$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/16788add-b139-4af8-bd22-fe8b2177c578.roa File: 16788add-b139-4af8-bd22-fe8b2177c578.roa (raw, json) Hash identifier: LtSt8gpB86FmERMoC9wWiti8suLQPDAUFZHAlSKIzwU= Subject key identifier: D9:78:36:5D:5C:B5:88:8A:A7:E8:C2:BE:9F:03:99:6D:C2:72:DA:B6 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 5F42A9DC1125BB80289682D93FA2D3C95DB96F72 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/16788add-b139-4af8-bd22-fe8b2177c578.roa Signing time: Fri 11 Jul 2025 15:11:10 +0000 ROA not before: Fri 11 Jul 2025 15:11:10 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.137.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:42:a9:dc:11:25:bb:80:28:96:82:d9:3f:a2:d3:c9:5d:b9:6f:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jul 11 15:11:10 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=be53369c555ae8fbdff6da8435f1f27d6f4ce879ba67f4aeb4d6fa1c5c9962f7, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:c8:d5:22:12:7d:b2:85:9a:b1:be:63:0f:dc: 04:c0:41:f8:e1:cc:be:92:e8:8d:ef:b7:4a:b1:5f: c9:04:f0:9a:46:ea:ba:1b:3d:55:71:b9:3f:9a:d7: 05:b7:b4:46:1d:01:5a:26:57:8a:cf:ef:95:33:01: 99:d6:d5:14:22:00:b5:5a:44:59:84:3b:00:80:e9: 6f:ea:e0:f5:fd:3e:e7:a7:10:45:92:b1:6b:26:15: 94:27:c0:f2:ec:1c:02:a4:8c:98:c9:4c:03:34:17: 48:8e:67:76:be:95:e7:99:7c:55:aa:9c:b3:54:cb: 45:14:59:e7:8e:1c:2f:13:a4:29:31:43:c8:82:58: 43:f2:bd:c8:51:5f:1c:59:97:65:84:e4:13:ab:90: 31:87:5f:a2:36:9d:cd:fd:f5:42:41:3d:57:16:54: 8d:8f:d2:02:7b:db:a7:3e:ad:4d:05:98:ac:cf:c2: 3a:c5:04:02:06:d8:70:3f:83:06:2c:81:5c:fb:ff: d2:68:97:25:1d:24:d8:5c:2f:48:52:b9:eb:b6:90: ed:6b:58:18:0e:8b:e5:40:7e:2e:a2:84:18:35:97: 73:79:1a:39:f1:c5:b8:52:ed:6a:48:66:f4:6b:63: 30:ba:5a:87:9a:d4:f8:06:dd:ec:f2:08:03:e0:f7: bf:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:78:36:5D:5C:B5:88:8A:A7:E8:C2:BE:9F:03:99:6D:C2:72:DA:B6 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/16788add-b139-4af8-bd22-fe8b2177c578.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.137.0.0/16 Signature Algorithm: sha256WithRSAEncryption 9a:cb:29:fc:cc:1c:27:1d:95:02:3f:da:b8:20:21:e4:87:35: af:bd:e5:2c:82:95:cb:60:75:23:71:3a:96:48:de:73:38:d1: f2:90:19:1a:9f:1b:1a:26:4b:f0:ad:fc:b6:9d:ef:92:ef:b1: 9f:fc:2d:03:fc:60:6f:1b:bc:c2:05:96:b2:e9:cb:39:b8:cb: 7d:33:9b:ef:e3:72:92:e9:09:2a:de:c5:9c:29:90:c1:28:09: 10:04:27:ec:4a:9b:96:20:1e:cb:7e:d2:dc:bb:39:3b:76:0f: 9d:d0:a8:18:0a:1d:1e:41:2b:04:4f:73:cb:e7:7b:09:df:ab: 48:10:27:f3:ac:13:9f:b7:93:19:0f:45:ce:79:7d:80:aa:88: ce:9c:60:b3:fc:55:32:bf:59:1f:3f:a3:e1:6b:1b:e2:73:2f: 9f:3d:9a:0c:37:c6:23:8e:b3:65:e2:82:29:bc:8b:6b:9d:03: a2:f9:ce:5c:7b:6d:d8:cc:b7:0d:01:32:b1:1d:71:ee:00:fa: 62:22:4d:9d:2b:39:ed:f7:73:b6:33:d6:ea:21:8e:e0:a6:33: 07:90:ce:d5:5e:c7:ce:91:62:0e:22:6a:ff:3b:8d:d2:16:cf: c9:62:c3:73:ed:30:eb:29:c4:6e:fe:a1:05:3c:27:14:7f:56: 73:25:42:00 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUX0Kp3BElu4AoloLZP6LTyV25b3IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNzExMTUxMTEwWhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BiZTUzMzY5YzU1NWFlOGZiZGZmNmRhODQzNWYxZjI3ZDZm NGNlODc5YmE2N2Y0YWViNGQ2ZmExYzVjOTk2MmY3MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDUyNUiEn2yhZqxvmMP3ATAQfjhzL6S6I3vt0qxX8kE8JpG 6robPVVxuT+a1wW3tEYdAVomV4rP75UzAZnW1RQiALVaRFmEOwCA6W/q4PX9Puen EEWSsWsmFZQnwPLsHAKkjJjJTAM0F0iOZ3a+leeZfFWqnLNUy0UUWeeOHC8TpCkx Q8iCWEPyvchRXxxZl2WE5BOrkDGHX6I2nc399UJBPVcWVI2P0gJ726c+rU0FmKzP wjrFBAIG2HA/gwYsgVz7/9JolyUdJNhcL0hSueu2kO1rWBgOi+VAfi6ihBg1l3N5 GjnxxbhS7WpIZvRrYzC6Woea1PgG3ezyCAPg979bAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU2Xg2XVy1iIqn6MK+nwOZbcJy2rYwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzE2Nzg4YWRkLWIxMzktNGFmOC1iZDIyLWZlOGIyMTc3YzU3OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAPiTANBgkqhkiG9w0BAQsFAAOCAQEAmssp/MwcJx2VAj/auCAh5Ic1r73l LIKVy2B1I3E6lkjeczjR8pAZGp8bGiZL8K38tp3vku+xn/wtA/xgbxu8wgWWsunL ObjLfTOb7+NykukJKt7FnCmQwSgJEAQn7EqbliAey37S3Ls5O3YPndCoGAodHkEr BE9zy+d7Cd+rSBAn86wTn7eTGQ9Fznl9gKqIzpxgs/xVMr9ZHz+j4Wsb4nMvnz2a DDfGI46zZeKCKbyLa50DovnOXHtt2My3DQEysR1x7gD6YiJNnSs57fdztjPW6iGO 4KYzB5DO1V7HzpFiDiJq/zuN0hbPyWLDc+0w6ynEbv6hBTwnFH9WcyVCAA== -----END CERTIFICATE-----Generated at Tue Aug 5 08:24:55 2025 by rpki-client