$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4570f34c-671a-4fcc-a171-7871c3923f46.roa File: 4570f34c-671a-4fcc-a171-7871c3923f46.roa (raw, json) Hash identifier: VrFgixlej8AaBxCUdmbYnqxmd0c48HQ+u0VKIGr+P74= Subject key identifier: 36:43:4D:1E:04:9C:2A:5D:52:B7:86:C5:30:87:32:52:FC:B4:CE:43 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 35163D7FC06F49BC8B1758B40AF0D80EED7FE1B5 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4570f34c-671a-4fcc-a171-7871c3923f46.roa Signing time: Tue 19 Aug 2025 15:50:19 +0000 ROA not before: Tue 19 Aug 2025 15:50:19 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.72.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:16:3d:7f:c0:6f:49:bc:8b:17:58:b4:0a:f0:d8:0e:ed:7f:e1:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 19 15:50:19 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=537e1f63d960f00a483f353647dcece63d085d26abaf51b405b42f6737856ade, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:3c:41:cb:be:79:5f:b3:09:ee:00:ff:54:de: f6:e2:79:c2:06:b3:06:3a:77:8c:40:38:f9:b9:ab: ca:21:32:76:fb:67:bc:9f:5d:b6:04:08:2e:6a:ab: 6b:d8:c9:17:b0:87:6d:8f:74:71:c4:7d:6e:bb:c7: a8:99:81:5d:d5:d8:32:2d:14:69:d4:82:48:e5:64: 91:0d:fb:8c:75:6c:6f:b0:0c:18:98:29:c3:63:14: f0:9f:6a:94:4f:62:52:7b:36:0b:b3:ed:81:8d:6b: 80:8f:cf:d2:79:a5:4a:d8:58:91:aa:60:33:2e:e1: 57:a9:ab:76:58:13:bf:3e:c3:81:45:45:a7:40:6a: 8e:dd:aa:1f:b6:2d:15:3f:b5:e8:1e:60:33:57:63: 56:17:2d:b0:2f:65:47:2d:84:64:17:9e:36:2a:ed: e3:4f:f3:99:66:29:6b:ff:2a:71:4f:a1:f0:23:05: 3f:39:71:cb:3f:bc:1c:73:d0:eb:d4:84:e8:43:95: 35:67:b8:02:e1:03:51:a1:d3:71:85:8d:d2:6e:ba: 12:64:10:d4:53:e6:33:0d:0b:8c:ac:20:35:b5:fb: 91:1c:64:14:0c:d9:62:5b:1c:c4:93:d3:1b:d9:7a: 71:58:fd:aa:97:85:c6:61:19:59:1f:cf:23:2f:2b: bb:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:43:4D:1E:04:9C:2A:5D:52:B7:86:C5:30:87:32:52:FC:B4:CE:43 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4570f34c-671a-4fcc-a171-7871c3923f46.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.72.0.0/15 Signature Algorithm: sha256WithRSAEncryption 33:ef:22:09:4b:d2:f8:f1:11:b4:41:4d:de:1e:4f:b5:31:14: 31:06:3f:de:46:a3:b5:83:b1:f6:c9:2f:d9:32:c0:33:44:af: 90:fa:f8:c0:d4:44:e2:4b:46:f7:7a:61:46:03:9a:eb:fd:ab: 02:b1:be:10:77:b5:d0:8c:b3:93:8d:99:85:aa:b1:28:f4:54: 67:9a:46:60:63:c8:df:37:8d:34:95:e2:e3:47:1a:80:61:ac: 0c:05:af:fb:16:89:2c:c8:77:d1:78:4e:16:09:85:f4:fa:af: d7:0b:b7:4c:c6:8b:30:84:a2:88:6f:01:41:b1:b2:51:0c:32: d7:7a:d3:20:3f:3c:58:1d:54:5c:93:10:d0:be:4e:6d:ce:80: 52:81:28:c0:19:ef:42:d6:48:3f:61:c8:74:83:c6:9e:e6:2c: c5:12:84:3c:b5:46:ab:92:e9:ab:bc:8f:b0:7f:b5:05:3a:c4: fb:b3:33:51:f0:72:3a:6a:1b:7c:e7:17:4b:ca:98:f6:77:43: 2c:fa:ea:16:c0:8b:7d:30:6e:cc:80:2b:85:3f:78:e9:92:83: d4:e1:75:95:81:cb:d2:f6:0d:ea:86:12:8d:27:4f:0b:92:e1: 32:00:d5:48:cb:74:1c:4b:06:77:96:0b:db:41:5c:d6:8f:66: 0a:82:0f:4a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUNRY9f8BvSbyLF1i0CvDYDu1/4bUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODE5MTU1MDE5WhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A1MzdlMWY2M2Q5NjBmMDBhNDgzZjM1MzY0N2RjZWNlNjNk MDg1ZDI2YWJhZjUxYjQwNWI0MmY2NzM3ODU2YWRlMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJPEHLvnlfswnuAP9U3vbiecIGswY6d4xAOPm5q8ohMnb7 Z7yfXbYECC5qq2vYyRewh22PdHHEfW67x6iZgV3V2DItFGnUgkjlZJEN+4x1bG+w DBiYKcNjFPCfapRPYlJ7Nguz7YGNa4CPz9J5pUrYWJGqYDMu4Vepq3ZYE78+w4FF RadAao7dqh+2LRU/tegeYDNXY1YXLbAvZUcthGQXnjYq7eNP85lmKWv/KnFPofAj BT85ccs/vBxz0OvUhOhDlTVnuALhA1Gh03GFjdJuuhJkENRT5jMNC4ysIDW1+5Ec ZBQM2WJbHMST0xvZenFY/aqXhcZhGVkfzyMvK7uFAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUNkNNHgScKl1St4bFMIcyUvy0zkMwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzQ1NzBmMzRjLTY3MWEtNGZjYy1hMTcxLTc4NzFjMzkyM2Y0Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwE0SDANBgkqhkiG9w0BAQsFAAOCAQEAM+8iCUvS+PERtEFN3h5PtTEUMQY/ 3kajtYOx9skv2TLAM0SvkPr4wNRE4ktG93phRgOa6/2rArG+EHe10Iyzk42Zhaqx KPRUZ5pGYGPI3zeNNJXi40cagGGsDAWv+xaJLMh30XhOFgmF9Pqv1wu3TMaLMISi iG8BQbGyUQwy13rTID88WB1UXJMQ0L5Obc6AUoEowBnvQtZIP2HIdIPGnuYsxRKE PLVGq5Lpq7yPsH+1BTrE+7MzUfByOmobfOcXS8qY9ndDLPrqFsCLfTBuzIArhT94 6ZKD1OF1lYHL0vYN6oYSjSdPC5LhMgDVSMt0HEsGd5YL20Fc1o9mCoIPSg== -----END CERTIFICATE-----Generated at Wed Aug 20 10:38:00 2025 by rpki-client