$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/24aeafda-b7b1-4a9d-8bdf-3482feb88280.roa File: 24aeafda-b7b1-4a9d-8bdf-3482feb88280.roa (raw, json) Hash identifier: ovRSij2XsCnL3ycoL3yh+G6TvFd3fSMXKgvJUYp+7rY= Subject key identifier: F5:2B:0F:75:BC:FD:C6:F9:37:27:74:AA:BB:7C:2A:3C:6F:14:26:4A Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 7D4CBDC972EDE32503E3DA2B47C0D624EA9AF655 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/24aeafda-b7b1-4a9d-8bdf-3482feb88280.roa Signing time: Fri 25 Jul 2025 00:51:28 +0000 ROA not before: Fri 25 Jul 2025 00:51:28 +0000 ROA not after: Fri 29 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 161.188.142.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:4c:bd:c9:72:ed:e3:25:03:e3:da:2b:47:c0:d6:24:ea:9a:f6:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jul 25 00:51:28 2025 GMT Not After : Aug 29 23:59:59 2025 GMT Subject: serialNumber=e5e3004b7a7cb6653c5caeb072eb68cc7b920b9bc1861043ded736011f3c708f, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:8b:6a:8e:6d:a9:ea:31:19:ba:2c:43:f4:1f: 05:5f:9c:56:23:4e:85:6d:05:0a:4d:49:f5:73:e7: ad:49:2c:47:86:7d:42:e2:83:c9:ed:a3:19:89:78: b1:32:3a:9b:18:01:21:98:13:42:50:50:55:0e:a9: 13:a0:b2:da:68:15:0d:87:13:e9:13:a5:53:b0:1c: 31:c4:4b:f2:ca:37:af:82:bc:d9:ac:8e:e6:e0:bb: d1:f6:49:2b:98:ae:0e:65:f7:cc:34:c2:e6:b0:69: 17:30:26:84:ec:0b:2e:4e:71:ec:59:00:67:13:d7: 50:e0:1c:e7:ce:2a:59:6f:8e:37:82:54:f1:7a:1d: 58:b9:4e:30:36:6a:c0:de:c3:5c:ad:4b:14:5b:9e: 05:05:e6:0a:07:b1:ea:c6:b7:fd:13:2b:f0:35:b4: 60:89:ae:2c:df:7f:03:f4:dd:0d:11:b9:84:2b:a5: 10:6d:41:6f:0d:02:ee:fc:ac:4b:d9:b7:19:96:27: 19:09:0a:8b:c9:9a:9b:fe:fe:7c:14:a4:06:f8:a9: 4c:74:21:51:03:53:f8:da:15:22:48:ac:6f:f0:22: a0:a9:09:ae:79:58:73:72:de:1e:42:ae:cb:46:a5: 1e:65:13:d8:96:5d:13:29:1f:1f:c3:2e:27:54:28: 6e:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:2B:0F:75:BC:FD:C6:F9:37:27:74:AA:BB:7C:2A:3C:6F:14:26:4A X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/24aeafda-b7b1-4a9d-8bdf-3482feb88280.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 161.188.142.0/23 Signature Algorithm: sha256WithRSAEncryption b1:8c:86:dd:a1:70:5d:83:a4:b5:58:69:b4:58:6c:69:dd:88: da:41:7d:7d:67:ef:7b:07:b6:d6:3c:14:17:8a:ef:c7:8d:c0: 14:cb:04:75:eb:80:eb:94:19:db:82:96:7c:3a:df:03:aa:84: 96:c3:53:32:7f:aa:31:fa:4d:64:6a:7e:e5:62:51:10:b6:ba: e3:ce:02:32:90:00:5d:fa:42:a1:24:aa:03:c9:fc:39:bf:37: 0d:5a:36:cd:00:77:5a:d6:9b:9e:b5:e7:f8:76:4f:06:c9:c2: c2:ad:ed:88:d9:26:a8:d1:4d:4d:2c:fd:aa:53:34:65:2d:b3: c9:4e:25:8a:f7:69:9e:bc:07:75:b2:15:85:64:4e:ac:0e:6f: 0f:f3:3b:ad:74:53:cb:d5:2a:4b:92:1f:ab:f5:65:8e:7f:30: c1:3f:da:fe:bf:68:77:5f:55:0a:b1:7e:89:75:0c:a8:97:0e: 2f:67:23:46:fd:9c:7e:00:ba:3b:51:5a:8b:1b:3e:f4:5d:b5: 8a:51:59:85:50:fb:6f:2b:4c:5d:56:08:c0:e0:32:58:da:b1: a2:1e:2f:d3:ff:1c:0d:09:e1:90:3e:8d:56:44:8f:94:d6:13: d1:e7:dc:c3:87:7f:9d:dd:fa:9e:ee:cb:f6:08:c1:43:65:a9: 12:91:bd:30 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfUy9yXLt4yUD49orR8DWJOqa9lUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNzI1MDA1MTI4WhcNMjUwODI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNWUzMDA0YjdhN2NiNjY1M2M1Y2FlYjA3MmViNjhjYzdi OTIwYjliYzE4NjEwNDNkZWQ3MzYwMTFmM2M3MDhmMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFi2qObanqMRm6LEP0HwVfnFYjToVtBQpNSfVz561JLEeG fULig8ntoxmJeLEyOpsYASGYE0JQUFUOqROgstpoFQ2HE+kTpVOwHDHES/LKN6+C vNmsjubgu9H2SSuYrg5l98w0wuawaRcwJoTsCy5OcexZAGcT11DgHOfOKllvjjeC VPF6HVi5TjA2asDew1ytSxRbngUF5goHserGt/0TK/A1tGCJrizffwP03Q0RuYQr pRBtQW8NAu78rEvZtxmWJxkJCovJmpv+/nwUpAb4qUx0IVEDU/jaFSJIrG/wIqCp Ca55WHNy3h5CrstGpR5lE9iWXRMpHx/DLidUKG6dAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU9SsPdbz9xvk3J3Squ3wqPG8UJkowHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzI0YWVhZmRhLWI3YjEtNGE5ZC04YmRmLTM0ODJmZWI4ODI4MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAGhvI4wDQYJKoZIhvcNAQELBQADggEBALGMht2hcF2DpLVYabRYbGndiNpB fX1n73sHttY8FBeK78eNwBTLBHXrgOuUGduClnw63wOqhJbDUzJ/qjH6TWRqfuVi URC2uuPOAjKQAF36QqEkqgPJ/Dm/Nw1aNs0Ad1rWm5615/h2TwbJwsKt7YjZJqjR TU0s/apTNGUts8lOJYr3aZ68B3WyFYVkTqwObw/zO610U8vVKkuSH6v1ZY5/MME/ 2v6/aHdfVQqxfol1DKiXDi9nI0b9nH4AujtRWosbPvRdtYpRWYVQ+28rTF1WCMDg MljasaIeL9P/HA0J4ZA+jVZEj5TWE9Hn3MOHf53d+p7uy/YIwUNlqRKRvTA= -----END CERTIFICATE-----Generated at Mon Aug 4 22:12:04 2025 by rpki-client