$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1c67054c-b258-414c-a2d5-529dd737a58f.roa File: 1c67054c-b258-414c-a2d5-529dd737a58f.roa (raw, json) Hash identifier: HMMp8D4Cs5Jo0En9uYGljkE5s1VJNN8TNmFzzCpXAaI= Subject key identifier: CA:60:BC:E6:FA:71:DC:54:95:DA:D7:41:DD:DC:D2:14:80:56:BD:B5 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 5A21400202E8B138401227541F9A481F732B0A3B Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1c67054c-b258-414c-a2d5-529dd737a58f.roa Signing time: Tue 05 Aug 2025 15:22:01 +0000 ROA not before: Tue 05 Aug 2025 15:22:01 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.220.120.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:21:40:02:02:e8:b1:38:40:12:27:54:1f:9a:48:1f:73:2b:0a:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 5 15:22:01 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=cd1919751327357190dd74f2e7a12dc6c9aca5409e65bc972f07596e13136605, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:10:16:5f:d6:6c:0c:3e:a7:0e:90:07:2a:e2: 95:59:dc:c9:dd:ab:3a:bc:9d:4f:94:ba:db:bf:3d: 54:70:1e:4f:d2:fe:66:db:48:a5:93:32:56:21:00: d0:bd:ab:1b:e9:f4:69:11:8b:cf:68:2c:90:da:d9: 99:a7:44:8b:4d:c3:02:71:05:f2:bd:d3:c4:a9:97: 6a:67:88:77:3b:71:45:97:94:e2:92:a9:2a:d0:5e: 35:ed:e1:42:85:92:d1:3c:2d:5d:97:5f:04:eb:fe: eb:cd:c2:f8:10:93:ba:07:d1:f7:30:6d:6d:fe:91: 12:b3:97:08:93:7e:ad:ba:55:bf:2b:0f:b9:5f:21: a0:cb:0a:2c:55:94:9c:cf:a1:c0:c7:1c:08:86:d5: 2d:c6:cc:94:c7:43:eb:2b:8a:2c:b8:0f:0d:ff:60: e2:d5:d6:83:e6:61:09:6e:70:53:43:96:85:93:a7: c7:ec:c7:2b:11:35:d7:62:8a:db:b0:c0:a0:e2:db: 3e:82:b5:e3:f7:06:e2:11:5f:19:a6:ca:ba:c3:2d: 7d:31:dc:26:0e:d9:12:81:21:89:a1:4a:1c:59:1d: 02:fe:6b:39:c9:5f:3e:cf:47:68:ca:7e:0d:b9:21: 31:0f:de:19:8a:7b:7f:5f:76:c0:b0:c5:3d:e1:15: e8:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:60:BC:E6:FA:71:DC:54:95:DA:D7:41:DD:DC:D2:14:80:56:BD:B5 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1c67054c-b258-414c-a2d5-529dd737a58f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.220.120.0/21 Signature Algorithm: sha256WithRSAEncryption 06:73:96:cd:d5:e6:80:64:78:53:d8:d3:d0:09:31:e7:22:30: 62:9b:e3:00:db:08:25:dc:e2:d9:90:e5:34:bb:12:fa:4c:26: 97:f4:23:39:39:31:94:72:eb:8d:d2:fd:7d:15:f5:e6:32:bf: 08:20:b1:f0:ca:b4:8b:ce:dc:22:fa:85:bd:b6:0e:98:ef:11: 7c:94:85:d0:6e:1d:ee:97:1b:89:49:19:6a:fa:20:36:5f:49: ad:52:a9:15:62:0a:97:f7:b1:f6:a4:50:8b:92:0b:6a:32:bf: 11:16:0f:bb:57:ab:be:94:8c:4d:de:00:d6:ad:1d:6c:08:7e: 29:19:79:ab:fb:66:38:4f:e5:c6:54:25:05:f0:c8:3f:11:e7: 5c:c9:d9:3e:33:44:f1:99:a8:16:ac:68:c9:1e:21:14:86:8b: 1e:16:d9:df:1a:35:6e:ef:cc:3a:b4:bc:7b:a9:0f:1f:2e:eb: af:c0:2d:d3:cc:be:79:a4:1c:e9:1f:e0:d3:8c:c0:2b:79:61: e3:ca:2e:ca:20:bf:4f:2e:77:d8:bb:1f:e2:53:bc:9e:4b:27: 50:c0:f8:97:65:80:40:39:93:92:7c:ba:05:21:d4:c5:6f:1b: fa:46:c4:0d:e0:24:ad:4d:5f:9e:a7:c3:c3:29:1b:4b:6a:a4: 11:ea:37:f3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWiFAAgLosThAEidUH5pIH3MrCjswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODA1MTUyMjAxWhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZDE5MTk3NTEzMjczNTcxOTBkZDc0ZjJlN2ExMmRjNmM5 YWNhNTQwOWU2NWJjOTcyZjA3NTk2ZTEzMTM2NjA1MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9EBZf1mwMPqcOkAcq4pVZ3Mndqzq8nU+Uutu/PVRwHk/S /mbbSKWTMlYhANC9qxvp9GkRi89oLJDa2ZmnRItNwwJxBfK908Spl2pniHc7cUWX lOKSqSrQXjXt4UKFktE8LV2XXwTr/uvNwvgQk7oH0fcwbW3+kRKzlwiTfq26Vb8r D7lfIaDLCixVlJzPocDHHAiG1S3GzJTHQ+sriiy4Dw3/YOLV1oPmYQlucFNDloWT p8fsxysRNddiituwwKDi2z6CteP3BuIRXxmmyrrDLX0x3CYO2RKBIYmhShxZHQL+ aznJXz7PR2jKfg25ITEP3hmKe39fdsCwxT3hFehxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUymC85vpx3FSV2tdB3dzSFIBWvbUwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzFjNjcwNTRjLWIyNTgtNDE0Yy1hMmQ1LTUyOWRkNzM3YTU4Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMP3HgwDQYJKoZIhvcNAQELBQADggEBAAZzls3V5oBkeFPY09AJMeciMGKb 4wDbCCXc4tmQ5TS7EvpMJpf0Izk5MZRy643S/X0V9eYyvwggsfDKtIvO3CL6hb22 DpjvEXyUhdBuHe6XG4lJGWr6IDZfSa1SqRViCpf3sfakUIuSC2oyvxEWD7tXq76U jE3eANatHWwIfikZeav7ZjhP5cZUJQXwyD8R51zJ2T4zRPGZqBasaMkeIRSGix4W 2d8aNW7vzDq0vHupDx8u66/ALdPMvnmkHOkf4NOMwCt5YePKLsogv08ud9i7H+JT vJ5LJ1DA+JdlgEA5k5J8ugUh1MVvG/pGxA3gJK1NX56nw8MpG0tqpBHqN/M= -----END CERTIFICATE-----Generated at Wed Aug 20 10:38:09 2025 by rpki-client