$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/e4615e61-d476-459e-a1c0-ba780d645b1f.roa File: e4615e61-d476-459e-a1c0-ba780d645b1f.roa (raw, json) Hash identifier: g1Saj3BQIs4MYvD0A8S/8jotGvtcQs1JSa2U+ePv8wk= Subject key identifier: B0:71:38:8A:70:E1:B1:C6:B5:44:69:5A:22:72:93:F2:A0:67:06:5D Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 294F5B83003217FEFE8BD186982380ECCA125E7A Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/e4615e61-d476-459e-a1c0-ba780d645b1f.roa Signing time: Tue 19 Aug 2025 00:51:37 +0000 ROA not before: Tue 19 Aug 2025 00:51:37 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.60.76.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:4f:5b:83:00:32:17:fe:fe:8b:d1:86:98:23:80:ec:ca:12:5e:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 19 00:51:37 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=770b12199510db656a436f79a048232d980cdfe4f0876737032a684ab28b5d00, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:d3:67:09:76:27:cd:11:9b:e7:c1:8f:fd:af: 66:b2:b1:57:c5:b5:f3:09:c2:59:11:68:05:1b:89: d5:d1:05:42:ba:ac:36:11:e6:e9:b1:57:e9:1f:09: 91:ea:22:42:83:31:e5:eb:f5:d9:a4:81:51:5d:71: 38:4f:36:1d:cf:31:93:b8:18:d0:0d:a9:3a:da:fe: 89:10:a3:f7:ba:ef:7f:9a:ec:1c:91:c6:6d:3c:da: 78:a7:70:d7:11:40:93:05:08:ed:78:8f:ab:e6:0d: 3e:90:cc:a8:04:0a:92:48:d9:08:c8:a8:99:48:b0: 8f:f2:6f:54:98:6f:5a:24:62:bb:d9:97:bc:5e:01: e6:b2:5a:91:66:58:2e:bc:19:31:12:a4:fe:a7:34: f7:ea:de:03:bb:49:bf:de:fe:18:76:08:81:40:25: cb:bd:ba:87:9c:04:51:c3:e1:b6:09:cd:1f:d0:08: 69:de:10:b8:db:75:1f:7d:44:4e:a1:4e:08:3d:50: 32:1a:a6:3b:fa:3c:1d:51:09:14:91:d8:a5:3c:a0: b8:01:44:da:f3:b2:90:ed:0c:d1:ce:a7:da:d6:f7: ab:1f:ee:ca:69:c0:dd:eb:03:44:b8:d5:93:fd:7f: 56:66:a2:89:76:09:fd:7b:e5:32:50:36:60:76:31: 29:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:71:38:8A:70:E1:B1:C6:B5:44:69:5A:22:72:93:F2:A0:67:06:5D X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/e4615e61-d476-459e-a1c0-ba780d645b1f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.60.76.0/23 Signature Algorithm: sha256WithRSAEncryption 8e:f1:ec:97:a3:f1:49:38:56:3a:c3:d2:66:0d:c8:f7:08:9f: 5e:4a:9b:31:fd:c4:97:68:8e:f6:e6:b1:40:1a:c3:8b:5c:da: 13:16:e4:e3:71:02:86:87:48:a9:f9:57:8a:08:ea:8a:76:ce: 5b:ef:18:42:64:42:99:b1:c7:01:79:67:d9:1e:71:ff:68:5f: df:6b:ab:1a:87:c9:12:b1:cb:f6:22:01:62:1f:3a:c4:16:fd: 46:71:b3:3e:dd:8a:b9:b3:0c:49:52:45:9d:68:4d:39:a9:cd: ed:c9:19:b3:5a:33:f6:a6:78:4d:0a:28:75:39:3a:35:25:ea: df:c8:29:5d:16:74:5e:d3:d2:0e:80:97:9e:74:e7:e3:1e:57: 16:54:58:fe:f0:cf:ed:21:85:c4:db:b3:b8:88:a7:79:0e:2f: 18:69:ba:28:5f:d6:04:4a:4d:d4:88:aa:a7:9f:7c:ee:d8:b7: cd:d9:08:9a:cc:be:f8:fd:d3:0e:8c:44:07:9b:bd:65:50:1b: e9:91:51:07:00:6c:ad:c0:bf:bd:eb:1f:34:1a:3b:5b:31:1c: dd:dc:8d:db:78:47:67:1d:71:83:6d:cc:f1:3f:a0:df:89:47: 85:75:d0:08:a5:21:8b:e6:7f:4a:2c:2e:f7:37:ca:df:10:41: 8e:35:c2:b0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKU9bgwAyF/7+i9GGmCOA7MoSXnowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODE5MDA1MTM3WhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A3NzBiMTIxOTk1MTBkYjY1NmE0MzZmNzlhMDQ4MjMyZDk4 MGNkZmU0ZjA4NzY3MzcwMzJhNjg0YWIyOGI1ZDAwMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCq02cJdifNEZvnwY/9r2aysVfFtfMJwlkRaAUbidXRBUK6 rDYR5umxV+kfCZHqIkKDMeXr9dmkgVFdcThPNh3PMZO4GNANqTra/okQo/e673+a 7ByRxm082nincNcRQJMFCO14j6vmDT6QzKgECpJI2QjIqJlIsI/yb1SYb1okYrvZ l7xeAeayWpFmWC68GTESpP6nNPfq3gO7Sb/e/hh2CIFAJcu9uoecBFHD4bYJzR/Q CGneELjbdR99RE6hTgg9UDIapjv6PB1RCRSR2KU8oLgBRNrzspDtDNHOp9rW96sf 7sppwN3rA0S41ZP9f1Zmool2Cf175TJQNmB2MSmVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUsHE4inDhsca1RGlaInKT8qBnBl0wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2U0NjE1ZTYxLWQ0NzYtNDU5ZS1hMWMwLWJhNzgwZDY0NWIxZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAESPEwwDQYJKoZIhvcNAQELBQADggEBAI7x7Jej8Uk4VjrD0mYNyPcIn15K mzH9xJdojvbmsUAaw4tc2hMW5ONxAoaHSKn5V4oI6op2zlvvGEJkQpmxxwF5Z9ke cf9oX99rqxqHyRKxy/YiAWIfOsQW/UZxsz7dirmzDElSRZ1oTTmpze3JGbNaM/am eE0KKHU5OjUl6t/IKV0WdF7T0g6Al5505+MeVxZUWP7wz+0hhcTbs7iIp3kOLxhp uihf1gRKTdSIqqeffO7Yt83ZCJrMvvj90w6MRAebvWVQG+mRUQcAbK3Av73rHzQa O1sxHN3cjdt4R2cdcYNtzPE/oN+JR4V10AilIYvmf0osLvc3yt8QQY41wrA= -----END CERTIFICATE-----Generated at Wed Aug 20 10:41:46 2025 by rpki-client