$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0432ce01-fba5-4e29-871a-8e47fe7eb490.roa File: 0432ce01-fba5-4e29-871a-8e47fe7eb490.roa (raw, json) Hash identifier: SlyZJ1REeDun+dl8xu/ui5iYQ+cjQGjSed3EObtPfow= Subject key identifier: 92:60:8D:19:66:BE:34:2A:4A:F2:EF:02:12:1F:86:98:FF:78:E5:B5 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 5A9B90901C6F52A3717E61190715A022368C3C57 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0432ce01-fba5-4e29-871a-8e47fe7eb490.roa Signing time: Mon 01 Sep 2025 16:21:22 +0000 ROA not before: Mon 01 Sep 2025 16:21:22 +0000 ROA not after: Mon 06 Oct 2025 23:59:59 +0000 asID: 7224 IP address blocks: 15.248.72.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 09 Sep 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:9b:90:90:1c:6f:52:a3:71:7e:61:19:07:15:a0:22:36:8c:3c:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 1 16:21:22 2025 GMT Not After : Oct 6 23:59:59 2025 GMT Subject: serialNumber=178715f697b9577618ca77f5a751533efc0f5aa58961f272620fc74721f36b31, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:14:66:34:4a:c0:c2:e2:47:c8:21:30:db:aa: 8c:02:f7:9e:4d:97:90:b4:30:e6:8d:0e:d4:25:a0: 0f:84:6c:60:19:9a:6c:7c:94:d0:78:45:1d:f6:d0: 53:05:94:d5:1a:bd:d2:09:f6:e3:14:63:44:de:98: 71:49:7c:87:c8:f2:ac:fa:94:18:a3:08:12:72:5c: b4:5e:af:60:83:df:e9:87:0e:ee:79:3f:d7:fb:b2: 50:2d:b3:74:15:76:bc:2a:4c:d0:78:16:80:b0:3b: 14:95:f5:22:63:d1:41:94:b4:f3:c3:cc:67:34:b2: a2:05:de:ae:f3:12:07:3a:55:9d:39:73:40:51:ba: f9:ac:e1:ab:95:ad:87:77:7a:43:2a:9b:7f:fb:a5: c9:d6:2a:a8:c3:2e:df:90:9d:5c:56:e8:6a:c4:d8: 47:6d:a3:f0:66:bc:a1:04:54:7a:31:98:0a:db:98: 71:d3:cb:8e:1e:9d:00:01:7f:a2:41:0c:c2:da:fd: 27:55:d1:bd:7c:8e:c3:11:07:bd:c1:a4:b3:01:64: 0f:5a:3b:c3:94:ae:11:c5:0c:89:fb:de:01:d7:c0: 0f:11:2d:33:53:1a:75:c9:49:86:a4:05:d2:72:c3: f8:2d:6c:53:71:1f:35:6e:98:ba:c9:8c:5d:c7:b4: 9a:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:60:8D:19:66:BE:34:2A:4A:F2:EF:02:12:1F:86:98:FF:78:E5:B5 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0432ce01-fba5-4e29-871a-8e47fe7eb490.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.248.72.0/22 Signature Algorithm: sha256WithRSAEncryption a9:9d:8d:c1:e7:e1:3c:da:c2:5c:16:09:f6:81:a1:73:34:77: 5c:10:0f:f1:0c:b9:e5:c2:73:af:52:4a:c4:98:b2:d4:fa:02: f2:7e:b2:b8:c4:91:65:83:ac:86:84:8f:76:7b:67:d3:fe:16: d2:66:a0:ee:57:4c:86:8d:17:06:5f:8d:aa:8d:5d:4e:66:23: ec:8a:67:7f:39:6f:a5:23:0b:ec:aa:4e:f8:10:ac:66:db:b2: 83:b9:64:d5:fe:ee:bc:7f:36:1a:b7:3b:28:5f:33:25:8f:5f: 7f:f6:09:11:cd:7b:9e:8c:09:f0:c8:78:6d:53:4a:da:5e:3a: d7:97:ab:e5:d1:20:0c:7f:6c:8b:ea:39:df:0f:6d:eb:ca:ab: 2b:32:31:7e:b7:6e:d6:2d:91:dc:01:1f:1a:1e:b4:c0:09:92: 9b:af:32:a8:12:4f:82:7e:b5:6e:1e:4a:b7:92:e8:aa:1d:34: 94:2d:6e:62:7a:da:5d:ac:a0:a4:55:95:27:85:ca:d0:10:d7: 96:4b:9e:45:08:77:ce:ba:db:cf:80:66:38:9c:5d:85:d3:4b: b7:c6:d4:63:f2:00:59:58:8f:a5:c8:2d:9e:ef:bb:0f:25:e1: b5:22:28:c1:4a:1a:ad:e2:8c:f6:05:06:97:18:57:71:66:42: 9d:7c:de:8d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWpuQkBxvUqNxfmEZBxWgIjaMPFcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTAxMTYyMTIyWhcNMjUxMDA2MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNzg3MTVmNjk3Yjk1Nzc2MThjYTc3ZjVhNzUxNTMzZWZj MGY1YWE1ODk2MWYyNzI2MjBmYzc0NzIxZjM2YjMxMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCFGY0SsDC4kfIITDbqowC955Nl5C0MOaNDtQloA+EbGAZ mmx8lNB4RR320FMFlNUavdIJ9uMUY0TemHFJfIfI8qz6lBijCBJyXLRer2CD3+mH Du55P9f7slAts3QVdrwqTNB4FoCwOxSV9SJj0UGUtPPDzGc0sqIF3q7zEgc6VZ05 c0BRuvms4auVrYd3ekMqm3/7pcnWKqjDLt+QnVxW6GrE2Edto/BmvKEEVHoxmArb mHHTy44enQABf6JBDMLa/SdV0b18jsMRB73BpLMBZA9aO8OUrhHFDIn73gHXwA8R LTNTGnXJSYakBdJyw/gtbFNxHzVumLrJjF3HtJr7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUkmCNGWa+NCpK8u8CEh+GmP945bUwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzA0MzJjZTAxLWZiYTUtNGUyOS04NzFhLThlNDdmZTdlYjQ5MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIP+EgwDQYJKoZIhvcNAQELBQADggEBAKmdjcHn4TzawlwWCfaBoXM0d1wQ D/EMueXCc69SSsSYstT6AvJ+srjEkWWDrIaEj3Z7Z9P+FtJmoO5XTIaNFwZfjaqN XU5mI+yKZ385b6UjC+yqTvgQrGbbsoO5ZNX+7rx/Nhq3OyhfMyWPX3/2CRHNe56M CfDIeG1TStpeOteXq+XRIAx/bIvqOd8PbevKqysyMX63btYtkdwBHxoetMAJkpuv MqgST4J+tW4eSreS6KodNJQtbmJ62l2soKRVlSeFytAQ15ZLnkUId86628+AZjic XYXTS7fG1GPyAFlYj6XILZ7vuw8l4bUiKMFKGq3ijPYFBpcYV3FmQp183o0= -----END CERTIFICATE-----Generated at Sun Sep 7 13:45:15 2025 by rpki-client