$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/20dfdb8e-82f9-432c-9d09-08b35b26e968.roa File: 20dfdb8e-82f9-432c-9d09-08b35b26e968.roa (raw, json) Hash identifier: tCGOtDcvS55kzKCYlUpHJxhB1HboPZ29TS6r2i91AqQ= Subject key identifier: 99:61:D2:D7:DE:31:C4:CF:D4:BE:F3:63:96:BF:8C:8A:62:F8:57:3A Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 13896587A48E1DDE1813368B075A9CF05BFB955E Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/20dfdb8e-82f9-432c-9d09-08b35b26e968.roa Signing time: Mon 01 Sep 2025 18:01:48 +0000 ROA not before: Mon 01 Sep 2025 18:01:48 +0000 ROA not after: Mon 06 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.95.46.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 19 Sep 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:89:65:87:a4:8e:1d:de:18:13:36:8b:07:5a:9c:f0:5b:fb:95:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 1 18:01:48 2025 GMT Not After : Oct 6 23:59:59 2025 GMT Subject: serialNumber=3981a879dff15efd596afa70dc9c645791447ca02411ade476aeef964f4d0e58, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:28:2d:1f:b3:78:33:31:52:c6:53:94:1d:2f: 71:24:21:05:9b:4d:80:eb:97:d2:b4:17:86:21:96: a4:31:a9:e7:53:18:30:d2:60:2b:58:e5:b8:1f:57: c7:ef:73:48:dd:b0:bd:02:a5:ed:e8:d8:0f:c4:19: 26:cd:2f:d0:c9:55:2f:3e:23:38:f5:f3:7a:f7:45: 9a:8e:fd:cc:f0:d9:20:45:6f:23:2d:cd:2c:54:61: 1e:59:79:f5:31:fb:ee:74:4d:47:61:0a:71:13:f7: 8d:13:d3:b1:79:49:a9:ab:79:76:f9:25:3a:60:e8: 3f:16:08:83:22:13:e4:0f:b6:5e:97:4b:4b:0d:ff: e5:69:e3:1e:72:c9:15:16:65:42:be:2f:03:b5:3a: 32:fe:4d:2f:fe:32:b4:3f:e2:2d:98:f6:dd:2e:07: 35:1e:9c:f4:6e:ce:4b:20:4b:8f:7d:1e:8a:70:c8: 33:b6:b8:ad:d4:c5:f9:d6:93:c7:4b:2a:53:3c:fd: 4a:cd:61:32:ae:2a:5e:0f:0c:eb:3d:0e:81:26:a5: 11:15:37:c7:fa:54:e4:2e:29:16:e2:d8:d5:71:32: 12:9f:6a:d6:2b:67:e2:60:05:38:cb:af:c7:01:35: 5b:ca:e3:7e:90:cf:2e:a9:a7:cf:60:a2:82:3f:27: c6:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:61:D2:D7:DE:31:C4:CF:D4:BE:F3:63:96:BF:8C:8A:62:F8:57:3A X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/20dfdb8e-82f9-432c-9d09-08b35b26e968.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.95.46.0/24 Signature Algorithm: sha256WithRSAEncryption a9:45:46:12:24:7e:46:dc:34:4b:7d:2c:23:4f:3d:fa:15:79: 45:5f:9a:6b:4f:ee:f3:c4:d2:e7:ab:a4:0c:58:d9:0a:9a:d5: ad:b3:53:eb:d7:40:01:b1:b7:cf:db:24:9b:ef:d7:a7:45:30: 84:7d:62:6b:97:d5:1c:83:2c:1f:56:ff:cf:2c:59:52:95:ee: b8:8c:df:e9:57:27:8b:74:6a:32:8b:62:14:eb:62:22:2a:81: b7:24:8a:5f:b6:a7:e2:8a:91:57:9c:f2:5c:c4:f0:c0:3b:44: 91:ae:b3:be:9c:27:33:cd:cf:22:a9:f9:9f:31:f6:09:fc:16: 7f:56:d4:a2:fc:75:bb:cc:d5:3b:e0:e4:06:ec:ef:5d:d6:36: 33:27:89:9a:6f:fb:ba:54:aa:0d:e2:16:0f:ca:d1:85:31:99: ca:de:82:b6:0a:a5:ff:00:a7:5f:37:37:c0:31:57:3f:e8:ce: 8e:fd:4b:b8:12:3e:f0:99:5f:af:62:cf:33:36:bc:67:23:5f: 3a:ca:a0:61:95:76:3b:03:38:a8:09:31:8e:64:b9:75:e5:9f: 92:16:f0:11:d9:fa:53:83:5a:bc:6e:a1:27:81:3c:90:8e:ce: ed:80:57:87:72:34:ec:24:fa:a3:b4:34:9c:d5:fa:0f:16:07: 39:0a:36:45 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUE4llh6SOHd4YEzaLB1qc8Fv7lV4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTAxMTgwMTQ4WhcNMjUxMDA2MjM1OTU5 WjB6MUkwRwYDVQQFE0AzOTgxYTg3OWRmZjE1ZWZkNTk2YWZhNzBkYzljNjQ1Nzkx NDQ3Y2EwMjQxMWFkZTQ3NmFlZWY5NjRmNGQwZTU4MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMKC0fs3gzMVLGU5QdL3EkIQWbTYDrl9K0F4YhlqQxqedT GDDSYCtY5bgfV8fvc0jdsL0Cpe3o2A/EGSbNL9DJVS8+Izj183r3RZqO/czw2SBF byMtzSxUYR5ZefUx++50TUdhCnET940T07F5SamreXb5JTpg6D8WCIMiE+QPtl6X S0sN/+Vp4x5yyRUWZUK+LwO1OjL+TS/+MrQ/4i2Y9t0uBzUenPRuzksgS499Hopw yDO2uK3UxfnWk8dLKlM8/UrNYTKuKl4PDOs9DoEmpREVN8f6VOQuKRbi2NVxMhKf atYrZ+JgBTjLr8cBNVvK436Qzy6pp89gooI/J8ahAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUmWHS194xxM/UvvNjlr+MimL4VzowHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzIwZGZkYjhlLTgyZjktNDMyYy05ZDA5LTA4YjM1YjI2ZTk2OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA0Xy4wDQYJKoZIhvcNAQELBQADggEBAKlFRhIkfkbcNEt9LCNPPfoVeUVf mmtP7vPE0uerpAxY2Qqa1a2zU+vXQAGxt8/bJJvv16dFMIR9YmuX1RyDLB9W/88s WVKV7riM3+lXJ4t0ajKLYhTrYiIqgbckil+2p+KKkVec8lzE8MA7RJGus76cJzPN zyKp+Z8x9gn8Fn9W1KL8dbvM1Tvg5Abs713WNjMniZpv+7pUqg3iFg/K0YUxmcre grYKpf8Ap183N8AxVz/ozo79S7gSPvCZX69izzM2vGcjXzrKoGGVdjsDOKgJMY5k uXXln5IW8BHZ+lODWrxuoSeBPJCOzu2AV4dyNOwk+qO0NJzV+g8WBzkKNkU= -----END CERTIFICATE-----Generated at Wed Sep 17 11:14:32 2025 by rpki-client