$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/96e55d42-eddf-4dd8-b4d1-1e927888a9e7.roa File: 96e55d42-eddf-4dd8-b4d1-1e927888a9e7.roa (raw, json) Hash identifier: BDZspxGGFKsbADgLKosAQYDYiZoh3YqwbG7+6XiU0H8= Subject key identifier: 2E:75:94:A3:30:8A:04:47:D2:3E:AE:C1:DC:D8:88:02:80:87:6B:E9 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 6BD951980794922794B38588AFD9925DC41DED63 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/96e55d42-eddf-4dd8-b4d1-1e927888a9e7.roa Signing time: Mon 25 Aug 2025 15:50:26 +0000 ROA not before: Mon 25 Aug 2025 15:50:26 +0000 ROA not after: Mon 29 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 54.204.49.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Sep 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:d9:51:98:07:94:92:27:94:b3:85:88:af:d9:92:5d:c4:1d:ed:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 25 15:50:26 2025 GMT Not After : Sep 29 23:59:59 2025 GMT Subject: serialNumber=aa186aad95a0c5ab9f96389bc99bca8fcf8008c756d55422cd7bd4765209485e, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:87:e2:ed:cf:b2:4b:62:6a:73:25:1d:6c:78: 73:71:43:65:56:7e:55:a7:0d:7e:48:94:14:4f:06: 58:70:06:df:d8:de:e4:ef:50:20:02:b5:42:ed:87: 98:38:1b:e0:56:45:11:ff:7f:2d:de:20:41:c9:b0: 8e:58:de:b0:5d:f7:39:02:81:ab:93:b9:7c:bd:df: cd:2e:82:ed:bb:bd:da:e1:51:01:c6:24:7c:64:d2: 6d:66:48:ec:08:d7:37:9f:f7:bf:51:3b:61:2a:ff: 7f:89:4b:f4:12:91:08:ec:52:2a:b9:b0:9f:29:f9: b8:78:92:db:14:c4:42:c9:f3:dd:aa:63:dc:9f:35: e3:37:79:9b:2e:54:7f:a8:7d:e2:25:30:3a:60:e3: 7c:c2:02:4d:75:70:ce:83:cf:7e:2c:a9:02:c4:48: 32:09:42:d8:67:72:de:1e:ec:22:56:9d:45:52:5d: 32:26:ff:1c:f6:6a:fd:df:29:ba:91:2e:8e:f2:ab: a5:ac:e1:87:7f:ad:79:44:41:75:f7:a1:80:a0:79: 40:04:30:05:c4:25:64:3d:5f:ab:86:8d:fd:6a:a8: 5b:9d:b3:8a:80:c0:cf:71:01:b0:68:07:0e:81:c4: 33:d5:9e:e3:99:29:68:0d:d9:d8:93:f5:1c:b2:4a: 15:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:75:94:A3:30:8A:04:47:D2:3E:AE:C1:DC:D8:88:02:80:87:6B:E9 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/96e55d42-eddf-4dd8-b4d1-1e927888a9e7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.204.49.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:f4:aa:03:8c:c4:32:bc:32:bf:aa:db:a5:2f:f6:e8:73:39: a4:dd:7a:27:11:ca:e0:4e:48:66:a4:81:b6:84:03:54:79:16: a9:d1:e0:f5:72:ec:4c:f5:a9:04:3e:41:f3:38:25:34:14:ed: 1b:a9:81:c2:22:2f:ea:05:48:08:b9:88:e6:6c:dd:8e:14:64: 15:6a:c3:bb:67:eb:d0:ba:30:9c:84:cb:d7:b8:95:c1:2a:d1: 85:a8:7e:b1:2f:91:91:db:e3:27:d4:44:b4:6c:ee:d6:b8:23: b2:37:d8:db:83:3f:28:0e:00:5b:fe:03:09:f6:df:d4:09:b8: b2:f7:a2:05:c9:0c:82:08:32:5e:28:98:14:ff:d9:5c:2d:45: 49:d3:e9:bd:90:fc:a3:7c:d8:5f:ff:35:00:80:e8:ba:ff:74: 7e:f2:b4:f7:29:9a:87:a0:d0:82:eb:0b:61:5c:57:fe:50:67: 4f:94:d4:33:e8:6e:ce:3c:f3:14:67:fd:23:a3:b1:30:2e:46: 42:86:ac:37:ff:3a:dc:9f:85:78:92:36:46:bd:49:10:c4:e3: c5:08:5b:5c:02:96:21:2d:7d:bb:28:5d:60:ef:54:5c:5b:e4: b4:8b:df:5a:12:4c:9c:75:e3:81:3c:3f:95:4e:78:fd:b2:5f: 3d:ee:23:e6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUa9lRmAeUkieUs4WIr9mSXcQd7WMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODI1MTU1MDI2WhcNMjUwOTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYTE4NmFhZDk1YTBjNWFiOWY5NjM4OWJjOTliY2E4ZmNm ODAwOGM3NTZkNTU0MjJjZDdiZDQ3NjUyMDk0ODVlMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDlh+Ltz7JLYmpzJR1seHNxQ2VWflWnDX5IlBRPBlhwBt/Y 3uTvUCACtULth5g4G+BWRRH/fy3eIEHJsI5Y3rBd9zkCgauTuXy9380ugu27vdrh UQHGJHxk0m1mSOwI1zef979RO2Eq/3+JS/QSkQjsUiq5sJ8p+bh4ktsUxELJ892q Y9yfNeM3eZsuVH+ofeIlMDpg43zCAk11cM6Dz34sqQLESDIJQthnct4e7CJWnUVS XTIm/xz2av3fKbqRLo7yq6Ws4Yd/rXlEQXX3oYCgeUAEMAXEJWQ9X6uGjf1qqFud s4qAwM9xAbBoBw6BxDPVnuOZKWgN2diT9RyyShXdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQULnWUozCKBEfSPq7B3NiIAoCHa+kwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzk2ZTU1ZDQyLWVkZGYtNGRkOC1iNGQxLTFlOTI3ODg4YTllNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA2zDEwDQYJKoZIhvcNAQELBQADggEBAG30qgOMxDK8Mr+q26Uv9uhzOaTd eicRyuBOSGakgbaEA1R5FqnR4PVy7Ez1qQQ+QfM4JTQU7RupgcIiL+oFSAi5iOZs 3Y4UZBVqw7tn69C6MJyEy9e4lcEq0YWofrEvkZHb4yfURLRs7ta4I7I32NuDPygO AFv+Awn239QJuLL3ogXJDIIIMl4omBT/2VwtRUnT6b2Q/KN82F//NQCA6Lr/dH7y tPcpmoeg0ILrC2FcV/5QZ0+U1DPobs488xRn/SOjsTAuRkKGrDf/OtyfhXiSNka9 SRDE48UIW1wCliEtfbsoXWDvVFxb5LSL31oSTJx144E8P5VOeP2yXz3uI+Y= -----END CERTIFICATE-----Generated at Thu Sep 18 20:55:09 2025 by rpki-client