$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/19e30596-c121-4ef5-8ec2-cefe9d9d3ae9.roa File: 19e30596-c121-4ef5-8ec2-cefe9d9d3ae9.roa (raw, json) Hash identifier: 9p+l6XHpLuPuS4EaZIq0XJDCege5Ek0njI8P1TA4awY= Subject key identifier: CB:30:D7:05:88:7E:14:53:8C:A4:5F:7D:E7:A5:73:09:FF:2A:EF:68 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 12D30628FE2C8B11BB8D459A123BF90B2F9E3A90 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/19e30596-c121-4ef5-8ec2-cefe9d9d3ae9.roa Signing time: Wed 20 Aug 2025 00:20:47 +0000 ROA not before: Wed 20 Aug 2025 00:20:47 +0000 ROA not after: Wed 24 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 129.47.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:d3:06:28:fe:2c:8b:11:bb:8d:45:9a:12:3b:f9:0b:2f:9e:3a:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 20 00:20:47 2025 GMT Not After : Sep 24 23:59:59 2025 GMT Subject: serialNumber=0d76e77ac77e4056f0c13ab0e6eca44ae8908cf7cc458a9396eb1723086a7f83, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:99:16:07:84:be:3c:84:9f:86:df:52:e3:9a: bb:32:c8:e5:e1:3e:4c:41:78:83:e2:d5:80:1c:98: cf:d1:e2:5d:81:9a:5a:cb:bf:23:7f:de:ca:b8:99: 85:ff:d6:04:39:9e:3d:d3:00:0b:9a:25:f4:82:80: 04:40:d6:ae:52:80:7b:c1:c4:48:7f:79:46:82:0e: f2:05:84:b9:e7:9c:96:46:ae:95:2b:a6:b4:b3:66: d2:f6:c5:b7:c2:a0:f5:c6:22:7a:04:72:27:01:7f: 73:c9:d7:3c:fa:84:73:9c:1b:5a:03:8f:34:d4:78: 8d:0f:40:f7:62:1a:19:8d:ce:8c:f3:89:84:6d:20: 32:23:a5:ff:d9:a8:4d:55:b8:dc:cb:d4:46:98:3b: 00:1d:80:ff:8c:c1:66:3b:4b:f3:ab:51:cd:a4:52: 46:b9:4a:a2:11:8e:0c:88:cc:13:75:aa:44:ca:79: e5:81:27:98:49:92:f2:66:3c:2d:db:6d:a6:c5:20: 8e:63:9c:b9:c3:8a:28:6a:6a:bb:e8:31:16:85:5c: 70:17:45:38:7c:a1:c7:48:94:ab:c8:7f:11:57:40: a6:6e:85:c9:4d:95:68:ef:29:16:c9:40:40:0a:d7: 75:99:f1:50:66:0d:93:ff:cc:6d:0e:2b:4b:59:b8: cd:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:30:D7:05:88:7E:14:53:8C:A4:5F:7D:E7:A5:73:09:FF:2A:EF:68 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/19e30596-c121-4ef5-8ec2-cefe9d9d3ae9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 129.47.0.0/16 Signature Algorithm: sha256WithRSAEncryption 9a:3e:88:13:96:c1:69:9b:ea:3c:c1:23:c8:68:e1:47:57:8a: 32:9a:fd:1d:c3:4d:8a:e3:8a:14:79:d3:8c:5b:1a:e4:ac:ee: a2:2a:0f:6e:15:6d:09:8f:5f:b8:a9:79:0e:cf:82:e0:c8:a3: 00:2e:4b:a1:e5:a7:4f:21:de:4d:0c:82:59:48:68:5c:25:05: 9f:3e:9a:54:88:4a:6c:88:20:4c:f0:34:90:46:2f:a0:2d:07: 74:68:02:0e:2f:f8:5d:6c:a4:f4:f4:a6:a2:af:70:7d:cb:c3: af:24:b3:16:31:c0:3b:7c:e2:eb:92:35:61:22:52:6a:e2:59: f5:15:5c:4d:7f:05:ca:a6:91:1f:3b:34:14:26:0d:9d:9d:3b: 4d:54:bc:23:3d:00:ca:a6:a1:d2:fc:7e:e9:2c:2d:1b:93:f6: 10:5a:47:a4:42:25:e9:d6:b5:e8:98:a6:ef:36:27:5e:48:c3: 7f:c2:0a:f2:57:c6:6b:10:fa:1f:63:02:b5:b2:14:1e:27:09: 28:b2:fa:9a:b8:ab:c4:f1:63:e5:85:7a:fd:cc:1e:57:32:35: 02:3f:77:36:31:cd:d9:d4:a6:8e:71:c5:42:fd:68:9a:7b:3a: f9:da:e9:a9:2e:34:94:c3:a2:41:fc:05:1c:32:94:a1:b0:48: 15:fd:69:75 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUEtMGKP4sixG7jUWaEjv5Cy+eOpAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODIwMDAyMDQ3WhcNMjUwOTI0MjM1OTU5 WjB6MUkwRwYDVQQFE0AwZDc2ZTc3YWM3N2U0MDU2ZjBjMTNhYjBlNmVjYTQ0YWU4 OTA4Y2Y3Y2M0NThhOTM5NmViMTcyMzA4NmE3ZjgzMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7mRYHhL48hJ+G31LjmrsyyOXhPkxBeIPi1YAcmM/R4l2B mlrLvyN/3sq4mYX/1gQ5nj3TAAuaJfSCgARA1q5SgHvBxEh/eUaCDvIFhLnnnJZG rpUrprSzZtL2xbfCoPXGInoEcicBf3PJ1zz6hHOcG1oDjzTUeI0PQPdiGhmNzozz iYRtIDIjpf/ZqE1VuNzL1EaYOwAdgP+MwWY7S/OrUc2kUka5SqIRjgyIzBN1qkTK eeWBJ5hJkvJmPC3bbabFII5jnLnDiihqarvoMRaFXHAXRTh8ocdIlKvIfxFXQKZu hclNlWjvKRbJQEAK13WZ8VBmDZP/zG0OK0tZuM3BAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUyzDXBYh+FFOMpF9956VzCf8q72gwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzE5ZTMwNTk2LWMxMjEtNGVmNS04ZWMyLWNlZmU5ZDlkM2FlOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCBLzANBgkqhkiG9w0BAQsFAAOCAQEAmj6IE5bBaZvqPMEjyGjhR1eKMpr9 HcNNiuOKFHnTjFsa5KzuoioPbhVtCY9fuKl5Ds+C4MijAC5LoeWnTyHeTQyCWUho XCUFnz6aVIhKbIggTPA0kEYvoC0HdGgCDi/4XWyk9PSmoq9wfcvDrySzFjHAO3zi 65I1YSJSauJZ9RVcTX8FyqaRHzs0FCYNnZ07TVS8Iz0Ayqah0vx+6SwtG5P2EFpH pEIl6da16Jim7zYnXkjDf8IK8lfGaxD6H2MCtbIUHicJKLL6mrirxPFj5YV6/cwe VzI1Aj93NjHN2dSmjnHFQv1omns6+drpqS40lMOiQfwFHDKUobBIFf1pdQ== -----END CERTIFICATE-----Generated at Wed Aug 20 10:38:13 2025 by rpki-client