$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/27080014-4498-4888-909d-c1bed4c0abca.roa File: 27080014-4498-4888-909d-c1bed4c0abca.roa (raw, json) Hash identifier: QXWbpbS40Eai7+AQPC1KrYpJcYUwE502ohBFsUiXEEs= Subject key identifier: 69:DC:00:BC:E1:1A:3B:CA:55:BD:83:C4:8D:DD:3A:CB:A0:89:4B:24 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 39DBBCACCDF96D1FE406F094EC20B3021F46FE1B Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/27080014-4498-4888-909d-c1bed4c0abca.roa Signing time: Tue 05 Aug 2025 16:40:25 +0000 ROA not before: Tue 05 Aug 2025 16:40:25 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.43.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 08 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:db:bc:ac:cd:f9:6d:1f:e4:06:f0:94:ec:20:b3:02:1f:46:fe:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 5 16:40:25 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=6d416c36305a98e74af4081aee6b97e4f225476ed200a9c02408105b1bb54c47, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c4:71:a8:22:70:8c:85:3c:28:fc:ca:cc:48: 6f:a1:7c:1d:4f:bf:53:e6:d1:05:ae:ba:06:da:6d: 76:cd:9f:73:f5:51:d6:3f:2a:76:d9:75:c0:69:0b: 21:f5:69:e8:f4:98:ea:6b:be:dd:cb:ff:fb:ef:ac: a2:d8:19:e4:1c:7c:69:05:dd:50:b2:11:17:f2:3b: 8a:cd:cb:48:5c:d9:d1:d1:82:06:1a:0c:dd:ba:bb: 7e:93:39:cf:37:c2:dc:ee:48:93:4e:e9:36:59:00: 9c:74:c0:20:dc:e0:c4:50:95:a7:01:d7:0a:ea:f3: b0:e8:f5:91:6f:34:e7:74:3e:35:eb:a3:0c:cd:f7: d5:51:1c:18:6c:74:ee:57:30:79:90:59:da:b7:e5: a4:ed:9c:03:b7:79:95:bb:8d:cb:31:03:06:da:a9: b3:41:ae:73:ca:a5:7a:88:1d:a7:2d:81:b7:42:fd: cf:78:6b:e6:ab:b4:f7:35:bf:70:d4:f7:3d:d9:3e: 99:21:60:7e:cf:23:02:a8:a1:48:f7:6e:24:ad:6b: d7:2c:55:81:a1:b5:b6:d5:fa:64:f2:7d:cc:4b:f9: e5:71:f0:8a:60:d2:c2:c1:43:00:15:18:ad:2d:f5: 4f:5b:a8:67:c4:fd:1d:2c:4a:50:da:0c:45:24:cd: c4:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:DC:00:BC:E1:1A:3B:CA:55:BD:83:C4:8D:DD:3A:CB:A0:89:4B:24 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/27080014-4498-4888-909d-c1bed4c0abca.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.43.0.0/16 Signature Algorithm: sha256WithRSAEncryption 57:4b:73:60:3a:68:05:4e:14:4e:9e:9c:6e:70:24:33:d0:aa: 7e:9a:30:bd:4a:eb:9e:52:b6:d8:ca:b0:91:f9:26:89:6a:4a: ee:d8:7e:94:b1:00:bd:62:94:4e:2b:57:6b:ca:72:ae:38:24: 26:3c:bc:ea:71:b6:a1:ee:18:94:44:f4:73:29:d3:c8:d9:31: fa:6f:76:85:3a:3f:ab:a3:3a:d8:23:66:0b:5c:3d:c3:9f:08: e7:8d:fa:c3:e2:84:27:65:fd:e8:26:e1:d5:ca:03:da:c1:41: 25:8b:e4:3d:d6:4d:1d:a8:de:7c:7c:09:27:5e:38:e8:2d:7f: 28:4f:18:5e:7b:81:a0:6b:0a:4f:e0:08:cb:21:cd:5c:8a:bd: 0c:e5:57:25:ae:78:50:4a:c8:8c:78:85:4a:7c:0a:b2:21:ef: fb:5e:54:87:14:f7:cb:37:ed:80:c7:85:74:e8:28:19:ea:ed: 88:f5:ab:08:04:e8:d6:e9:42:19:3e:e9:5e:1b:10:b8:1b:37: 31:ff:0f:08:b7:c2:4b:3a:5d:c6:13:60:67:d2:f0:74:fc:d5: bf:c2:1b:4c:2d:60:24:85:32:5f:70:ee:45:88:9b:9c:a6:5b: 40:75:bb:b6:a1:06:9f:57:63:9e:57:f2:58:c9:b8:85:71:81: 66:2b:1a:aa -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUOdu8rM35bR/kBvCU7CCzAh9G/hswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODA1MTY0MDI1WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZDQxNmMzNjMwNWE5OGU3NGFmNDA4MWFlZTZiOTdlNGYy MjU0NzZlZDIwMGE5YzAyNDA4MTA1YjFiYjU0YzQ3MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1xHGoInCMhTwo/MrMSG+hfB1Pv1Pm0QWuugbabXbNn3P1 UdY/KnbZdcBpCyH1aej0mOprvt3L//vvrKLYGeQcfGkF3VCyERfyO4rNy0hc2dHR ggYaDN26u36TOc83wtzuSJNO6TZZAJx0wCDc4MRQlacB1wrq87Do9ZFvNOd0PjXr owzN99VRHBhsdO5XMHmQWdq35aTtnAO3eZW7jcsxAwbaqbNBrnPKpXqIHactgbdC /c94a+artPc1v3DU9z3ZPpkhYH7PIwKooUj3biSta9csVYGhtbbV+mTyfcxL+eVx 8Ipg0sLBQwAVGK0t9U9bqGfE/R0sSlDaDEUkzcRhAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUadwAvOEaO8pVvYPEjd06y6CJSyQwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzI3MDgwMDE0LTQ0OTgtNDg4OC05MDlkLWMxYmVkNGMwYWJjYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwASKzANBgkqhkiG9w0BAQsFAAOCAQEAV0tzYDpoBU4UTp6cbnAkM9Cqfpow vUrrnlK22MqwkfkmiWpK7th+lLEAvWKUTitXa8pyrjgkJjy86nG2oe4YlET0cynT yNkx+m92hTo/q6M62CNmC1w9w58I5436w+KEJ2X96Cbh1coD2sFBJYvkPdZNHaje fHwJJ1446C1/KE8YXnuBoGsKT+AIyyHNXIq9DOVXJa54UErIjHiFSnwKsiHv+15U hxT3yzftgMeFdOgoGertiPWrCATo1ulCGT7pXhsQuBs3Mf8PCLfCSzpdxhNgZ9Lw dPzVv8IbTC1gJIUyX3DuRYibnKZbQHW7tqEGn1djnlfyWMm4hXGBZisaqg== -----END CERTIFICATE-----Generated at Wed Aug 6 11:16:05 2025 by rpki-client