$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/32656923-9ec4-40b4-9ede-e8bf9d5fca35.roa File: 32656923-9ec4-40b4-9ede-e8bf9d5fca35.roa (raw, json) Hash identifier: 2P3jrAge22zErkRjbg1XxI+EODbN1NU2B2U7ovQjS0U= Subject key identifier: A0:FF:82:4D:DF:A1:E3:6D:56:C3:CC:53:3F:F7:2E:03:03:03:BD:5F Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 3E00D449971180EE6D19E0AE26962BC73098CA86 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/32656923-9ec4-40b4-9ede-e8bf9d5fca35.roa Signing time: Tue 29 Jul 2025 15:30:23 +0000 ROA not before: Tue 29 Jul 2025 15:30:23 +0000 ROA not after: Tue 02 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.94.152.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:00:d4:49:97:11:80:ee:6d:19:e0:ae:26:96:2b:c7:30:98:ca:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jul 29 15:30:23 2025 GMT Not After : Sep 2 23:59:59 2025 GMT Subject: serialNumber=4abf5aafc1bade634f78c1350bf84dc9aced34bbaeff2b0a7d56a88163a0f3d5, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:df:0e:c0:1b:e0:4a:b9:70:4a:65:f7:86:39: ae:91:0e:24:0d:6b:42:1b:ed:b4:e5:c0:0e:24:58: 4c:0c:18:fa:7a:c8:01:a9:d1:d7:22:2a:47:59:71: d6:aa:6f:e6:f1:00:35:30:cc:ac:fe:e1:04:85:87: 2e:cf:c6:4a:3e:47:ec:85:3e:ef:16:d1:be:fd:73: a4:30:96:4f:98:e7:31:0c:86:3f:87:b7:53:f4:8a: 81:66:19:1d:cd:2f:fd:da:9e:79:3a:4c:99:99:10: 5a:aa:63:5f:c7:ca:7a:c8:3c:ee:25:4d:94:2e:59: ef:f2:5f:9b:c7:bf:01:04:a0:d2:f8:cf:06:2a:8e: 25:50:a4:97:59:d6:9c:58:a3:65:07:af:de:cf:84: b9:fc:0b:64:30:1d:a5:e4:eb:dd:37:80:b1:5e:6c: be:13:1a:cf:44:b1:cf:b2:a3:07:ec:da:81:bc:c2: 64:a7:44:4e:70:77:ae:c8:53:29:59:d9:62:b3:eb: ab:9d:be:b5:f5:00:bc:24:e2:8f:5b:ab:10:56:01: d8:a2:6a:96:28:7f:4e:fb:cf:f3:66:fe:fe:21:3b: 63:6e:5a:be:f8:87:c4:1b:d1:0f:f9:49:04:9c:4d: 2d:55:10:83:90:36:5b:60:a0:72:ff:fc:32:a4:82: c3:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:FF:82:4D:DF:A1:E3:6D:56:C3:CC:53:3F:F7:2E:03:03:03:BD:5F X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/32656923-9ec4-40b4-9ede-e8bf9d5fca35.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.94.152.0/21 Signature Algorithm: sha256WithRSAEncryption 5f:5e:a3:25:5c:86:c8:45:31:69:d6:9e:b6:35:98:07:05:59: 13:22:56:05:5c:6a:ea:f9:72:be:aa:0e:56:da:e9:44:b4:50: 42:01:dd:2d:c4:4d:b2:f4:95:06:47:32:fb:84:07:27:03:f6: 4c:4d:36:90:d8:2d:b8:33:14:0f:16:64:4d:14:06:77:1b:1e: 4f:f0:cc:f6:88:dc:41:97:b9:43:db:8e:aa:2d:66:2b:8f:91: 4b:5b:74:87:d6:a7:fd:bf:3a:82:eb:37:12:ca:73:46:5e:2e: 6f:44:98:35:ad:38:0e:a5:f5:11:d1:1a:91:cb:30:e2:59:ce: 15:ca:65:84:c4:c1:b8:66:2f:b6:5e:a3:66:70:e2:4b:a4:69: 45:e2:40:61:ea:78:90:34:25:c3:a6:b1:18:b9:66:00:8b:c8: e5:9c:45:bb:f6:78:35:0e:5a:96:21:63:dd:00:7d:42:d4:07: c9:12:49:3c:57:ca:b3:f4:b8:0e:11:de:ea:8d:85:a2:ef:4e: 06:80:8d:83:b1:a3:68:32:a4:50:f6:be:03:47:49:00:7b:58: a8:7d:9a:b4:13:a7:21:3a:dd:ed:99:22:b8:f8:77:00:d0:86: fa:54:90:7d:49:b7:0c:2a:e1:53:53:f3:e5:fa:93:87:dc:f5: a1:20:de:e6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPgDUSZcRgO5tGeCuJpYrxzCYyoYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNzI5MTUzMDIzWhcNMjUwOTAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A0YWJmNWFhZmMxYmFkZTYzNGY3OGMxMzUwYmY4NGRjOWFj ZWQzNGJiYWVmZjJiMGE3ZDU2YTg4MTYzYTBmM2Q1MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDS3w7AG+BKuXBKZfeGOa6RDiQNa0Ib7bTlwA4kWEwMGPp6 yAGp0dciKkdZcdaqb+bxADUwzKz+4QSFhy7Pxko+R+yFPu8W0b79c6Qwlk+Y5zEM hj+Ht1P0ioFmGR3NL/3annk6TJmZEFqqY1/HynrIPO4lTZQuWe/yX5vHvwEEoNL4 zwYqjiVQpJdZ1pxYo2UHr97PhLn8C2QwHaXk6903gLFebL4TGs9Esc+yowfs2oG8 wmSnRE5wd67IUylZ2WKz66udvrX1ALwk4o9bqxBWAdiiapYof077z/Nm/v4hO2Nu Wr74h8Qb0Q/5SQScTS1VEIOQNltgoHL//DKkgsPPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUoP+CTd+h421Ww8xTP/cuAwMDvV8wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzMyNjU2OTIzLTllYzQtNDBiNC05ZWRlLWU4YmY5ZDVmY2EzNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAM0XpgwDQYJKoZIhvcNAQELBQADggEBAF9eoyVchshFMWnWnrY1mAcFWRMi VgVcaur5cr6qDlba6US0UEIB3S3ETbL0lQZHMvuEBycD9kxNNpDYLbgzFA8WZE0U BncbHk/wzPaI3EGXuUPbjqotZiuPkUtbdIfWp/2/OoLrNxLKc0ZeLm9EmDWtOA6l 9RHRGpHLMOJZzhXKZYTEwbhmL7Zeo2Zw4kukaUXiQGHqeJA0JcOmsRi5ZgCLyOWc Rbv2eDUOWpYhY90AfULUB8kSSTxXyrP0uA4R3uqNhaLvTgaAjYOxo2gypFD2vgNH SQB7WKh9mrQTpyE63e2ZIrj4dwDQhvpUkH1Jtwwq4VNT8+X6k4fc9aEg3uY= -----END CERTIFICATE-----Generated at Mon Aug 4 21:55:27 2025 by rpki-client