$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/884eabae-40e5-4574-8264-5a99add21405.roa File: 884eabae-40e5-4574-8264-5a99add21405.roa (raw, json) Hash identifier: CP+kv/rmchtG6KvMWdeOL9705oq4yUGJlfGdJBiV+IM= Subject key identifier: 38:00:53:B5:A0:36:63:C9:43:CC:40:E2:34:EE:4A:5B:D8:E0:E8:94 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 7C9EE074AE459BAD46AB339AE492598F2838EBBF Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/884eabae-40e5-4574-8264-5a99add21405.roa Signing time: Tue 19 Aug 2025 16:01:47 +0000 ROA not before: Tue 19 Aug 2025 16:01:47 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.170.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:9e:e0:74:ae:45:9b:ad:46:ab:33:9a:e4:92:59:8f:28:38:eb:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 19 16:01:47 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=f4c1d811435047436a4fa04d9fd067e4e0ec6abf2cad0b9b3c0290c8b798a9e3, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:39:20:31:03:ac:73:83:cd:31:77:ae:e1:02: 63:6d:b9:75:46:52:b8:4f:0d:83:41:99:d3:da:0a: 16:6c:05:3b:4b:51:d9:78:b7:05:cf:90:e3:d7:b2: 3d:bf:db:29:2d:69:bc:8c:8c:d7:25:21:c4:5a:66: 49:74:d4:a2:1a:52:e9:b0:5c:b8:96:08:95:2b:2b: 23:16:68:d1:5b:35:52:0f:9e:32:60:33:a2:fe:b6: b8:18:a2:02:43:60:b8:12:e6:45:e0:f3:7e:11:18: b6:30:16:42:9f:ca:d4:7a:c7:1f:7d:77:4e:75:73: 2b:f3:d5:ce:a1:86:43:b4:c4:ce:d3:54:5d:b4:c5: 50:55:83:48:83:36:8d:cf:99:e2:1e:fd:91:80:cb: 55:da:9d:00:33:ae:aa:49:23:73:a4:98:ed:c9:83: 2d:7f:e6:a3:67:0d:d0:b2:a7:a1:dd:fd:29:63:fb: 1d:c1:22:b5:65:e6:77:8b:73:55:03:c3:4b:9e:3b: 5f:3a:1c:50:fa:64:d1:c1:c7:2f:ef:f1:40:84:3f: 6b:6f:12:9f:e9:ca:bc:fc:0d:e2:28:77:00:15:3f: c4:2d:48:6a:81:8b:f6:57:e0:01:de:cc:43:91:93: 88:71:df:d0:2f:54:08:72:b6:81:b2:3a:31:73:2a: 64:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:00:53:B5:A0:36:63:C9:43:CC:40:E2:34:EE:4A:5B:D8:E0:E8:94 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/884eabae-40e5-4574-8264-5a99add21405.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.170.0.0/16 Signature Algorithm: sha256WithRSAEncryption 59:21:60:8d:41:7d:aa:a4:50:20:59:0e:b8:90:1f:82:87:3d: 53:77:b2:62:79:bc:6c:b0:dc:db:f4:1a:e7:31:57:b5:11:70: d6:f3:5f:fe:e2:01:e5:77:bf:6d:26:60:52:93:57:d3:63:f4: 8f:ed:4d:a4:91:56:f4:f6:1e:5d:7e:27:6d:01:a6:a4:e2:1c: d6:ec:2d:a2:0d:7b:8b:4b:96:a2:79:94:2c:e4:43:d5:0f:79: e1:a7:1e:1a:91:c5:50:88:a7:b1:fd:73:fa:9c:f3:90:6a:7b: 07:05:56:8b:14:ad:2f:c3:66:72:7b:74:98:4e:fd:96:d2:bf: 59:76:68:98:24:28:a0:d2:b4:e3:e7:b7:05:58:eb:23:33:6a: 44:34:ec:4a:f4:13:71:6b:ee:c3:78:67:4d:9e:76:85:b1:74: f3:b8:d6:d1:b5:03:3e:06:fd:df:02:f7:43:22:21:18:59:67: b6:f3:35:99:91:0c:3a:a8:9a:9d:9f:d1:cf:bd:21:79:cf:92: dd:c3:0a:ef:2c:94:7f:01:47:06:b8:4f:6f:0f:91:be:02:2e: d2:23:f1:6b:20:b7:8a:f9:15:4f:e0:22:96:fa:8c:f1:6e:4f: b7:be:99:b8:08:55:09:89:8a:5f:57:c4:a0:0b:11:34:e8:98: 9d:80:b5:33 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUfJ7gdK5Fm61GqzOa5JJZjyg4678wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODE5MTYwMTQ3WhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BmNGMxZDgxMTQzNTA0NzQzNmE0ZmEwNGQ5ZmQwNjdlNGUw ZWM2YWJmMmNhZDBiOWIzYzAyOTBjOGI3OThhOWUzMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/OSAxA6xzg80xd67hAmNtuXVGUrhPDYNBmdPaChZsBTtL Udl4twXPkOPXsj2/2yktabyMjNclIcRaZkl01KIaUumwXLiWCJUrKyMWaNFbNVIP njJgM6L+trgYogJDYLgS5kXg834RGLYwFkKfytR6xx99d051cyvz1c6hhkO0xM7T VF20xVBVg0iDNo3PmeIe/ZGAy1XanQAzrqpJI3OkmO3Jgy1/5qNnDdCyp6Hd/Slj +x3BIrVl5neLc1UDw0ueO186HFD6ZNHBxy/v8UCEP2tvEp/pyrz8DeIodwAVP8Qt SGqBi/ZX4AHezEORk4hx39AvVAhytoGyOjFzKmQLAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUOABTtaA2Y8lDzEDiNO5KW9jg6JQwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzg4NGVhYmFlLTQwZTUtNDU3NC04MjY0LTVhOTlhZGQyMTQwNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2qjANBgkqhkiG9w0BAQsFAAOCAQEAWSFgjUF9qqRQIFkOuJAfgoc9U3ey Ynm8bLDc2/Qa5zFXtRFw1vNf/uIB5Xe/bSZgUpNX02P0j+1NpJFW9PYeXX4nbQGm pOIc1uwtog17i0uWonmULORD1Q954aceGpHFUIinsf1z+pzzkGp7BwVWixStL8Nm cnt0mE79ltK/WXZomCQooNK04+e3BVjrIzNqRDTsSvQTcWvuw3hnTZ52hbF087jW 0bUDPgb93wL3QyIhGFlntvM1mZEMOqianZ/Rz70hec+S3cMK7yyUfwFHBrhPbw+R vgIu0iPxayC3ivkVT+AilvqM8W5Pt76ZuAhVCYmKX1fEoAsRNOiYnYC1Mw== -----END CERTIFICATE-----Generated at Wed Aug 20 10:43:32 2025 by rpki-client