$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a1e648bb-cfc9-4252-8342-da6740732696.roa File: a1e648bb-cfc9-4252-8342-da6740732696.roa (raw, json) Hash identifier: I8S9r+u50u3cOnod2iaouotRR+JA6g2ePjsQoMbCs/c= Subject key identifier: CF:C3:85:C3:F6:7E:21:EB:53:34:58:CE:56:D2:28:50:16:A8:AC:3A Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 177FBB6FA9CF43B00C2D5221E946FAF8FB96045A Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a1e648bb-cfc9-4252-8342-da6740732696.roa Signing time: Fri 25 Jul 2025 00:40:23 +0000 ROA not before: Fri 25 Jul 2025 00:40:23 +0000 ROA not after: Fri 29 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 205.251.240.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:7f:bb:6f:a9:cf:43:b0:0c:2d:52:21:e9:46:fa:f8:fb:96:04:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Jul 25 00:40:23 2025 GMT Not After : Aug 29 23:59:59 2025 GMT Subject: serialNumber=29451a6a2b2708b1139f1c317f279a120670fd56644439b98cd9a7645c41156f, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:94:1f:f7:ee:ca:9c:38:f7:a4:4e:ea:c4:5f: 17:ea:17:9c:ae:50:75:64:95:05:9e:e4:84:e0:3b: f4:ed:31:c2:61:7d:28:81:16:30:d9:e3:b5:1c:e4: 02:bd:7e:36:f9:29:5f:41:5d:42:77:c0:a6:8d:af: bb:5a:9d:13:09:06:09:9d:fc:bc:ea:2a:0f:40:52: d7:ea:fc:ca:27:55:99:58:a9:ab:f8:59:63:d6:a9: ed:1d:89:29:03:68:43:c9:4b:7b:3c:08:46:b6:a5: a2:8f:00:66:29:77:b2:85:09:0c:9e:e6:6f:d7:14: be:07:21:1f:01:cb:42:40:a6:bc:26:c5:61:84:48: 22:31:37:6f:db:b1:42:d3:52:c0:cc:de:27:1e:ac: fe:63:53:82:0c:d0:6e:3a:70:97:0d:2c:de:4e:15: 60:b2:3a:e3:de:2d:c1:5f:6a:b4:29:12:2c:38:f9: dd:13:4d:12:5f:89:73:c6:95:b4:63:a7:be:53:9f: c7:8c:5a:68:82:68:68:e1:a5:25:0c:c1:54:41:e8: ea:13:8b:aa:b4:f5:dd:10:d6:5a:ce:47:ef:1d:6c: aa:1b:40:2e:f8:75:a0:af:00:1c:7d:88:4b:83:52: 63:dd:0b:84:8d:4a:e6:7c:ed:02:7f:e6:83:d1:fc: 06:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:C3:85:C3:F6:7E:21:EB:53:34:58:CE:56:D2:28:50:16:A8:AC:3A X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a1e648bb-cfc9-4252-8342-da6740732696.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 205.251.240.0/22 Signature Algorithm: sha256WithRSAEncryption bd:f3:40:d2:41:89:64:33:c9:fe:9c:c5:42:89:21:23:89:fc: ad:c7:73:d4:93:39:5a:54:eb:75:1a:66:ea:00:11:c8:25:47: 27:fe:0b:7d:72:36:27:d7:82:d1:0f:f4:fc:41:3f:b0:b1:86: e2:32:c3:fb:3c:55:d4:9e:da:d2:a8:a5:ee:2d:43:23:ef:cf: ce:1f:ea:03:d3:0b:fd:d7:a3:38:ff:04:42:48:24:b9:f2:1a: da:08:68:35:23:1b:b3:19:b4:36:6e:23:82:fe:ab:d2:88:a3: 96:34:7e:62:54:27:b6:ba:a5:48:4a:15:3a:4c:34:d8:0e:49: de:8d:7d:e7:3e:e0:c2:bf:19:61:62:20:7c:d8:44:c9:57:83: ed:fc:df:97:1e:d4:af:c6:bc:3e:01:ec:46:97:4e:53:54:ff: b0:a5:61:d0:95:ae:5b:5e:46:59:10:9a:02:b7:2d:2f:9a:a5: fc:30:5c:7e:7f:2b:24:3c:32:30:de:54:9c:34:2a:5e:f3:59: 66:ed:31:14:12:6f:6b:f6:d3:f8:e0:c7:c4:3f:dd:31:b0:98: 3b:a1:bc:b6:db:70:ed:62:9a:92:4e:74:a3:22:ac:eb:70:da: 72:70:74:57:83:46:c9:bd:61:d6:fd:0a:e8:49:1f:b2:20:6e: 9c:48:a5:99 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUF3+7b6nPQ7AMLVIh6Ub6+PuWBFowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUwNzI1MDA0MDIzWhcNMjUwODI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AyOTQ1MWE2YTJiMjcwOGIxMTM5ZjFjMzE3ZjI3OWExMjA2 NzBmZDU2NjQ0NDM5Yjk4Y2Q5YTc2NDVjNDExNTZmMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCQlB/37sqcOPekTurEXxfqF5yuUHVklQWe5ITgO/TtMcJh fSiBFjDZ47Uc5AK9fjb5KV9BXUJ3wKaNr7tanRMJBgmd/LzqKg9AUtfq/MonVZlY qav4WWPWqe0diSkDaEPJS3s8CEa2paKPAGYpd7KFCQye5m/XFL4HIR8By0JAprwm xWGESCIxN2/bsULTUsDM3icerP5jU4IM0G46cJcNLN5OFWCyOuPeLcFfarQpEiw4 +d0TTRJfiXPGlbRjp75Tn8eMWmiCaGjhpSUMwVRB6OoTi6q09d0Q1lrOR+8dbKob QC74daCvABx9iEuDUmPdC4SNSuZ87QJ/5oPR/AZFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUz8OFw/Z+IetTNFjOVtIoUBaorDowHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2ExZTY0OGJiLWNmYzktNDI1Mi04MzQyLWRhNjc0MDczMjY5Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALN+/AwDQYJKoZIhvcNAQELBQADggEBAL3zQNJBiWQzyf6cxUKJISOJ/K3H c9STOVpU63UaZuoAEcglRyf+C31yNifXgtEP9PxBP7CxhuIyw/s8VdSe2tKope4t QyPvz84f6gPTC/3Xozj/BEJIJLnyGtoIaDUjG7MZtDZuI4L+q9KIo5Y0fmJUJ7a6 pUhKFTpMNNgOSd6Nfec+4MK/GWFiIHzYRMlXg+3835ce1K/GvD4B7EaXTlNU/7Cl YdCVrlteRlkQmgK3LS+apfwwXH5/KyQ8MjDeVJw0Kl7zWWbtMRQSb2v20/jgx8Q/ 3TGwmDuhvLbbcO1impJOdKMirOtw2nJwdFeDRsm9Ydb9CuhJH7IgbpxIpZk= -----END CERTIFICATE-----Generated at Wed Aug 6 11:15:46 2025 by rpki-client