$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/af48a471-47ad-45b4-92ba-7dee5d4a4caa.roa File: af48a471-47ad-45b4-92ba-7dee5d4a4caa.roa (raw, json) Hash identifier: CrnW3qZMus7t07NGD3cG5xSN/qzfatmPaiVE9NDlIDE= Subject key identifier: 64:B6:D4:96:7E:F1:9A:EB:0A:C0:D5:18:8E:B5:4B:EC:9D:CF:B6:24 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 575896844E6DB4AE31876A04F5E37989E304D5E6 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/af48a471-47ad-45b4-92ba-7dee5d4a4caa.roa Signing time: Tue 05 Aug 2025 16:31:30 +0000 ROA not before: Tue 05 Aug 2025 16:31:30 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.220.192.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:58:96:84:4e:6d:b4:ae:31:87:6a:04:f5:e3:79:89:e3:04:d5:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 5 16:31:30 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=ed3ab15a50ce4abd358860c0596fec5a70a83c963f9fa713f5c5325446d10f5a, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:20:0a:f2:18:3c:d5:44:89:97:1b:01:aa:ea: 83:9f:6a:fd:d1:ec:e2:5e:f3:c7:12:83:72:c4:8c: 81:29:f7:5b:e7:03:3b:b6:29:18:54:bd:ff:7d:9b: fa:18:78:dd:ad:22:8a:7d:51:ad:f8:f9:96:1a:29: b8:32:40:c3:66:b9:25:19:fd:3f:b0:4c:44:2c:ac: fa:ec:aa:45:83:e9:d6:91:18:b1:63:0f:9a:ef:3e: c5:0e:97:90:50:33:78:1b:4b:9d:73:e9:b2:39:49: d9:cf:e1:53:93:01:2f:6d:9e:3a:06:7e:33:59:1f: 2d:9c:dc:5c:55:74:fe:88:7d:a3:a6:bc:24:e0:24: 69:3b:b7:f2:18:74:bf:d8:0d:9e:04:72:3c:9c:09: f6:0f:af:16:9e:7f:e6:16:9a:f5:fb:1b:d5:41:33: 06:31:16:b3:15:2a:2c:a0:77:2c:be:18:44:8d:f2: 08:19:dd:53:da:40:47:e2:72:90:cb:2a:eb:ee:27: f8:fe:10:b6:2e:e4:0d:2c:4d:79:61:9e:28:cf:30: c1:af:30:cb:3f:a2:c8:b6:98:b7:cc:8c:60:ee:1d: fb:fe:58:fd:81:9d:94:92:dc:13:89:82:c5:e1:46: 08:6d:fb:ef:3d:31:fa:7a:ea:89:f8:fe:8e:4c:fe: a5:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:B6:D4:96:7E:F1:9A:EB:0A:C0:D5:18:8E:B5:4B:EC:9D:CF:B6:24 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/af48a471-47ad-45b4-92ba-7dee5d4a4caa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.220.192.0/22 Signature Algorithm: sha256WithRSAEncryption b0:71:4d:14:17:93:f0:8d:85:45:f4:9c:10:7f:68:1f:fe:18: 55:a2:4a:e3:09:d8:4f:d1:8c:f3:85:3d:6d:fc:3b:fb:7f:91: 08:ce:bb:45:d9:d9:89:e3:da:0e:16:a6:d7:5c:0f:ba:e8:9c: 74:31:15:70:4b:f3:e7:39:ca:ed:4e:32:8d:34:3d:e2:01:c4: 48:a3:38:1d:74:23:86:ea:1d:ee:6c:7c:71:6a:79:d3:af:30: 3c:19:57:fa:c1:11:4b:7c:2e:da:77:72:b0:a9:ee:25:26:f2: 26:28:16:fa:86:bd:e3:9b:f7:db:0e:ad:40:75:82:9b:3c:1f: 46:d0:09:8c:cf:fe:18:83:99:e9:4a:74:49:ef:21:30:67:ab: 50:39:00:51:05:c4:33:5f:11:03:12:44:47:8e:0b:ce:bc:1a: 7c:e4:7e:5e:ba:2c:12:33:d2:98:02:9a:e6:58:4a:e7:db:68: 25:6e:3e:d0:8d:cc:d8:9b:74:c1:e1:09:79:5c:bf:5f:c5:af: 80:6c:c2:b0:4a:9b:2a:66:b0:e2:e9:bd:7e:1a:8f:84:09:fc: b7:65:5a:4a:57:8c:fc:c9:a0:a0:99:59:2a:93:2a:eb:42:a6: d3:b4:86:75:e5:6b:72:cd:5e:06:4f:7b:7b:7e:ae:15:3b:2e: 87:bf:35:7e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUV1iWhE5ttK4xh2oE9eN5ieME1eYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODA1MTYzMTMwWhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BlZDNhYjE1YTUwY2U0YWJkMzU4ODYwYzA1OTZmZWM1YTcw YTgzYzk2M2Y5ZmE3MTNmNWM1MzI1NDQ2ZDEwZjVhMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLIAryGDzVRImXGwGq6oOfav3R7OJe88cSg3LEjIEp91vn Azu2KRhUvf99m/oYeN2tIop9Ua34+ZYaKbgyQMNmuSUZ/T+wTEQsrPrsqkWD6daR GLFjD5rvPsUOl5BQM3gbS51z6bI5SdnP4VOTAS9tnjoGfjNZHy2c3FxVdP6IfaOm vCTgJGk7t/IYdL/YDZ4EcjycCfYPrxaef+YWmvX7G9VBMwYxFrMVKiygdyy+GESN 8ggZ3VPaQEficpDLKuvuJ/j+ELYu5A0sTXlhnijPMMGvMMs/osi2mLfMjGDuHfv+ WP2BnZSS3BOJgsXhRght++89Mfp66on4/o5M/qX3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUZLbUln7xmusKwNUYjrVL7J3PtiQwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2FmNDhhNDcxLTQ3YWQtNDViNC05MmJhLTdkZWU1ZDRhNGNhYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIP3MAwDQYJKoZIhvcNAQELBQADggEBALBxTRQXk/CNhUX0nBB/aB/+GFWi SuMJ2E/RjPOFPW38O/t/kQjOu0XZ2Ynj2g4WptdcD7ronHQxFXBL8+c5yu1OMo00 PeIBxEijOB10I4bqHe5sfHFqedOvMDwZV/rBEUt8Ltp3crCp7iUm8iYoFvqGveOb 99sOrUB1gps8H0bQCYzP/hiDmelKdEnvITBnq1A5AFEFxDNfEQMSREeOC868Gnzk fl66LBIz0pgCmuZYSufbaCVuPtCNzNibdMHhCXlcv1/Fr4BswrBKmypmsOLpvX4a j4QJ/LdlWkpXjPzJoKCZWSqTKutCptO0hnXla3LNXgZPe3t+rhU7Loe/NX4= -----END CERTIFICATE-----Generated at Wed Aug 20 10:40:36 2025 by rpki-client