$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/22586366-872a-4037-9f6a-47cc45bc4ab9.roa File: 22586366-872a-4037-9f6a-47cc45bc4ab9.roa (raw, json) Hash identifier: ri8hfPTAA3iWoymqC0vPgS3PX1txpRjOsEHAx86/eXU= Subject key identifier: D5:58:AB:DE:74:8B:4E:8E:0F:5A:03:0B:72:FD:F0:4E:7E:4D:AD:78 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 0CB9C393F8269CF73F376FF63F44C23C021E08CB Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/22586366-872a-4037-9f6a-47cc45bc4ab9.roa Signing time: Tue 19 Aug 2025 16:40:07 +0000 ROA not before: Tue 19 Aug 2025 16:40:07 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.219.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:b9:c3:93:f8:26:9c:f7:3f:37:6f:f6:3f:44:c2:3c:02:1e:08:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 19 16:40:07 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=a931458bb027331628356b55e83bc091bb43107af18b978e756945f17fe002fd, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:8e:ed:d1:14:18:bd:ce:b6:32:f3:a8:48:b1: f3:60:d4:cb:4b:f7:27:be:1a:9f:57:78:43:e0:81: 84:64:10:c1:8e:ee:79:87:61:19:7a:64:46:44:51: ac:6c:d8:77:68:ce:73:37:31:78:31:69:42:48:de: b9:f0:16:ea:94:5b:3c:62:9c:19:c6:f3:15:e7:2a: c7:4c:7e:fd:57:76:7c:6e:8c:25:47:db:ed:e9:fc: bc:e3:bb:ed:e0:c4:84:9c:20:09:3b:c1:f3:e6:25: d2:3f:e8:af:b5:e9:a7:ad:f2:dc:55:ad:0c:97:93: 5d:f1:99:6d:4f:0b:4a:d9:50:7e:db:39:26:09:20: 96:ae:95:5e:5f:50:a8:46:bf:be:9e:42:98:9f:a8: e8:18:96:80:2e:12:f7:d9:8c:e7:5e:a6:8a:3c:0e: fd:a4:36:91:90:e9:6a:72:7a:e0:7b:1c:19:28:50: 77:f9:77:19:17:14:70:c9:00:ae:52:e2:1a:86:40: b9:e3:ae:4a:e3:e7:c2:40:89:7c:09:02:94:11:4a: ca:32:8f:26:ab:97:d6:b5:4a:5f:5f:2e:94:d2:67: e3:2f:28:3e:fa:ed:2b:af:d5:9f:6d:31:d3:46:c4: 13:ae:2f:0b:64:71:c1:c3:6d:4c:4a:c0:0a:a2:53: 77:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:58:AB:DE:74:8B:4E:8E:0F:5A:03:0B:72:FD:F0:4E:7E:4D:AD:78 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/22586366-872a-4037-9f6a-47cc45bc4ab9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.219.128.0/18 Signature Algorithm: sha256WithRSAEncryption a1:7d:9b:66:7c:70:56:2d:d9:b4:08:78:28:d1:17:1e:83:d6: 58:f2:77:3a:84:9c:2c:a2:9f:62:8a:82:d4:27:73:20:bf:47: 56:a5:3b:21:4d:d1:69:4d:d9:58:b0:2c:5a:9f:20:34:01:a3: 05:69:da:7a:7b:30:d9:66:3a:81:dd:c9:fc:74:2a:59:2d:95: 53:47:2d:00:88:e8:d5:ef:c8:8f:a6:7d:a0:df:2e:fb:40:01: f1:41:09:50:b4:7c:f5:be:ff:88:f4:5c:23:9d:1a:d2:7f:d7: 58:86:22:d1:31:ab:c2:40:ec:c5:bd:d1:45:62:77:f8:ab:3d: 34:26:1a:9a:a8:a2:2a:10:68:c6:6a:e0:fe:17:79:53:ea:e0: a6:af:78:ff:35:04:cb:1e:48:0d:62:1c:ec:3c:a8:38:d8:84: fb:40:95:79:91:17:40:40:5d:ee:c0:46:ad:f7:b3:1b:64:7e: 3f:4a:09:50:5d:53:96:90:05:49:b9:87:c8:1c:59:2b:56:8c: 4e:b5:3a:c0:07:b2:65:57:d9:f6:76:d4:c6:32:c4:27:51:b6: 73:28:47:31:ca:2a:58:5c:8c:cd:ad:d7:72:76:e3:25:58:91: 3c:90:3d:3a:b5:e3:97:25:3b:48:40:9d:e4:60:08:28:74:3e: 0f:58:e3:58 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDLnDk/gmnPc/N2/2P0TCPAIeCMswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODE5MTY0MDA3WhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BhOTMxNDU4YmIwMjczMzE2MjgzNTZiNTVlODNiYzA5MWJi NDMxMDdhZjE4Yjk3OGU3NTY5NDVmMTdmZTAwMmZkMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDgju3RFBi9zrYy86hIsfNg1MtL9ye+Gp9XeEPggYRkEMGO 7nmHYRl6ZEZEUaxs2HdoznM3MXgxaUJI3rnwFuqUWzxinBnG8xXnKsdMfv1Xdnxu jCVH2+3p/Lzju+3gxIScIAk7wfPmJdI/6K+16aet8txVrQyXk13xmW1PC0rZUH7b OSYJIJaulV5fUKhGv76eQpifqOgYloAuEvfZjOdepoo8Dv2kNpGQ6WpyeuB7HBko UHf5dxkXFHDJAK5S4hqGQLnjrkrj58JAiXwJApQRSsoyjyarl9a1Sl9fLpTSZ+Mv KD767Suv1Z9tMdNGxBOuLwtkccHDbUxKwAqiU3fbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU1Vir3nSLTo4PWgMLcv3wTn5NrXgwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzIyNTg2MzY2LTg3MmEtNDAzNy05ZjZhLTQ3Y2M0NWJjNGFiOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAY224AwDQYJKoZIhvcNAQELBQADggEBAKF9m2Z8cFYt2bQIeCjRFx6D1ljy dzqEnCyin2KKgtQncyC/R1alOyFN0WlN2ViwLFqfIDQBowVp2np7MNlmOoHdyfx0 KlktlVNHLQCI6NXvyI+mfaDfLvtAAfFBCVC0fPW+/4j0XCOdGtJ/11iGItExq8JA 7MW90UVid/irPTQmGpqooioQaMZq4P4XeVPq4KaveP81BMseSA1iHOw8qDjYhPtA lXmRF0BAXe7ARq33sxtkfj9KCVBdU5aQBUm5h8gcWStWjE61OsAHsmVX2fZ21MYy xCdRtnMoRzHKKlhcjM2t13J24yVYkTyQPTq145clO0hAneRgCCh0Pg9Y41g= -----END CERTIFICATE-----Generated at Wed Aug 20 10:41:02 2025 by rpki-client