$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c983e574-bfee-43d5-a8ee-79bdfdd8e179.roa File: c983e574-bfee-43d5-a8ee-79bdfdd8e179.roa (raw, json) Hash identifier: RQ8KCFKEWFcbzLXmRiriV53VSL1FBefXFXxy5+z+nPo= Subject key identifier: 27:C2:B8:42:F9:DE:3A:BF:7F:FF:CA:1D:D3:99:58:9F:4B:1C:29:8B Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 321D41D26B992AEA00081915EEE7B81980253E8A Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c983e574-bfee-43d5-a8ee-79bdfdd8e179.roa Signing time: Wed 20 Aug 2025 00:20:51 +0000 ROA not before: Wed 20 Aug 2025 00:20:51 +0000 ROA not after: Wed 24 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.248.96.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:1d:41:d2:6b:99:2a:ea:00:08:19:15:ee:e7:b8:19:80:25:3e:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 20 00:20:51 2025 GMT Not After : Sep 24 23:59:59 2025 GMT Subject: serialNumber=392005b0913f0605dfb1a2ba312db73678f665b3110a0c8c5946af2d47cc2b01, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:72:31:1f:84:87:42:35:2b:bb:da:ee:7a:58: 5e:46:a6:a6:45:55:3c:b3:3c:b0:ae:fe:e9:71:c3: c8:47:6a:14:c6:e3:2d:7a:4f:3a:bb:56:f0:d6:27: a6:10:a9:0f:0e:5c:10:cc:32:5e:b7:23:23:ca:64: 39:ec:4b:19:22:7f:a2:25:f3:fc:00:c6:b7:51:6a: 79:1f:0e:4d:c7:5a:e1:8a:5c:a0:a4:1e:4e:b9:2b: 95:68:da:03:75:04:7a:04:6e:be:8c:fe:d9:74:50: 8f:60:4a:79:b0:59:a5:f5:3b:79:a4:e2:c6:c4:68: f6:2b:af:9c:18:68:4e:38:5d:15:3b:e1:65:53:78: d5:ab:9b:92:a9:b0:da:02:5d:4f:8a:59:7a:fb:b1: 94:9e:38:6d:71:08:7e:ee:be:6b:e6:d3:55:4d:09: 63:4d:6b:b6:7e:c3:d9:c2:e0:5c:86:17:69:b8:ae: 16:f3:39:f2:92:52:31:3e:5a:a6:87:7b:e6:5a:95: 0b:a2:27:c1:33:53:e0:6c:d9:00:b7:14:f4:0c:1d: 48:d9:b4:89:61:86:c8:31:9c:0b:48:9b:68:c5:3e: 96:27:e8:d2:f2:30:50:a9:ff:2a:ab:ff:12:0c:f6: 60:05:2b:1d:50:01:4e:b1:88:ae:50:4c:c3:ff:b0: cb:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:C2:B8:42:F9:DE:3A:BF:7F:FF:CA:1D:D3:99:58:9F:4B:1C:29:8B X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c983e574-bfee-43d5-a8ee-79bdfdd8e179.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.248.96.0/20 Signature Algorithm: sha256WithRSAEncryption 0f:0b:ff:56:26:e6:83:85:c0:f3:49:df:f4:47:42:7b:6f:b5: 44:35:78:4e:8e:48:0a:3a:97:c3:2d:fd:35:d2:57:b6:2a:25: bc:32:d0:6e:dd:4b:13:9e:f0:e5:b0:df:5b:c5:c4:bc:5c:ac: 09:81:09:bd:0a:10:4f:b1:29:de:19:3d:a1:d5:1e:ce:08:82: 63:13:71:3b:c7:6e:00:4b:d3:0e:6a:13:e9:ba:be:a3:de:bd: d9:f0:e3:91:fd:34:ec:23:d9:4f:ca:27:d8:31:8a:82:e0:1c: b8:83:34:86:a2:b5:cc:77:88:07:0d:ed:e1:f0:ec:06:fe:b0: 21:aa:73:05:bd:87:0a:6d:28:e2:c9:c1:ad:fe:54:fa:a7:76: 01:f0:55:44:f2:90:07:d5:ac:c2:a6:95:ec:31:d1:f6:f1:38: f8:04:f9:13:e6:f3:29:a5:e0:34:51:5f:de:1a:86:d5:41:f2: 19:50:a5:8a:a4:7d:ef:6a:92:58:0c:e1:bf:48:29:6e:e0:5f: 73:ea:08:e6:14:bf:2a:00:8e:f4:1c:d7:23:10:47:11:b0:8e: bb:d3:42:70:93:c1:39:de:5c:1a:10:3b:77:2e:9e:8d:a3:82: 7f:54:1b:93:31:28:aa:41:43:85:bf:0f:6d:9d:21:80:a3:f5: e9:04:b8:b4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMh1B0muZKuoACBkV7ue4GYAlPoowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODIwMDAyMDUxWhcNMjUwOTI0MjM1OTU5 WjB6MUkwRwYDVQQFE0AzOTIwMDViMDkxM2YwNjA1ZGZiMWEyYmEzMTJkYjczNjc4 ZjY2NWIzMTEwYTBjOGM1OTQ2YWYyZDQ3Y2MyYjAxMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCicjEfhIdCNSu72u56WF5GpqZFVTyzPLCu/ulxw8hHahTG 4y16Tzq7VvDWJ6YQqQ8OXBDMMl63IyPKZDnsSxkif6Il8/wAxrdRankfDk3HWuGK XKCkHk65K5Vo2gN1BHoEbr6M/tl0UI9gSnmwWaX1O3mk4sbEaPYrr5wYaE44XRU7 4WVTeNWrm5KpsNoCXU+KWXr7sZSeOG1xCH7uvmvm01VNCWNNa7Z+w9nC4FyGF2m4 rhbzOfKSUjE+WqaHe+ZalQuiJ8EzU+Bs2QC3FPQMHUjZtIlhhsgxnAtIm2jFPpYn 6NLyMFCp/yqr/xIM9mAFKx1QAU6xiK5QTMP/sMthAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUJ8K4QvneOr9//8od05lYn0scKYswHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2M5ODNlNTc0LWJmZWUtNDNkNS1hOGVlLTc5YmRmZGQ4ZTE3OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQN+GAwDQYJKoZIhvcNAQELBQADggEBAA8L/1Ym5oOFwPNJ3/RHQntvtUQ1 eE6OSAo6l8Mt/TXSV7YqJbwy0G7dSxOe8OWw31vFxLxcrAmBCb0KEE+xKd4ZPaHV Hs4IgmMTcTvHbgBL0w5qE+m6vqPevdnw45H9NOwj2U/KJ9gxioLgHLiDNIaitcx3 iAcN7eHw7Ab+sCGqcwW9hwptKOLJwa3+VPqndgHwVUTykAfVrMKmlewx0fbxOPgE +RPm8yml4DRRX94ahtVB8hlQpYqkfe9qklgM4b9IKW7gX3PqCOYUvyoAjvQc1yMQ RxGwjrvTQnCTwTneXBoQO3cuno2jgn9UG5MxKKpBQ4W/D22dIYCj9ekEuLQ= -----END CERTIFICATE-----Generated at Wed Aug 20 10:37:58 2025 by rpki-client