$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/07f3f9f9-6ab0-46bd-bc5f-9dfb2f8b8bd0.roa File: 07f3f9f9-6ab0-46bd-bc5f-9dfb2f8b8bd0.roa (raw, json) Hash identifier: 41Q5mLbn5C4TZynKupwmsE1NQEHGtyRgyrMrbR+83zc= Subject key identifier: F5:8C:F2:28:81:1E:37:FA:78:99:A1:6F:1F:EB:EF:D8:41:BD:B2:3E Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 219DC79614D42D879349999A882FD1CCA1996BD3 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/07f3f9f9-6ab0-46bd-bc5f-9dfb2f8b8bd0.roa Signing time: Tue 05 Aug 2025 17:11:18 +0000 ROA not before: Tue 05 Aug 2025 17:11:18 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.94.0.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:9d:c7:96:14:d4:2d:87:93:49:99:9a:88:2f:d1:cc:a1:99:6b:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 5 17:11:18 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=f8d62e41a317791d18a7fd9123d8110fcc737e813824a9b7bf9080fa02f237a1, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:11:9a:18:8f:9a:5f:de:69:78:ab:e4:d1:f9: 14:a5:8f:23:6c:e4:9c:85:b8:d5:28:a5:87:00:49: 2f:8a:e1:ab:67:df:43:22:5b:bc:de:2c:0e:26:a7: 3e:40:93:c1:24:dc:b2:62:70:20:ff:76:66:e2:ad: f8:3f:9b:b3:90:9a:0d:75:c8:e2:a4:15:a5:45:6e: c1:e6:22:93:2c:b4:dc:ca:e3:f8:4e:b5:3c:43:57: de:0a:46:cb:87:53:e4:40:d9:19:22:72:ea:a9:a8: 3b:c7:f9:e3:11:86:a4:8b:fc:5d:f8:00:33:b1:10: 54:ca:76:96:aa:3a:5a:de:96:2f:df:ee:6a:da:e3: ed:92:15:bc:f9:91:c5:0d:c4:c0:79:8a:6b:64:19: 57:30:5d:84:32:64:a2:f9:ab:5f:ab:83:62:78:99: a2:e9:73:70:38:eb:51:56:c2:d6:c3:9e:46:e3:86: 39:23:90:14:71:c8:ca:00:cb:97:aa:a3:89:d2:34: 06:a7:16:4c:8d:be:34:3a:6e:a3:5c:a3:b8:d9:3d: 82:94:e4:d4:6a:a5:43:c7:95:7e:fa:f3:69:f6:ec: ce:7b:70:af:cd:ba:cb:2d:90:d2:9c:bf:3d:9d:df: 85:28:2b:31:f3:7a:54:48:90:3d:29:19:5c:bc:18: 01:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:8C:F2:28:81:1E:37:FA:78:99:A1:6F:1F:EB:EF:D8:41:BD:B2:3E X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/07f3f9f9-6ab0-46bd-bc5f-9dfb2f8b8bd0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.94.0.0/22 Signature Algorithm: sha256WithRSAEncryption 8c:b0:5b:40:ad:97:d7:73:e0:26:03:e2:0e:5b:ff:82:6c:76: 14:9e:71:8d:95:5e:ab:7b:be:83:5a:5e:8c:e6:da:1e:66:d2: e1:f3:f0:20:1f:c6:6e:e6:44:49:70:41:23:b7:d7:d8:8e:77: a7:ac:31:7f:c3:87:4c:54:d9:fc:18:c7:3d:a7:47:64:ce:76: 22:de:a1:0b:12:42:00:dc:cc:a7:f2:f1:a3:48:19:39:44:61: 8e:ff:df:55:6a:90:e1:72:53:a8:71:f9:a3:2b:3f:fa:e0:54: 11:be:6e:bc:72:19:72:7c:38:46:e4:a5:42:74:d3:dc:fb:5e: ee:ea:11:56:60:81:c7:a8:02:64:b6:44:14:4e:2c:d2:c4:3d: ba:51:8c:91:30:45:16:8b:f9:08:c1:f0:88:4f:91:31:25:55: cb:2f:33:e6:86:cc:7a:a6:a7:67:11:c2:01:1b:c6:8c:8b:75: ae:a4:22:0f:a0:24:88:a6:ee:e6:09:9a:32:dd:6b:91:5d:26: 43:c4:78:ac:81:d4:73:71:dd:fe:2d:64:c3:f2:00:a1:a1:7c: 67:98:66:90:85:e1:2b:62:5c:bf:a3:61:75:8c:d6:cf:f3:bf: e5:c6:1f:83:f1:04:c3:7f:1f:d8:4b:66:34:2d:d0:37:05:33: ca:5e:80:39 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIZ3HlhTULYeTSZmaiC/RzKGZa9MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODA1MTcxMTE4WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BmOGQ2MmU0MWEzMTc3OTFkMThhN2ZkOTEyM2Q4MTEwZmNj NzM3ZTgxMzgyNGE5YjdiZjkwODBmYTAyZjIzN2ExMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3EZoYj5pf3ml4q+TR+RSljyNs5JyFuNUopYcASS+K4atn 30MiW7zeLA4mpz5Ak8Ek3LJicCD/dmbirfg/m7OQmg11yOKkFaVFbsHmIpMstNzK 4/hOtTxDV94KRsuHU+RA2RkicuqpqDvH+eMRhqSL/F34ADOxEFTKdpaqOlreli/f 7mra4+2SFbz5kcUNxMB5imtkGVcwXYQyZKL5q1+rg2J4maLpc3A461FWwtbDnkbj hjkjkBRxyMoAy5eqo4nSNAanFkyNvjQ6bqNco7jZPYKU5NRqpUPHlX7682n27M57 cK/NusstkNKcvz2d34UoKzHzelRIkD0pGVy8GAEvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU9YzyKIEeN/p4maFvH+vv2EG9sj4wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzA3ZjNmOWY5LTZhYjAtNDZiZC1iYzVmLTlkZmIyZjhiOGJkMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAI0XgAwDQYJKoZIhvcNAQELBQADggEBAIywW0Ctl9dz4CYD4g5b/4JsdhSe cY2VXqt7voNaXozm2h5m0uHz8CAfxm7mRElwQSO319iOd6esMX/Dh0xU2fwYxz2n R2TOdiLeoQsSQgDczKfy8aNIGTlEYY7/31VqkOFyU6hx+aMrP/rgVBG+brxyGXJ8 OEbkpUJ009z7Xu7qEVZggceoAmS2RBROLNLEPbpRjJEwRRaL+QjB8IhPkTElVcsv M+aGzHqmp2cRwgEbxoyLda6kIg+gJIim7uYJmjLda5FdJkPEeKyB1HNx3f4tZMPy AKGhfGeYZpCF4StiXL+jYXWM1s/zv+XGH4PxBMN/H9hLZjQt0DcFM8pegDk= -----END CERTIFICATE-----Generated at Wed Aug 20 10:37:22 2025 by rpki-client