$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b7529512-d3e8-458c-b43f-9e84bd73caed.roa File: b7529512-d3e8-458c-b43f-9e84bd73caed.roa (raw, json) Hash identifier: 70cNSYKRzmRzcgy0xtrzRwBCM6AsIvzmQiYup/3Jkg0= Subject key identifier: D1:39:A4:12:A4:4D:D1:F4:68:0E:0C:1F:D0:E0:67:5D:97:B6:05:BF Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 70564CC728B598314344E3CD3D3E385503F9AB8C Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b7529512-d3e8-458c-b43f-9e84bd73caed.roa Signing time: Mon 18 Aug 2025 16:00:58 +0000 ROA not before: Mon 18 Aug 2025 16:00:58 +0000 ROA not after: Mon 22 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.177.64.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:56:4c:c7:28:b5:98:31:43:44:e3:cd:3d:3e:38:55:03:f9:ab:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 18 16:00:58 2025 GMT Not After : Sep 22 23:59:59 2025 GMT Subject: serialNumber=59f806e8e4688860c347054f95c909acc66dddfff7993bcc0a7bb0edbc1dadd0, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:62:86:ac:ee:b7:df:b6:88:1e:55:3f:bc:e9: 53:b1:58:a5:e0:61:d8:10:35:10:e5:7f:9c:7a:66: 48:b1:fb:31:c6:2c:69:01:5b:22:66:48:63:c8:4f: 5d:ef:b0:a3:7b:dd:1c:7f:cb:27:76:24:af:26:06: c4:dc:b5:ab:2a:31:a3:0b:22:9b:4c:35:ef:ce:38: 16:28:64:3d:3a:b5:5f:36:59:2b:e4:d5:97:7e:35: 25:7b:2a:34:d5:ee:fb:94:39:56:1f:6e:f4:66:44: 58:43:4f:d2:82:a6:58:1e:79:2c:b0:9b:e7:a2:a5: 8f:10:eb:3e:8c:75:39:3d:65:05:e5:a7:92:36:87: 6b:b4:b8:3c:1e:18:34:a4:f4:f1:53:43:b9:55:08: 26:35:91:37:02:f9:a4:c8:e6:a1:98:5f:d4:70:3c: 37:5f:bc:a3:8a:d0:9e:03:f3:79:d1:57:6e:b6:f1: 1c:71:85:d9:8e:e6:c2:27:8d:8a:8e:fa:2d:1c:af: f6:18:7e:f5:ec:5e:11:07:6f:6e:99:3b:92:45:0b: 95:ff:dd:b1:21:19:a9:28:34:0b:b4:50:8e:8d:5d: a0:ad:e4:4d:a1:9b:c3:09:b3:d8:87:3d:98:63:65: 78:92:e6:a9:1d:4e:0d:e8:19:ac:cb:08:84:36:b2: 6f:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:39:A4:12:A4:4D:D1:F4:68:0E:0C:1F:D0:E0:67:5D:97:B6:05:BF X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b7529512-d3e8-458c-b43f-9e84bd73caed.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.177.64.0/23 Signature Algorithm: sha256WithRSAEncryption ab:1b:a7:db:85:c0:c6:4e:f5:cf:fb:fd:7f:24:31:88:13:2d: a2:2a:fc:48:5e:d9:d1:fa:af:9c:c2:3b:88:bd:be:4b:8a:b3: d5:a4:78:10:6f:e4:43:8c:63:60:6a:d1:13:7e:5a:ec:a2:d2: 7c:02:b1:74:fe:98:34:fd:57:99:64:b9:c9:fb:83:ea:f8:c1: f2:ce:1b:09:f4:f4:8c:05:ba:a7:be:60:29:e9:9a:f4:dd:b7: 6e:67:a7:07:99:2a:d1:55:9e:66:67:6b:5f:b4:45:dd:2e:d1: 73:63:90:81:7a:69:6a:46:9e:af:55:21:84:a3:0e:cd:61:98: cc:9d:8c:fb:35:a8:80:85:76:f3:5b:14:44:ee:aa:91:aa:88: 67:d5:cd:d7:98:2a:50:7b:db:42:52:2f:d2:2b:71:d0:57:a9: 96:a5:6f:75:9f:88:2a:f2:75:17:90:7e:0d:f7:3d:d0:f2:22: 40:dd:88:7f:be:b8:5b:2b:f1:0a:52:96:ad:a5:a7:e7:e5:01: c3:22:9b:fe:6d:ac:c5:30:ab:d5:2c:1f:17:6a:5c:e6:0d:44: 38:8d:49:77:2e:d5:a9:b1:78:4d:6f:e5:04:83:86:03:0f:bb: f6:b3:63:43:e2:8f:08:94:28:6a:1b:33:c3:15:b5:4e:15:20: a2:19:c2:ed -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcFZMxyi1mDFDROPNPT44VQP5q4wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODE4MTYwMDU4WhcNMjUwOTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A1OWY4MDZlOGU0Njg4ODYwYzM0NzA1NGY5NWM5MDlhY2M2 NmRkZGZmZjc5OTNiY2MwYTdiYjBlZGJjMWRhZGQwMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuYoas7rfftogeVT+86VOxWKXgYdgQNRDlf5x6Zkix+zHG LGkBWyJmSGPIT13vsKN73Rx/yyd2JK8mBsTctasqMaMLIptMNe/OOBYoZD06tV82 WSvk1Zd+NSV7KjTV7vuUOVYfbvRmRFhDT9KCplgeeSywm+eipY8Q6z6MdTk9ZQXl p5I2h2u0uDweGDSk9PFTQ7lVCCY1kTcC+aTI5qGYX9RwPDdfvKOK0J4D83nRV262 8RxxhdmO5sInjYqO+i0cr/YYfvXsXhEHb26ZO5JFC5X/3bEhGakoNAu0UI6NXaCt 5E2hm8MJs9iHPZhjZXiS5qkdTg3oGazLCIQ2sm+DAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU0TmkEqRN0fRoDgwf0OBnXZe2Bb8wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2I3NTI5NTEyLWQzZTgtNDU4Yy1iNDNmLTllODRiZDczY2FlZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEPsUAwDQYJKoZIhvcNAQELBQADggEBAKsbp9uFwMZO9c/7/X8kMYgTLaIq /Ehe2dH6r5zCO4i9vkuKs9WkeBBv5EOMY2Bq0RN+Wuyi0nwCsXT+mDT9V5lkucn7 g+r4wfLOGwn09IwFuqe+YCnpmvTdt25npweZKtFVnmZna1+0Rd0u0XNjkIF6aWpG nq9VIYSjDs1hmMydjPs1qICFdvNbFETuqpGqiGfVzdeYKlB720JSL9IrcdBXqZal b3WfiCrydReQfg33PdDyIkDdiH++uFsr8QpSlq2lp+flAcMim/5trMUwq9UsHxdq XOYNRDiNSXcu1amxeE1v5QSDhgMPu/azY0PijwiUKGobM8MVtU4VIKIZwu0= -----END CERTIFICATE-----Generated at Wed Aug 20 10:37:26 2025 by rpki-client