$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/de13ded7-a56f-4ebd-aa3e-0b9909441ba3.roa File: de13ded7-a56f-4ebd-aa3e-0b9909441ba3.roa (raw, json) Hash identifier: oElUDU2JfBHYqg4ppofvnJ3e+ejyWIGGsXFaCgOaw3I= Subject key identifier: 4C:71:F5:CE:48:5F:FD:90:A8:E6:5C:40:8A:84:1E:AA:A0:F9:E1:F8 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 2687E84A607A0804189579F09BCD04AC52AE4E2C Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/de13ded7-a56f-4ebd-aa3e-0b9909441ba3.roa Signing time: Tue 19 Aug 2025 16:20:21 +0000 ROA not before: Tue 19 Aug 2025 16:20:21 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.215.16.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:87:e8:4a:60:7a:08:04:18:95:79:f0:9b:cd:04:ac:52:ae:4e:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 19 16:20:21 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=cd5d173b4863144137e19e589a4510c837b46d05046ab1116487a16a78a6bd58, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:14:03:7d:c9:76:fc:90:4d:80:da:f7:4d:7a: 04:9d:c8:9b:61:cb:15:99:47:8d:a5:de:d3:61:94: fc:33:12:98:10:1b:41:6b:82:ff:0b:99:35:93:56: fa:8c:1e:60:fd:2f:93:f3:32:71:64:22:13:63:9a: 27:a9:d2:9e:4c:1a:cd:ed:b0:a4:3d:66:83:fd:a5: cd:de:49:de:a0:eb:bf:8b:97:da:fb:e7:16:33:b1: 0a:c2:df:23:a0:27:ce:12:f8:74:84:b3:20:4a:7f: eb:b5:a7:aa:ea:38:74:11:e9:6e:ea:5a:52:43:54: 97:b4:5d:c1:75:5a:aa:74:f3:a0:b1:a7:e1:4b:7c: 39:65:ed:11:3c:7e:35:95:57:0f:3b:99:c3:e9:fd: 8e:e2:f1:9c:50:cc:f6:c3:2f:1f:cd:12:15:ba:cc: 41:73:d8:3d:eb:14:bf:4e:f6:97:3c:99:e8:92:e1: 95:89:6f:cc:9d:ef:a5:fd:d8:67:72:13:d4:00:e2: 9d:20:af:f2:a5:b7:19:a7:f7:8f:8d:fa:2a:32:4d: ae:af:f1:02:8a:0f:e2:3d:0c:b1:2e:0d:d5:b4:fa: 3d:b0:e7:1d:c5:3f:c5:58:8b:5e:e9:8c:83:46:02: 0e:de:a0:52:b5:ad:6d:08:f3:91:2e:83:9b:0a:48: f8:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:71:F5:CE:48:5F:FD:90:A8:E6:5C:40:8A:84:1E:AA:A0:F9:E1:F8 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/de13ded7-a56f-4ebd-aa3e-0b9909441ba3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.215.16.0/21 Signature Algorithm: sha256WithRSAEncryption 19:34:26:95:67:61:f9:1c:62:cf:0d:85:22:77:d6:20:64:2f: e8:71:e2:45:3b:e3:f8:ec:41:c4:e2:34:84:a6:4e:1a:0a:87: 89:2c:b0:96:95:6a:34:18:11:25:f6:74:66:98:2a:a4:aa:ed: ee:36:61:49:c7:3b:1f:a6:f4:07:16:65:44:f1:a8:f3:9c:6a: 2c:a3:bc:e1:b7:2c:fb:b1:44:1d:4a:83:ba:26:f2:b2:ec:9a: 6c:84:bf:e6:a9:a2:1c:aa:a0:8f:5d:35:94:74:3d:e6:b1:93: d1:69:8f:94:1e:1c:0b:a8:d3:02:32:2a:67:ef:93:3a:78:50: 6f:d6:4c:74:ce:fd:86:9e:e6:8d:c1:40:af:5d:8d:b6:0f:b6: 28:d0:33:ab:db:29:d8:6f:9e:fb:d5:d1:25:41:50:0c:99:28: e7:16:ba:cc:48:7a:b2:d6:74:63:6a:e1:b8:d8:69:ed:3c:8c: 7a:70:21:48:ff:36:00:e3:98:ad:89:34:82:b8:fe:b0:42:31: fa:1a:1f:99:c9:29:46:02:03:99:9e:84:84:34:71:c1:d8:11: 72:63:8e:27:2c:e6:a1:07:4e:a5:f2:ee:59:3d:a1:f6:1f:3d: 9b:a0:49:86:1f:bd:81:d6:f5:c7:30:b9:6e:64:9f:ab:6d:36: da:b8:cc:0b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJofoSmB6CAQYlXnwm80ErFKuTiwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODE5MTYyMDIxWhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BjZDVkMTczYjQ4NjMxNDQxMzdlMTllNTg5YTQ1MTBjODM3 YjQ2ZDA1MDQ2YWIxMTE2NDg3YTE2YTc4YTZiZDU4MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPFAN9yXb8kE2A2vdNegSdyJthyxWZR42l3tNhlPwzEpgQ G0Frgv8LmTWTVvqMHmD9L5PzMnFkIhNjmiep0p5MGs3tsKQ9ZoP9pc3eSd6g67+L l9r75xYzsQrC3yOgJ84S+HSEsyBKf+u1p6rqOHQR6W7qWlJDVJe0XcF1Wqp086Cx p+FLfDll7RE8fjWVVw87mcPp/Y7i8ZxQzPbDLx/NEhW6zEFz2D3rFL9O9pc8meiS 4ZWJb8yd76X92GdyE9QA4p0gr/Kltxmn94+N+ioyTa6v8QKKD+I9DLEuDdW0+j2w 5x3FP8VYi17pjINGAg7eoFK1rW0I85Eug5sKSPj7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUTHH1zkhf/ZCo5lxAioQeqqD54fgwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2RlMTNkZWQ3LWE1NmYtNGViZC1hYTNlLTBiOTkwOTQ0MWJhMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAM21xAwDQYJKoZIhvcNAQELBQADggEBABk0JpVnYfkcYs8NhSJ31iBkL+hx 4kU74/jsQcTiNISmThoKh4kssJaVajQYESX2dGaYKqSq7e42YUnHOx+m9AcWZUTx qPOcaiyjvOG3LPuxRB1Kg7om8rLsmmyEv+apohyqoI9dNZR0Peaxk9Fpj5QeHAuo 0wIyKmfvkzp4UG/WTHTO/Yae5o3BQK9djbYPtijQM6vbKdhvnvvV0SVBUAyZKOcW usxIerLWdGNq4bjYae08jHpwIUj/NgDjmK2JNIK4/rBCMfoaH5nJKUYCA5mehIQ0 ccHYEXJjjics5qEHTqXy7lk9ofYfPZugSYYfvYHW9ccwuW5kn6ttNtq4zAs= -----END CERTIFICATE-----Generated at Wed Aug 20 10:38:00 2025 by rpki-client