$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9c0738ab-0d59-4e7b-afb6-d15789d094de.roa File: 9c0738ab-0d59-4e7b-afb6-d15789d094de.roa (raw, json) Hash identifier: gFkNiuGU6xBSxAyurT/B0bpoh5tkXHWkBg++6+4ofBU= Subject key identifier: 8F:CD:79:6F:BE:06:8B:A3:71:C4:DB:46:C0:BB:94:0F:93:26:FD:5A Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 30F38D83292EBBA64D827E691D3E353C1A0A8A1A Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9c0738ab-0d59-4e7b-afb6-d15789d094de.roa Signing time: Tue 19 Aug 2025 16:20:21 +0000 ROA not before: Tue 19 Aug 2025 16:20:21 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.214.224.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:f3:8d:83:29:2e:bb:a6:4d:82:7e:69:1d:3e:35:3c:1a:0a:8a:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 19 16:20:21 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=3695e8431c1bd4b58a0a3eccb7a09648ac301d33d1946f71cf7965cd715dcec8, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:64:8b:8e:0c:fb:8d:e4:c4:bb:41:20:28:4e: 35:89:bc:75:47:79:46:27:be:6e:bd:20:c9:63:09: 66:7d:a7:2d:a4:c3:82:91:12:c5:24:87:20:4f:02: 74:b6:d9:32:84:08:b0:f6:76:9d:98:dd:85:76:e1: e1:87:5c:0a:ec:f9:59:05:7e:27:36:44:a0:01:8f: 56:78:47:17:8a:c9:5d:af:4b:ab:16:e5:0b:0a:ad: 19:c6:c5:e0:6e:cb:0b:48:b6:8f:f4:51:1b:0f:42: 17:14:ce:6f:ec:23:d6:78:3a:8c:d1:9f:49:79:24: 6f:2d:62:8f:13:b2:80:a8:68:2e:56:a9:43:90:2f: e9:b9:45:b6:3b:c0:13:d6:9b:1a:d2:9c:7e:ac:d8: 09:6b:72:7f:59:f8:2b:ff:5f:03:f1:43:20:52:5c: 2a:de:7b:aa:bf:80:ee:63:68:91:8a:2b:20:2e:0c: 9e:a5:8f:8e:63:3b:74:2c:39:07:12:cc:b1:91:21: b4:c2:fe:c3:b0:0a:d6:a8:ab:02:1a:4c:ba:e0:05: be:10:bd:f8:40:d5:4e:f0:90:3f:8a:a1:ae:e7:6e: 97:61:e2:ee:33:5b:a6:dd:07:34:b3:8d:27:89:f9: 3c:8e:3e:7d:96:bf:6f:7c:05:59:26:07:b1:63:3e: 57:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:CD:79:6F:BE:06:8B:A3:71:C4:DB:46:C0:BB:94:0F:93:26:FD:5A X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9c0738ab-0d59-4e7b-afb6-d15789d094de.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.214.224.0/21 Signature Algorithm: sha256WithRSAEncryption 40:52:58:fb:29:fa:e7:7c:6b:49:b4:80:c5:6c:25:fa:a3:96: b2:ec:e0:18:ad:65:f0:0f:65:8b:4a:97:45:40:18:fe:6d:b8: 9e:1c:b0:e1:52:fb:ba:77:34:cf:bc:d9:a3:e6:21:b1:19:0b: d4:39:73:70:ad:26:72:a2:52:66:38:7d:c9:c9:a8:6a:4f:7a: d5:f4:95:19:f6:82:a8:46:9a:23:35:4d:d8:25:8f:d6:e6:d8: a4:3d:b2:a5:f0:51:62:44:92:60:33:a1:f1:5c:43:dc:41:23: f7:50:f7:01:6d:6b:2d:a9:52:af:5d:49:f6:48:64:dd:40:dd: eb:59:d6:ee:bc:2f:61:1b:b2:fe:48:8f:96:ed:04:01:69:b2: b7:ba:0e:d5:86:60:c6:2a:d6:59:5e:e7:4d:8f:77:8a:b0:bc: 72:d1:61:5e:7f:20:81:92:01:23:f5:4e:c3:c7:38:8e:41:52: d4:6f:cc:4d:1b:32:dc:88:7b:16:2f:90:ca:94:4b:9a:bc:c8: 8d:4d:9d:03:b4:49:f6:71:a4:49:c4:4a:45:0e:95:2d:0c:59: d7:83:5e:51:be:5f:9a:10:f7:7b:50:fe:08:ba:89:ce:39:ee: d7:f7:4e:37:80:f8:a6:d6:8b:5b:c1:27:2b:3b:ed:41:92:f4: 5a:0b:c3:40 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMPONgykuu6ZNgn5pHT41PBoKihowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODE5MTYyMDIxWhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AzNjk1ZTg0MzFjMWJkNGI1OGEwYTNlY2NiN2EwOTY0OGFj MzAxZDMzZDE5NDZmNzFjZjc5NjVjZDcxNWRjZWM4MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwZIuODPuN5MS7QSAoTjWJvHVHeUYnvm69IMljCWZ9py2k w4KREsUkhyBPAnS22TKECLD2dp2Y3YV24eGHXArs+VkFfic2RKABj1Z4RxeKyV2v S6sW5QsKrRnGxeBuywtIto/0URsPQhcUzm/sI9Z4OozRn0l5JG8tYo8TsoCoaC5W qUOQL+m5RbY7wBPWmxrSnH6s2Alrcn9Z+Cv/XwPxQyBSXCree6q/gO5jaJGKKyAu DJ6lj45jO3QsOQcSzLGRIbTC/sOwCtaoqwIaTLrgBb4QvfhA1U7wkD+Koa7nbpdh 4u4zW6bdBzSzjSeJ+TyOPn2Wv298BVkmB7FjPlerAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUj815b74Gi6NxxNtGwLuUD5Mm/VowHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzljMDczOGFiLTBkNTktNGU3Yi1hZmI2LWQxNTc4OWQwOTRkZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAM21uAwDQYJKoZIhvcNAQELBQADggEBAEBSWPsp+ud8a0m0gMVsJfqjlrLs 4BitZfAPZYtKl0VAGP5tuJ4csOFS+7p3NM+82aPmIbEZC9Q5c3CtJnKiUmY4fcnJ qGpPetX0lRn2gqhGmiM1Tdglj9bm2KQ9sqXwUWJEkmAzofFcQ9xBI/dQ9wFtay2p Uq9dSfZIZN1A3etZ1u68L2Ebsv5Ij5btBAFpsre6DtWGYMYq1lle502Pd4qwvHLR YV5/IIGSASP1TsPHOI5BUtRvzE0bMtyIexYvkMqUS5q8yI1NnQO0SfZxpEnESkUO lS0MWdeDXlG+X5oQ93tQ/gi6ic457tf3TjeA+KbWi1vBJys77UGS9FoLw0A= -----END CERTIFICATE-----Generated at Wed Aug 20 10:38:55 2025 by rpki-client