Pz0yH4Y5HpF5h TvFmApAKQtzKmfsCMDZjB+ufrRuxjJCiNp46ZEo32d72DiGX1Z8paCO/18bKHsem s1Ilf+0MSyBwnW22H6EZMiGHPTcPwFV8qCImq4nUhwfTFsYwHfq1u5MYh6wD47f1 zGmb7bInCcQfDoz9vIrwWGKGY1dGE/jsY8flXDmLiBhH8aSRBVY7ltCqdhi8t0fi gEHWFJX3PC9U6JsLxIXvlgTxJPbLJKnTLMro2iehgIaAtBVWeRscDLQT/cs= -----END CERTIFICATE-----Generated at Tue Sep 16 19:24:47 2025 by rpki-client