$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/58c1be24-6dc5-429a-9dec-97ca8a39e33c.roa File: 58c1be24-6dc5-429a-9dec-97ca8a39e33c.roa (raw, json) Hash identifier: Jh9bx9pspmCCy9ek9v+vic53UmtlixYvjkN/NPczCK4= Subject key identifier: 1D:E7:0B:74:9D:CE:D9:B9:E3:59:68:DE:D3:97:48:7B:99:A1:39:31 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 5BAC2D5F75F74B2F81F8812728094B9B7CFC1C81 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/58c1be24-6dc5-429a-9dec-97ca8a39e33c.roa Signing time: Tue 05 Aug 2025 16:00:23 +0000 ROA not before: Tue 05 Aug 2025 16:00:23 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 161.206.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:ac:2d:5f:75:f7:4b:2f:81:f8:81:27:28:09:4b:9b:7c:fc:1c:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 5 16:00:23 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=fb8acee069d6ea7a75b05bba7d6070d23b23bb81e701cd117c4dbb9ad0df4260, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:bd:e4:89:9e:95:73:9d:9b:52:4d:e4:67:ef: a5:a4:25:57:1a:00:10:95:4c:68:ca:dc:e1:d0:09: 1b:6c:e8:40:28:f4:2f:d9:78:66:e3:1e:f4:d2:38: f0:6f:f0:6a:34:03:f5:97:e6:19:95:50:86:cd:84: fb:6f:5e:c3:66:7d:a1:78:41:1d:b6:35:77:a7:1e: 0f:93:c0:58:95:da:45:3e:d6:f3:cd:d7:74:59:7d: c9:88:31:32:b6:a5:b3:92:e9:df:9d:65:f8:f4:97: 3f:60:6a:5e:9c:2b:ed:e4:57:04:42:4e:be:22:e3: 84:bf:b1:ab:bf:bd:e8:09:51:ba:45:1a:ad:8c:54: ba:14:71:db:72:f3:d7:3b:8c:f2:81:22:75:c3:ba: b0:22:57:57:56:1a:2c:57:b9:23:ab:55:ff:e5:86: 05:8e:49:d0:92:43:1d:7b:89:06:0b:3c:7e:61:57: ce:9e:e8:49:5b:be:22:ed:f3:cf:37:70:89:87:3d: 7a:48:2b:0a:1d:d0:be:41:7d:20:8a:74:71:45:33: b8:3a:dc:80:f6:25:b4:4d:98:3f:2e:1d:9e:4b:21: ba:a1:f2:db:8b:70:2c:e4:b2:de:78:89:d1:e8:c7: 45:8c:50:a9:6e:9c:f6:50:74:c0:6a:2f:13:56:39: a9:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:E7:0B:74:9D:CE:D9:B9:E3:59:68:DE:D3:97:48:7B:99:A1:39:31 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/58c1be24-6dc5-429a-9dec-97ca8a39e33c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 161.206.0.0/16 Signature Algorithm: sha256WithRSAEncryption a5:55:de:85:8a:0d:80:86:19:0a:b7:de:11:9c:eb:2c:38:90: c5:98:df:fb:8c:88:b3:57:96:51:7f:fa:5b:c7:e9:18:7b:6b: 4a:e8:ed:7b:0c:ac:64:48:c2:4d:16:81:55:60:7c:83:3a:a5: 4e:d3:31:1c:f6:4f:ee:a6:9f:24:99:c4:25:55:9f:9f:d0:71: a9:10:01:cc:29:16:3c:ab:f9:25:e3:34:34:bb:b7:91:32:51: d8:45:e3:0a:d8:75:14:5c:3f:77:96:36:18:d8:3f:bb:0e:7c: 52:1e:82:d2:60:0b:a9:20:ef:c6:08:63:bc:5d:3d:36:7a:2f: 6e:e4:22:1f:ab:23:2a:45:45:5d:58:87:dd:4f:ef:cc:0f:12: 93:8c:48:3a:a2:8f:01:0c:75:bd:45:4f:26:76:e0:b3:d7:8e: 67:8f:b3:d2:82:8b:c2:71:12:16:91:0c:7e:f8:44:dc:30:c4: 35:fb:bc:e6:99:45:c6:59:6e:3b:b3:e7:55:6b:89:73:cc:1f: 81:ef:b5:09:e6:01:96:4f:c6:c7:94:b5:1e:07:e7:5f:48:be: 29:21:ce:f5:f9:71:5f:2f:a9:4a:71:47:f4:5f:12:e0:83:95: fa:ca:df:56:9f:ae:15:38:89:f9:a1:8f:38:30:8f:7a:3b:06: fe:b4:66:14 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUW6wtX3X3Sy+B+IEnKAlLm3z8HIEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODA1MTYwMDIzWhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BmYjhhY2VlMDY5ZDZlYTdhNzViMDViYmE3ZDYwNzBkMjNi MjNiYjgxZTcwMWNkMTE3YzRkYmI5YWQwZGY0MjYwMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDiveSJnpVznZtSTeRn76WkJVcaABCVTGjK3OHQCRts6EAo 9C/ZeGbjHvTSOPBv8Go0A/WX5hmVUIbNhPtvXsNmfaF4QR22NXenHg+TwFiV2kU+ 1vPN13RZfcmIMTK2pbOS6d+dZfj0lz9gal6cK+3kVwRCTr4i44S/sau/vegJUbpF Gq2MVLoUcdty89c7jPKBInXDurAiV1dWGixXuSOrVf/lhgWOSdCSQx17iQYLPH5h V86e6ElbviLt8883cImHPXpIKwod0L5BfSCKdHFFM7g63ID2JbRNmD8uHZ5LIbqh 8tuLcCzkst54idHox0WMUKlunPZQdMBqLxNWOam/AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUHecLdJ3O2bnjWWje05dIe5mhOTEwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzU4YzFiZTI0LTZkYzUtNDI5YS05ZGVjLTk3Y2E4YTM5ZTMzYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwChzjANBgkqhkiG9w0BAQsFAAOCAQEApVXehYoNgIYZCrfeEZzrLDiQxZjf +4yIs1eWUX/6W8fpGHtrSujtewysZEjCTRaBVWB8gzqlTtMxHPZP7qafJJnEJVWf n9BxqRABzCkWPKv5JeM0NLu3kTJR2EXjCth1FFw/d5Y2GNg/uw58Uh6C0mALqSDv xghjvF09NnovbuQiH6sjKkVFXViH3U/vzA8Sk4xIOqKPAQx1vUVPJnbgs9eOZ4+z 0oKLwnESFpEMfvhE3DDENfu85plFxlluO7PnVWuJc8wfge+1CeYBlk/Gx5S1Hgfn X0i+KSHO9flxXy+pSnFH9F8S4IOV+srfVp+uFTiJ+aGPODCPejsG/rRmFA== -----END CERTIFICATE-----Generated at Wed Aug 20 10:37:19 2025 by rpki-client