$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0b7166c4-f1f9-47a1-99bf-03cba0c39215.roa File: 0b7166c4-f1f9-47a1-99bf-03cba0c39215.roa (raw, json) Hash identifier: eaFvTVJSikP66+/+2sqZbQ8g01dE9MIFEHcKx76s4ac= Subject key identifier: 1D:C1:7D:F8:90:97:EE:91:DF:DD:25:4C:1D:6A:51:9A:EC:50:B7:B2 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 5EED04585C7A813DAC29C2D171C493EB79A08B7E Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0b7166c4-f1f9-47a1-99bf-03cba0c39215.roa Signing time: Wed 13 Aug 2025 15:00:23 +0000 ROA not before: Wed 13 Aug 2025 15:00:23 +0000 ROA not after: Wed 17 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.2.51.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:ed:04:58:5c:7a:81:3d:ac:29:c2:d1:71:c4:93:eb:79:a0:8b:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 13 15:00:23 2025 GMT Not After : Sep 17 23:59:59 2025 GMT Subject: serialNumber=4e9956de2654d136e619ca0c34e0883c282592125b010b599e63f1883863d608, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:38:1a:87:0d:bc:7d:0b:f1:17:be:3d:e9:38: a8:55:7f:ed:8e:bf:37:1f:60:9e:93:04:80:d9:37: a9:36:0f:85:31:31:82:59:d4:54:13:78:e9:16:f3: 51:ac:66:10:3b:4c:45:ac:4b:b4:e6:fd:32:33:a3: 90:9d:03:6f:47:f1:06:72:a1:3b:1e:bd:23:b3:d2: 1e:87:3c:0c:49:45:af:ca:7c:1c:7a:8c:2b:68:45: e7:0c:22:13:05:56:be:9d:00:10:36:d1:5b:5e:3c: 81:ce:c4:62:79:af:69:5c:df:9e:e3:b6:48:b5:c1: 6a:b3:08:ee:7c:2d:63:5c:9d:4f:f4:62:5b:55:15: be:2d:1c:5a:22:22:29:c7:0a:bc:9f:30:37:19:b3: c7:ac:d1:11:df:f6:c8:c6:af:1e:2f:ab:dd:e2:61: 50:5c:cd:be:82:31:07:3d:6a:98:0e:e6:bb:5e:63: 20:b4:1d:6b:f4:54:d1:8e:c9:26:bd:08:7a:c8:b7: d4:59:cb:86:b6:38:ea:39:46:50:96:99:be:92:6e: e7:52:23:6e:64:40:d2:bf:a7:32:b2:1a:4e:62:37: b6:cb:fc:c5:ce:a4:74:37:8f:0f:e5:9f:57:32:2e: 4e:6b:36:9e:69:9e:cc:22:81:a8:4c:77:69:cb:b4: 8a:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:C1:7D:F8:90:97:EE:91:DF:DD:25:4C:1D:6A:51:9A:EC:50:B7:B2 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0b7166c4-f1f9-47a1-99bf-03cba0c39215.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.2.51.0/24 Signature Algorithm: sha256WithRSAEncryption 03:37:d9:9f:d1:ba:e2:12:bf:44:8e:21:55:a1:88:aa:d5:6f: ab:56:d2:c5:1f:2d:1c:e4:c6:99:86:5f:d6:64:d1:4d:3d:6a: 17:8e:c4:8f:69:12:b4:a0:1a:9f:fd:3d:21:a5:12:aa:bb:f1: 3d:2f:ce:f1:72:09:14:00:2c:c7:ad:83:20:b8:55:00:03:ec: f4:9a:77:65:3a:3e:05:c2:6c:ec:92:f7:ce:07:3e:56:6a:85: a7:89:83:3d:c2:6e:f3:4d:38:2d:09:ad:a6:9c:d0:d1:bb:45: 09:5e:60:4d:bd:52:5a:ef:e6:7e:77:c7:61:cb:07:c7:0f:9b: 8b:1c:c3:a4:86:fb:c8:02:38:c9:91:ce:53:38:5f:9f:f1:01: e6:8a:b1:fa:49:55:7d:4d:3c:03:0a:ae:88:6d:08:0a:e8:15: ff:86:42:58:bd:17:25:ed:19:e7:1f:c2:bc:10:40:55:67:43: 71:3e:50:ee:8d:3f:af:0e:cc:7e:fb:e5:54:c9:ee:76:33:3e: fe:d6:07:42:18:09:52:6f:8d:29:83:98:5f:00:9a:da:e7:63: 8c:0f:12:e9:ce:40:41:66:95:b6:1c:68:5b:ff:c9:82:fb:5c: df:ad:f8:a6:da:35:3b:1f:2e:a1:45:bd:35:65:d2:4e:03:aa: 1e:1b:bb:d5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXu0EWFx6gT2sKcLRccST63mgi34wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODEzMTUwMDIzWhcNMjUwOTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZTk5NTZkZTI2NTRkMTM2ZTYxOWNhMGMzNGUwODgzYzI4 MjU5MjEyNWIwMTBiNTk5ZTYzZjE4ODM4NjNkNjA4MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLOBqHDbx9C/EXvj3pOKhVf+2OvzcfYJ6TBIDZN6k2D4Ux MYJZ1FQTeOkW81GsZhA7TEWsS7Tm/TIzo5CdA29H8QZyoTsevSOz0h6HPAxJRa/K fBx6jCtoRecMIhMFVr6dABA20VtePIHOxGJ5r2lc357jtki1wWqzCO58LWNcnU/0 YltVFb4tHFoiIinHCryfMDcZs8es0RHf9sjGrx4vq93iYVBczb6CMQc9apgO5rte YyC0HWv0VNGOySa9CHrIt9RZy4a2OOo5RlCWmb6SbudSI25kQNK/pzKyGk5iN7bL /MXOpHQ3jw/ln1cyLk5rNp5pnswigahMd2nLtIrJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUHcF9+JCX7pHf3SVMHWpRmuxQt7IwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzBiNzE2NmM0LWYxZjktNDdhMS05OWJmLTAzY2JhMGMzOTIxNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAADAjMwDQYJKoZIhvcNAQELBQADggEBAAM32Z/RuuISv0SOIVWhiKrVb6tW 0sUfLRzkxpmGX9Zk0U09aheOxI9pErSgGp/9PSGlEqq78T0vzvFyCRQALMetgyC4 VQAD7PSad2U6PgXCbOyS984HPlZqhaeJgz3CbvNNOC0Jraac0NG7RQleYE29Ulrv 5n53x2HLB8cPm4scw6SG+8gCOMmRzlM4X5/xAeaKsfpJVX1NPAMKrohtCAroFf+G Qli9FyXtGecfwrwQQFVnQ3E+UO6NP68OzH775VTJ7nYzPv7WB0IYCVJvjSmDmF8A mtrnY4wPEunOQEFmlbYcaFv/yYL7XN+t+KbaNTsfLqFFvTVl0k4Dqh4bu9U= -----END CERTIFICATE-----Generated at Wed Aug 20 10:41:06 2025 by rpki-client