$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1e4a270a-8468-429b-9756-be2ffa392b61.roa File: 1e4a270a-8468-429b-9756-be2ffa392b61.roa (raw, json) Hash identifier: 9KE2OsjCZoejmEQ8Iyplg4pMe2fF5b26+ywrSIMl0jc= Subject key identifier: 86:D7:3F:26:D5:D9:0C:FA:22:86:39:72:A2:97:38:8C:9F:88:BD:C8 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 43B86076F478BDA4CB4FD195763BBC6000C73813 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1e4a270a-8468-429b-9756-be2ffa392b61.roa Signing time: Tue 05 Aug 2025 17:00:18 +0000 ROA not before: Tue 05 Aug 2025 17:00:18 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.119.214.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:b8:60:76:f4:78:bd:a4:cb:4f:d1:95:76:3b:bc:60:00:c7:38:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 5 17:00:18 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=32481a4e3fa8361eae665911828b957ae1dc1384c1d294bd3c7111f3b3652612, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:1f:52:71:0d:af:e2:fe:29:8c:45:02:d6:71: 7b:9d:2e:2a:0e:f1:a9:35:c3:7a:3d:b4:0e:97:33: f9:13:27:de:6e:a6:d4:c9:f9:b7:90:83:f0:df:4c: c6:b6:f9:30:ba:f4:e6:f6:2c:a6:43:66:03:30:d4: 42:ff:4b:c9:59:35:7f:85:ef:7b:5c:e9:6e:a5:4a: 95:d6:d4:ca:1d:81:a2:8c:a5:e2:a8:ea:53:ed:e2: 20:99:24:59:19:2c:ef:fc:01:43:e7:dc:d7:81:e1: 06:e9:da:42:eb:e1:37:f3:62:51:13:48:53:70:51: 76:9f:95:be:4c:13:2f:0d:e1:2a:0b:34:3d:e7:8d: 30:f4:3b:3c:db:5d:42:a6:d6:8f:b8:51:80:6b:9e: c5:4d:a8:ea:12:ff:b6:87:9f:ea:38:86:63:40:a9: 81:5d:e4:34:5e:7c:95:95:e7:40:e3:ed:28:89:80: 70:53:02:64:fe:17:a4:d6:f9:9f:b3:71:a7:d3:5d: ae:cc:e4:3a:54:89:86:bb:d5:0b:8c:fa:ce:0b:18: 1b:e3:9a:a5:3b:59:a2:8f:6c:ae:70:f2:39:93:50: 9e:e6:a8:49:be:3a:ba:12:c5:1c:75:2a:0e:3f:b4: 19:7a:04:fb:7a:22:3b:48:2d:49:43:f4:c5:ca:4a: 8b:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:D7:3F:26:D5:D9:0C:FA:22:86:39:72:A2:97:38:8C:9F:88:BD:C8 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1e4a270a-8468-429b-9756-be2ffa392b61.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.119.214.0/23 Signature Algorithm: sha256WithRSAEncryption 5f:02:68:f0:ac:de:11:b3:4b:ac:56:4e:7a:bc:78:c0:a4:23: 08:ed:d1:4c:3f:20:2e:6c:89:c2:7f:11:14:4d:f9:49:a6:33: 4a:d0:b2:43:2e:ce:51:3f:09:57:e2:65:01:7d:4b:c3:8c:1e: 27:96:84:90:65:76:8d:e3:f2:26:70:0d:de:d0:af:14:de:19: 53:09:1d:00:e5:98:ea:1a:0f:be:84:e6:52:0c:be:fc:0d:e2: 2d:0a:48:11:f5:3a:54:df:98:4c:ed:36:c8:77:6b:10:7b:8c: 62:7e:1a:e8:a3:8a:9b:60:2f:e5:9b:1a:58:b9:c8:c0:98:f2: 5b:b9:98:dc:bf:ed:b6:30:f3:e5:5f:51:40:09:f6:2f:7e:46: 0f:44:d9:5a:04:c3:15:ee:c3:26:20:39:4e:fd:f4:97:9e:71: bb:bd:8e:ec:65:2c:66:be:ab:b3:6a:8d:8b:cf:3f:6b:47:27: d0:46:47:49:2d:42:98:06:a0:85:c4:1a:58:5b:20:e6:bb:e4: c2:05:f0:f5:4a:c5:0c:fd:73:2a:bd:22:c0:8d:cf:7d:69:d6: 2d:63:d2:14:a0:b7:37:ea:d4:c5:3c:40:37:8b:b9:e1:c3:72: e8:65:d7:62:14:b8:b2:87:07:8f:e8:9f:7d:35:f7:ad:eb:2c: 6e:f5:79:4a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQ7hgdvR4vaTLT9GVdju8YADHOBMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODA1MTcwMDE4WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMjQ4MWE0ZTNmYTgzNjFlYWU2NjU5MTE4MjhiOTU3YWUx ZGMxMzg0YzFkMjk0YmQzYzcxMTFmM2IzNjUyNjEyMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGH1JxDa/i/imMRQLWcXudLioO8ak1w3o9tA6XM/kTJ95u ptTJ+beQg/DfTMa2+TC69Ob2LKZDZgMw1EL/S8lZNX+F73tc6W6lSpXW1ModgaKM peKo6lPt4iCZJFkZLO/8AUPn3NeB4Qbp2kLr4TfzYlETSFNwUXaflb5MEy8N4SoL ND3njTD0OzzbXUKm1o+4UYBrnsVNqOoS/7aHn+o4hmNAqYFd5DRefJWV50Dj7SiJ gHBTAmT+F6TW+Z+zcafTXa7M5DpUiYa71QuM+s4LGBvjmqU7WaKPbK5w8jmTUJ7m qEm+OroSxRx1Kg4/tBl6BPt6IjtILUlD9MXKSottAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUhtc/JtXZDPoihjlyopc4jJ+IvcgwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzFlNGEyNzBhLTg0NjgtNDI5Yi05NzU2LWJlMmZmYTM5MmI2MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAE0d9YwDQYJKoZIhvcNAQELBQADggEBAF8CaPCs3hGzS6xWTnq8eMCkIwjt 0Uw/IC5sicJ/ERRN+UmmM0rQskMuzlE/CVfiZQF9S8OMHieWhJBldo3j8iZwDd7Q rxTeGVMJHQDlmOoaD76E5lIMvvwN4i0KSBH1OlTfmEztNsh3axB7jGJ+Guijiptg L+WbGli5yMCY8lu5mNy/7bYw8+VfUUAJ9i9+Rg9E2VoEwxXuwyYgOU799Jeecbu9 juxlLGa+q7NqjYvPP2tHJ9BGR0ktQpgGoIXEGlhbIOa75MIF8PVKxQz9cyq9IsCN z31p1i1j0hSgtzfq1MU8QDeLueHDcuhl12IUuLKHB4/on301963rLG71eUo= -----END CERTIFICATE-----Generated at Wed Aug 20 10:43:55 2025 by rpki-client