$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3ad746a5-4122-4fe1-a6c1-09c23d7c31f0.roa File: 3ad746a5-4122-4fe1-a6c1-09c23d7c31f0.roa (raw, json) Hash identifier: 3z2NfHdAUVBaZNUOrCbIFLn2CNV9cAPjhOeC6TILH9U= Subject key identifier: 2A:EE:B4:19:CC:7D:8E:16:57:DD:7C:CC:FA:C1:4A:E0:A7:CD:6E:0C Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 212EF998412A37FB041DE1C797908B24D25DBA50 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3ad746a5-4122-4fe1-a6c1-09c23d7c31f0.roa Signing time: Tue 05 Aug 2025 16:40:25 +0000 ROA not before: Tue 05 Aug 2025 16:40:25 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.44.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:2e:f9:98:41:2a:37:fb:04:1d:e1:c7:97:90:8b:24:d2:5d:ba:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 5 16:40:25 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=a5d63e9ce326aaae0032a46c39dca2664975ee02da68aff445a4a4930afbae72, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:f0:c2:62:35:11:df:2f:1f:0d:97:10:3d:b4: e7:93:b0:50:7d:bb:df:94:a5:99:f5:7a:ff:56:d6: dc:78:73:34:94:7c:25:55:13:e0:e1:6c:bf:d2:08: 56:62:c9:a6:74:80:da:d2:32:57:b3:3f:a1:f2:4f: 13:ae:5e:45:3f:90:f4:ab:55:4b:cc:96:07:42:88: 87:26:64:af:1d:81:fa:2c:e7:26:8e:dd:ed:c1:0c: ac:58:6a:a9:da:7e:72:66:fe:9f:98:2f:92:9b:4e: 80:1b:ed:98:38:e8:29:80:b6:b9:c4:c4:63:5b:94: 2c:c1:54:17:db:2b:62:57:9f:1b:66:19:9e:9a:b1: 35:79:bc:93:6c:d8:1c:05:4d:d2:b1:96:d9:ca:21: 48:0a:4d:6a:65:f7:9f:25:70:b4:25:3e:d1:82:91: f8:2c:cc:71:b1:da:92:73:4d:ee:87:bf:e0:b2:88: 2e:86:ec:29:6d:8d:12:61:1b:7b:d1:82:e7:e9:ba: 60:d7:49:23:14:d7:f9:ad:3e:87:cc:23:41:bf:42: a3:66:f0:d1:66:e5:8f:ce:81:43:73:65:13:e9:77: 3f:24:f9:27:18:2b:41:59:32:40:82:2f:bb:5d:45: 68:7f:7d:72:83:e8:57:e0:e8:1b:86:1c:bb:3d:2b: 62:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:EE:B4:19:CC:7D:8E:16:57:DD:7C:CC:FA:C1:4A:E0:A7:CD:6E:0C X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3ad746a5-4122-4fe1-a6c1-09c23d7c31f0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.44.0.0/16 Signature Algorithm: sha256WithRSAEncryption 4b:dc:04:52:f7:52:50:6a:14:d4:ea:86:ff:19:04:50:d5:9f: 7e:c9:00:7d:3c:8f:c5:d1:81:c5:29:11:54:40:3f:8a:90:5f: 57:d1:5c:a7:89:b1:4d:8c:ee:83:1c:b4:50:63:ae:17:4d:1c: bb:9d:96:1a:f3:e9:24:57:41:9b:38:4e:75:14:2a:45:ad:39: 9a:5b:8b:ad:3a:12:6a:45:8c:15:22:1c:20:72:d9:5c:9c:88: 8f:6b:41:b2:44:2c:74:e3:1f:ab:79:f3:df:fe:6d:7c:56:cc: 17:d1:4e:d2:45:8f:a1:62:fa:1a:36:f5:f9:1c:27:3c:a1:0e: 24:b7:51:d7:e1:1f:13:61:22:ed:30:0f:00:c4:50:a2:8d:ef: 93:b3:8e:a9:73:b6:0a:2a:7f:35:5a:06:2c:7c:36:e9:c1:b4: 52:99:e0:8e:54:7d:f5:29:8b:fd:b0:c4:de:47:7d:34:78:99: d7:25:d3:74:0e:08:62:cc:3c:c0:21:05:af:76:1c:68:94:8a: cc:b5:60:d3:ec:d1:37:06:10:99:89:84:61:ae:cc:79:1f:9c: c3:bc:73:08:e3:b4:4e:9c:c0:4a:3a:a3:31:56:d3:37:d8:7d: c8:2b:74:5f:6c:3a:4d:5d:ee:f8:bf:eb:64:a3:07:14:37:de: 75:07:e5:82 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUIS75mEEqN/sEHeHHl5CLJNJdulAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODA1MTY0MDI1WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNWQ2M2U5Y2UzMjZhYWFlMDAzMmE0NmMzOWRjYTI2NjQ5 NzVlZTAyZGE2OGFmZjQ0NWE0YTQ5MzBhZmJhZTcyMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDn8MJiNRHfLx8NlxA9tOeTsFB9u9+UpZn1ev9W1tx4czSU fCVVE+DhbL/SCFZiyaZ0gNrSMlezP6HyTxOuXkU/kPSrVUvMlgdCiIcmZK8dgfos 5yaO3e3BDKxYaqnafnJm/p+YL5KbToAb7Zg46CmAtrnExGNblCzBVBfbK2JXnxtm GZ6asTV5vJNs2BwFTdKxltnKIUgKTWpl958lcLQlPtGCkfgszHGx2pJzTe6Hv+Cy iC6G7CltjRJhG3vRgufpumDXSSMU1/mtPofMI0G/QqNm8NFm5Y/OgUNzZRPpdz8k +ScYK0FZMkCCL7tdRWh/fXKD6Ffg6BuGHLs9K2KfAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUKu60Gcx9jhZX3XzM+sFK4KfNbgwwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzNhZDc0NmE1LTQxMjItNGZlMS1hNmMxLTA5YzIzZDdjMzFmMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwASLDANBgkqhkiG9w0BAQsFAAOCAQEAS9wEUvdSUGoU1OqG/xkEUNWffskA fTyPxdGBxSkRVEA/ipBfV9Fcp4mxTYzugxy0UGOuF00cu52WGvPpJFdBmzhOdRQq Ra05mluLrToSakWMFSIcIHLZXJyIj2tBskQsdOMfq3nz3/5tfFbMF9FO0kWPoWL6 Gjb1+RwnPKEOJLdR1+EfE2Ei7TAPAMRQoo3vk7OOqXO2Cip/NVoGLHw26cG0Upng jlR99SmL/bDE3kd9NHiZ1yXTdA4IYsw8wCEFr3YcaJSKzLVg0+zRNwYQmYmEYa7M eR+cw7xzCOO0TpzASjqjMVbTN9h9yCt0X2w6TV3u+L/rZKMHFDfedQflgg== -----END CERTIFICATE-----Generated at Wed Aug 20 10:37:27 2025 by rpki-client