$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/16788add-b139-4af8-bd22-fe8b2177c578.roa File: 16788add-b139-4af8-bd22-fe8b2177c578.roa (raw, json) Hash identifier: wT6O6M7xiicprbFX3d1iBYn0PSxkcxjWb7EG/KXtRLs= Subject key identifier: FA:B6:8C:CB:89:70:EA:44:D5:2B:0C:8B:D0:A0:49:34:1A:B7:DA:95 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 58D6212D9AAAFFC62B42B318831C59719A02BB3F Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/16788add-b139-4af8-bd22-fe8b2177c578.roa Signing time: Tue 05 Aug 2025 15:11:03 +0000 ROA not before: Tue 05 Aug 2025 15:11:03 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.137.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:d6:21:2d:9a:aa:ff:c6:2b:42:b3:18:83:1c:59:71:9a:02:bb:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 5 15:11:03 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=7282e3cfe685c33d9453bbc3dc28cba0ffa38b64e563a2531863ec29f26d3d94, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:1d:36:76:90:37:9a:59:f7:47:39:6f:11:8d: 88:dd:6c:16:4a:3f:b3:8e:25:cf:d6:1e:44:24:ce: c3:e5:3c:bd:89:34:28:d3:03:62:7c:3d:c1:46:76: a2:a1:54:69:44:4b:65:d6:74:b9:0e:ea:d2:58:0c: e8:88:e2:f3:b6:48:23:1e:3c:0b:de:42:be:cf:65: aa:c8:fa:4b:f3:87:d3:7e:21:08:fc:8e:fa:7a:38: 78:70:a9:27:0f:64:03:00:36:23:33:6f:5f:cf:a1: e9:0f:bd:0b:a9:fe:1a:0d:fd:09:2f:00:dc:7c:16: 91:75:c6:7c:f8:34:9f:a2:38:28:d0:01:12:5b:f3: 5c:5d:78:e0:bb:7f:85:91:52:fb:60:12:37:26:5a: 10:e3:24:7d:39:3c:ad:b7:92:93:84:df:b3:c5:73: 7d:e6:e4:e9:63:f6:d6:df:dc:ce:4f:b3:6d:85:9b: 35:ba:f8:08:7f:c8:b8:3f:cd:c7:9f:0d:7e:89:48: 2e:78:09:ea:62:6b:fa:1c:85:d8:08:50:61:3a:3c: bb:f6:fb:f0:fe:5a:23:b6:94:25:f3:e4:52:84:8f: d9:9c:9d:00:2e:fc:64:4a:60:df:b7:bc:c2:76:67: a4:b6:a6:d6:ca:be:4d:33:de:c7:dd:e1:51:a1:51: 4c:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:B6:8C:CB:89:70:EA:44:D5:2B:0C:8B:D0:A0:49:34:1A:B7:DA:95 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/16788add-b139-4af8-bd22-fe8b2177c578.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.137.0.0/16 Signature Algorithm: sha256WithRSAEncryption 74:bd:7a:48:49:a4:86:0b:4b:ca:02:4b:84:79:ea:de:e1:92: c9:b7:0e:b6:94:cf:09:34:08:a2:85:8d:6c:5b:4e:42:cb:31: 93:fe:e8:ff:c3:e2:5f:62:57:a5:1d:b7:a4:be:77:b0:e2:2c: df:cc:ee:92:e9:eb:ed:25:39:bc:3c:4a:db:4e:a3:2b:4d:41: fc:78:58:54:df:d0:35:ff:7e:61:44:57:ee:03:c8:57:1b:ee: 16:66:c3:35:c4:ec:6e:5c:ec:29:78:cb:b0:de:71:96:00:97: e6:1d:fe:36:0b:b7:25:46:9c:2f:bb:76:1c:ea:66:ba:b2:9f: 0c:a1:19:3d:d7:8a:0b:29:f4:eb:4e:e5:1b:e2:1b:9c:2c:6f: 11:68:bc:2d:17:b2:e6:41:cd:a9:07:84:70:87:f9:1e:57:50: 55:72:33:88:4e:91:e7:42:50:54:05:f9:4d:08:95:fa:ef:b8: 00:af:cf:71:31:93:1c:54:0d:bd:76:73:41:44:8e:1b:fe:ae: ee:77:d7:0b:f5:d9:62:1b:be:a1:50:7a:93:8c:01:a0:9a:67: 08:1a:ec:46:3e:7a:6b:47:18:72:b3:61:4b:fb:59:90:a6:23: 80:3e:f2:90:d7:21:73:99:20:06:0d:e4:05:04:48:24:0c:8a: cd:b3:7c:6d -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUWNYhLZqq/8YrQrMYgxxZcZoCuz8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODA1MTUxMTAzWhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MjgyZTNjZmU2ODVjMzNkOTQ1M2JiYzNkYzI4Y2JhMGZm YTM4YjY0ZTU2M2EyNTMxODYzZWMyOWYyNmQzZDk0MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpHTZ2kDeaWfdHOW8RjYjdbBZKP7OOJc/WHkQkzsPlPL2J NCjTA2J8PcFGdqKhVGlES2XWdLkO6tJYDOiI4vO2SCMePAveQr7PZarI+kvzh9N+ IQj8jvp6OHhwqScPZAMANiMzb1/PoekPvQup/hoN/QkvANx8FpF1xnz4NJ+iOCjQ ARJb81xdeOC7f4WRUvtgEjcmWhDjJH05PK23kpOE37PFc33m5Olj9tbf3M5Ps22F mzW6+Ah/yLg/zcefDX6JSC54Cepia/ochdgIUGE6PLv2+/D+WiO2lCXz5FKEj9mc nQAu/GRKYN+3vMJ2Z6S2ptbKvk0z3sfd4VGhUUyZAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU+raMy4lw6kTVKwyL0KBJNBq32pUwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzE2Nzg4YWRkLWIxMzktNGFmOC1iZDIyLWZlOGIyMTc3YzU3OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAPiTANBgkqhkiG9w0BAQsFAAOCAQEAdL16SEmkhgtLygJLhHnq3uGSybcO tpTPCTQIooWNbFtOQssxk/7o/8PiX2JXpR23pL53sOIs38zukunr7SU5vDxK206j K01B/HhYVN/QNf9+YURX7gPIVxvuFmbDNcTsblzsKXjLsN5xlgCX5h3+Ngu3JUac L7t2HOpmurKfDKEZPdeKCyn0607lG+IbnCxvEWi8LRey5kHNqQeEcIf5HldQVXIz iE6R50JQVAX5TQiV+u+4AK/PcTGTHFQNvXZzQUSOG/6u7nfXC/XZYhu+oVB6k4wB oJpnCBrsRj56a0cYcrNhS/tZkKYjgD7ykNchc5kgBg3kBQRIJAyKzbN8bQ== -----END CERTIFICATE-----Generated at Wed Aug 20 10:42:58 2025 by rpki-client