$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1f43d15a-ea57-4a18-afbe-dc7b7a5d7427.roa File: 1f43d15a-ea57-4a18-afbe-dc7b7a5d7427.roa (raw, json) Hash identifier: 2jYC5h2lYe14Wj9bIUmskU6h0tB+uOiouDIYBoGckQU= Subject key identifier: 76:44:5F:0F:A9:AB:12:30:89:76:03:3A:D1:84:D3:CE:DB:C9:45:4B Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 77A6230F43EBB6B90AFC4653BF699D9F8DB93312 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1f43d15a-ea57-4a18-afbe-dc7b7a5d7427.roa Signing time: Wed 13 Aug 2025 00:50:24 +0000 ROA not before: Wed 13 Aug 2025 00:50:24 +0000 ROA not after: Wed 17 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.230.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:a6:23:0f:43:eb:b6:b9:0a:fc:46:53:bf:69:9d:9f:8d:b9:33:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 13 00:50:24 2025 GMT Not After : Sep 17 23:59:59 2025 GMT Subject: serialNumber=2b41fc1dfc91f4e42111784192a5c9e4c1cb910083c92f73e3aec10689b4bc6d, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:d7:45:f1:d6:20:10:a2:fe:88:cc:3e:ba:f1: 4c:91:e1:ca:fa:9d:50:7c:c0:0c:77:ba:81:93:65: 57:35:06:3c:bf:d8:04:74:55:7e:4e:50:97:53:cf: d1:a7:f7:b3:2c:52:4e:e1:c0:de:2f:e0:18:0e:9b: 07:30:ff:22:6f:79:83:38:c6:c6:9d:25:6c:4f:f3: e7:0d:2b:ba:bc:1a:15:fb:50:de:23:e9:99:ae:d9: 91:ce:f0:4d:24:64:21:82:1e:d6:47:24:53:16:81: 6f:ab:93:c2:8b:fc:95:83:a5:5d:bc:39:39:fc:40: eb:ea:a6:da:f5:d6:6f:16:80:1a:63:24:1d:eb:88: 25:d6:be:8c:c4:16:dd:ca:54:f1:79:d7:cc:3f:23: 64:04:7d:04:32:86:ae:39:79:27:73:26:67:14:2f: 6a:8e:13:bd:b4:9b:6b:93:29:50:f1:ea:d6:f8:3d: f8:d0:f9:90:ec:a5:b0:26:20:0c:37:9e:2a:c6:73: 77:42:96:41:8b:86:6d:27:be:de:bc:8d:d6:23:18: 89:91:f7:79:c8:ed:9a:16:8f:a9:db:ff:61:bb:e3: a7:ef:54:de:3d:9c:43:f1:05:53:b9:a8:96:64:c3: 61:dd:59:d9:c9:da:c2:31:cb:2c:9d:43:44:2b:97: a8:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:44:5F:0F:A9:AB:12:30:89:76:03:3A:D1:84:D3:CE:DB:C9:45:4B X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1f43d15a-ea57-4a18-afbe-dc7b7a5d7427.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.230.14.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:14:ad:1d:e6:65:88:f6:ee:7d:cc:97:03:25:7c:22:da:73: 37:84:b6:d9:a7:a6:ce:d4:c0:df:f2:27:a3:2c:9e:b3:42:2f: 28:8d:1e:43:0a:78:41:25:4e:5e:d3:47:a8:7f:7a:ee:5d:aa: 7a:3c:98:5a:a2:ac:fd:57:7a:8e:c0:a5:34:67:09:df:5e:4e: c4:4d:97:eb:c0:07:cb:1b:79:65:22:32:99:39:9b:d7:cf:e2: 7e:6f:32:62:5e:90:c0:fa:b9:74:38:77:8a:35:4c:59:41:65: 8b:d4:18:af:99:b7:34:cd:81:1e:47:25:4d:b0:c2:b6:88:9e: 36:e8:c8:29:6d:dd:3e:da:5c:0d:a4:12:28:7c:e0:5e:e5:34: 59:7c:5b:94:45:74:ff:ea:11:92:dc:5f:58:49:9b:c3:aa:87: 21:22:0d:2c:a1:0b:c7:34:1f:e9:ec:3c:27:25:b9:06:16:65: 9a:bd:23:ba:b2:da:93:ef:a1:72:03:ad:18:49:f8:5f:12:6d: fa:72:aa:00:7a:90:3c:f0:e1:c3:65:f1:f4:b4:a9:05:a3:0f: e3:c7:3d:0c:72:7a:17:1e:ac:88:9c:02:ef:0f:24:01:91:0b: b2:13:ff:96:7d:1e:6a:19:42:78:03:a0:d6:8d:dd:fc:8f:e8: 51:84:35:ee -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUd6YjD0PrtrkK/EZTv2mdn425MxIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODEzMDA1MDI0WhcNMjUwOTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyYjQxZmMxZGZjOTFmNGU0MjExMTc4NDE5MmE1YzllNGMx Y2I5MTAwODNjOTJmNzNlM2FlYzEwNjg5YjRiYzZkMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCT10Xx1iAQov6IzD668UyR4cr6nVB8wAx3uoGTZVc1Bjy/ 2AR0VX5OUJdTz9Gn97MsUk7hwN4v4BgOmwcw/yJveYM4xsadJWxP8+cNK7q8GhX7 UN4j6Zmu2ZHO8E0kZCGCHtZHJFMWgW+rk8KL/JWDpV28OTn8QOvqptr11m8WgBpj JB3riCXWvozEFt3KVPF518w/I2QEfQQyhq45eSdzJmcUL2qOE720m2uTKVDx6tb4 PfjQ+ZDspbAmIAw3nirGc3dClkGLhm0nvt68jdYjGImR93nI7ZoWj6nb/2G746fv VN49nEPxBVO5qJZkw2HdWdnJ2sIxyyydQ0Qrl6iHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUdkRfD6mrEjCJdgM60YTTztvJRUswHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzFmNDNkMTVhLWVhNTctNGExOC1hZmJlLWRjN2I3YTVkNzQyNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAP5g4wDQYJKoZIhvcNAQELBQADggEBAFsUrR3mZYj27n3MlwMlfCLaczeE ttmnps7UwN/yJ6MsnrNCLyiNHkMKeEElTl7TR6h/eu5dqno8mFqirP1Xeo7ApTRn Cd9eTsRNl+vAB8sbeWUiMpk5m9fP4n5vMmJekMD6uXQ4d4o1TFlBZYvUGK+ZtzTN gR5HJU2wwraInjboyClt3T7aXA2kEih84F7lNFl8W5RFdP/qEZLcX1hJm8OqhyEi DSyhC8c0H+nsPCcluQYWZZq9I7qy2pPvoXIDrRhJ+F8SbfpyqgB6kDzw4cNl8fS0 qQWjD+PHPQxyehcerIicAu8PJAGRC7IT/5Z9HmoZQngDoNaN3fyP6FGENe4= -----END CERTIFICATE-----Generated at Wed Aug 20 10:38:17 2025 by rpki-client