$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5933b4db-ccbb-47a3-a37b-fa7ff2d0ad09.roa File: 5933b4db-ccbb-47a3-a37b-fa7ff2d0ad09.roa (raw, json) Hash identifier: EocQLbXCqAtJn010CTltGxk8t0ab/U0Y8/a6T5v5pD4= Subject key identifier: 02:75:6E:7D:DF:A5:EE:2F:85:A1:75:DA:83:91:3B:92:AA:FD:A1:BE Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 2024956F7C4EFAF89C7F8A5D004113C07DE53113 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5933b4db-ccbb-47a3-a37b-fa7ff2d0ad09.roa Signing time: Mon 01 Sep 2025 16:40:14 +0000 ROA not before: Mon 01 Sep 2025 16:40:14 +0000 ROA not after: Mon 06 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 159.209.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 17 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:24:95:6f:7c:4e:fa:f8:9c:7f:8a:5d:00:41:13:c0:7d:e5:31:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Sep 1 16:40:14 2025 GMT Not After : Oct 6 23:59:59 2025 GMT Subject: serialNumber=f0661c1d018f45b08c8594b11e4e5bd4301dd52bd0372b2b517ae26c15438eae, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:41:d7:8f:19:df:53:45:9b:44:07:bd:4b:6a: 51:c6:16:65:5d:ec:a1:89:a2:c5:ee:7e:83:1e:a4: 09:8b:90:42:94:5a:25:bd:a5:6e:de:74:44:0f:f6: 75:48:b4:9f:80:d6:a5:b5:29:97:dd:de:35:21:bf: 69:72:51:45:de:d6:4f:ff:32:37:dd:ba:d1:44:a6: c3:26:80:e2:98:c4:e2:3b:c9:d6:a9:63:c2:31:20: 40:52:6b:d9:ff:be:32:1e:9b:5e:32:e3:16:98:c3: 09:dd:cf:e2:37:50:8e:31:06:e7:a8:80:d1:38:d6: b2:72:05:1e:72:d6:fe:da:d5:1e:f3:67:ce:f5:f6: 38:c4:4b:57:73:7d:8d:00:07:55:b1:4f:45:dd:7f: e2:4e:f3:06:79:30:b0:3d:a3:e4:7b:8f:d9:4f:38: b5:f4:b5:ef:4b:c6:92:61:c2:b5:e1:b4:3c:a7:1f: 97:a6:c3:f5:09:cf:f7:6d:67:ab:de:c2:b0:6b:2c: 60:87:56:64:9a:54:20:01:91:ff:7f:0f:21:cf:12: fd:30:ef:43:cf:c0:fa:ec:b3:02:f3:62:53:f9:37: e8:79:c4:d1:5f:eb:5e:95:cc:c9:bb:f3:e0:bb:46: 3d:04:b0:f0:fd:0b:f7:3d:3e:5c:2f:aa:27:8a:d6: 7c:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:75:6E:7D:DF:A5:EE:2F:85:A1:75:DA:83:91:3B:92:AA:FD:A1:BE X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5933b4db-ccbb-47a3-a37b-fa7ff2d0ad09.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 159.209.0.0/16 Signature Algorithm: sha256WithRSAEncryption 0f:4d:34:0c:84:95:ab:d7:a5:07:68:c9:83:b4:c7:57:32:d7: 11:5b:03:83:98:82:86:14:c0:79:07:8a:d4:4e:b9:4a:b7:62: 4a:ef:59:b9:f5:2d:2c:52:ea:39:e4:36:f2:43:65:fe:2c:bf: ec:e6:10:a8:6a:f2:68:6c:eb:09:2e:56:39:7d:92:65:72:31: 04:30:25:5b:79:2d:c1:63:2c:28:57:76:cc:02:88:f8:6a:e3: aa:2a:cf:43:10:d9:0b:c8:f2:3f:b6:97:ff:28:54:f1:95:30: 19:87:8c:44:de:99:84:43:74:c7:be:43:cb:a3:7a:d7:f9:52: 67:f8:5e:39:6c:d6:e3:5a:5f:09:44:d3:de:bc:1a:ec:d5:bc: ad:ba:0b:63:b5:17:e3:cb:ac:92:25:90:b6:0b:4e:06:db:da: 43:a4:a0:0d:6c:a9:cb:a9:af:98:85:14:1e:64:27:4e:f3:a5: ae:0c:87:46:99:a0:86:ab:11:d2:24:28:9b:4c:4d:11:bc:88: da:3e:e0:ec:85:7c:65:b3:26:1e:52:82:10:1c:9f:3e:ab:49: 84:71:a6:d1:cb:34:b7:23:0c:83:c7:fa:e3:d4:ca:ca:8e:4e: ee:a9:e7:45:e5:e1:1f:06:04:14:e6:ee:e4:7a:6e:12:c2:d5: 12:ce:ee:12 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUICSVb3xO+vicf4pdAEETwH3lMRMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwOTAxMTY0MDE0WhcNMjUxMDA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMDY2MWMxZDAxOGY0NWIwOGM4NTk0YjExZTRlNWJkNDMw MWRkNTJiZDAzNzJiMmI1MTdhZTI2YzE1NDM4ZWFlMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1QdePGd9TRZtEB71LalHGFmVd7KGJosXufoMepAmLkEKU WiW9pW7edEQP9nVItJ+A1qW1KZfd3jUhv2lyUUXe1k//MjfdutFEpsMmgOKYxOI7 ydapY8IxIEBSa9n/vjIem14y4xaYwwndz+I3UI4xBueogNE41rJyBR5y1v7a1R7z Z8719jjES1dzfY0AB1WxT0Xdf+JO8wZ5MLA9o+R7j9lPOLX0te9LxpJhwrXhtDyn H5emw/UJz/dtZ6vewrBrLGCHVmSaVCABkf9/DyHPEv0w70PPwPrsswLzYlP5N+h5 xNFf616VzMm78+C7Rj0EsPD9C/c9PlwvqieK1nw9AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUAnVufd+l7i+FoXXag5E7kqr9ob4wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzU5MzNiNGRiLWNjYmItNDdhMy1hMzdiLWZhN2ZmMmQwYWQwOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCf0TANBgkqhkiG9w0BAQsFAAOCAQEAD000DISVq9elB2jJg7THVzLXEVsD g5iChhTAeQeK1E65SrdiSu9ZufUtLFLqOeQ28kNl/iy/7OYQqGryaGzrCS5WOX2S ZXIxBDAlW3ktwWMsKFd2zAKI+GrjqirPQxDZC8jyP7aX/yhU8ZUwGYeMRN6ZhEN0 x75Dy6N61/lSZ/heOWzW41pfCUTT3rwa7NW8rboLY7UX48uskiWQtgtOBtvaQ6Sg DWypy6mvmIUUHmQnTvOlrgyHRpmghqsR0iQom0xNEbyI2j7g7IV8ZbMmHlKCEByf PqtJhHGm0cs0tyMMg8f649TKyo5O7qnnReXhHwYEFObu5HpuEsLVEs7uEg== -----END CERTIFICATE-----Generated at Tue Sep 16 14:14:39 2025 by rpki-client