$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/085bdc5a-eecc-4b91-96d8-643ad0e0b827.roa File: 085bdc5a-eecc-4b91-96d8-643ad0e0b827.roa (raw, json) Hash identifier: hnmQHZO/wv00VH3bwqu9SFjSfC/QJNQ7VqgzLghNXYc= Subject key identifier: 42:6D:44:E8:B4:D3:C4:F5:FA:44:0E:6B:08:1A:65:AE:86:BA:5D:84 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 6DD5E5EB2BE2131F55A67701599747568E821389 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/085bdc5a-eecc-4b91-96d8-643ad0e0b827.roa Signing time: Mon 18 Aug 2025 16:11:08 +0000 ROA not before: Mon 18 Aug 2025 16:11:08 +0000 ROA not after: Mon 22 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.164.0.0/14 maxlen: 14 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:d5:e5:eb:2b:e2:13:1f:55:a6:77:01:59:97:47:56:8e:82:13:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 18 16:11:08 2025 GMT Not After : Sep 22 23:59:59 2025 GMT Subject: serialNumber=7e99ad9d5c15a8bfc79f94152de10ede1a552aeb8b7755ae7bdc3e020b8db16e, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:c1:6f:77:5b:fc:06:f6:79:09:fa:2b:a0:82: 9f:48:c8:6c:a3:17:94:0b:24:35:a9:b5:25:d6:a1: 50:e8:2c:11:bd:be:be:9d:cd:dc:2c:7d:b0:f7:8e: ea:20:6f:41:92:96:68:cb:c5:46:de:c2:3f:f3:d8: ee:4d:42:08:e8:d7:90:06:1b:63:bc:f7:3a:db:4c: 41:b6:8d:b2:7b:e1:58:cc:b3:4c:b2:46:58:c6:35: 83:2d:ec:f0:65:6a:eb:34:f4:ba:46:d1:f3:f5:03: 18:d3:6d:36:fb:09:ad:f5:7e:b9:3a:c4:2b:09:88: 62:5b:59:e1:31:fb:b6:84:fd:cb:1f:80:18:d5:4a: ee:1f:ae:9b:d0:37:9c:f1:73:ea:7e:b9:b1:fa:6b: 63:7f:7a:f7:c9:24:76:f2:91:39:3a:80:81:95:f8: a7:92:39:64:c0:d8:c0:01:24:11:32:2a:45:e8:b8: 4d:40:5d:a6:69:20:09:2c:45:46:3a:62:c1:1d:4e: 05:3c:d9:df:16:e7:84:b5:aa:c8:7d:0f:3d:16:17: 23:e9:50:72:b3:a0:a9:26:2e:38:5b:e1:9a:1a:42: 43:01:56:b9:6d:a2:2b:ba:89:f4:eb:61:b5:dc:2a: fa:52:cd:1b:75:79:11:61:d8:2a:79:d3:5b:4d:91: 9f:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:6D:44:E8:B4:D3:C4:F5:FA:44:0E:6B:08:1A:65:AE:86:BA:5D:84 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/085bdc5a-eecc-4b91-96d8-643ad0e0b827.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.164.0.0/14 Signature Algorithm: sha256WithRSAEncryption 69:b7:57:c3:6e:f1:7f:bc:8b:b8:c1:a0:46:24:11:e4:70:a0: f0:f2:cc:87:3a:fa:1a:19:d1:05:da:a2:98:47:13:f3:60:38: e1:77:55:26:8c:8b:e1:6b:8a:48:fa:41:78:ef:21:59:18:6e: 2b:fa:d8:f0:32:4a:e5:12:9a:61:65:7f:57:40:39:ea:6d:01: 01:07:e4:d9:9f:a9:0a:d0:83:bd:c0:f7:c2:65:4e:9a:2f:d1: d5:25:13:f9:a1:c8:6d:78:a9:46:17:30:02:6a:b4:4d:71:64: 84:75:b9:a2:fc:33:21:bb:71:1a:60:50:f3:8e:e3:44:be:79: b2:23:a9:bd:ae:08:9d:61:c6:a7:50:69:8b:a1:d6:28:e2:bd: e4:20:34:db:a9:1c:2a:39:8e:71:6d:76:01:aa:44:c9:ef:34: 61:b5:e9:7d:c4:c8:49:e1:a7:64:1d:e1:05:bc:c8:e5:1b:f0: 07:32:30:64:d5:20:95:eb:2d:c4:5c:ee:ab:01:6c:0e:f1:50: e5:a6:7d:76:3e:fb:a1:37:0c:a9:d5:e3:d2:7b:1b:8b:a0:5d: 7d:89:20:52:82:61:01:91:6d:9c:2a:53:2b:c5:63:f2:c8:94: 97:5c:bf:3b:2a:44:f2:a1:ac:2b:17:42:be:e2:68:32:36:35: 14:6e:aa:32 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUbdXl6yviEx9VpncBWZdHVo6CE4kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODE4MTYxMTA4WhcNMjUwOTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZTk5YWQ5ZDVjMTVhOGJmYzc5Zjk0MTUyZGUxMGVkZTFh NTUyYWViOGI3NzU1YWU3YmRjM2UwMjBiOGRiMTZlMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDUwW93W/wG9nkJ+iuggp9IyGyjF5QLJDWptSXWoVDoLBG9 vr6dzdwsfbD3juogb0GSlmjLxUbewj/z2O5NQgjo15AGG2O89zrbTEG2jbJ74VjM s0yyRljGNYMt7PBlaus09LpG0fP1AxjTbTb7Ca31frk6xCsJiGJbWeEx+7aE/csf gBjVSu4frpvQN5zxc+p+ubH6a2N/evfJJHbykTk6gIGV+KeSOWTA2MABJBEyKkXo uE1AXaZpIAksRUY6YsEdTgU82d8W54S1qsh9Dz0WFyPpUHKzoKkmLjhb4ZoaQkMB Vrltoiu6ifTrYbXcKvpSzRt1eRFh2Cp501tNkZ9xAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUQm1E6LTTxPX6RA5rCBplroa6XYQwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzA4NWJkYzVhLWVlY2MtNGI5MS05NmQ4LTY0M2FkMGUwYjgyNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwISpDANBgkqhkiG9w0BAQsFAAOCAQEAabdXw27xf7yLuMGgRiQR5HCg8PLM hzr6GhnRBdqimEcT82A44XdVJoyL4WuKSPpBeO8hWRhuK/rY8DJK5RKaYWV/V0A5 6m0BAQfk2Z+pCtCDvcD3wmVOmi/R1SUT+aHIbXipRhcwAmq0TXFkhHW5ovwzIbtx GmBQ847jRL55siOpva4InWHGp1Bpi6HWKOK95CA026kcKjmOcW12AapEye80YbXp fcTISeGnZB3hBbzI5RvwBzIwZNUglestxFzuqwFsDvFQ5aZ9dj77oTcMqdXj0nsb i6BdfYkgUoJhAZFtnCpTK8Vj8siUl1y/OypE8qGsKxdCvuJoMjY1FG6qMg== -----END CERTIFICATE-----Generated at Wed Aug 20 10:40:41 2025 by rpki-client