$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/471b7fbb-a1e3-44ab-8628-e10896f053eb.roa File: 471b7fbb-a1e3-44ab-8628-e10896f053eb.roa (raw, json) Hash identifier: 1vw12rOSqqYxc/xdblUJ69ourA1gHHfYdfy8uYzECDU= Subject key identifier: 92:67:D3:24:36:4D:01:38:4F:FA:14:69:4C:46:72:B9:D6:36:64:03 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 53194C5A9E5C87CA7A7D7BB668876FC75666F695 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/471b7fbb-a1e3-44ab-8628-e10896f053eb.roa Signing time: Tue 19 Aug 2025 15:30:15 +0000 ROA not before: Tue 19 Aug 2025 15:30:15 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 34.248.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:19:4c:5a:9e:5c:87:ca:7a:7d:7b:b6:68:87:6f:c7:56:66:f6:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 19 15:30:15 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=e596c724f96fc83b8100b4f687e55c1acc05422ffacf176f8fbfb0fbaa69ca1a, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:10:40:46:2e:6a:1d:b4:76:a9:2d:dd:03:fa: b9:64:67:68:24:59:df:2e:b7:58:7e:ef:c2:31:e8: 74:92:b8:91:5b:6c:85:be:27:64:3f:4f:81:c2:3e: 0d:24:18:0f:0b:66:36:d9:4f:d2:1d:c4:91:bf:5f: 68:28:09:38:a2:b2:bb:96:2a:9c:26:e4:da:58:fe: e3:8c:1a:57:8e:40:b8:69:32:d6:85:9f:68:7d:b9: 71:22:8e:9e:49:62:28:f2:1a:35:79:1a:ad:48:8d: 7c:56:a3:6a:64:ef:77:fd:0c:cb:92:29:9d:81:d2: fe:51:38:b8:2f:c7:ac:41:85:73:1c:95:16:5f:34: 83:b8:31:90:8e:98:db:6b:6f:c6:5e:bf:c3:8d:de: 68:e5:9b:c4:09:52:be:ee:a3:2d:b9:21:67:13:4a: e0:41:ae:1d:a7:ea:a9:ae:83:ce:a5:22:48:58:79: 66:66:76:6d:bb:84:d4:c7:2d:e8:4d:80:63:98:a4: 0c:25:3b:d2:ae:b4:96:24:37:b1:7d:51:63:6c:61: 78:e6:83:94:84:98:80:e2:f7:19:ae:9d:ce:1c:30: 0a:83:2c:4c:e5:17:26:2f:6a:7c:94:dc:3e:4f:75: f6:c7:2d:9a:52:6e:f1:01:3a:43:dc:40:3f:cb:ac: ab:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:67:D3:24:36:4D:01:38:4F:FA:14:69:4C:46:72:B9:D6:36:64:03 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/471b7fbb-a1e3-44ab-8628-e10896f053eb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 34.248.192.0/18 Signature Algorithm: sha256WithRSAEncryption 90:8b:63:28:c9:8e:93:c6:bb:be:5c:27:e5:52:47:c4:55:c4: 61:c9:bb:25:2d:f5:1a:50:b7:ff:50:3a:a0:be:a7:71:d1:19: d9:b2:93:b6:68:05:4d:38:a8:95:ac:02:59:d0:9e:ab:1d:0e: 9a:f7:d9:c8:8f:97:ae:e2:58:69:b1:c7:96:f3:f5:30:b0:10: 83:ce:e2:22:22:68:1f:82:ec:d2:e1:4d:dc:f2:64:ee:2e:98: 49:e7:0b:d2:74:6e:96:7a:f7:02:7c:2c:fd:31:61:3c:4a:ad: 23:70:70:7d:60:ed:fb:e1:38:a5:e3:4b:c5:6a:c3:8f:6e:5e: ea:d3:3a:97:37:b1:82:fc:9f:27:81:55:8c:e3:32:c6:16:40: 11:0e:3c:c6:06:4b:49:0f:e7:85:5f:da:98:7d:72:0f:c3:57: 7e:71:28:7d:fd:38:98:85:39:a4:cf:56:ef:f3:b1:7d:87:a2: b0:d7:07:9b:9e:48:4a:b8:e1:9d:89:59:24:12:a0:63:4f:d5: 56:42:16:55:30:4b:34:16:0b:96:56:9f:7a:f2:fb:ec:c1:59: 5f:86:37:07:55:b3:f9:1b:20:a4:51:b4:2b:42:df:78:5a:15: 63:0f:db:7e:45:80:24:a0:ee:c5:32:f0:c5:7c:8f:ee:d5:17: 12:a5:26:a4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUxlMWp5ch8p6fXu2aIdvx1Zm9pUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODE5MTUzMDE1WhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BlNTk2YzcyNGY5NmZjODNiODEwMGI0ZjY4N2U1NWMxYWNj MDU0MjJmZmFjZjE3NmY4ZmJmYjBmYmFhNjljYTFhMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZEEBGLmodtHapLd0D+rlkZ2gkWd8ut1h+78Ix6HSSuJFb bIW+J2Q/T4HCPg0kGA8LZjbZT9IdxJG/X2goCTiisruWKpwm5NpY/uOMGleOQLhp MtaFn2h9uXEijp5JYijyGjV5Gq1IjXxWo2pk73f9DMuSKZ2B0v5ROLgvx6xBhXMc lRZfNIO4MZCOmNtrb8Zev8ON3mjlm8QJUr7uoy25IWcTSuBBrh2n6qmug86lIkhY eWZmdm27hNTHLehNgGOYpAwlO9KutJYkN7F9UWNsYXjmg5SEmIDi9xmunc4cMAqD LEzlFyYvanyU3D5PdfbHLZpSbvEBOkPcQD/LrKvrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUkmfTJDZNAThP+hRpTEZyudY2ZAMwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzQ3MWI3ZmJiLWExZTMtNDRhYi04NjI4LWUxMDg5NmYwNTNlYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYi+MAwDQYJKoZIhvcNAQELBQADggEBAJCLYyjJjpPGu75cJ+VSR8RVxGHJ uyUt9RpQt/9QOqC+p3HRGdmyk7ZoBU04qJWsAlnQnqsdDpr32ciPl67iWGmxx5bz 9TCwEIPO4iIiaB+C7NLhTdzyZO4umEnnC9J0bpZ69wJ8LP0xYTxKrSNwcH1g7fvh OKXjS8Vqw49uXurTOpc3sYL8nyeBVYzjMsYWQBEOPMYGS0kP54Vf2ph9cg/DV35x KH39OJiFOaTPVu/zsX2HorDXB5ueSEq44Z2JWSQSoGNP1VZCFlUwSzQWC5ZWn3ry ++zBWV+GNwdVs/kbIKRRtCtC33haFWMP235FgCSg7sUy8MV8j+7VFxKlJqQ= -----END CERTIFICATE-----Generated at Wed Aug 20 10:39:30 2025 by rpki-client