$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9c668317-9f28-4868-b993-30a89bb71db1.roa File: 9c668317-9f28-4868-b993-30a89bb71db1.roa (raw, json) Hash identifier: xTQrEypwW4PhhDum1scfPZonubjMVZQjzVYrQsaB1OU= Subject key identifier: E6:F5:24:BF:A9:27:11:0F:37:0B:19:48:F8:34:FF:B8:A6:63:FD:71 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 4B387350A4D1323D5A943A0BD0A2749732D7CDA0 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9c668317-9f28-4868-b993-30a89bb71db1.roa Signing time: Fri 25 Jul 2025 00:40:24 +0000 ROA not before: Fri 25 Jul 2025 00:40:24 +0000 ROA not after: Fri 29 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 207.171.160.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 05 Aug 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:38:73:50:a4:d1:32:3d:5a:94:3a:0b:d0:a2:74:97:32:d7:cd:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Jul 25 00:40:24 2025 GMT Not After : Aug 29 23:59:59 2025 GMT Subject: serialNumber=33250731f74e184e1c0ee6449c9f2d97921c21345d4624a4d5e1fcddb9ad5016, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:6b:50:c3:90:39:1d:de:00:2e:2b:e1:20:1c: 2c:53:5d:01:e2:7d:08:1d:35:77:7a:f1:1b:f8:ce: cd:e6:df:48:8c:a7:61:d3:77:96:a3:cd:fa:53:bf: 81:18:1a:66:da:ab:9c:8a:dc:01:bd:dc:15:5f:83: 9d:03:62:9d:43:0a:3d:9a:e4:58:92:b4:f5:56:e5: 63:77:b2:05:59:0c:0e:b1:53:62:b7:14:a0:94:4e: ac:cc:ef:d5:7b:7c:48:a3:bf:16:0e:19:60:db:2a: 0d:e0:29:ec:50:52:ba:6c:15:d7:ea:cd:ed:75:3f: 45:67:a2:e4:99:4e:66:a0:bf:32:38:20:ec:7a:39: 8f:4f:71:2d:33:12:10:e8:a1:62:5a:94:64:77:ad: 0a:fd:5c:4d:f1:0b:b1:63:be:d4:5c:b8:92:3f:a5: ef:1b:5a:82:2f:b8:83:72:d5:54:00:bc:66:c6:8b: 38:f3:95:77:65:72:b5:c2:86:5d:e1:f0:27:50:3d: e8:da:1a:78:b3:dd:34:26:7d:66:b3:88:e3:a2:51: 30:ce:90:aa:0f:18:2e:3b:25:5c:e6:6b:04:5c:b9: 3a:4f:09:b3:24:09:e5:ea:ec:62:f3:5f:f5:a7:96: c0:53:02:03:67:20:60:5c:c6:f8:2a:e1:36:2f:ee: 50:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:F5:24:BF:A9:27:11:0F:37:0B:19:48:F8:34:FF:B8:A6:63:FD:71 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9c668317-9f28-4868-b993-30a89bb71db1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 207.171.160.0/20 Signature Algorithm: sha256WithRSAEncryption 0c:64:b1:7f:3e:1b:1c:68:3b:02:b4:77:1d:d9:3b:47:89:ba: 47:63:3e:aa:d9:5b:37:53:3d:f4:43:6c:ad:89:b9:2b:42:c8: 49:ee:a0:48:7b:c8:af:d4:60:0a:4e:42:ff:b1:e6:22:c1:b8: 72:23:a6:68:5a:2b:35:d3:d4:66:56:83:cb:37:20:f0:33:f3: 64:ab:64:36:fb:4a:dc:c0:94:53:9b:13:69:bc:7d:ed:87:ee: 28:75:09:bb:aa:0a:2c:db:dc:64:79:71:45:3e:86:8d:28:83: 82:4d:8a:90:13:f6:44:1f:13:76:46:f9:72:5c:33:d7:0d:43: cb:71:c7:0b:06:e2:3c:02:4e:39:c0:e2:5e:4d:49:66:9f:34: 2a:c2:d5:99:bf:a2:0f:26:9c:22:6c:1f:75:14:83:10:d9:a6: 96:d7:b7:64:25:d5:4f:f8:c0:3a:f1:e8:a8:e7:47:7b:4f:45: bd:62:1d:31:b1:e2:ff:b6:47:5f:cb:9c:50:f4:bd:f4:c3:0f: 5a:29:19:6c:f0:19:b5:1b:8d:b0:7c:45:8c:a4:c0:fc:2b:7a: d2:b7:a3:e7:38:e6:6c:fe:09:07:f5:2f:b3:73:d4:a6:8d:db: 31:83:1f:49:0d:22:df:81:dd:90:14:3d:12:c4:22:cf:68:d3: 7a:03:d2:67 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSzhzUKTRMj1alDoL0KJ0lzLXzaAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUwNzI1MDA0MDI0WhcNMjUwODI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMzI1MDczMWY3NGUxODRlMWMwZWU2NDQ5YzlmMmQ5Nzky MWMyMTM0NWQ0NjI0YTRkNWUxZmNkZGI5YWQ1MDE2MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCra1DDkDkd3gAuK+EgHCxTXQHifQgdNXd68Rv4zs3m30iM p2HTd5ajzfpTv4EYGmbaq5yK3AG93BVfg50DYp1DCj2a5FiStPVW5WN3sgVZDA6x U2K3FKCUTqzM79V7fEijvxYOGWDbKg3gKexQUrpsFdfqze11P0VnouSZTmagvzI4 IOx6OY9PcS0zEhDooWJalGR3rQr9XE3xC7FjvtRcuJI/pe8bWoIvuINy1VQAvGbG izjzlXdlcrXChl3h8CdQPejaGniz3TQmfWaziOOiUTDOkKoPGC47JVzmawRcuTpP CbMkCeXq7GLzX/WnlsBTAgNnIGBcxvgq4TYv7lD9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU5vUkv6knEQ83CxlI+DT/uKZj/XEwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzljNjY4MzE3LTlmMjgtNDg2OC1iOTkzLTMwYTg5YmI3MWRiMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATPq6AwDQYJKoZIhvcNAQELBQADggEBAAxksX8+GxxoOwK0dx3ZO0eJukdj PqrZWzdTPfRDbK2JuStCyEnuoEh7yK/UYApOQv+x5iLBuHIjpmhaKzXT1GZWg8s3 IPAz82SrZDb7StzAlFObE2m8fe2H7ih1CbuqCizb3GR5cUU+ho0og4JNipAT9kQf E3ZG+XJcM9cNQ8txxwsG4jwCTjnA4l5NSWafNCrC1Zm/og8mnCJsH3UUgxDZppbX t2Ql1U/4wDrx6KjnR3tPRb1iHTGx4v+2R1/LnFD0vfTDD1opGWzwGbUbjbB8RYyk wPwretK3o+c45mz+CQf1L7Nz1KaN2zGDH0kNIt+B3ZAUPRLEIs9o03oD0mc= -----END CERTIFICATE-----Generated at Mon Aug 4 19:13:42 2025 by rpki-client