$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b030f025-6754-4c0a-8e0c-61e1829884e9.roa File: b030f025-6754-4c0a-8e0c-61e1829884e9.roa (raw, json) Hash identifier: b1FBEMi6yGyKUnBe4gT6Ld0Xc+s253MJPhD5e+DrLsI= Subject key identifier: 39:33:65:05:4C:F4:5E:FB:59:22:09:D0:93:6F:0A:C6:AF:0F:E7:E0 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 1530E7C27E860E915BD2AD4343DCD76EFDF852F4 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b030f025-6754-4c0a-8e0c-61e1829884e9.roa Signing time: Tue 05 Aug 2025 17:51:42 +0000 ROA not before: Tue 05 Aug 2025 17:51:42 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.93.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:30:e7:c2:7e:86:0e:91:5b:d2:ad:43:43:dc:d7:6e:fd:f8:52:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 5 17:51:42 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=72701a294017a2dc966f21c8723921d81b0df307c89ada21bbbb9a4932f4405f, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:50:18:13:f6:99:21:90:99:51:2a:ba:40:4e: f1:47:9b:6a:fe:6f:52:30:3e:4c:15:42:39:dc:6f: b8:58:74:be:df:89:98:f7:12:1e:d3:75:47:aa:2b: dc:a3:89:50:07:4c:5e:4a:dd:8b:5a:da:18:ce:18: 93:e8:76:af:65:b5:f5:68:05:ce:41:01:d4:1c:83: b7:94:86:40:1c:bb:ac:7c:cf:7e:0f:f6:65:56:95: 4c:a9:83:00:00:09:7d:b7:65:79:b0:8f:0d:61:18: 01:ee:b1:fb:cd:42:cf:cf:18:c4:04:cf:5f:14:b5: 1d:48:ae:c9:91:1c:8f:32:02:52:f8:bc:ea:25:4c: ea:30:8c:e5:83:10:f9:dc:a4:14:65:7b:07:e0:db: e2:16:1c:06:44:88:d6:9c:b5:67:cc:56:5b:c6:0b: b0:cd:d8:cb:ad:50:0f:1f:fc:df:11:9f:9a:a5:0b: 80:3f:6e:18:9e:33:10:40:3d:67:e2:93:45:c2:d2: 05:49:fe:85:13:1a:7c:99:3e:a8:eb:b0:5b:97:61: 12:74:c1:7a:63:8b:6b:4c:d8:b8:cc:19:5c:02:30: 6d:22:03:db:4b:e3:51:d0:8e:de:21:e3:5f:8b:25: 04:73:a7:05:d4:1b:d9:94:3b:82:44:da:a4:b6:c8: b3:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:33:65:05:4C:F4:5E:FB:59:22:09:D0:93:6F:0A:C6:AF:0F:E7:E0 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b030f025-6754-4c0a-8e0c-61e1829884e9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.93.0.0/16 Signature Algorithm: sha256WithRSAEncryption 20:b1:2a:3a:c1:29:2a:ac:08:5a:5c:a3:c5:cb:be:59:da:7e: 8a:48:f2:cd:08:bb:71:2e:8d:08:e1:cc:a0:68:4a:0e:bc:82: 9e:e3:25:da:ce:7e:04:dd:85:12:33:52:39:01:89:d7:b8:26: 0e:7a:b3:2e:7b:c2:07:3c:ee:57:5a:2d:7a:88:47:73:70:59: ae:56:d8:4f:af:73:a4:67:f4:d1:87:a0:e0:fd:d7:ce:c9:42: 7e:31:4f:7c:f9:ef:75:38:3a:c6:b0:a4:2f:31:c1:86:ea:c7: 0c:91:e5:b4:f9:21:54:85:3e:30:6e:46:be:b5:d9:27:20:83: 41:d9:dd:33:05:2f:2e:d7:56:e9:74:5a:56:dc:9a:74:ba:f7: ca:c5:59:f6:9d:83:fe:63:9d:56:dc:3f:35:0d:00:d7:13:31: cd:c9:c0:33:de:61:f4:dc:27:8c:87:4d:f3:ee:84:7a:28:4f: 53:23:9c:30:07:ff:d8:f4:82:c9:40:41:0f:ea:60:c4:41:26: 15:a8:bc:2b:6f:92:d9:3a:2e:75:38:3e:73:47:a9:e1:b5:08: f8:d4:d5:18:bf:58:cd:88:e6:66:9a:fe:e3:7f:fb:b6:cb:c4: de:cd:95:7b:d1:36:58:02:f3:5f:9b:f2:3d:d5:ed:c7:5e:6e: 9e:75:dd:fa -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUFTDnwn6GDpFb0q1DQ9zXbv34UvQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODA1MTc1MTQyWhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MjcwMWEyOTQwMTdhMmRjOTY2ZjIxYzg3MjM5MjFkODFi MGRmMzA3Yzg5YWRhMjFiYmJiOWE0OTMyZjQ0MDVmMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3UBgT9pkhkJlRKrpATvFHm2r+b1IwPkwVQjncb7hYdL7f iZj3Eh7TdUeqK9yjiVAHTF5K3Yta2hjOGJPodq9ltfVoBc5BAdQcg7eUhkAcu6x8 z34P9mVWlUypgwAACX23ZXmwjw1hGAHusfvNQs/PGMQEz18UtR1IrsmRHI8yAlL4 vOolTOowjOWDEPncpBRlewfg2+IWHAZEiNactWfMVlvGC7DN2MutUA8f/N8Rn5ql C4A/bhieMxBAPWfik0XC0gVJ/oUTGnyZPqjrsFuXYRJ0wXpji2tM2LjMGVwCMG0i A9tL41HQjt4h41+LJQRzpwXUG9mUO4JE2qS2yLO7AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUOTNlBUz0XvtZIgnQk28Kxq8P5+AwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2IwMzBmMDI1LTY3NTQtNGMwYS04ZTBjLTYxZTE4Mjk4ODRlOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2XTANBgkqhkiG9w0BAQsFAAOCAQEAILEqOsEpKqwIWlyjxcu+Wdp+ikjy zQi7cS6NCOHMoGhKDryCnuMl2s5+BN2FEjNSOQGJ17gmDnqzLnvCBzzuV1oteohH c3BZrlbYT69zpGf00Yeg4P3XzslCfjFPfPnvdTg6xrCkLzHBhurHDJHltPkhVIU+ MG5GvrXZJyCDQdndMwUvLtdW6XRaVtyadLr3ysVZ9p2D/mOdVtw/NQ0A1xMxzcnA M95h9NwnjIdN8+6EeihPUyOcMAf/2PSCyUBBD+pgxEEmFai8K2+S2ToudTg+c0ep 4bUI+NTVGL9YzYjmZpr+43/7tsvE3s2Ve9E2WALzX5vyPdXtx15unnXd+g== -----END CERTIFICATE-----Generated at Wed Aug 20 10:40:30 2025 by rpki-client