$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/65eca7d6-2de7-476f-8307-cdd27b16e8e6.roa File: 65eca7d6-2de7-476f-8307-cdd27b16e8e6.roa (raw, json) Hash identifier: Ob31VuZUwNpb0M6w3fzG2TMSBuD/P77y9jjXiC63NqE= Subject key identifier: A1:47:80:C8:48:03:E3:37:0B:6D:64:70:8D:9A:5B:08:7E:EC:03:73 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 030B8334FE2232A0A291ACCC0C5878EAF76A3592 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/65eca7d6-2de7-476f-8307-cdd27b16e8e6.roa Signing time: Tue 19 Aug 2025 15:41:32 +0000 ROA not before: Tue 19 Aug 2025 15:41:32 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.2.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:0b:83:34:fe:22:32:a0:a2:91:ac:cc:0c:58:78:ea:f7:6a:35:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 19 15:41:32 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=fb1cd1e3ad6dace8c35caaa9a6c45867912fef3fa24af6bd65693f9d3eb5c197, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:7e:5e:bc:da:4b:70:ef:f5:dc:7b:96:67:8f: ff:67:28:78:0b:76:73:73:b5:80:fb:e1:9f:77:77: da:55:23:ff:4e:99:bd:55:92:22:cb:3c:e4:09:c2: 61:7c:21:bd:d8:e7:48:1b:29:4d:01:65:97:9f:90: e7:4b:b4:9c:cc:48:61:ee:2a:02:12:e7:29:7b:0b: 8c:b6:f3:6b:52:61:cf:22:48:b7:4c:46:47:0f:6d: 32:0c:1d:85:df:52:1b:fb:44:62:11:7c:2e:44:87: fd:21:7f:2b:66:5b:38:b4:42:e7:94:ed:28:e6:d2: 91:d3:c7:00:63:2c:1b:3e:f7:f1:b9:07:dc:c9:d9: 55:0f:3d:d0:3f:93:69:21:53:02:f4:57:ba:84:ed: 01:e9:76:0a:44:f0:2f:89:00:86:4e:d4:4e:74:e0: 01:99:f5:74:47:44:a2:0a:bf:df:c7:e2:a5:7b:a4: e1:fe:84:bd:3c:52:24:75:42:95:28:76:c4:52:bc: 81:86:ef:11:9d:01:9a:26:3e:20:f9:e5:d6:a8:aa: 5d:a6:8b:ab:d8:66:67:30:ea:fe:42:c4:98:4c:9d: 60:3d:b5:6d:60:e8:1c:ec:bc:2a:b0:19:98:7d:7b: 54:7e:60:b2:b2:bb:f9:13:f2:ea:67:f0:19:56:19: 2a:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:47:80:C8:48:03:E3:37:0B:6D:64:70:8D:9A:5B:08:7E:EC:03:73 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/65eca7d6-2de7-476f-8307-cdd27b16e8e6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.2.0.0/15 Signature Algorithm: sha256WithRSAEncryption 1a:17:ce:07:47:9b:72:d0:8d:e1:2b:74:8d:bc:21:fe:0c:38: 3b:23:83:ed:0f:67:76:09:89:a0:52:2e:f8:70:6b:83:2f:c9: 8d:70:cf:34:50:3f:86:c3:73:56:d7:71:31:ed:eb:ac:53:89: 21:44:0c:c2:9f:19:1d:b7:03:3f:d3:d5:ad:bf:14:90:8f:40: a5:a2:49:82:78:37:da:ea:25:1b:43:1b:f2:db:32:d0:7f:34: 21:c5:65:28:37:8e:9e:70:ac:cf:93:24:07:e2:70:03:ff:57: 2e:6a:27:84:7a:54:b2:3a:e1:52:fc:e0:36:01:42:98:81:42: d0:51:e7:51:97:52:6b:5e:9f:59:12:41:9f:d6:62:da:2e:89: fc:55:ba:f1:21:ad:91:14:b4:7b:ea:f6:ce:01:05:a0:dc:cf: ca:fd:58:d3:2e:26:e7:69:bc:02:77:65:42:13:3e:d8:95:12: 11:1d:dc:31:15:59:71:c9:15:38:0d:a5:1b:d9:7e:78:60:b9: 33:99:2d:ab:d6:69:97:a7:41:b6:d1:bf:10:e7:ca:15:6f:6a: fa:c5:d0:22:45:a4:05:72:cd:48:ff:de:e2:90:d3:9a:71:23: 60:42:35:1d:47:7b:ba:f0:6e:13:7b:64:44:6c:4c:f1:71:01: f6:74:0a:78 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUAwuDNP4iMqCikazMDFh46vdqNZIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODE5MTU0MTMyWhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BmYjFjZDFlM2FkNmRhY2U4YzM1Y2FhYTlhNmM0NTg2Nzkx MmZlZjNmYTI0YWY2YmQ2NTY5M2Y5ZDNlYjVjMTk3MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBfl682ktw7/Xce5Znj/9nKHgLdnNztYD74Z93d9pVI/9O mb1VkiLLPOQJwmF8Ib3Y50gbKU0BZZefkOdLtJzMSGHuKgIS5yl7C4y282tSYc8i SLdMRkcPbTIMHYXfUhv7RGIRfC5Eh/0hfytmWzi0QueU7Sjm0pHTxwBjLBs+9/G5 B9zJ2VUPPdA/k2khUwL0V7qE7QHpdgpE8C+JAIZO1E504AGZ9XRHRKIKv9/H4qV7 pOH+hL08UiR1QpUodsRSvIGG7xGdAZomPiD55daoql2mi6vYZmcw6v5CxJhMnWA9 tW1g6BzsvCqwGZh9e1R+YLKyu/kT8upn8BlWGSqrAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUoUeAyEgD4zcLbWRwjZpbCH7sA3MwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzY1ZWNhN2Q2LTJkZTctNDc2Zi04MzA3LWNkZDI3YjE2ZThlNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwE0AjANBgkqhkiG9w0BAQsFAAOCAQEAGhfOB0ebctCN4St0jbwh/gw4OyOD 7Q9ndgmJoFIu+HBrgy/JjXDPNFA/hsNzVtdxMe3rrFOJIUQMwp8ZHbcDP9PVrb8U kI9ApaJJgng32uolG0Mb8tsy0H80IcVlKDeOnnCsz5MkB+JwA/9XLmonhHpUsjrh UvzgNgFCmIFC0FHnUZdSa16fWRJBn9Zi2i6J/FW68SGtkRS0e+r2zgEFoNzPyv1Y 0y4m52m8AndlQhM+2JUSER3cMRVZcckVOA2lG9l+eGC5M5ktq9Zpl6dBttG/EOfK FW9q+sXQIkWkBXLNSP/e4pDTmnEjYEI1HUd7uvBuE3tkRGxM8XEB9nQKeA== -----END CERTIFICATE-----Generated at Wed Aug 20 10:39:55 2025 by rpki-client