$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/27faa4d7-d285-4042-870f-e16b6211a368.roa File: 27faa4d7-d285-4042-870f-e16b6211a368.roa (raw, json) Hash identifier: sJz/YiLK6tAsX27CMKwk/rZk+J0nrXE1eKTUoqmFOyQ= Subject key identifier: E7:00:15:DB:68:4C:AC:75:D0:19:FA:B7:97:51:17:A4:93:13:A6:93 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 25B254073B965BAD8A89F3707544817DE85553D6 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/27faa4d7-d285-4042-870f-e16b6211a368.roa Signing time: Mon 18 Aug 2025 16:11:00 +0000 ROA not before: Mon 18 Aug 2025 16:11:00 +0000 ROA not after: Mon 22 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.220.136.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:b2:54:07:3b:96:5b:ad:8a:89:f3:70:75:44:81:7d:e8:55:53:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 18 16:11:00 2025 GMT Not After : Sep 22 23:59:59 2025 GMT Subject: serialNumber=497b9560ed7bce41886d9cacfb042a087d0d79300f4daad48b8a9016b4407356, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:30:06:e5:e9:9e:5e:8a:c5:0b:03:79:0c:e2: 91:84:92:f8:0d:76:dd:35:61:0a:3f:8b:ca:db:5c: 59:2a:88:28:4f:27:5d:9a:5b:27:b1:d4:8b:04:98: 89:9d:90:59:49:6a:c2:dc:b7:6b:4e:62:06:5f:20: 5b:cd:e5:0c:9f:e7:2a:e7:b2:62:03:fc:13:24:f1: bd:1c:13:d9:43:81:8e:d0:3c:dc:fe:fc:bc:56:6c: 4c:f0:44:89:af:bb:13:66:7d:65:74:46:ec:66:9c: 90:8d:fa:e1:5a:55:63:ee:9e:20:3e:da:a8:44:02: 8a:9f:7a:62:22:42:d1:fb:c9:74:a1:ea:14:07:6e: 5a:e5:5b:0f:cb:4c:b5:30:72:4d:3d:61:cd:88:85: ce:46:39:e8:15:e0:b6:3d:4e:b9:34:f7:88:35:a4: 8d:3e:ef:73:6e:da:12:19:62:a4:4f:7b:4a:f7:1f: 11:8c:9f:e5:13:f8:1f:c6:87:77:b1:0a:4e:09:56: 05:00:89:28:a6:9d:fe:9b:ae:9d:1e:b2:58:40:ae: b1:65:d7:6c:ae:0e:34:f9:ec:bb:3c:ac:7a:f5:89: 38:8c:34:6d:d9:a9:82:83:de:de:ff:9a:10:26:6a: 65:07:60:05:a8:e2:ab:31:f2:95:1e:96:34:93:22: 84:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:00:15:DB:68:4C:AC:75:D0:19:FA:B7:97:51:17:A4:93:13:A6:93 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/27faa4d7-d285-4042-870f-e16b6211a368.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.220.136.0/21 Signature Algorithm: sha256WithRSAEncryption 63:a5:09:c6:7a:bf:9f:ad:f3:27:83:f7:cf:f2:d7:86:eb:19: 0b:2a:1b:bb:1c:fe:d9:75:b5:3d:e0:4f:4e:81:64:fb:38:90: 36:20:22:60:ef:aa:87:2a:cc:da:ca:a0:ef:a8:74:9b:d7:dd: cc:aa:16:27:88:d1:dc:7c:c7:25:5b:1a:7d:bd:28:ea:0b:4f: df:ce:3c:63:48:d9:17:4b:47:bb:88:46:1c:e1:74:4b:6c:36: af:2e:b9:b7:f8:aa:77:db:c4:33:57:3f:e5:ff:59:66:87:98: 5e:63:29:85:cf:c9:aa:6d:1b:de:20:d0:71:96:a1:9f:e1:b5: 12:48:b2:8b:6b:e5:f4:1d:0a:8f:4e:d2:09:46:08:7e:94:e4: 34:65:8e:15:9f:cb:e8:7f:65:40:8a:10:ae:7c:53:99:c9:52: d7:6c:42:09:93:ee:6b:3b:84:1f:5a:bc:b9:53:d4:a7:4f:a6: dc:df:20:56:d7:8f:30:98:78:74:f5:2f:6c:c7:e4:f3:86:7f: 2c:ac:fb:03:ef:2b:9a:63:b6:0c:57:97:f6:6b:ae:48:db:f9: 19:7b:8b:df:08:64:fd:3d:a8:6f:fe:e4:f2:8c:81:5a:04:6b: 87:50:5c:c2:18:72:fb:a3:b0:d2:a0:58:c9:82:03:8b:9b:ea: 7d:c2:fd:a6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJbJUBzuWW62KifNwdUSBfehVU9YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODE4MTYxMTAwWhcNMjUwOTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A0OTdiOTU2MGVkN2JjZTQxODg2ZDljYWNmYjA0MmEwODdk MGQ3OTMwMGY0ZGFhZDQ4YjhhOTAxNmI0NDA3MzU2MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJMAbl6Z5eisULA3kM4pGEkvgNdt01YQo/i8rbXFkqiChP J12aWyex1IsEmImdkFlJasLct2tOYgZfIFvN5Qyf5yrnsmID/BMk8b0cE9lDgY7Q PNz+/LxWbEzwRImvuxNmfWV0RuxmnJCN+uFaVWPuniA+2qhEAoqfemIiQtH7yXSh 6hQHblrlWw/LTLUwck09Yc2Ihc5GOegV4LY9Trk094g1pI0+73Nu2hIZYqRPe0r3 HxGMn+UT+B/Gh3exCk4JVgUAiSimnf6brp0eslhArrFl12yuDjT57Ls8rHr1iTiM NG3ZqYKD3t7/mhAmamUHYAWo4qsx8pUeljSTIoRVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU5wAV22hMrHXQGfq3l1EXpJMTppMwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzI3ZmFhNGQ3LWQyODUtNDA0Mi04NzBmLWUxNmI2MjExYTM2OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMP3IgwDQYJKoZIhvcNAQELBQADggEBAGOlCcZ6v5+t8yeD98/y14brGQsq G7sc/tl1tT3gT06BZPs4kDYgImDvqocqzNrKoO+odJvX3cyqFieI0dx8xyVbGn29 KOoLT9/OPGNI2RdLR7uIRhzhdEtsNq8uubf4qnfbxDNXP+X/WWaHmF5jKYXPyapt G94g0HGWoZ/htRJIsotr5fQdCo9O0glGCH6U5DRljhWfy+h/ZUCKEK58U5nJUtds QgmT7ms7hB9avLlT1KdPptzfIFbXjzCYeHT1L2zH5POGfyys+wPvK5pjtgxXl/Zr rkjb+Rl7i98IZP09qG/+5PKMgVoEa4dQXMIYcvujsNKgWMmCA4ub6n3C/aY= -----END CERTIFICATE-----Generated at Wed Aug 20 10:37:54 2025 by rpki-client