$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1df7952b-8ba0-46e5-8c8f-e50a5adef275.roa File: 1df7952b-8ba0-46e5-8c8f-e50a5adef275.roa (raw, json) Hash identifier: IJnR47wN3IZhJYgUNUCKWSNHaQSkjL4ZCnUJnq7BAro= Subject key identifier: 47:9C:E5:82:7D:A8:C1:42:9A:00:AA:D4:03:8A:06:D8:6D:75:CD:B3 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 3892E7E9AA1113B55934A270BEB3080DAA5147D0 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1df7952b-8ba0-46e5-8c8f-e50a5adef275.roa Signing time: Tue 29 Jul 2025 16:10:52 +0000 ROA not before: Tue 29 Jul 2025 16:10:52 +0000 ROA not after: Tue 02 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.193.240.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:92:e7:e9:aa:11:13:b5:59:34:a2:70:be:b3:08:0d:aa:51:47:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jul 29 16:10:52 2025 GMT Not After : Sep 2 23:59:59 2025 GMT Subject: serialNumber=04490926ba46362a7d726b75e494e9214769719b57f440bb09f2b38027bea9bd, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:94:02:b9:9f:51:c7:03:50:02:c4:ec:1a:da: fa:68:44:51:53:eb:20:d2:e9:d0:d0:7b:d0:eb:ac: 20:ec:b7:44:2e:7d:86:26:df:79:2d:66:fa:38:33: 99:47:89:20:fa:96:ee:9f:b2:f1:23:be:ca:2d:22: 83:f9:31:48:b1:15:1b:6a:35:02:35:b6:50:35:79: 31:67:43:bd:ab:67:84:52:a5:5c:53:93:c9:b5:3f: 79:50:b4:08:c0:8c:94:0a:08:58:0d:6c:5a:86:0e: d7:72:49:79:e8:96:c8:11:c8:22:2f:5e:40:ea:a7: de:68:d1:19:0c:6c:28:1a:a5:b2:13:cb:08:d6:7d: 64:59:08:51:18:bd:62:d3:93:1d:17:e1:2a:07:29: 27:2b:59:79:b2:3c:13:8e:70:b4:68:1d:c0:32:49: 63:96:ce:9a:a8:c7:03:fb:3f:a6:6e:e1:b5:1d:a2: 81:49:df:c8:16:83:b1:eb:b2:cc:5e:56:32:8e:e1: d2:0b:31:e3:37:cb:17:30:43:b9:53:ed:51:e6:73: a9:90:43:56:20:01:43:36:44:39:d8:53:55:c5:34: c2:0e:ef:d3:46:ec:76:40:fb:d9:e4:ea:a3:b8:0e: f4:79:e1:d1:de:77:ac:c2:d8:d1:89:30:1a:c9:c2: ba:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:9C:E5:82:7D:A8:C1:42:9A:00:AA:D4:03:8A:06:D8:6D:75:CD:B3 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1df7952b-8ba0-46e5-8c8f-e50a5adef275.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.193.240.0/21 Signature Algorithm: sha256WithRSAEncryption 0a:cc:27:8a:83:f1:4c:14:dc:b5:25:47:89:73:27:4e:d7:97: f7:cb:d7:6b:61:9f:49:b2:fd:a8:0b:8a:09:d7:7c:83:fa:ac: 1f:d7:60:84:b6:bd:2c:2b:c0:d2:1d:7d:f7:c9:3c:e5:e8:ed: 66:5f:6a:fc:6f:cc:a1:55:34:ea:cc:bf:be:b5:2b:98:8f:69: c8:20:6c:7f:f2:7b:51:0b:d3:6c:17:c4:71:33:5e:b2:12:c2: f3:6a:ef:61:cd:8a:ec:a7:5b:3e:bd:ad:58:bb:ab:6c:34:90: c0:8c:09:13:f0:ea:1e:90:c1:6b:8b:82:f2:11:ad:5c:c3:f6: 46:4d:51:53:dc:b4:3f:35:e7:24:0a:e5:cb:47:47:be:ec:35: 42:0a:4c:86:75:62:d3:ab:2b:ef:ce:8e:6a:77:83:b1:0f:3d: 29:18:dc:03:49:ae:53:c9:7a:cc:0a:32:af:4d:ae:0c:85:35: c5:e5:02:31:d6:78:9d:7a:7c:c7:ec:a1:86:b8:8b:e9:84:93: c0:1e:7d:e2:59:6b:28:cb:4a:7d:b2:cb:e9:6b:87:d9:8a:cf: cf:cf:b0:a3:2b:79:5f:a1:89:ae:8e:9d:81:92:8e:10:79:28: 4b:ad:c6:93:cb:fa:25:23:75:f2:c5:46:47:8d:26:76:56:34: c9:65:66:65 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOJLn6aoRE7VZNKJwvrMIDapRR9AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNzI5MTYxMDUyWhcNMjUwOTAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AwNDQ5MDkyNmJhNDYzNjJhN2Q3MjZiNzVlNDk0ZTkyMTQ3 Njk3MTliNTdmNDQwYmIwOWYyYjM4MDI3YmVhOWJkMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCJlAK5n1HHA1ACxOwa2vpoRFFT6yDS6dDQe9DrrCDst0Qu fYYm33ktZvo4M5lHiSD6lu6fsvEjvsotIoP5MUixFRtqNQI1tlA1eTFnQ72rZ4RS pVxTk8m1P3lQtAjAjJQKCFgNbFqGDtdySXnolsgRyCIvXkDqp95o0RkMbCgapbIT ywjWfWRZCFEYvWLTkx0X4SoHKScrWXmyPBOOcLRoHcAySWOWzpqoxwP7P6Zu4bUd ooFJ38gWg7HrssxeVjKO4dILMeM3yxcwQ7lT7VHmc6mQQ1YgAUM2RDnYU1XFNMIO 79NG7HZA+9nk6qO4DvR54dHed6zC2NGJMBrJwrpHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUR5zlgn2owUKaAKrUA4oG2G11zbMwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzFkZjc5NTJiLThiYTAtNDZlNS04YzhmLWU1MGE1YWRlZjI3NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAM2wfAwDQYJKoZIhvcNAQELBQADggEBAArMJ4qD8UwU3LUlR4lzJ07Xl/fL 12thn0my/agLignXfIP6rB/XYIS2vSwrwNIdfffJPOXo7WZfavxvzKFVNOrMv761 K5iPacggbH/ye1EL02wXxHEzXrISwvNq72HNiuynWz69rVi7q2w0kMCMCRPw6h6Q wWuLgvIRrVzD9kZNUVPctD815yQK5ctHR77sNUIKTIZ1YtOrK+/Ojmp3g7EPPSkY 3ANJrlPJeswKMq9NrgyFNcXlAjHWeJ16fMfsoYa4i+mEk8AefeJZayjLSn2yy+lr h9mKz8/PsKMreV+hia6OnYGSjhB5KEutxpPL+iUjdfLFRkeNJnZWNMllZmU= -----END CERTIFICATE-----Generated at Mon Aug 4 21:46:54 2025 by rpki-client