$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8beaf9a0-1786-4e02-a829-a84311e20245.roa File: 8beaf9a0-1786-4e02-a829-a84311e20245.roa (raw, json) Hash identifier: YS+ZS56dFSxXvgS8bHGfXn9ZAWDxSvWlVJIZxk/g+YQ= Subject key identifier: 7E:8A:69:7F:FF:48:4C:97:F4:F9:30:9D:4B:7D:B5:A2:BE:05:FE:38 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 3E8AC3A5AD959F6651F0B7F2C5E6105A8F6AAB8F Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8beaf9a0-1786-4e02-a829-a84311e20245.roa Signing time: Mon 30 Jun 2025 17:30:21 +0000 ROA not before: Mon 30 Jun 2025 17:30:21 +0000 ROA not after: Mon 04 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.217.208.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:8a:c3:a5:ad:95:9f:66:51:f0:b7:f2:c5:e6:10:5a:8f:6a:ab:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jun 30 17:30:21 2025 GMT Not After : Aug 4 23:59:59 2025 GMT Subject: serialNumber=c848dc07c37eb6746179adef84c8bcccbf5fc13b55f5e12c8b01b2b60e01b19b, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:55:e0:f7:df:cd:5f:42:45:67:bf:91:ac:ba: f7:bd:06:1d:3e:13:8e:60:aa:5f:a9:91:d5:95:16: c0:bb:3d:9c:fb:03:8e:15:5e:44:d0:65:3c:b1:87: 8d:a3:be:79:ae:ba:55:07:55:ba:b4:4b:8a:5c:24: b0:fd:53:ae:8c:e4:2b:bc:b3:b8:7e:72:17:7f:e9: 6e:47:6d:e0:e1:7c:da:77:89:2c:7e:a5:65:9d:3f: 67:05:ab:a5:b9:46:30:0d:4c:be:cb:f6:f4:be:39: 43:90:b9:1c:ed:46:79:dc:e7:39:a8:51:1c:9b:de: f2:42:d1:cf:1c:3e:91:7e:06:88:25:f6:79:78:71: 48:89:ce:e3:69:52:e4:98:2b:0c:e5:0b:f0:92:28: 33:8d:f2:af:f5:4e:b2:a6:de:ed:29:b5:a1:7b:8d: b3:f3:7f:49:28:17:a7:09:51:e1:46:83:6e:b8:bb: ac:07:68:21:6a:97:ab:ca:40:d6:e4:90:7e:16:f6: c7:06:08:48:e1:cf:f0:96:cd:59:81:cd:9b:60:2d: 96:cb:77:64:1e:63:cf:25:f8:4f:7b:04:5e:a3:e1: ef:6a:13:1d:0e:2c:38:11:cd:8e:c7:9e:5e:65:03: f6:d5:0d:5c:b4:15:c7:76:87:8e:32:fd:96:6e:55: 2f:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:8A:69:7F:FF:48:4C:97:F4:F9:30:9D:4B:7D:B5:A2:BE:05:FE:38 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8beaf9a0-1786-4e02-a829-a84311e20245.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.217.208.0/20 Signature Algorithm: sha256WithRSAEncryption b4:62:6f:a8:95:96:b4:c6:84:ff:92:42:8c:49:8a:de:28:ce: 1a:db:b1:66:88:10:67:e3:4d:78:80:59:74:e2:9d:d7:fe:ca: 4f:30:df:d2:78:e2:ee:6e:a5:89:ef:f5:bc:d7:9a:12:56:ee: 2d:7a:66:80:a5:f7:64:ad:f4:8b:f3:e9:db:03:87:05:5b:5f: d1:a2:9f:f1:ec:7b:fe:83:3f:cc:fb:1d:0f:10:25:d3:75:9d: 29:bf:fc:28:b8:e4:34:25:b8:fe:0b:d1:62:43:f1:4a:2a:c6: 12:d2:1a:4f:39:e4:f5:49:47:ae:9f:90:a5:ed:33:2f:4c:4e: 12:ea:af:2e:cd:55:76:7a:62:97:87:a3:f2:64:e9:8a:4f:91: 2b:66:fe:ea:11:87:ca:78:26:5f:69:da:95:3b:89:66:5f:3a: a0:92:2f:08:8d:f1:98:b1:8e:ea:2a:5f:d0:fd:e0:77:85:53: 2b:5e:f6:39:a1:a9:92:0e:43:47:e8:6d:36:93:ad:99:eb:0c: 85:bd:b8:cf:9d:83:15:4a:f0:25:60:06:6b:eb:6c:5a:51:88: ef:2d:62:71:31:d4:80:fe:e1:47:65:89:3b:48:ac:b9:d1:b5: f4:18:ec:c0:87:27:a8:5d:77:55:cc:78:e5:cc:fe:c2:ec:98: af:13:e4:d2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPorDpa2Vn2ZR8LfyxeYQWo9qq48wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNjMwMTczMDIxWhcNMjUwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BjODQ4ZGMwN2MzN2ViNjc0NjE3OWFkZWY4NGM4YmNjY2Jm NWZjMTNiNTVmNWUxMmM4YjAxYjJiNjBlMDFiMTliMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+VeD3381fQkVnv5Gsuve9Bh0+E45gql+pkdWVFsC7PZz7 A44VXkTQZTyxh42jvnmuulUHVbq0S4pcJLD9U66M5Cu8s7h+chd/6W5HbeDhfNp3 iSx+pWWdP2cFq6W5RjANTL7L9vS+OUOQuRztRnnc5zmoURyb3vJC0c8cPpF+Bogl 9nl4cUiJzuNpUuSYKwzlC/CSKDON8q/1TrKm3u0ptaF7jbPzf0koF6cJUeFGg264 u6wHaCFql6vKQNbkkH4W9scGCEjhz/CWzVmBzZtgLZbLd2QeY88l+E97BF6j4e9q Ex0OLDgRzY7Hnl5lA/bVDVy0Fcd2h44y/ZZuVS8pAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUfoppf/9ITJf0+TCdS321or4F/jgwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzhiZWFmOWEwLTE3ODYtNGUwMi1hODI5LWE4NDMxMWUyMDI0NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQ22dAwDQYJKoZIhvcNAQELBQADggEBALRib6iVlrTGhP+SQoxJit4ozhrb sWaIEGfjTXiAWXTindf+yk8w39J44u5upYnv9bzXmhJW7i16ZoCl92St9Ivz6dsD hwVbX9Gin/Hse/6DP8z7HQ8QJdN1nSm//Ci45DQluP4L0WJD8UoqxhLSGk855PVJ R66fkKXtMy9MThLqry7NVXZ6YpeHo/Jk6YpPkStm/uoRh8p4Jl9p2pU7iWZfOqCS LwiN8ZixjuoqX9D94HeFUyte9jmhqZIOQ0fobTaTrZnrDIW9uM+dgxVK8CVgBmvr bFpRiO8tYnEx1ID+4UdliTtIrLnRtfQY7MCHJ6hdd1XMeOXM/sLsmK8T5NI= -----END CERTIFICATE-----Generated at Mon Jun 30 23:12:30 2025 by rpki-client