$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/16e38074-2bb1-45d4-bdad-37eaf03741c5.roa File: 16e38074-2bb1-45d4-bdad-37eaf03741c5.roa (raw, json) Hash identifier: j/GA9UP7HyqfU8pp7q5mideXE8ZoKKPsrQmyHod7pRU= Subject key identifier: EA:E2:16:DC:66:BE:B2:72:4B:1B:3F:A5:69:B5:B3:5C:53:D5:4B:24 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 74099D88D77D2E63031D04F62F3108D7D037DD59 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/16e38074-2bb1-45d4-bdad-37eaf03741c5.roa Signing time: Fri 11 Jul 2025 15:50:18 +0000 ROA not before: Fri 11 Jul 2025 15:50:18 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 161.188.148.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:09:9d:88:d7:7d:2e:63:03:1d:04:f6:2f:31:08:d7:d0:37:dd:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jul 11 15:50:18 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=1021306c77199bb13159f61b4e5da1ebaaafbf3b28d4c7dc20091e8f9cb6e711, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:b2:e0:12:0d:61:18:b5:3b:e6:50:06:67:b9: 58:d9:28:2e:85:30:23:7b:e2:87:42:06:75:a2:5f: a8:6e:3c:b5:ac:8e:f8:8b:ef:9c:0f:3d:83:aa:33: 96:a2:65:86:a9:54:51:6e:cf:1d:fb:66:d9:ec:63: 26:7d:68:48:23:7d:ea:a3:0e:5f:7d:d3:e4:22:e7: 20:c8:76:e8:6e:15:75:b0:d0:9a:28:09:04:ae:05: 77:0a:64:8b:a9:79:e4:49:98:2f:20:ea:72:4e:53: dc:0d:05:71:d5:6c:bd:3c:51:a1:14:31:84:f3:0d: 77:95:cd:37:bb:a7:25:6e:34:2e:0e:aa:5c:e3:95: 8b:9b:d1:1c:b0:1f:bd:5b:1c:7f:97:3d:f9:26:15: 90:5d:f4:67:06:88:bb:36:84:26:27:f9:99:76:bb: c4:c5:bf:ae:98:6b:fb:fe:2f:77:e6:b0:36:c3:3b: da:57:73:a8:3f:aa:d6:ae:6b:c8:bf:07:de:e0:14: 48:93:2c:da:b0:9e:eb:9f:11:46:bd:e5:3f:de:66: 67:6f:89:4f:7a:4e:01:20:b0:09:ad:7e:2a:68:1d: 1b:85:b4:f2:72:ac:f0:b3:64:e2:85:cb:20:2b:19: 41:c0:84:36:fa:fa:9f:24:06:ac:0a:72:aa:af:16: 44:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:E2:16:DC:66:BE:B2:72:4B:1B:3F:A5:69:B5:B3:5C:53:D5:4B:24 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/16e38074-2bb1-45d4-bdad-37eaf03741c5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 161.188.148.0/23 Signature Algorithm: sha256WithRSAEncryption 93:89:5f:b6:61:53:3e:5c:5a:6c:7d:8a:4f:dd:b4:c1:67:38: 42:c3:0a:9b:9c:62:13:85:61:f3:c1:83:7e:72:09:5c:69:c4: 0e:75:cf:60:46:d7:fd:b0:ff:d1:5a:30:fc:56:d3:30:23:af: de:e8:e2:62:b7:41:a3:2b:55:40:20:87:6e:56:31:53:ce:27: 08:eb:ac:f0:b1:03:09:07:71:68:db:ab:6f:68:d5:40:96:c1: 6a:a8:54:2a:a2:f1:57:d3:3c:c0:fd:3b:4d:ac:76:d8:bf:cc: 1b:7a:1c:b3:b0:85:ab:a1:93:a2:49:f8:0e:3f:44:f5:19:65: 98:f1:1b:67:e0:fa:40:29:88:6a:d8:fd:59:d3:77:c4:ff:46: ea:59:17:c0:4e:79:91:91:3e:98:04:48:a4:a5:19:31:d3:1b: 29:99:57:46:78:83:db:9d:00:97:4b:51:cc:f6:04:fd:34:20: 85:a6:fe:0d:fd:b0:8d:04:c5:01:f0:59:3b:9b:c8:09:c7:b1: 23:28:a1:24:25:71:03:1f:2b:14:5d:1d:fb:49:84:ad:73:9f: 1b:04:95:90:b0:5d:d5:3b:ef:5e:f0:4e:52:8e:39:35:5c:15: 76:65:ad:f2:df:58:4d:65:9f:40:eb:87:b7:b2:6f:b7:e4:84: 76:90:1a:c6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdAmdiNd9LmMDHQT2LzEI19A33VkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNzExMTU1MDE4WhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMDIxMzA2Yzc3MTk5YmIxMzE1OWY2MWI0ZTVkYTFlYmFh YWZiZjNiMjhkNGM3ZGMyMDA5MWU4ZjljYjZlNzExMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDEsuASDWEYtTvmUAZnuVjZKC6FMCN74odCBnWiX6huPLWs jviL75wPPYOqM5aiZYapVFFuzx37ZtnsYyZ9aEgjfeqjDl990+Qi5yDIduhuFXWw 0JooCQSuBXcKZIupeeRJmC8g6nJOU9wNBXHVbL08UaEUMYTzDXeVzTe7pyVuNC4O qlzjlYub0RywH71bHH+XPfkmFZBd9GcGiLs2hCYn+Zl2u8TFv66Ya/v+L3fmsDbD O9pXc6g/qtaua8i/B97gFEiTLNqwnuufEUa95T/eZmdviU96TgEgsAmtfipoHRuF tPJyrPCzZOKFyyArGUHAhDb6+p8kBqwKcqqvFkRvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU6uIW3Ga+snJLGz+labWzXFPVSyQwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzE2ZTM4MDc0LTJiYjEtNDVkNC1iZGFkLTM3ZWFmMDM3NDFjNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAGhvJQwDQYJKoZIhvcNAQELBQADggEBAJOJX7ZhUz5cWmx9ik/dtMFnOELD CpucYhOFYfPBg35yCVxpxA51z2BG1/2w/9FaMPxW0zAjr97o4mK3QaMrVUAgh25W MVPOJwjrrPCxAwkHcWjbq29o1UCWwWqoVCqi8VfTPMD9O02sdti/zBt6HLOwhauh k6JJ+A4/RPUZZZjxG2fg+kApiGrY/VnTd8T/RupZF8BOeZGRPpgESKSlGTHTGymZ V0Z4g9udAJdLUcz2BP00IIWm/g39sI0ExQHwWTubyAnHsSMooSQlcQMfKxRdHftJ hK1znxsElZCwXdU7717wTlKOOTVcFXZlrfLfWE1ln0Drh7eyb7fkhHaQGsY= -----END CERTIFICATE-----Generated at Mon Aug 4 21:49:00 2025 by rpki-client