$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/fdecee65-c952-4f49-9973-5248d6a502de.roa File: fdecee65-c952-4f49-9973-5248d6a502de.roa (raw, json) Hash identifier: wjzzDkXLY5rXfFfMBgObn4YtVgGGkrAzrZ2dYhmLJnY= Subject key identifier: 7A:88:88:2A:53:3E:9C:59:57:88:9A:19:E2:CE:5B:06:6E:F8:39:FC Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 2CDFC76700D83C3FE7F8920C5770D7650378FBFD Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/fdecee65-c952-4f49-9973-5248d6a502de.roa Signing time: Tue 05 Aug 2025 15:10:14 +0000 ROA not before: Tue 05 Aug 2025 15:10:14 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.141.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:df:c7:67:00:d8:3c:3f:e7:f8:92:0c:57:70:d7:65:03:78:fb:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 5 15:10:14 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=216c68228ade1914928a068d8ba3ae47cc1b8c54a87e53f24e4c35c8d3d5ba27, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:dd:df:1a:8d:44:66:e2:a2:bb:0b:7e:75:32: e4:07:14:f7:46:8e:95:e0:ad:60:6c:bd:8b:b0:33: d5:47:4f:b1:2e:ff:e9:da:71:c1:a4:c2:e1:af:6b: a5:1f:fe:33:b9:b9:e3:dd:bf:f8:38:b3:d7:55:0b: c4:31:37:73:7b:6e:3c:3c:67:be:f8:91:bd:09:f4: 3e:7c:98:f6:ac:72:d9:30:32:30:39:c5:3c:20:ab: 7a:d2:05:a7:bb:49:c7:dd:f6:7e:84:6f:8c:cd:1c: e1:30:25:fb:e2:db:21:a7:57:19:97:ac:a4:3e:c9: ec:b3:21:49:9e:fe:73:af:6b:c8:19:31:f0:c7:93: bc:a2:14:a3:b7:a5:d7:94:5f:f0:b8:8d:a7:64:f7: 26:4f:93:dc:ae:61:84:56:d3:da:48:c0:f6:93:85: dc:5b:73:48:5e:13:d9:c4:3a:9e:c0:39:4a:d4:fa: 01:88:4f:05:d7:ec:b2:fb:af:ff:8b:0e:1a:78:39: 44:b4:ff:f8:64:bc:7f:19:41:ee:d7:b9:09:36:27: 09:5d:11:1f:73:51:60:f1:85:4f:89:9b:83:89:14: 88:25:4d:41:90:f9:8a:61:1d:b0:c9:f8:24:05:65: d9:4c:fc:f9:ce:e6:e5:e5:b1:c5:dd:4b:e1:22:ae: 4a:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:88:88:2A:53:3E:9C:59:57:88:9A:19:E2:CE:5B:06:6E:F8:39:FC X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/fdecee65-c952-4f49-9973-5248d6a502de.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.141.0.0/16 Signature Algorithm: sha256WithRSAEncryption 73:8c:99:81:ff:37:0a:de:cc:d3:23:37:b5:2c:f2:fb:bc:e6: aa:c9:43:f3:0d:67:12:04:f1:1c:2b:44:b3:63:77:4d:bf:6c: 0e:65:6a:fe:b6:a5:b8:34:dc:fd:68:75:ab:1d:94:d3:91:9a: a3:01:61:f0:ab:92:14:6b:b7:9e:65:31:d3:e3:b5:1e:b5:7a: 37:f2:e3:04:f1:37:c5:f4:f5:5a:e9:5b:3e:13:ab:d6:39:c4: 3b:f2:6d:6a:c2:b4:9b:7d:07:16:c3:95:e6:d4:f4:41:62:16: 41:a1:29:d2:f4:01:5e:fd:1c:55:64:49:26:02:a5:49:f5:7a: 79:22:68:bf:d6:30:66:2f:04:4a:60:6c:e1:29:d7:0b:a1:34: 68:27:fa:1f:40:a0:2d:72:8a:c7:49:e5:8e:b7:5e:8a:8f:dd: 35:95:5b:ac:cc:c7:56:52:a2:e8:a8:9c:fa:33:b9:23:f2:1e: 16:94:db:e4:d7:e6:7c:18:21:33:5c:8b:5f:d4:55:30:49:15: ea:71:73:f7:ad:3a:b7:57:17:98:9c:5f:df:0e:87:56:60:ef: fd:65:e4:66:d8:59:17:e3:cc:6d:e7:e2:ec:00:00:ff:85:1f: 23:dd:0d:72:46:47:23:fb:73:12:71:c5:30:ad:0e:aa:06:66: 1c:ee:5c:3c -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIULN/HZwDYPD/n+JIMV3DXZQN4+/0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODA1MTUxMDE0WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMTZjNjgyMjhhZGUxOTE0OTI4YTA2OGQ4YmEzYWU0N2Nj MWI4YzU0YTg3ZTUzZjI0ZTRjMzVjOGQzZDViYTI3MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDH3d8ajURm4qK7C351MuQHFPdGjpXgrWBsvYuwM9VHT7Eu /+naccGkwuGva6Uf/jO5uePdv/g4s9dVC8QxN3N7bjw8Z774kb0J9D58mPasctkw MjA5xTwgq3rSBae7Scfd9n6Eb4zNHOEwJfvi2yGnVxmXrKQ+yeyzIUme/nOva8gZ MfDHk7yiFKO3pdeUX/C4jadk9yZPk9yuYYRW09pIwPaThdxbc0heE9nEOp7AOUrU +gGITwXX7LL7r/+LDhp4OUS0//hkvH8ZQe7XuQk2JwldER9zUWDxhU+Jm4OJFIgl TUGQ+YphHbDJ+CQFZdlM/PnO5uXlscXdS+EirkqlAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUeoiIKlM+nFlXiJoZ4s5bBm74OfwwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2ZkZWNlZTY1LWM5NTItNGY0OS05OTczLTUyNDhkNmE1MDJkZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAPjTANBgkqhkiG9w0BAQsFAAOCAQEAc4yZgf83Ct7M0yM3tSzy+7zmqslD 8w1nEgTxHCtEs2N3Tb9sDmVq/raluDTc/Wh1qx2U05GaowFh8KuSFGu3nmUx0+O1 HrV6N/LjBPE3xfT1WulbPhOr1jnEO/JtasK0m30HFsOV5tT0QWIWQaEp0vQBXv0c VWRJJgKlSfV6eSJov9YwZi8ESmBs4SnXC6E0aCf6H0CgLXKKx0nljrdeio/dNZVb rMzHVlKi6Kic+jO5I/IeFpTb5NfmfBghM1yLX9RVMEkV6nFz9606t1cXmJxf3w6H VmDv/WXkZthZF+PMbefi7AAA/4UfI90NckZHI/tzEnHFMK0OqgZmHO5cPA== -----END CERTIFICATE-----Generated at Wed Aug 20 10:43:01 2025 by rpki-client