$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3ae1ba2b-193c-40d3-9ad5-7e6126ae6f18.roa File: 3ae1ba2b-193c-40d3-9ad5-7e6126ae6f18.roa (raw, json) Hash identifier: Uezt6edKr+pYH1A+K/Y9VFdnkCqJYjLX0VaXMsejZiw= Subject key identifier: 10:FA:86:D9:96:9E:5F:28:30:81:D7:2A:57:63:A4:98:9E:DC:47:DD Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 2AD44F03E6DDD9821B464D536EFC6D08722A3E0B Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3ae1ba2b-193c-40d3-9ad5-7e6126ae6f18.roa Signing time: Fri 11 Jul 2025 15:32:05 +0000 ROA not before: Fri 11 Jul 2025 15:32:05 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.248.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:d4:4f:03:e6:dd:d9:82:1b:46:4d:53:6e:fc:6d:08:72:2a:3e:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jul 11 15:32:05 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=b7e2945eee546ec6e6a3c5f69359dbfae7e45d67e079f5b28dec8f4588385778, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:57:61:6c:d2:f2:6d:c2:16:0b:85:75:c8:bf: 5d:5c:e8:51:5e:28:3c:e8:7d:c1:c7:35:0d:c4:43: 9a:09:ff:22:6b:51:3f:35:7e:cc:67:e2:75:36:dd: 37:2f:2b:82:ab:57:f4:bf:79:a1:73:3e:be:24:3b: 39:da:dc:05:6d:bb:cc:99:43:57:1d:50:ee:62:be: 4a:cd:8e:7f:4c:56:b0:69:93:08:48:c4:dc:e8:43: df:48:a3:58:46:59:88:e5:91:34:30:81:07:14:68: 39:c9:74:b6:a3:a1:11:8f:1d:83:fa:b2:57:d8:c4: 64:10:69:d6:d0:cd:df:fa:17:d7:d8:80:4c:a0:a4: e0:ea:fe:2c:c7:69:92:a1:f0:f9:13:9b:cd:d3:4e: 02:69:09:17:78:00:5e:ef:e3:ee:d3:0f:34:65:67: fb:52:a7:50:1f:95:77:79:8f:27:b9:1c:9f:2a:10: 1b:86:88:df:06:3e:01:7a:e6:74:d3:43:d0:30:d2: 02:a0:74:05:bd:9f:12:fd:ab:ce:1a:4e:16:77:a8: 8a:9a:17:a0:07:c9:1f:6d:3d:44:75:0f:62:c9:77: 00:f1:04:41:fd:a9:e5:3b:80:f7:48:65:ec:94:6b: 21:fd:76:95:ab:8b:72:2d:70:a3:27:7d:40:5b:ce: 7d:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:FA:86:D9:96:9E:5F:28:30:81:D7:2A:57:63:A4:98:9E:DC:47:DD X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3ae1ba2b-193c-40d3-9ad5-7e6126ae6f18.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.248.115.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:ca:66:8e:a3:00:d1:38:60:b2:3c:3e:80:25:de:af:c8:bb: 47:c0:27:4c:ee:37:bd:3f:e7:00:91:2f:9e:5e:ac:ad:8b:e7: f5:f4:0f:37:6f:9f:4a:26:6a:f0:b5:a4:ef:4b:c3:a1:6e:e1: e5:d3:e2:d8:a4:2c:8f:ae:4f:b6:df:31:c2:6a:60:60:23:bd: 1d:3d:5e:3f:54:4e:68:e1:99:e8:af:b6:f1:a5:e8:52:68:3f: 70:38:1c:99:a4:42:b3:65:1a:98:e5:2d:a7:3d:2c:6f:b9:3b: 0a:63:8b:39:d0:34:fd:a4:99:2a:c7:73:7c:f1:70:5b:71:f6: 5b:ba:68:06:e3:2a:2a:5c:70:b5:2c:bd:33:97:91:f5:7b:83: 00:38:8c:e5:03:bd:26:f7:cb:5c:0c:85:61:82:5d:f1:ee:9d: ed:59:e9:7b:3e:9b:54:b4:21:f4:9a:42:55:ea:c6:48:51:05: db:4e:32:76:d0:7e:cf:98:e2:c6:ec:17:22:be:19:4f:4d:43: fb:c1:12:6a:7a:9d:18:5f:86:cf:3a:98:1a:1d:34:05:e3:a5: ba:42:eb:a0:07:2b:b4:af:3b:c6:72:0d:a9:c6:a7:f1:d6:91: 06:ca:38:7b:5a:54:46:d1:e1:6a:98:ff:ca:87:69:d7:1a:66: 60:b8:ee:e7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKtRPA+bd2YIbRk1TbvxtCHIqPgswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNzExMTUzMjA1WhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BiN2UyOTQ1ZWVlNTQ2ZWM2ZTZhM2M1ZjY5MzU5ZGJmYWU3 ZTQ1ZDY3ZTA3OWY1YjI4ZGVjOGY0NTg4Mzg1Nzc4MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHV2Fs0vJtwhYLhXXIv11c6FFeKDzofcHHNQ3EQ5oJ/yJr UT81fsxn4nU23TcvK4KrV/S/eaFzPr4kOzna3AVtu8yZQ1cdUO5ivkrNjn9MVrBp kwhIxNzoQ99Io1hGWYjlkTQwgQcUaDnJdLajoRGPHYP6slfYxGQQadbQzd/6F9fY gEygpODq/izHaZKh8PkTm83TTgJpCRd4AF7v4+7TDzRlZ/tSp1AflXd5jye5HJ8q EBuGiN8GPgF65nTTQ9Aw0gKgdAW9nxL9q84aThZ3qIqaF6AHyR9tPUR1D2LJdwDx BEH9qeU7gPdIZeyUayH9dpWri3ItcKMnfUBbzn3VAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUEPqG2ZaeXygwgdcqV2OkmJ7cR90wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzNhZTFiYTJiLTE5M2MtNDBkMy05YWQ1LTdlNjEyNmFlNmYxOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAP+HMwDQYJKoZIhvcNAQELBQADggEBADrKZo6jANE4YLI8PoAl3q/Iu0fA J0zuN70/5wCRL55erK2L5/X0Dzdvn0omavC1pO9Lw6Fu4eXT4tikLI+uT7bfMcJq YGAjvR09Xj9UTmjhmeivtvGl6FJoP3A4HJmkQrNlGpjlLac9LG+5OwpjiznQNP2k mSrHc3zxcFtx9lu6aAbjKipccLUsvTOXkfV7gwA4jOUDvSb3y1wMhWGCXfHune1Z 6Xs+m1S0IfSaQlXqxkhRBdtOMnbQfs+Y4sbsFyK+GU9NQ/vBEmp6nRhfhs86mBod NAXjpbpC66AHK7SvO8ZyDanGp/HWkQbKOHtaVEbR4WqY/8qHadcaZmC47uc= -----END CERTIFICATE-----Generated at Mon Aug 4 21:36:50 2025 by rpki-client