$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1e6d17b7-34a6-4151-8a41-12f370573800.roa File: 1e6d17b7-34a6-4151-8a41-12f370573800.roa (raw, json) Hash identifier: FJMt8Z3wAfOgCCtTVSg3BGrOBxsqAb1Dr1127LRaSCc= Subject key identifier: 0F:E5:D8:7F:9F:0F:8B:25:4A:24:AA:3E:69:C6:11:FD:CD:2E:34:9F Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 3C526424C464C799975C19E489E5D0CC4194FDC5 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1e6d17b7-34a6-4151-8a41-12f370573800.roa Signing time: Fri 11 Jul 2025 17:51:54 +0000 ROA not before: Fri 11 Jul 2025 17:51:54 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 54.82.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:52:64:24:c4:64:c7:99:97:5c:19:e4:89:e5:d0:cc:41:94:fd:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jul 11 17:51:54 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=60dd13ad17fb8106f0403c352bd18c79f20544c744fc11dc09c65f6a52793603, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:8d:9c:89:68:33:3e:7e:c9:e1:0f:22:cc:05: 63:55:e5:6d:83:aa:d1:fb:c0:0f:91:f1:d7:53:a7: 5a:c7:4d:60:15:ea:ad:6a:b3:b4:b7:8a:d6:f0:c8: 45:e0:fd:2d:86:c9:6e:de:10:fd:2d:43:8f:d6:7e: 93:c1:51:b4:94:17:3f:f6:52:7d:2c:37:d1:5d:d8: cb:e6:9a:30:7d:f4:4f:9b:d9:64:f0:dc:48:9a:a3: 2c:de:d7:bd:59:f8:08:a9:4a:27:b4:99:c8:03:c1: 60:7e:db:62:1a:79:63:46:85:41:a2:22:ec:97:d8: 8b:9a:ab:90:7b:d0:a1:d7:a6:d0:68:7d:24:c4:8d: f8:f6:9d:58:db:4f:42:21:3e:b8:d5:b2:7f:ee:18: af:a9:cb:3f:18:79:8d:64:fc:f0:39:32:5a:89:42: a2:ef:dc:ec:dd:d3:bb:0e:41:b6:12:ea:9f:15:76: 92:a3:66:c8:fa:03:54:0a:05:78:81:a7:ea:e4:d2: 16:e6:e1:ab:ea:86:29:24:de:f1:aa:e1:5c:2c:41: 57:fd:c2:b2:e7:68:95:07:dd:65:0c:19:01:0d:d0: 9b:0f:d0:f9:6b:05:16:54:36:6e:ba:df:90:6a:7b: da:c8:dd:d4:bb:6e:d8:8c:89:70:fd:40:5a:4b:d0: 16:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:E5:D8:7F:9F:0F:8B:25:4A:24:AA:3E:69:C6:11:FD:CD:2E:34:9F X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1e6d17b7-34a6-4151-8a41-12f370573800.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.82.0.0/17 Signature Algorithm: sha256WithRSAEncryption 16:47:89:5b:35:9a:e1:02:5a:c0:a8:f7:eb:11:88:2b:3a:08: 86:ad:6d:70:ae:75:64:fc:17:34:e6:a4:a0:ae:cf:98:42:46: dc:83:88:ac:18:f3:0a:90:48:9a:b0:1e:00:fb:4a:22:e2:0a: f2:2f:7d:ef:08:2b:67:62:25:7c:00:d9:bc:99:9b:57:7b:92: 0c:98:49:30:13:3e:27:98:a6:35:03:98:09:71:97:17:0d:4d: c6:73:58:1a:2b:6c:5d:60:14:f6:e1:aa:f9:b2:2a:2f:8b:09: 96:41:34:2b:b9:fd:90:13:29:ac:30:10:60:af:23:41:04:ed: 74:7c:42:c1:9c:54:db:b2:98:a9:fc:5f:c1:8e:0f:0d:14:a2: 76:91:39:3a:31:72:c3:c9:ee:ee:de:35:d2:35:d2:f3:4b:cc: 14:32:fb:27:82:31:e2:9f:10:91:4a:a4:5a:90:de:7c:f4:3b: 8f:d3:4a:73:fe:06:f0:16:69:59:7e:30:b5:75:60:f6:39:38: 30:0e:f1:b0:98:6d:c0:29:ed:f7:61:db:99:ad:5b:d9:99:b7: c7:8c:de:91:ee:4f:25:12:69:0c:5e:2c:82:90:41:66:51:95: 20:b9:e8:4d:85:1d:53:df:b5:f1:fe:2e:39:44:6a:36:ff:1f: d1:25:36:ff -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPFJkJMRkx5mXXBnkieXQzEGU/cUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNzExMTc1MTU0WhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0A2MGRkMTNhZDE3ZmI4MTA2ZjA0MDNjMzUyYmQxOGM3OWYy MDU0NGM3NDRmYzExZGMwOWM2NWY2YTUyNzkzNjAzMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLjZyJaDM+fsnhDyLMBWNV5W2DqtH7wA+R8ddTp1rHTWAV 6q1qs7S3itbwyEXg/S2GyW7eEP0tQ4/WfpPBUbSUFz/2Un0sN9Fd2MvmmjB99E+b 2WTw3Eiaoyze171Z+AipSie0mcgDwWB+22IaeWNGhUGiIuyX2Iuaq5B70KHXptBo fSTEjfj2nVjbT0IhPrjVsn/uGK+pyz8YeY1k/PA5MlqJQqLv3Ozd07sOQbYS6p8V dpKjZsj6A1QKBXiBp+rk0hbm4avqhikk3vGq4VwsQVf9wrLnaJUH3WUMGQEN0JsP 0PlrBRZUNm6635Bqe9rI3dS7btiMiXD9QFpL0BZDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUD+XYf58PiyVKJKo+acYR/c0uNJ8wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzFlNmQxN2I3LTM0YTYtNDE1MS04YTQxLTEyZjM3MDU3MzgwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAc2UgAwDQYJKoZIhvcNAQELBQADggEBABZHiVs1muECWsCo9+sRiCs6CIat bXCudWT8FzTmpKCuz5hCRtyDiKwY8wqQSJqwHgD7SiLiCvIvfe8IK2diJXwA2byZ m1d7kgyYSTATPieYpjUDmAlxlxcNTcZzWBorbF1gFPbhqvmyKi+LCZZBNCu5/ZAT KawwEGCvI0EE7XR8QsGcVNuymKn8X8GODw0UonaROToxcsPJ7u7eNdI10vNLzBQy +yeCMeKfEJFKpFqQ3nz0O4/TSnP+BvAWaVl+MLV1YPY5ODAO8bCYbcAp7fdh25mt W9mZt8eM3pHuTyUSaQxeLIKQQWZRlSC56E2FHVPftfH+LjlEajb/H9ElNv8= -----END CERTIFICATE-----Generated at Mon Aug 4 14:08:35 2025 by rpki-client