$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0e0e4d35-b9b6-4d0b-ac51-f4bcf19abaaa.roa File: 0e0e4d35-b9b6-4d0b-ac51-f4bcf19abaaa.roa (raw, json) Hash identifier: gIXLbGqYfMF3Egg1BqhAcgOjOYLJ2j72KcbO0RD1XUU= Subject key identifier: 34:C3:1C:27:F5:35:D8:44:9E:4B:79:1A:32:29:73:2F:64:4B:C1:5C Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 460F7FA2CE237E19E9F5C97FD2D0AEA7DE055556 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0e0e4d35-b9b6-4d0b-ac51-f4bcf19abaaa.roa Signing time: Tue 29 Jul 2025 16:21:39 +0000 ROA not before: Tue 29 Jul 2025 16:21:39 +0000 ROA not after: Tue 02 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.239.0.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:0f:7f:a2:ce:23:7e:19:e9:f5:c9:7f:d2:d0:ae:a7:de:05:55:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jul 29 16:21:39 2025 GMT Not After : Sep 2 23:59:59 2025 GMT Subject: serialNumber=6aa3dd84cae2377d827ece91cb99ab808624cdae6581e14d0a5bed9aed3c6eff, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:6e:dd:36:fc:cc:12:de:be:c1:d6:43:64:64: 83:ec:b8:4b:a9:c6:4c:9a:f6:ed:2d:c2:ea:9b:57: 13:16:64:2b:a4:a1:a4:79:3f:47:8e:2e:9e:c2:95: 7c:f7:82:e0:d2:53:19:03:27:61:7e:d0:2c:cc:96: 59:ad:0c:a5:cf:0b:2e:3f:01:1c:f5:3b:5a:c3:e1: 8f:eb:41:22:5f:ac:32:e5:13:5e:5a:54:fd:5b:b5: fb:8a:4a:d8:13:f0:6d:c4:c5:8a:07:e4:0f:ff:40: 57:97:74:91:a5:4e:91:aa:31:94:73:ea:b6:e5:27: d9:7d:fa:13:15:ad:75:57:b6:82:6b:93:23:52:af: 8f:94:f8:fd:2a:c3:89:13:c7:ed:0c:c9:a7:c1:80: ea:6b:84:c5:f9:97:1b:73:88:51:0c:b7:cc:76:a1: 6b:f6:bb:ef:33:68:13:9b:1e:8d:1a:6c:d6:38:ed: 2e:a4:89:51:93:b5:e0:24:5e:04:7a:c5:6c:15:37: 48:83:43:97:45:71:b0:bb:32:d4:bb:13:b5:eb:52: 71:11:77:95:f3:32:eb:b6:89:30:79:aa:7f:18:71: 90:63:8e:29:7a:5f:85:5f:9d:a7:84:48:2e:af:16: e2:8e:f1:cc:c8:81:8e:4f:ff:bc:1a:b7:9c:bc:a3: 95:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:C3:1C:27:F5:35:D8:44:9E:4B:79:1A:32:29:73:2F:64:4B:C1:5C X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0e0e4d35-b9b6-4d0b-ac51-f4bcf19abaaa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.239.0.0/23 Signature Algorithm: sha256WithRSAEncryption 5d:a7:b1:23:86:47:07:66:2e:9f:26:9d:38:8f:1a:85:3e:47: 95:61:d7:0f:49:b6:c4:4c:31:67:c8:c2:74:9c:a2:94:e7:66: c8:3b:1a:f1:24:76:11:3a:51:fc:1e:5b:32:35:f1:96:ca:1f: 3b:81:28:b8:d2:5b:78:38:eb:4d:a1:3d:3d:5e:9c:47:13:78: 11:6e:62:18:b1:3b:63:05:d3:75:87:e3:87:01:32:d8:b2:04: 77:47:52:d0:2c:e7:f0:8a:d3:3b:25:6e:46:b7:f3:00:96:41: 71:16:9b:f3:98:80:fd:19:34:ad:6a:1e:4b:cb:34:5c:3e:8c: 78:db:59:4c:5d:e4:25:27:d4:54:16:e2:2f:e1:b4:96:95:55: 2f:2d:92:5c:e4:7f:48:40:a4:b6:f6:5f:83:9a:1a:3c:6d:eb: 7e:91:0b:28:85:4f:33:63:0b:e5:da:a1:b2:85:42:e0:f6:e1: 1b:20:26:31:27:5b:8a:4b:68:b6:f7:a5:69:5f:af:6b:93:2c: d5:b7:49:27:3f:f5:bc:ea:a1:40:05:4a:94:6f:b5:d0:b2:c6: 22:fb:14:d9:9c:21:2e:0d:ef:c5:0c:8d:85:d8:67:d9:01:d7: 9f:2f:76:1a:6c:d5:e7:a7:92:0b:ef:ea:83:63:02:24:2a:d1: 87:17:06:35 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURg9/os4jfhnp9cl/0tCup94FVVYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNzI5MTYyMTM5WhcNMjUwOTAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A2YWEzZGQ4NGNhZTIzNzdkODI3ZWNlOTFjYjk5YWI4MDg2 MjRjZGFlNjU4MWUxNGQwYTViZWQ5YWVkM2M2ZWZmMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCYbt02/MwS3r7B1kNkZIPsuEupxkya9u0twuqbVxMWZCuk oaR5P0eOLp7ClXz3guDSUxkDJ2F+0CzMllmtDKXPCy4/ARz1O1rD4Y/rQSJfrDLl E15aVP1btfuKStgT8G3ExYoH5A//QFeXdJGlTpGqMZRz6rblJ9l9+hMVrXVXtoJr kyNSr4+U+P0qw4kTx+0MyafBgOprhMX5lxtziFEMt8x2oWv2u+8zaBObHo0abNY4 7S6kiVGTteAkXgR6xWwVN0iDQ5dFcbC7MtS7E7XrUnERd5XzMuu2iTB5qn8YcZBj jil6X4VfnaeESC6vFuKO8czIgY5P/7wat5y8o5XrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUNMMcJ/U12ESeS3kaMilzL2RLwVwwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzBlMGU0ZDM1LWI5YjYtNGQwYi1hYzUxLWY0YmNmMTlhYmFhYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAE27wAwDQYJKoZIhvcNAQELBQADggEBAF2nsSOGRwdmLp8mnTiPGoU+R5Vh 1w9JtsRMMWfIwnScopTnZsg7GvEkdhE6UfweWzI18ZbKHzuBKLjSW3g4602hPT1e nEcTeBFuYhixO2MF03WH44cBMtiyBHdHUtAs5/CK0zslbka38wCWQXEWm/OYgP0Z NK1qHkvLNFw+jHjbWUxd5CUn1FQW4i/htJaVVS8tklzkf0hApLb2X4OaGjxt636R CyiFTzNjC+XaobKFQuD24RsgJjEnW4pLaLb3pWlfr2uTLNW3SSc/9bzqoUAFSpRv tdCyxiL7FNmcIS4N78UMjYXYZ9kB158vdhps1eenkgvv6oNjAiQq0YcXBjU= -----END CERTIFICATE-----Generated at Tue Aug 5 16:35:48 2025 by rpki-client