$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0a5def47-5f65-4acd-8637-b56197048231.roa File: 0a5def47-5f65-4acd-8637-b56197048231.roa (raw, json) Hash identifier: HeKj9KTk36Bg3MMAJ0cu39DtxQQ8nGwt0B5gRkNXuoc= Subject key identifier: F4:36:0D:AE:B6:1A:2E:C5:E8:13:5D:88:4C:33:BB:AD:72:C0:60:D9 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 7962A18E97EC11D13151BFBB06993F3621C6643C Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0a5def47-5f65-4acd-8637-b56197048231.roa Signing time: Tue 08 Jul 2025 18:20:53 +0000 ROA not before: Tue 08 Jul 2025 18:20:53 +0000 ROA not after: Tue 12 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 54.239.8.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:62:a1:8e:97:ec:11:d1:31:51:bf:bb:06:99:3f:36:21:c6:64:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jul 8 18:20:53 2025 GMT Not After : Aug 12 23:59:59 2025 GMT Subject: serialNumber=70419ea5a27ccd41148d6ae24903b9ff192b788a66f7a72eb244697a59812e16, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:f7:0f:f0:46:b1:5d:11:be:16:37:12:a6:59: bf:63:37:fb:3e:41:fc:83:dd:ab:0f:a8:4a:de:72: a0:de:53:93:cf:7d:34:41:a6:09:da:b3:41:e9:76: 7b:37:06:21:7f:93:af:89:2d:c9:63:b0:5d:0d:33: 65:4d:df:91:d7:ad:61:36:7a:54:28:80:7a:e7:3f: 88:9c:29:21:ab:e5:e2:88:3c:45:78:57:9d:6f:c6: 77:c5:a8:14:14:a7:01:38:e4:0f:4e:42:99:a6:7c: a1:7d:a9:0c:18:b3:d4:43:89:d3:02:56:d6:35:7a: ee:0a:ff:26:31:95:6d:1c:e9:f9:d2:9c:9c:fd:9e: 13:dc:a1:be:71:2b:38:a5:62:fc:c2:ae:1e:57:bd: 05:92:d2:d4:2c:66:02:04:e1:4a:ec:fa:c2:eb:c7: 6a:f3:c5:81:e9:38:6e:08:78:aa:1b:06:59:95:63: 56:02:c6:f3:62:d5:0d:76:95:b5:6e:3c:9e:12:ed: 01:dd:b9:72:e7:ea:1e:f2:aa:9d:55:12:54:95:34: 85:f2:7b:ce:65:e2:0a:15:73:72:80:c4:99:20:9c: ff:e0:00:0c:35:26:df:5f:5a:e3:af:c9:5a:76:19: 0a:6a:64:93:c1:dd:0a:1d:f9:16:17:b9:18:b5:34: d5:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:36:0D:AE:B6:1A:2E:C5:E8:13:5D:88:4C:33:BB:AD:72:C0:60:D9 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0a5def47-5f65-4acd-8637-b56197048231.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.239.8.0/21 Signature Algorithm: sha256WithRSAEncryption 80:30:8d:bf:a8:f8:7e:c5:4b:b2:65:ad:9d:9a:30:13:4e:e5: 96:1d:77:56:67:09:2f:19:d2:cc:a7:46:24:4e:80:60:63:4d: 55:be:c9:17:88:a8:a2:c1:2c:c9:01:a3:96:32:52:f2:c2:b8: 60:b8:c6:2c:a9:0d:32:ff:1c:42:da:3b:28:7c:65:a7:26:e4: 35:17:0b:93:e9:26:a8:18:97:0e:ef:03:ad:7f:1e:69:d9:b5: 88:d2:cd:59:87:dc:89:4f:af:c7:bd:62:fa:6d:b8:10:fc:1f: bc:7f:53:e3:fa:7b:73:3f:26:72:3f:1d:94:48:1e:e3:a7:4a: 06:56:ae:3c:13:da:f5:4d:dc:12:60:3a:24:d8:61:2d:a7:b0: ed:4a:cf:32:83:fe:eb:89:f0:47:f5:2b:9d:6b:ea:af:ac:1b: 65:73:02:e1:a7:70:f7:bc:07:ba:aa:55:8f:e0:0e:ef:b9:85: 21:a4:88:65:2b:00:d3:43:af:dc:a7:90:d6:eb:0f:6e:1a:ff: c4:19:f0:e5:a8:e7:0d:e7:ff:6d:3a:44:04:92:f5:14:d1:26: 0b:05:11:23:3d:38:af:1e:8a:bd:42:86:f1:26:82:60:d0:79: dc:60:f8:7d:11:3c:f0:f0:e4:5e:8d:8c:ef:55:6c:8a:65:22: d7:cd:ea:b6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUeWKhjpfsEdExUb+7Bpk/NiHGZDwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNzA4MTgyMDUzWhcNMjUwODEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A3MDQxOWVhNWEyN2NjZDQxMTQ4ZDZhZTI0OTAzYjlmZjE5 MmI3ODhhNjZmN2E3MmViMjQ0Njk3YTU5ODEyZTE2MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDF9w/wRrFdEb4WNxKmWb9jN/s+QfyD3asPqErecqDeU5PP fTRBpgnas0Hpdns3BiF/k6+JLcljsF0NM2VN35HXrWE2elQogHrnP4icKSGr5eKI PEV4V51vxnfFqBQUpwE45A9OQpmmfKF9qQwYs9RDidMCVtY1eu4K/yYxlW0c6fnS nJz9nhPcob5xKzilYvzCrh5XvQWS0tQsZgIE4Urs+sLrx2rzxYHpOG4IeKobBlmV Y1YCxvNi1Q12lbVuPJ4S7QHduXLn6h7yqp1VElSVNIXye85l4goVc3KAxJkgnP/g AAw1Jt9fWuOvyVp2GQpqZJPB3Qod+RYXuRi1NNUvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU9DYNrrYaLsXoE12ITDO7rXLAYNkwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzBhNWRlZjQ3LTVmNjUtNGFjZC04NjM3LWI1NjE5NzA0ODIzMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAM27wgwDQYJKoZIhvcNAQELBQADggEBAIAwjb+o+H7FS7JlrZ2aMBNO5ZYd d1ZnCS8Z0synRiROgGBjTVW+yReIqKLBLMkBo5YyUvLCuGC4xiypDTL/HELaOyh8 Zacm5DUXC5PpJqgYlw7vA61/HmnZtYjSzVmH3IlPr8e9YvptuBD8H7x/U+P6e3M/ JnI/HZRIHuOnSgZWrjwT2vVN3BJgOiTYYS2nsO1KzzKD/uuJ8Ef1K51r6q+sG2Vz AuGncPe8B7qqVY/gDu+5hSGkiGUrANNDr9ynkNbrD24a/8QZ8OWo5w3n/206RASS 9RTRJgsFESM9OK8eir1ChvEmgmDQedxg+H0RPPDw5F6NjO9VbIplItfN6rY= -----END CERTIFICATE-----Generated at Mon Aug 4 15:31:17 2025 by rpki-client