$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/512be172-9cd3-4e9e-b29b-a076f5c2d5ba.roa File: 512be172-9cd3-4e9e-b29b-a076f5c2d5ba.roa (raw, json) Hash identifier: bP7Jgc6tPmXKcNpA+te+qi2Mui/hGV/LDrf1eBvghzs= Subject key identifier: 8B:39:A8:22:6A:7B:AC:39:F6:0B:71:AA:0E:D1:38:31:DD:A3:F2:1C Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 53D53DFAAB70743D8B399A61C14396CA292934AC Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/512be172-9cd3-4e9e-b29b-a076f5c2d5ba.roa Signing time: Tue 19 Aug 2025 16:21:12 +0000 ROA not before: Tue 19 Aug 2025 16:21:12 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.186.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:d5:3d:fa:ab:70:74:3d:8b:39:9a:61:c1:43:96:ca:29:29:34:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 19 16:21:12 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=470a73808a1a9a910a2e90f8e25cdf8fbba8519b55a53d52c8ce508fb8c86219, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:96:6b:f5:25:e8:af:34:6d:37:dd:8b:68:99: 63:83:df:16:d2:46:45:35:86:f9:05:e6:7b:5a:e4: e2:ae:a3:d1:c9:79:65:c8:3b:d3:2a:73:0a:f4:0b: 4e:26:b4:14:24:4c:f1:15:2a:19:99:c7:b0:53:1d: 0b:f0:2f:61:42:ad:64:5c:22:0b:3c:aa:98:d4:09: 25:7f:c8:52:8d:4a:3a:c1:01:2e:6a:07:02:9f:25: 89:b4:05:4f:c0:0e:92:0a:ed:8c:87:90:68:70:e0: fd:0f:1e:f1:3c:b6:75:5d:4f:a9:17:06:5d:e6:dc: 12:16:1e:9d:73:f3:df:11:de:ae:04:3e:e0:bf:54: dc:01:3d:d8:f1:1c:f8:6e:37:a7:23:dd:a6:c7:b9: 2c:bf:de:f9:c8:69:12:cb:2d:da:3f:e6:fa:0d:0d: 02:be:5c:d4:8c:ba:a8:93:f9:51:1f:67:a3:09:42: 50:07:e5:5a:a9:ce:57:9b:c1:f7:1e:ff:c3:17:68: e1:82:a1:e0:a8:be:a3:52:4f:3a:81:6f:2f:d9:05: 04:bf:3a:11:04:a5:d3:7f:6a:d8:be:20:80:e3:f1: a3:a3:07:27:b5:29:7a:db:d9:5d:7b:10:4c:93:1a: 8b:28:88:e4:b3:c3:4a:6a:7d:10:f2:52:bd:aa:4c: c1:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:39:A8:22:6A:7B:AC:39:F6:0B:71:AA:0E:D1:38:31:DD:A3:F2:1C X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/512be172-9cd3-4e9e-b29b-a076f5c2d5ba.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.186.0.0/15 Signature Algorithm: sha256WithRSAEncryption a2:90:05:fa:69:8f:fa:80:2f:eb:74:77:c4:b3:bd:a9:56:d5: a5:f6:6b:b2:db:43:27:7b:74:bd:91:2d:ba:13:c1:74:f3:6b: 79:ed:5f:9b:5c:f2:1a:c0:60:52:07:e4:9d:5e:24:3e:b1:b3: 77:33:b9:11:33:53:b6:23:10:ec:19:ea:88:02:be:fa:0e:cc: 8a:d6:bd:3a:d2:dd:d2:84:5a:91:d0:86:74:38:54:7d:4e:0a: c0:76:36:b1:53:e3:16:25:6e:32:8a:13:13:3b:f9:70:2d:5e: 2c:c6:18:d7:ed:4d:1e:ce:e8:60:4c:5c:7a:fa:96:29:42:95: f8:40:58:76:bd:fc:68:77:2f:eb:4f:63:1e:01:18:d9:85:ce: 42:3a:84:bf:0b:9a:d0:b1:b2:aa:d0:69:40:bb:1e:0c:ea:50: 7f:4b:69:01:ed:00:e0:f5:1a:81:2b:0b:4e:b2:2c:ab:ab:0a: 9b:c1:b9:24:7a:47:8d:e0:95:18:41:3f:80:a5:1b:62:10:63: 84:a0:c1:d8:95:97:92:b1:bf:f1:fb:5f:e1:02:d5:57:9c:b4: 7e:a1:1e:17:32:67:15:8c:d6:9c:9b:f9:5d:33:e4:1c:f8:14: 20:af:db:60:30:d7:65:46:49:c7:13:8c:06:2b:35:62:c0:21: 8a:88:a0:7b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUU9U9+qtwdD2LOZphwUOWyikpNKwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODE5MTYyMTEyWhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A0NzBhNzM4MDhhMWE5YTkxMGEyZTkwZjhlMjVjZGY4ZmJi YTg1MTliNTVhNTNkNTJjOGNlNTA4ZmI4Yzg2MjE5MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqlmv1JeivNG033YtomWOD3xbSRkU1hvkF5nta5OKuo9HJ eWXIO9Mqcwr0C04mtBQkTPEVKhmZx7BTHQvwL2FCrWRcIgs8qpjUCSV/yFKNSjrB AS5qBwKfJYm0BU/ADpIK7YyHkGhw4P0PHvE8tnVdT6kXBl3m3BIWHp1z898R3q4E PuC/VNwBPdjxHPhuN6cj3abHuSy/3vnIaRLLLdo/5voNDQK+XNSMuqiT+VEfZ6MJ QlAH5Vqpzlebwfce/8MXaOGCoeCovqNSTzqBby/ZBQS/OhEEpdN/ati+IIDj8aOj Bye1KXrb2V17EEyTGosoiOSzw0pqfRDyUr2qTMH5AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUizmoImp7rDn2C3GqDtE4Md2j8hwwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzUxMmJlMTcyLTljZDMtNGU5ZS1iMjliLWEwNzZmNWMyZDViYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwE2ujANBgkqhkiG9w0BAQsFAAOCAQEAopAF+mmP+oAv63R3xLO9qVbVpfZr sttDJ3t0vZEtuhPBdPNree1fm1zyGsBgUgfknV4kPrGzdzO5ETNTtiMQ7BnqiAK+ +g7Mita9OtLd0oRakdCGdDhUfU4KwHY2sVPjFiVuMooTEzv5cC1eLMYY1+1NHs7o YExcevqWKUKV+EBYdr38aHcv609jHgEY2YXOQjqEvwua0LGyqtBpQLseDOpQf0tp Ae0A4PUagSsLTrIsq6sKm8G5JHpHjeCVGEE/gKUbYhBjhKDB2JWXkrG/8ftf4QLV V5y0fqEeFzJnFYzWnJv5XTPkHPgUIK/bYDDXZUZJxxOMBis1YsAhioigew== -----END CERTIFICATE-----Generated at Wed Aug 20 10:38:03 2025 by rpki-client