$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/25eb671c-8744-467e-9d84-fb2d40042737.roa File: 25eb671c-8744-467e-9d84-fb2d40042737.roa (raw, json) Hash identifier: KYtTlWFeNWLbtyBSBNKMNq+xP9EWiViFq0OHf7PNsQE= Subject key identifier: EB:1C:DA:5D:1A:0D:36:8B:F8:91:9B:02:A0:96:2C:1D:0E:B7:6D:5B Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 275972823939A298862C06397996E27FAAE18BDB Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/25eb671c-8744-467e-9d84-fb2d40042737.roa Signing time: Wed 13 Aug 2025 15:00:19 +0000 ROA not before: Wed 13 Aug 2025 15:00:19 +0000 ROA not after: Wed 17 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.96.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:59:72:82:39:39:a2:98:86:2c:06:39:79:96:e2:7f:aa:e1:8b:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 13 15:00:19 2025 GMT Not After : Sep 17 23:59:59 2025 GMT Subject: serialNumber=daaf690eef19eb34e6a94caa9c4999cd8d9c2c94da409fd910090346517a7521, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f5:6d:70:5c:fd:d6:6d:55:45:66:06:eb:ce: 35:33:21:74:34:ae:fb:b9:0a:23:7e:00:ad:f1:1f: f6:fa:92:93:db:d6:d0:ec:46:72:98:5b:9c:2b:6b: e7:1c:e3:19:f0:3b:17:57:4f:fe:bf:76:24:d2:09: 3e:36:07:d6:17:1f:c4:10:bd:0d:72:a6:4e:9a:72: 15:23:e4:09:fa:8a:8d:25:51:6c:5c:28:f1:79:42: 33:23:62:83:37:39:9b:2e:bd:b0:70:7b:e0:e3:da: 95:07:1a:1d:1f:9f:c8:42:b0:fe:fd:72:af:53:6a: 3d:60:cf:f8:a7:3c:ae:66:8e:2a:75:b3:5b:5d:3d: be:d9:99:5a:da:9a:1a:c5:b9:50:52:51:89:6b:44: 55:9c:33:fb:39:81:82:9b:f7:53:92:af:9b:2e:67: 93:df:9a:a6:bc:fb:eb:fb:d2:70:40:a6:e8:ae:57: db:4b:96:ee:8c:43:c4:89:4c:6e:19:9c:01:2d:94: 79:d9:34:2f:4c:a4:0b:4a:65:66:9f:a8:3a:a1:e4: 54:08:64:00:26:86:73:36:ce:38:32:7d:57:ca:5f: a1:e3:09:f7:87:e8:75:af:47:71:a1:7d:b7:dd:3d: d1:ee:ce:9b:b1:c9:c7:81:59:42:68:57:19:ff:a6: 21:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:1C:DA:5D:1A:0D:36:8B:F8:91:9B:02:A0:96:2C:1D:0E:B7:6D:5B X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/25eb671c-8744-467e-9d84-fb2d40042737.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.96.0.0/14 Signature Algorithm: sha256WithRSAEncryption 3e:67:e1:80:73:74:e7:b3:13:fc:75:4f:7c:16:48:59:27:13: 5f:85:8d:f6:2c:a2:24:8e:23:e2:d6:b8:57:72:10:51:dd:30: b8:53:15:f4:ee:7b:01:58:6e:e6:78:ed:2a:a7:1c:d5:0c:9c: 43:b5:37:1d:d8:7e:7d:f9:f4:6c:39:04:30:69:d2:d4:3d:61: 3f:56:c9:ee:ae:da:a3:1e:15:93:16:b9:aa:f0:01:53:06:10: d7:7e:23:ee:c2:c0:1f:4f:cb:c2:1e:d9:8d:b6:5b:eb:16:3b: dd:52:90:12:02:d7:f0:10:44:0d:af:ba:8d:85:25:ef:01:96: c2:eb:6e:f4:5c:7e:47:c1:9e:69:11:ca:cd:a0:62:de:9e:89: 45:90:d0:10:3f:66:89:a7:f4:67:ea:5a:c3:86:08:ae:f3:74: 75:97:74:38:16:2a:c7:91:8f:8d:2e:44:9a:d9:1c:e9:3c:21: 83:cf:f3:d8:dd:1f:27:ae:5a:45:9c:cb:46:a5:6b:23:e5:bd: bc:54:a5:66:d6:09:72:e0:17:e8:53:18:52:7f:c5:69:0e:ba: 00:cd:71:1a:48:e4:e4:35:77:b6:c8:00:37:a0:b5:fd:aa:a0: fd:7e:61:20:94:0a:b5:88:89:68:4d:7c:50:60:86:14:19:e7: c4:4f:39:2a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUJ1lygjk5opiGLAY5eZbif6rhi9swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODEzMTUwMDE5WhcNMjUwOTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkYWFmNjkwZWVmMTllYjM0ZTZhOTRjYWE5YzQ5OTljZDhk OWMyYzk0ZGE0MDlmZDkxMDA5MDM0NjUxN2E3NTIxMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC59W1wXP3WbVVFZgbrzjUzIXQ0rvu5CiN+AK3xH/b6kpPb 1tDsRnKYW5wra+cc4xnwOxdXT/6/diTSCT42B9YXH8QQvQ1ypk6achUj5An6io0l UWxcKPF5QjMjYoM3OZsuvbBwe+Dj2pUHGh0fn8hCsP79cq9Taj1gz/inPK5mjip1 s1tdPb7ZmVramhrFuVBSUYlrRFWcM/s5gYKb91OSr5suZ5Pfmqa8++v70nBApuiu V9tLlu6MQ8SJTG4ZnAEtlHnZNC9MpAtKZWafqDqh5FQIZAAmhnM2zjgyfVfKX6Hj CfeH6HWvR3GhfbfdPdHuzpuxyceBWUJoVxn/piExAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU6xzaXRoNNov4kZsCoJYsHQ63bVswHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzI1ZWI2NzFjLTg3NDQtNDY3ZS05ZDg0LWZiMmQ0MDA0MjczNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwISYDANBgkqhkiG9w0BAQsFAAOCAQEAPmfhgHN057MT/HVPfBZIWScTX4WN 9iyiJI4j4ta4V3IQUd0wuFMV9O57AVhu5njtKqcc1QycQ7U3Hdh+ffn0bDkEMGnS 1D1hP1bJ7q7aox4Vkxa5qvABUwYQ134j7sLAH0/Lwh7ZjbZb6xY73VKQEgLX8BBE Da+6jYUl7wGWwutu9Fx+R8GeaRHKzaBi3p6JRZDQED9miaf0Z+paw4YIrvN0dZd0 OBYqx5GPjS5Emtkc6Twhg8/z2N0fJ65aRZzLRqVrI+W9vFSlZtYJcuAX6FMYUn/F aQ66AM1xGkjk5DV3tsgAN6C1/aqg/X5hIJQKtYiJaE18UGCGFBnnxE85Kg== -----END CERTIFICATE-----Generated at Wed Aug 20 10:44:17 2025 by rpki-client