$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8a0e06e8-a179-4fac-b725-de7baf6ab80c.roa File: 8a0e06e8-a179-4fac-b725-de7baf6ab80c.roa (raw, json) Hash identifier: VZYODYlMgEDnnszP2OC/m89hWAD7ic9tZ08+6uC9/xo= Subject key identifier: F6:79:51:43:23:01:1E:9B:91:6B:2B:64:50:E7:38:0D:F9:3B:50:9F Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 55EFE1E4C340B22440BDFBE2520463F2242108BD Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8a0e06e8-a179-4fac-b725-de7baf6ab80c.roa Signing time: Tue 05 Aug 2025 17:51:10 +0000 ROA not before: Tue 05 Aug 2025 17:51:10 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.86.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:ef:e1:e4:c3:40:b2:24:40:bd:fb:e2:52:04:63:f2:24:21:08:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 5 17:51:10 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=e754befce6b0749f5324de9d91612474591bdd1d48dcc97d2a49a131dfadae36, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ab:d4:9a:93:82:5f:93:aa:e8:28:0b:ba:e5: 33:70:84:cc:8c:26:a2:f3:2e:c7:8b:05:89:bb:1c: f8:85:12:27:7f:0d:eb:2b:ab:02:02:8c:fa:29:32: 5f:fb:af:41:a7:5b:d3:73:82:9d:ad:ad:ee:8a:bc: bf:bc:70:6f:46:1c:cc:b4:0d:6a:cb:5a:18:b5:04: a9:b3:f8:26:25:d0:d4:52:e6:fe:59:f7:5c:6e:93: 4a:d4:a4:f8:d1:b2:a5:1f:fb:0c:32:88:7d:0b:d9: ba:f5:57:fe:47:bf:8f:17:b5:5c:de:fd:b6:71:7b: 22:19:a5:4b:f8:90:22:4a:9e:f1:b9:bd:20:52:ce: 1c:9b:6c:4c:63:a7:80:50:45:d6:1d:49:4c:15:59: ae:46:a3:b9:88:1b:a6:dd:9e:c1:0a:5d:d9:9f:20: 2e:f5:81:96:a3:7e:b9:29:67:60:1c:da:57:4d:bb: e6:3f:66:31:d8:3a:54:f1:af:48:ee:e8:f3:e8:07: b7:70:58:99:32:23:59:87:6e:d4:ec:4b:23:e4:0c: 58:00:57:ba:b1:87:a1:e9:af:ed:4b:3e:83:16:a2: 2f:f2:26:a6:53:78:1e:ed:85:cb:8c:61:c2:e7:eb: fd:54:e6:84:c2:f9:69:2e:b2:1d:50:95:58:5a:a8: 7c:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:79:51:43:23:01:1E:9B:91:6B:2B:64:50:E7:38:0D:F9:3B:50:9F X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8a0e06e8-a179-4fac-b725-de7baf6ab80c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.86.0.0/16 Signature Algorithm: sha256WithRSAEncryption 66:b1:d3:87:62:29:9b:f3:a3:0e:29:57:21:16:6a:72:ef:27: 47:30:ab:ff:9f:77:83:a5:90:a2:fd:cd:00:ec:e8:9d:f8:a3: 13:1f:a5:db:82:04:7d:92:61:dc:01:c6:55:57:de:0d:94:31: b2:12:c0:02:2e:ae:4c:62:38:82:0e:14:6b:f1:f8:c3:f5:a9: 13:81:5f:b3:7f:a5:87:02:30:bf:4f:96:90:68:69:46:74:c5: 8c:04:53:3e:af:d3:db:39:b2:45:be:68:87:81:b5:29:51:99: 89:c1:d3:42:8d:77:5c:2a:5e:95:fd:f9:d5:aa:c4:f2:80:7b: c9:09:eb:d1:a8:9a:d1:44:22:96:56:07:94:bd:f8:24:e9:50: 2c:39:fa:49:00:08:86:23:94:85:cc:b2:8a:8d:d4:13:96:36: af:33:8a:16:d3:54:8b:1d:66:12:4b:c0:23:a1:3b:df:57:d2: d7:1f:9e:8c:a8:0b:68:fd:b9:a3:e4:b7:fa:0a:ca:1c:9c:53: e7:29:9c:2d:79:1a:97:cf:6e:9b:44:37:14:79:c1:3c:9b:3c: e2:0a:0e:51:9a:6b:15:45:56:6c:09:bc:1a:52:83:d1:64:1c: 84:ed:4c:3e:84:14:8f:d0:40:e6:92:20:b3:1a:41:68:e2:a5: aa:f6:18:e8 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUVe/h5MNAsiRAvfviUgRj8iQhCL0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODA1MTc1MTEwWhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNzU0YmVmY2U2YjA3NDlmNTMyNGRlOWQ5MTYxMjQ3NDU5 MWJkZDFkNDhkY2M5N2QyYTQ5YTEzMWRmYWRhZTM2MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwq9Sak4Jfk6roKAu65TNwhMyMJqLzLseLBYm7HPiFEid/ DesrqwICjPopMl/7r0GnW9Nzgp2tre6KvL+8cG9GHMy0DWrLWhi1BKmz+CYl0NRS 5v5Z91xuk0rUpPjRsqUf+wwyiH0L2br1V/5Hv48XtVze/bZxeyIZpUv4kCJKnvG5 vSBSzhybbExjp4BQRdYdSUwVWa5Go7mIG6bdnsEKXdmfIC71gZajfrkpZ2Ac2ldN u+Y/ZjHYOlTxr0ju6PPoB7dwWJkyI1mHbtTsSyPkDFgAV7qxh6Hpr+1LPoMWoi/y JqZTeB7thcuMYcLn6/1U5oTC+Wkush1QlVhaqHwVAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU9nlRQyMBHpuRaytkUOc4Dfk7UJ8wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzhhMGUwNmU4LWExNzktNGZhYy1iNzI1LWRlN2JhZjZhYjgwYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2VjANBgkqhkiG9w0BAQsFAAOCAQEAZrHTh2Ipm/OjDilXIRZqcu8nRzCr /593g6WQov3NAOzonfijEx+l24IEfZJh3AHGVVfeDZQxshLAAi6uTGI4gg4Ua/H4 w/WpE4Ffs3+lhwIwv0+WkGhpRnTFjARTPq/T2zmyRb5oh4G1KVGZicHTQo13XCpe lf351arE8oB7yQnr0aia0UQillYHlL34JOlQLDn6SQAIhiOUhcyyio3UE5Y2rzOK FtNUix1mEkvAI6E731fS1x+ejKgLaP25o+S3+grKHJxT5ymcLXkal89um0Q3FHnB PJs84goOUZprFUVWbAm8GlKD0WQchO1MPoQUj9BA5pIgsxpBaOKlqvYY6A== -----END CERTIFICATE-----Generated at Wed Aug 20 10:37:24 2025 by rpki-client