$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/31b3c27f-c2a6-4964-8eb8-dbb3fb26b4d3.roa File: 31b3c27f-c2a6-4964-8eb8-dbb3fb26b4d3.roa (raw, json) Hash identifier: F03wSBiNw3iYO1VrW75nCwPornjcO01OalOX9/CypNI= Subject key identifier: F0:FD:69:AD:17:9A:A1:B3:69:C5:4B:4A:1D:C2:1E:AA:E3:BD:9D:77 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 2BBB5F083CE313A05F8DEAF996FBB2F1AF06A31C Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/31b3c27f-c2a6-4964-8eb8-dbb3fb26b4d3.roa Signing time: Tue 19 Aug 2025 16:21:49 +0000 ROA not before: Tue 19 Aug 2025 16:21:49 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.189.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:bb:5f:08:3c:e3:13:a0:5f:8d:ea:f9:96:fb:b2:f1:af:06:a3:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 19 16:21:49 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=7bb5bfc02b5460c910106cd447287ffa550c8d86e62874e9c60e35ff35aa0c06, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:2d:12:3c:1f:05:0c:5e:c8:f9:43:0f:87:af: 72:86:39:14:98:f6:f4:53:25:ce:2c:8d:0f:f0:93: 2e:89:53:09:cf:6a:be:98:46:e5:1d:d5:e0:1c:dd: a2:c7:81:dc:e7:55:90:40:f2:a4:1a:07:58:de:84: 5b:5c:59:4f:ce:33:d1:7f:98:93:36:42:01:c6:e4: 4a:ef:39:ac:d7:7c:bb:b7:e0:1e:65:d3:e0:08:8a: b3:d9:20:73:68:bd:09:05:fb:cb:f1:bd:1b:bc:57: 6e:48:d4:0f:97:cf:61:c8:5a:e6:bf:a8:91:fa:c4: 6d:87:88:cb:59:81:0d:42:64:8d:c0:94:f4:80:c3: 8c:24:12:23:76:70:b2:cb:46:0d:00:be:6d:15:f6: 9d:48:f7:76:60:19:fa:dc:96:9d:19:bf:d2:7c:de: fa:45:fe:17:13:7e:3d:0c:12:7b:38:7b:b7:94:0d: c2:d8:53:06:83:b7:e3:1f:3a:1a:53:0e:9c:6c:58: 0d:8b:28:5f:43:65:28:98:8d:a4:62:03:bd:41:47: 0e:c3:a9:98:2e:78:63:6a:a8:c0:8f:ae:5c:e9:cd: e0:0a:ed:48:66:48:64:67:60:f1:29:be:28:51:56: 0b:4f:ae:75:a9:8f:d6:35:96:6a:ea:ad:a9:56:cc: 82:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:FD:69:AD:17:9A:A1:B3:69:C5:4B:4A:1D:C2:1E:AA:E3:BD:9D:77 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/31b3c27f-c2a6-4964-8eb8-dbb3fb26b4d3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.189.128.0/18 Signature Algorithm: sha256WithRSAEncryption 12:bd:cf:40:1f:27:3a:aa:fa:bc:f2:f8:58:52:27:3b:ff:b0: c0:73:38:5a:c6:8c:c2:42:8d:cf:cd:08:1e:79:64:a7:00:99: 68:68:63:90:c8:12:0e:09:bf:0c:d0:58:05:80:c0:c9:54:23: 11:ad:4c:6b:62:aa:4c:58:84:0e:62:47:cf:c8:a3:ec:85:e4: 60:78:cf:71:e2:e9:1d:18:a1:70:92:cf:0d:2f:62:21:14:60: 93:ad:0f:16:2c:d7:68:57:40:3e:f7:b5:d9:bb:67:cc:67:dd: ed:61:7d:cd:12:ac:79:a2:d8:d9:12:26:13:fa:b7:10:82:dc: 42:01:43:87:92:de:f1:18:a2:e1:02:1d:f3:a8:04:15:e0:85: 27:59:55:8d:07:1f:03:5d:7d:ec:22:b2:6c:f2:bf:7b:8b:9c: fb:62:6b:ec:3a:df:63:19:f4:d1:59:e3:bc:97:2d:32:8d:a7: 52:bb:54:28:ca:88:2f:eb:b6:19:9d:71:b6:f2:2f:b3:3b:3f: 48:90:1f:97:99:ae:6a:0c:d1:9e:b8:83:f6:77:f3:14:18:b6: c5:bc:95:1f:59:be:11:35:50:83:52:f3:28:05:83:d3:e3:b3: 4f:e7:49:bb:99:b9:b2:ac:ea:b4:dd:45:27:c9:fd:09:c6:a7: 2c:fb:92:b0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUK7tfCDzjE6Bfjer5lvuy8a8GoxwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODE5MTYyMTQ5WhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A3YmI1YmZjMDJiNTQ2MGM5MTAxMDZjZDQ0NzI4N2ZmYTU1 MGM4ZDg2ZTYyODc0ZTljNjBlMzVmZjM1YWEwYzA2MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmLRI8HwUMXsj5Qw+Hr3KGORSY9vRTJc4sjQ/wky6JUwnP ar6YRuUd1eAc3aLHgdznVZBA8qQaB1jehFtcWU/OM9F/mJM2QgHG5ErvOazXfLu3 4B5l0+AIirPZIHNovQkF+8vxvRu8V25I1A+Xz2HIWua/qJH6xG2HiMtZgQ1CZI3A lPSAw4wkEiN2cLLLRg0Avm0V9p1I93ZgGfrclp0Zv9J83vpF/hcTfj0MEns4e7eU DcLYUwaDt+MfOhpTDpxsWA2LKF9DZSiYjaRiA71BRw7DqZgueGNqqMCPrlzpzeAK 7UhmSGRnYPEpvihRVgtPrnWpj9Y1lmrqralWzII5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU8P1prReaobNpxUtKHcIequO9nXcwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzMxYjNjMjdmLWMyYTYtNDk2NC04ZWI4LWRiYjNmYjI2YjRkMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAY2vYAwDQYJKoZIhvcNAQELBQADggEBABK9z0AfJzqq+rzy+FhSJzv/sMBz OFrGjMJCjc/NCB55ZKcAmWhoY5DIEg4JvwzQWAWAwMlUIxGtTGtiqkxYhA5iR8/I o+yF5GB4z3Hi6R0YoXCSzw0vYiEUYJOtDxYs12hXQD73tdm7Z8xn3e1hfc0SrHmi 2NkSJhP6txCC3EIBQ4eS3vEYouECHfOoBBXghSdZVY0HHwNdfewismzyv3uLnPti a+w632MZ9NFZ47yXLTKNp1K7VCjKiC/rthmdcbbyL7M7P0iQH5eZrmoM0Z64g/Z3 8xQYtsW8lR9ZvhE1UINS8ygFg9Pjs0/nSbuZubKs6rTdRSfJ/QnGpyz7krA= -----END CERTIFICATE-----Generated at Wed Aug 20 10:37:40 2025 by rpki-client