$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1fc79b27-b011-4257-9fc4-f1610de29aab.roa File: 1fc79b27-b011-4257-9fc4-f1610de29aab.roa (raw, json) Hash identifier: j/1iFg+yoAmk00NH258P79JCVRSXtIuvscCGKzMvsxk= Subject key identifier: 6B:BB:7F:75:3B:D6:1F:6F:00:BF:84:36:A7:EE:A7:80:63:57:7A:81 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 61EAA389EC794CC9D3F6514BADE3E8D85EEB225C Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1fc79b27-b011-4257-9fc4-f1610de29aab.roa Signing time: Tue 19 Aug 2025 15:50:10 +0000 ROA not before: Tue 19 Aug 2025 15:50:10 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.76.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:ea:a3:89:ec:79:4c:c9:d3:f6:51:4b:ad:e3:e8:d8:5e:eb:22:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 19 15:50:10 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=ebd671c61d450073ebff3de97b09af2893288b419f2cf258bb97758b809ef413, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:6d:2f:5d:8a:6b:2d:8c:0d:b4:0d:73:00:c1: 9b:6d:71:1b:3a:41:70:f4:bc:be:02:d7:ff:2d:a5: 9d:32:e5:dc:81:c9:3a:12:c5:1a:29:08:ba:b9:9c: 83:4b:c5:81:cc:bd:8f:85:9c:c3:43:c8:19:0a:42: 85:f7:da:1b:24:47:5c:58:a2:6f:b3:04:54:52:70: bc:04:0a:b9:50:0c:03:48:ab:b8:3c:14:0a:cc:0d: 8e:8c:73:dd:c9:6f:a8:5b:7a:00:50:b3:3f:c4:96: 78:63:06:bd:d7:a4:4d:61:11:e0:b8:46:fa:b7:87: 3c:cb:6e:29:30:fd:fd:81:e1:5c:72:be:63:a7:8c: c1:2c:13:50:7f:cc:36:f2:1d:f1:25:ab:82:e8:9e: d8:f4:f8:71:c7:73:87:8a:07:c4:5f:e5:f0:38:d9: 6c:fe:da:27:e8:f6:cc:98:7e:37:15:69:bd:5e:c3: c5:f4:d4:ba:34:37:6d:a2:da:03:a9:c1:dc:ae:87: 03:4b:3b:d0:1b:f4:5b:f5:8f:7b:f6:87:11:18:38: 4c:ba:d3:8d:5c:e4:8f:cb:01:74:50:8e:53:22:c8: 61:87:33:95:af:aa:c3:d5:b7:b5:5e:35:7f:e1:da: a2:27:ed:aa:d0:64:69:e0:3e:4b:fd:0c:57:3c:19: 07:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:BB:7F:75:3B:D6:1F:6F:00:BF:84:36:A7:EE:A7:80:63:57:7A:81 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1fc79b27-b011-4257-9fc4-f1610de29aab.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.76.128.0/17 Signature Algorithm: sha256WithRSAEncryption 1d:f8:a8:b2:f4:14:d4:ed:8b:4d:c6:d9:e5:eb:8a:e0:e4:e7: ec:df:22:82:45:3f:63:1c:2f:e6:70:88:13:32:1b:2b:25:04: 6d:2f:7a:e6:b0:49:f6:fa:57:49:2c:47:11:c7:b9:9d:2e:a1: ce:b7:6a:34:3e:c0:86:2c:15:4b:63:be:26:e5:24:fe:68:f2: 18:5b:e8:48:d0:a4:cb:ad:2a:f2:3c:54:6d:16:46:c0:d9:7a: c5:65:e5:95:89:3a:81:02:8d:ba:cd:f2:45:c1:e8:c6:bf:69: 44:ef:9e:8b:d3:99:e3:ea:d1:8a:a3:c6:a6:7c:07:29:68:a6: 27:a8:7a:5f:cd:bd:81:0a:cb:b5:b5:2a:86:52:a6:e5:4a:db: de:da:97:2e:3f:df:b8:1b:18:19:4e:cb:06:8c:14:19:cf:2b: 44:f2:ff:3b:70:d7:2b:7f:8e:44:91:85:48:36:30:c8:2e:d1: d4:a9:02:f1:8d:ef:2d:0d:dd:83:70:85:f0:9a:b3:bc:b4:c4: 60:d5:40:12:3c:33:1c:44:c3:95:7a:52:1a:b4:43:92:59:33: 20:91:60:29:95:86:2d:62:83:b1:13:47:49:ba:1a:bd:bc:50: 96:91:69:64:b1:9b:3e:c3:80:84:2b:eb:bb:e8:7e:29:e0:64: 2e:df:ab:1b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYeqjiex5TMnT9lFLrePo2F7rIlwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODE5MTU1MDEwWhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BlYmQ2NzFjNjFkNDUwMDczZWJmZjNkZTk3YjA5YWYyODkz Mjg4YjQxOWYyY2YyNThiYjk3NzU4YjgwOWVmNDEzMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2bS9dimstjA20DXMAwZttcRs6QXD0vL4C1/8tpZ0y5dyB yToSxRopCLq5nINLxYHMvY+FnMNDyBkKQoX32hskR1xYom+zBFRScLwECrlQDANI q7g8FArMDY6Mc93Jb6hbegBQsz/ElnhjBr3XpE1hEeC4Rvq3hzzLbikw/f2B4Vxy vmOnjMEsE1B/zDbyHfElq4Lontj0+HHHc4eKB8Rf5fA42Wz+2ifo9syYfjcVab1e w8X01Lo0N22i2gOpwdyuhwNLO9Ab9Fv1j3v2hxEYOEy6041c5I/LAXRQjlMiyGGH M5WvqsPVt7VeNX/h2qIn7arQZGngPkv9DFc8GQdVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUa7t/dTvWH28Av4Q2p+6ngGNXeoEwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzFmYzc5YjI3LWIwMTEtNDI1Ny05ZmM0LWYxNjEwZGUyOWFhYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAc0TIAwDQYJKoZIhvcNAQELBQADggEBAB34qLL0FNTti03G2eXriuDk5+zf IoJFP2McL+ZwiBMyGyslBG0veuawSfb6V0ksRxHHuZ0uoc63ajQ+wIYsFUtjvibl JP5o8hhb6EjQpMutKvI8VG0WRsDZesVl5ZWJOoECjbrN8kXB6Ma/aUTvnovTmePq 0YqjxqZ8Bylopieoel/NvYEKy7W1KoZSpuVK297aly4/37gbGBlOywaMFBnPK0Ty /ztw1yt/jkSRhUg2MMgu0dSpAvGN7y0N3YNwhfCas7y0xGDVQBI8MxxEw5V6Uhq0 Q5JZMyCRYCmVhi1ig7ETR0m6Gr28UJaRaWSxmz7DgIQr67vofingZC7fqxs= -----END CERTIFICATE-----Generated at Wed Aug 20 10:37:55 2025 by rpki-client