$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1b104d16-32c1-4120-849f-050a4b66c723.roa File: 1b104d16-32c1-4120-849f-050a4b66c723.roa (raw, json) Hash identifier: m89JJro9pt3nr98UWw+hWF+rPBEuU0KOZysBIX/t/s0= Subject key identifier: 33:55:ED:62:4B:CE:B4:B7:C7:1A:C9:8E:A4:DF:9A:7F:07:DF:8B:6C Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 561513F253ABE5092D511FC621959F920704F85D Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1b104d16-32c1-4120-849f-050a4b66c723.roa Signing time: Mon 18 Aug 2025 16:11:02 +0000 ROA not before: Mon 18 Aug 2025 16:11:02 +0000 ROA not after: Mon 22 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.220.0.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:15:13:f2:53:ab:e5:09:2d:51:1f:c6:21:95:9f:92:07:04:f8:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 18 16:11:02 2025 GMT Not After : Sep 22 23:59:59 2025 GMT Subject: serialNumber=233759c2ef4dfb71afe8eb6054ab3b300af2140668406f0f40254dcbbdafa944, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:d4:7a:54:d2:f5:6e:a8:88:ff:f4:69:7d:88: 67:fa:c1:fe:c1:3d:02:b5:9f:60:ca:3e:c9:6c:6b: 2e:b1:dc:1d:33:ad:fc:3f:e6:1b:e8:5d:e5:16:bc: 6f:cf:06:89:a6:d9:d4:81:23:40:ba:f9:ef:0d:33: 1a:9b:30:d0:da:2e:a0:de:81:24:87:be:52:d7:2c: 11:4a:13:c5:53:2d:9f:4a:2a:35:05:80:b0:0d:2e: 8b:75:62:fa:10:37:35:75:46:7f:17:ad:71:22:67: 20:f2:d3:9d:8c:8d:f7:fe:92:ab:1d:c1:f5:a6:ec: dd:9a:74:b6:82:f8:5b:35:a6:11:92:90:8b:27:5e: 5d:e1:20:b7:33:a3:68:fa:d7:66:6a:3b:1d:48:46: 6b:a0:3c:8d:6f:05:fb:5a:e9:88:f0:5a:07:8f:7e: ab:7e:27:58:5d:40:bc:21:e5:8e:46:ed:8b:b7:57: 78:e4:bb:b9:cf:3b:57:fd:f0:ac:44:33:b0:2f:57: 3d:07:75:37:ac:90:af:aa:fd:e7:8a:9f:c3:39:81: de:0c:8b:3e:f5:95:4a:3e:ce:87:b8:6d:af:cb:fd: 51:66:f1:fb:2e:99:77:ef:31:91:10:8f:8a:c9:47: 89:70:7f:e5:65:91:ce:77:52:39:6a:b3:a6:c2:e7: fb:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:55:ED:62:4B:CE:B4:B7:C7:1A:C9:8E:A4:DF:9A:7F:07:DF:8B:6C X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1b104d16-32c1-4120-849f-050a4b66c723.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.220.0.0/20 Signature Algorithm: sha256WithRSAEncryption a1:4e:80:3c:18:a7:8f:a1:1f:1b:bc:ef:3a:b5:8a:2a:4f:86: e7:3b:27:b0:d7:3a:9e:c8:90:d4:65:44:3a:cb:dd:bc:36:42: 17:60:5e:cc:b0:29:0c:bd:62:a2:15:62:a3:38:81:1f:b0:05: 6b:06:90:67:4d:d1:66:1c:f1:56:f7:3b:bf:6f:5e:92:19:d6: 1f:6a:9a:f7:c9:5e:d1:ae:8a:e5:d8:de:0b:96:63:27:da:e4: 9c:ca:f0:26:2c:83:77:92:b1:60:d8:e8:c9:f5:66:62:c1:49: 06:9a:1e:f7:ec:47:e4:0a:18:da:5e:af:d4:6f:be:00:e3:7e: 7f:b1:90:58:70:67:34:34:6b:4a:b7:87:9d:56:d7:87:17:11: 2f:22:6c:cf:92:02:5d:35:ae:f0:05:9a:97:f7:24:7d:6a:41: 8d:a3:d3:fc:f8:19:82:7f:91:5f:0f:5a:55:4e:ca:1a:14:c2: bc:0d:8f:05:a1:29:d2:33:a5:0b:21:2b:4e:3c:13:76:d8:3a: ee:41:f5:78:9f:c5:dc:c0:7b:13:5c:b8:fb:a9:31:fc:ca:86: 08:87:7b:0a:31:73:c8:d9:26:51:36:7c:32:f1:96:a1:fb:29: 88:34:0e:16:7d:0b:5b:9f:1b:5c:92:20:e3:53:6d:58:52:33: 4f:2d:49:be -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVhUT8lOr5QktUR/GIZWfkgcE+F0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODE4MTYxMTAyWhcNMjUwOTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0AyMzM3NTljMmVmNGRmYjcxYWZlOGViNjA1NGFiM2IzMDBh ZjIxNDA2Njg0MDZmMGY0MDI1NGRjYmJkYWZhOTQ0MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDF1HpU0vVuqIj/9Gl9iGf6wf7BPQK1n2DKPslsay6x3B0z rfw/5hvoXeUWvG/PBomm2dSBI0C6+e8NMxqbMNDaLqDegSSHvlLXLBFKE8VTLZ9K KjUFgLANLot1YvoQNzV1Rn8XrXEiZyDy052Mjff+kqsdwfWm7N2adLaC+Fs1phGS kIsnXl3hILczo2j612ZqOx1IRmugPI1vBfta6YjwWgePfqt+J1hdQLwh5Y5G7Yu3 V3jku7nPO1f98KxEM7AvVz0HdTeskK+q/eeKn8M5gd4Miz71lUo+zoe4ba/L/VFm 8fsumXfvMZEQj4rJR4lwf+Vlkc53Ujlqs6bC5/sLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUM1XtYkvOtLfHGsmOpN+afwffi2wwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzFiMTA0ZDE2LTMyYzEtNDEyMC04NDlmLTA1MGE0YjY2YzcyMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQP3AAwDQYJKoZIhvcNAQELBQADggEBAKFOgDwYp4+hHxu87zq1iipPhuc7 J7DXOp7IkNRlRDrL3bw2QhdgXsywKQy9YqIVYqM4gR+wBWsGkGdN0WYc8Vb3O79v XpIZ1h9qmvfJXtGuiuXY3guWYyfa5JzK8CYsg3eSsWDY6Mn1ZmLBSQaaHvfsR+QK GNper9RvvgDjfn+xkFhwZzQ0a0q3h51W14cXES8ibM+SAl01rvAFmpf3JH1qQY2j 0/z4GYJ/kV8PWlVOyhoUwrwNjwWhKdIzpQshK048E3bYOu5B9XifxdzAexNcuPup MfzKhgiHewoxc8jZJlE2fDLxlqH7KYg0DhZ9C1ufG1ySIONTbVhSM08tSb4= -----END CERTIFICATE-----Generated at Wed Aug 20 10:40:20 2025 by rpki-client