$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2ba7fd6d-3faa-4de4-a7bd-ae53cc23b94b.roa File: 2ba7fd6d-3faa-4de4-a7bd-ae53cc23b94b.roa (raw, json) Hash identifier: xNaPsRCkFBOyq4z2MFnrBrHR9KcD70Gw0jEvMtOkmho= Subject key identifier: 2D:CC:46:90:84:4F:C6:DF:6B:D5:DC:3F:19:33:50:FE:B2:68:49:7C Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 702831320E4C89497BC2ED09C950E2420EDA5AEA Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2ba7fd6d-3faa-4de4-a7bd-ae53cc23b94b.roa Signing time: Tue 05 Aug 2025 17:10:07 +0000 ROA not before: Tue 05 Aug 2025 17:10:07 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.95.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:28:31:32:0e:4c:89:49:7b:c2:ed:09:c9:50:e2:42:0e:da:5a:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 5 17:10:07 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=b62343c9a4bf858b9ba5c5f1439d122da724edbd58b8f399a6e3002fd656287a, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c0:7c:50:e4:98:08:c6:73:a5:09:a0:a9:91: dd:d5:79:e5:3a:34:08:02:2b:ae:42:e9:11:5a:56: 96:fd:9f:dc:99:3f:ff:42:44:b9:66:3d:15:76:7f: 5a:a3:70:59:a6:96:3d:cf:8b:38:14:52:0e:70:f8: 9b:1f:7b:b2:b9:77:a8:a6:ac:a7:5a:39:be:88:d8: 46:d0:6b:1c:d8:57:64:86:6f:9a:20:c9:e6:17:43: 3d:a2:a1:de:9a:e2:a2:44:4d:84:24:89:00:0b:55: 77:54:29:1c:5e:95:d6:ca:78:c6:c3:53:7d:87:ab: 65:89:cc:aa:d3:ff:b3:24:f1:e8:f1:45:30:7f:57: 41:9a:5f:16:0f:4e:2d:a1:5e:11:39:bb:34:9e:1d: 36:ae:a2:8c:86:d8:e1:6a:63:53:6a:2e:a8:a2:53: 2e:35:09:bb:8e:42:08:28:95:eb:47:29:65:85:9c: af:f5:25:ef:64:3a:04:62:77:06:2e:30:cc:9a:b8: 30:26:14:0c:96:bc:8d:8e:89:ed:57:2f:5b:19:35: 2d:13:b1:3b:1e:04:f3:bb:9b:fa:76:34:4e:59:30: 35:f7:0c:eb:22:5f:59:86:6b:01:e0:a3:8d:83:18: bb:e8:19:db:fb:04:57:ee:52:39:9c:04:e6:b2:10: 1c:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:CC:46:90:84:4F:C6:DF:6B:D5:DC:3F:19:33:50:FE:B2:68:49:7C X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2ba7fd6d-3faa-4de4-a7bd-ae53cc23b94b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.95.47.0/24 Signature Algorithm: sha256WithRSAEncryption 91:e2:95:83:91:3c:4e:2c:2a:d4:5c:b6:5b:45:72:30:b8:c5: 9a:bb:36:c1:6a:0e:00:dc:3d:c9:cc:3f:80:8b:8e:b5:15:f4: d0:68:22:49:1b:2c:2f:6c:de:61:1a:95:82:43:c4:d4:f1:e7: 89:3a:60:70:94:e8:57:f3:42:fe:ff:60:31:b7:dd:d7:a6:ee: 16:b9:27:79:96:55:4b:e6:19:3f:2e:22:f2:ae:10:26:94:b2: c6:82:88:ca:bf:d8:f3:83:43:a2:20:48:30:aa:fe:f4:cc:88: cb:91:93:ed:f3:d5:48:63:96:36:d4:3d:87:20:df:fd:c2:88: a8:9f:b3:d5:8a:53:44:1e:a6:86:61:4a:53:89:89:dd:7c:b6: 18:8e:2a:73:3b:21:b6:19:97:fd:85:f0:b7:95:31:58:fc:c6: 8e:11:ae:0b:ec:e3:7f:e7:88:dc:24:49:83:1a:1b:f8:06:cf: a1:f0:1f:6e:ab:8c:72:73:bc:c8:e2:df:c4:54:99:8d:eb:ee: b7:37:32:94:47:1c:66:3a:b5:b2:61:83:c1:0a:05:43:b0:48: bc:33:0a:03:15:c1:83:66:5c:7d:03:0f:a9:b5:eb:91:79:6d: a3:f0:64:89:13:1a:d1:c8:ea:c7:08:75:a9:01:60:58:01:6f: c6:f9:34:a0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcCgxMg5MiUl7wu0JyVDiQg7aWuowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODA1MTcxMDA3WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BiNjIzNDNjOWE0YmY4NThiOWJhNWM1ZjE0MzlkMTIyZGE3 MjRlZGJkNThiOGYzOTlhNmUzMDAyZmQ2NTYyODdhMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrwHxQ5JgIxnOlCaCpkd3VeeU6NAgCK65C6RFaVpb9n9yZ P/9CRLlmPRV2f1qjcFmmlj3PizgUUg5w+Jsfe7K5d6imrKdaOb6I2EbQaxzYV2SG b5ogyeYXQz2iod6a4qJETYQkiQALVXdUKRxeldbKeMbDU32Hq2WJzKrT/7Mk8ejx RTB/V0GaXxYPTi2hXhE5uzSeHTauooyG2OFqY1NqLqiiUy41CbuOQggoletHKWWF nK/1Je9kOgRidwYuMMyauDAmFAyWvI2Oie1XL1sZNS0TsTseBPO7m/p2NE5ZMDX3 DOsiX1mGawHgo42DGLvoGdv7BFfuUjmcBOayEBzzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQULcxGkIRPxt9r1dw/GTNQ/rJoSXwwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzJiYTdmZDZkLTNmYWEtNGRlNC1hN2JkLWFlNTNjYzIzYjk0Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA0Xy8wDQYJKoZIhvcNAQELBQADggEBAJHilYORPE4sKtRctltFcjC4xZq7 NsFqDgDcPcnMP4CLjrUV9NBoIkkbLC9s3mEalYJDxNTx54k6YHCU6FfzQv7/YDG3 3dem7ha5J3mWVUvmGT8uIvKuECaUssaCiMq/2PODQ6IgSDCq/vTMiMuRk+3z1Uhj ljbUPYcg3/3CiKifs9WKU0QepoZhSlOJid18thiOKnM7IbYZl/2F8LeVMVj8xo4R rgvs43/niNwkSYMaG/gGz6HwH26rjHJzvMji38RUmY3r7rc3MpRHHGY6tbJhg8EK BUOwSLwzCgMVwYNmXH0DD6m165F5baPwZIkTGtHI6scIdakBYFgBb8b5NKA= -----END CERTIFICATE-----Generated at Wed Aug 20 10:38:02 2025 by rpki-client