$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bb3edb19-9dc8-4fb1-80a7-e7d90b77a937.roa File: bb3edb19-9dc8-4fb1-80a7-e7d90b77a937.roa (raw, json) Hash identifier: U2FrbI+byNYLLXM431KO6OUeTy5fMzRDY5KWcpSzc3E= Subject key identifier: 02:09:99:EF:7B:DD:44:BE:7C:5B:59:73:81:6E:35:19:07:AF:44:30 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 0255609DC6786359E52BEBE8C9FD64E282340839 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bb3edb19-9dc8-4fb1-80a7-e7d90b77a937.roa Signing time: Tue 05 Aug 2025 16:21:19 +0000 ROA not before: Tue 05 Aug 2025 16:21:19 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.208.0.0/13 maxlen: 13 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:55:60:9d:c6:78:63:59:e5:2b:eb:e8:c9:fd:64:e2:82:34:08:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 5 16:21:19 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=2f8f7641e74b08122bdfc2bc6e2a3d4cee5ec75fac312f0eb9caa8d0e72b945a, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:69:31:9b:4f:71:b6:a3:cf:b8:88:c9:ad:88: 60:39:58:24:6f:06:45:b7:8d:b5:dc:b7:2d:20:4d: d7:5b:ff:f3:47:0c:f2:dd:55:84:23:ad:bd:a0:97: c0:cc:57:10:8f:b3:15:5f:dc:bd:15:0d:cf:b4:21: f6:3f:8d:ba:9a:df:c7:64:1a:1f:98:af:1b:45:cc: b0:16:94:28:37:e2:b6:22:81:bb:20:a0:19:06:3c: fe:47:67:47:7b:ee:8f:3c:9b:18:35:a3:08:32:79: 4c:e7:03:3b:38:6c:d7:e7:05:de:a3:85:f9:f5:ae: c3:e0:6f:43:38:6d:21:df:38:9a:04:a7:30:e9:71: 8d:46:21:f5:bd:69:9d:9a:2e:6b:c8:56:0e:ba:1c: 5a:ec:23:eb:ef:9c:3f:e2:a7:19:ac:5a:48:23:cc: c4:dd:71:56:56:b6:4e:ce:3f:ba:a4:f8:f9:9e:fa: ac:de:f6:26:36:60:0a:ee:57:8f:83:09:03:49:06: af:43:9e:a6:12:ad:d3:24:fc:a0:e2:50:0e:94:13: f0:b1:04:c3:a6:78:04:a6:0b:99:12:46:a3:5d:f2: 6c:fa:a6:b9:f5:37:be:3f:ad:99:9e:68:1b:09:8f: e2:21:e1:94:34:fc:5c:d5:fb:00:fe:86:f0:eb:77: 65:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:09:99:EF:7B:DD:44:BE:7C:5B:59:73:81:6E:35:19:07:AF:44:30 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bb3edb19-9dc8-4fb1-80a7-e7d90b77a937.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.208.0.0/13 Signature Algorithm: sha256WithRSAEncryption 42:c8:3c:ec:29:69:9c:ea:85:ac:04:bf:85:c9:50:58:c5:ed: 9a:b1:ab:ae:23:4d:c3:12:97:b7:9a:38:fd:e1:b9:60:57:8f: 85:5a:66:04:fc:b6:f9:1a:1a:4e:f0:d2:8e:ed:7c:ae:e5:7e: 49:aa:d6:31:6c:d7:1b:cf:b3:e7:04:05:c7:6a:9d:2f:2e:ca: d2:04:40:92:3c:ae:e9:6b:a1:9b:70:d2:f2:21:5a:de:46:9f: e9:07:cd:f4:f4:c1:ee:d5:b5:16:36:d6:c7:bd:09:c5:20:00: b9:4f:8a:7d:c5:a6:56:ea:0d:6c:4b:4f:22:47:17:fd:14:d3: d8:b4:51:23:be:c6:f5:7d:e6:4a:60:63:c7:7b:e6:6c:b8:aa: 99:da:a7:11:4f:a5:19:9f:01:a0:96:e0:61:04:0c:22:cc:7d: be:4b:14:87:dc:c5:38:0b:18:50:e8:c5:0f:9e:dc:ce:54:17: 06:e7:9a:39:43:cd:b5:4c:66:13:6a:9f:ae:57:cf:a7:72:5f: 50:1c:79:c8:72:6e:b9:35:8a:fe:3d:cd:6c:e9:ff:f8:31:2c: 0d:71:64:35:c9:28:b4:0d:9d:b2:e4:04:e8:65:e4:a2:ea:ae: 3e:e1:e8:a6:a7:15:3f:ea:3d:8c:e6:48:d0:f3:07:fd:7f:44: 71:67:de:1d -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUAlVgncZ4Y1nlK+voyf1k4oI0CDkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODA1MTYyMTE5WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AyZjhmNzY0MWU3NGIwODEyMmJkZmMyYmM2ZTJhM2Q0Y2Vl NWVjNzVmYWMzMTJmMGViOWNhYThkMGU3MmI5NDVhMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1aTGbT3G2o8+4iMmtiGA5WCRvBkW3jbXcty0gTddb//NH DPLdVYQjrb2gl8DMVxCPsxVf3L0VDc+0IfY/jbqa38dkGh+YrxtFzLAWlCg34rYi gbsgoBkGPP5HZ0d77o88mxg1owgyeUznAzs4bNfnBd6jhfn1rsPgb0M4bSHfOJoE pzDpcY1GIfW9aZ2aLmvIVg66HFrsI+vvnD/ipxmsWkgjzMTdcVZWtk7OP7qk+Pme +qze9iY2YAruV4+DCQNJBq9DnqYSrdMk/KDiUA6UE/CxBMOmeASmC5kSRqNd8mz6 prn1N74/rZmeaBsJj+Ih4ZQ0/FzV+wD+hvDrd2VRAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUAgmZ73vdRL58W1lzgW41GQevRDAwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2JiM2VkYjE5LTlkYzgtNGZiMS04MGE3LWU3ZDkwYjc3YTkzNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwMS0DANBgkqhkiG9w0BAQsFAAOCAQEAQsg87ClpnOqFrAS/hclQWMXtmrGr riNNwxKXt5o4/eG5YFePhVpmBPy2+RoaTvDSju18ruV+SarWMWzXG8+z5wQFx2qd Ly7K0gRAkjyu6Wuhm3DS8iFa3kaf6QfN9PTB7tW1FjbWx70JxSAAuU+KfcWmVuoN bEtPIkcX/RTT2LRRI77G9X3mSmBjx3vmbLiqmdqnEU+lGZ8BoJbgYQQMIsx9vksU h9zFOAsYUOjFD57czlQXBueaOUPNtUxmE2qfrlfPp3JfUBx5yHJuuTWK/j3NbOn/ +DEsDXFkNckotA2dsuQE6GXkouquPuHopqcVP+o9jOZI0PMH/X9EcWfeHQ== -----END CERTIFICATE-----Generated at Wed Aug 20 10:38:07 2025 by rpki-client