$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7a4cd46e-b055-47b6-a4f5-54b4d9014b9e.roa File: 7a4cd46e-b055-47b6-a4f5-54b4d9014b9e.roa (raw, json) Hash identifier: YnbJJ2V2o/52xFkTvPdjmKR7YGyv5HkaZ/+YspQF7BM= Subject key identifier: 20:BD:95:D5:D1:8F:44:1B:DD:58:3C:4B:0F:37:85:DC:96:84:FE:DC Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 5E5A2AA3F8DBEAD69BBE87F5F3AF90F19BD6DF23 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7a4cd46e-b055-47b6-a4f5-54b4d9014b9e.roa Signing time: Tue 19 Aug 2025 15:11:07 +0000 ROA not before: Tue 19 Aug 2025 15:11:07 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.236.60.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:5a:2a:a3:f8:db:ea:d6:9b:be:87:f5:f3:af:90:f1:9b:d6:df:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 19 15:11:07 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=28a288aa9c94e22421e68f5b561e57027b23f0ea38db3caa9bb4eee42518ff9a, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:ae:4f:56:52:4b:93:66:3d:f4:e8:2f:e9:89: 44:cb:a2:75:c2:89:9a:ae:a7:ba:bc:75:35:8e:c5: 6a:b9:dd:38:1e:f4:70:4f:84:4c:da:d1:ab:2f:a7: 2f:62:f0:3a:68:fb:47:43:eb:34:fe:c9:ea:8a:1b: 2c:a5:26:19:3a:95:48:1d:c2:41:47:c0:f3:72:a6: 0b:c3:c0:32:38:3f:ff:87:c8:b7:d5:ac:32:2f:d4: 05:23:c4:d2:d0:7d:df:f2:53:6f:f9:33:c8:e0:21: cf:cb:b7:45:74:28:66:8b:5a:81:76:52:41:c2:ed: 53:10:af:7f:33:35:6a:36:a5:f3:02:52:4a:54:20: 7f:38:ef:6b:40:38:77:84:03:7c:d7:06:1d:7c:2d: a3:f4:51:e3:5c:82:20:9e:42:99:d8:c4:84:1e:ae: 1b:3d:c8:53:fe:7a:1c:1e:ee:dd:b1:53:a6:6f:af: bb:26:02:a7:65:a8:4e:91:76:6d:8f:7b:41:40:c6: ca:f9:21:36:48:cd:ab:18:d9:9a:7b:fc:7e:e2:4c: 9a:0a:b8:59:7f:41:c2:b6:a9:8b:25:b0:fb:d4:23: 34:32:1d:cd:e8:76:54:93:07:6d:e2:67:e8:a9:47: 77:be:4c:b5:69:d1:c9:98:43:6d:78:12:a7:48:0b: e6:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:BD:95:D5:D1:8F:44:1B:DD:58:3C:4B:0F:37:85:DC:96:84:FE:DC X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7a4cd46e-b055-47b6-a4f5-54b4d9014b9e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.236.60.0/22 Signature Algorithm: sha256WithRSAEncryption 20:8e:57:88:b8:89:dc:d9:0d:8d:d1:60:10:ec:9e:1a:f9:7e: 1d:3c:93:c9:b4:24:e2:fa:9f:31:3a:9c:31:3f:df:54:71:5b: 9f:f3:6e:59:c3:b2:6a:f8:90:2a:00:f3:e9:b0:ae:d8:ff:ce: 92:76:7b:16:b6:3c:18:70:5a:3c:69:f6:50:3a:9c:05:1d:5b: e5:30:07:76:44:5c:f6:52:08:bb:87:43:b1:52:03:f1:ad:30: 3d:92:bd:48:9b:21:a2:6f:94:a4:a6:4d:96:23:59:da:7e:88: 7f:92:c1:22:4d:79:7f:b4:04:da:7e:28:cb:a6:a8:c9:6f:71: a3:7c:a1:66:3d:df:54:d3:e3:eb:62:aa:f3:0e:92:62:a9:56: d3:b0:5e:bc:51:95:97:a7:32:af:23:4c:e2:93:e0:44:1b:db: 3a:3b:aa:82:53:44:49:51:80:86:37:e7:6e:73:74:d8:15:6d: 86:f7:ed:5f:fb:c7:a6:36:63:b8:b4:e5:59:8d:96:1f:19:0c: 4d:d3:d2:57:ac:4c:ca:7e:e5:ae:d2:31:56:5f:9e:34:30:77: d7:d6:0c:32:3f:1d:85:3a:db:11:69:fd:14:fc:1d:88:5d:a8: 61:2a:bc:16:61:39:61:cc:f7:15:44:fc:b8:05:fb:ad:9b:c1: 5c:55:6b:41 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXloqo/jb6tabvof186+Q8ZvW3yMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODE5MTUxMTA3WhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AyOGEyODhhYTljOTRlMjI0MjFlNjhmNWI1NjFlNTcwMjdi MjNmMGVhMzhkYjNjYWE5YmI0ZWVlNDI1MThmZjlhMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsrk9WUkuTZj306C/piUTLonXCiZqup7q8dTWOxWq53Tge 9HBPhEza0asvpy9i8Dpo+0dD6zT+yeqKGyylJhk6lUgdwkFHwPNypgvDwDI4P/+H yLfVrDIv1AUjxNLQfd/yU2/5M8jgIc/Lt0V0KGaLWoF2UkHC7VMQr38zNWo2pfMC UkpUIH8472tAOHeEA3zXBh18LaP0UeNcgiCeQpnYxIQerhs9yFP+ehwe7t2xU6Zv r7smAqdlqE6Rdm2Pe0FAxsr5ITZIzasY2Zp7/H7iTJoKuFl/QcK2qYslsPvUIzQy Hc3odlSTB23iZ+ipR3e+TLVp0cmYQ214EqdIC+YtAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUIL2V1dGPRBvdWDxLDzeF3JaE/twwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzdhNGNkNDZlLWIwNTUtNDdiNi1hNGY1LTU0YjRkOTAxNGI5ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAID7DwwDQYJKoZIhvcNAQELBQADggEBACCOV4i4idzZDY3RYBDsnhr5fh08 k8m0JOL6nzE6nDE/31RxW5/zblnDsmr4kCoA8+mwrtj/zpJ2exa2PBhwWjxp9lA6 nAUdW+UwB3ZEXPZSCLuHQ7FSA/GtMD2SvUibIaJvlKSmTZYjWdp+iH+SwSJNeX+0 BNp+KMumqMlvcaN8oWY931TT4+tiqvMOkmKpVtOwXrxRlZenMq8jTOKT4EQb2zo7 qoJTRElRgIY3525zdNgVbYb37V/7x6Y2Y7i05VmNlh8ZDE3T0lesTMp+5a7SMVZf njQwd9fWDDI/HYU62xFp/RT8HYhdqGEqvBZhOWHM9xVE/LgF+62bwVxVa0E= -----END CERTIFICATE-----Generated at Wed Aug 20 10:39:20 2025 by rpki-client