$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/09f2a28b-bc83-44b1-b088-f2cab4682327.roa File: 09f2a28b-bc83-44b1-b088-f2cab4682327.roa (raw, json) Hash identifier: Dy7K55X6ytMkGCzD8w9IKmZiZwwg6Ob5twgbYXSSodM= Subject key identifier: E6:2B:B8:FC:FD:F1:C6:5F:C9:45:8F:22:AC:00:02:50:4E:9B:A6:F4 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 39056EB142BD6F5850D9389A3F4ADB40364AF01F Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/09f2a28b-bc83-44b1-b088-f2cab4682327.roa Signing time: Fri 25 Jul 2025 15:01:55 +0000 ROA not before: Fri 25 Jul 2025 15:01:55 +0000 ROA not after: Fri 29 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.131.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:05:6e:b1:42:bd:6f:58:50:d9:38:9a:3f:4a:db:40:36:4a:f0:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jul 25 15:01:55 2025 GMT Not After : Aug 29 23:59:59 2025 GMT Subject: serialNumber=97aefc91f02879cf99e2d6739f933076be0da3bdf1a10ba3f1e4db39e0b5cb36, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:93:84:e5:83:dd:0b:f3:e7:d6:7a:f1:5c:08: c7:c6:e6:fd:0c:ef:c1:35:ea:b9:5a:45:3d:b4:38: a0:86:8c:e6:5b:02:a7:a4:15:9a:3d:4a:f6:7b:dc: 2e:2c:6d:9e:3e:12:f2:1e:62:76:15:a6:ba:6d:e2: 73:89:d7:91:75:c4:a5:2c:02:cf:ca:1a:3b:56:32: 0f:6c:cc:d8:30:ab:b9:4d:74:2a:ec:8a:67:5c:15: 88:f3:fd:68:55:0c:ef:81:db:23:07:90:1a:32:0e: 51:79:2c:37:52:1e:fd:96:3a:4a:a8:97:cd:69:42: bc:cd:9c:89:0d:f5:58:7a:1a:5e:40:f9:6b:d5:a9: ca:25:f8:f9:6a:f4:51:89:42:ce:c2:eb:41:51:bb: 40:42:ec:2c:93:a4:ca:fa:f6:da:3e:b1:63:e3:8f: 11:af:62:02:17:6d:5f:30:0e:8b:db:17:08:15:f1: ef:78:37:d8:72:b5:ef:ac:cd:d0:d0:ba:25:c8:8b: cc:07:20:54:8f:48:d9:b0:68:db:f1:28:3e:73:97: 53:e4:74:14:84:6f:18:26:11:3c:6e:51:da:1e:b9: f3:44:97:0e:7c:b4:40:9f:46:ba:79:c8:1e:47:ec: 6a:48:d8:a1:3b:e5:49:97:4e:26:6e:74:0c:32:48: 60:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:2B:B8:FC:FD:F1:C6:5F:C9:45:8F:22:AC:00:02:50:4E:9B:A6:F4 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/09f2a28b-bc83-44b1-b088-f2cab4682327.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.131.0.0/16 Signature Algorithm: sha256WithRSAEncryption 2f:6c:67:9b:25:4c:bf:af:76:2d:44:11:13:28:04:c1:20:28: 2d:c3:f3:89:b9:2a:78:eb:ba:c9:ee:a0:3a:2f:6e:96:71:0a: ec:1e:b7:47:43:a9:ad:37:73:52:f6:07:17:e8:46:8c:04:f8: b1:37:9e:04:04:a2:21:e4:46:59:35:0a:e9:29:e0:25:39:48: a8:b3:19:5e:e2:b8:18:56:17:0d:75:e0:b4:f6:cf:dc:6d:6e: 77:25:cb:71:8f:73:fa:ec:18:f0:57:90:ce:8c:73:48:d3:69: e2:7c:0c:5a:a7:68:c9:8f:b6:8a:7d:88:4c:60:f2:54:f8:01: 6c:55:c3:ec:c0:7d:fc:ac:be:f1:3a:92:d1:61:24:98:c6:44: d1:8a:96:55:e7:9e:35:7b:cd:f9:d5:14:95:bc:94:f9:ae:04: 1f:52:4b:09:15:6d:b5:c3:ab:2e:f0:ee:fc:6a:4b:6a:73:07: d5:1f:c7:05:38:2d:aa:9e:44:88:b9:58:6c:7d:27:7d:6f:a5: 97:df:62:e9:d2:75:99:d7:cc:0c:82:dd:d9:40:85:20:a3:fb: 73:0f:8a:f8:69:77:83:aa:f1:15:cc:92:ed:eb:cb:06:86:04: e0:73:5e:9b:44:0a:43:66:e7:9e:6f:ec:ef:ff:75:0f:d5:02: 8d:b2:d8:b4 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUOQVusUK9b1hQ2TiaP0rbQDZK8B8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNzI1MTUwMTU1WhcNMjUwODI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A5N2FlZmM5MWYwMjg3OWNmOTllMmQ2NzM5ZjkzMzA3NmJl MGRhM2JkZjFhMTBiYTNmMWU0ZGIzOWUwYjVjYjM2MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrk4Tlg90L8+fWevFcCMfG5v0M78E16rlaRT20OKCGjOZb AqekFZo9SvZ73C4sbZ4+EvIeYnYVprpt4nOJ15F1xKUsAs/KGjtWMg9szNgwq7lN dCrsimdcFYjz/WhVDO+B2yMHkBoyDlF5LDdSHv2WOkqol81pQrzNnIkN9Vh6Gl5A +WvVqcol+Plq9FGJQs7C60FRu0BC7CyTpMr69to+sWPjjxGvYgIXbV8wDovbFwgV 8e94N9hyte+szdDQuiXIi8wHIFSPSNmwaNvxKD5zl1PkdBSEbxgmETxuUdoeufNE lw58tECfRrp5yB5H7GpI2KE75UmXTiZudAwySGBnAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU5iu4/P3xxl/JRY8irAACUE6bpvQwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzA5ZjJhMjhiLWJjODMtNDRiMS1iMDg4LWYyY2FiNDY4MjMyNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwADgzANBgkqhkiG9w0BAQsFAAOCAQEAL2xnmyVMv692LUQREygEwSAoLcPz ibkqeOu6ye6gOi9ulnEK7B63R0OprTdzUvYHF+hGjAT4sTeeBASiIeRGWTUK6Sng JTlIqLMZXuK4GFYXDXXgtPbP3G1udyXLcY9z+uwY8FeQzoxzSNNp4nwMWqdoyY+2 in2ITGDyVPgBbFXD7MB9/Ky+8TqS0WEkmMZE0YqWVeeeNXvN+dUUlbyU+a4EH1JL CRVttcOrLvDu/GpLanMH1R/HBTgtqp5EiLlYbH0nfW+ll99i6dJ1mdfMDILd2UCF IKP7cw+K+Gl3g6rxFcyS7evLBoYE4HNem0QKQ2bnnm/s7/91D9UCjbLYtA== -----END CERTIFICATE-----Generated at Mon Aug 4 21:47:00 2025 by rpki-client