$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3b1cedc8-8c30-4e76-9b1d-ac7b2e541a7e.roa File: 3b1cedc8-8c30-4e76-9b1d-ac7b2e541a7e.roa (raw, json) Hash identifier: L3huOiAnNGLYIY0NI47M6UBDHEkyxO1fCXTc6G2g/rw= Subject key identifier: 14:A2:A2:9F:62:74:1C:0E:D0:4D:77:64:46:5F:53:16:77:D6:1C:29 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 117E9765BA5BBEF8195AD27F6A4EABE44B40B051 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3b1cedc8-8c30-4e76-9b1d-ac7b2e541a7e.roa Signing time: Tue 29 Jul 2025 17:21:40 +0000 ROA not before: Tue 29 Jul 2025 17:21:40 +0000 ROA not after: Tue 02 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.243.24.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:7e:97:65:ba:5b:be:f8:19:5a:d2:7f:6a:4e:ab:e4:4b:40:b0:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jul 29 17:21:40 2025 GMT Not After : Sep 2 23:59:59 2025 GMT Subject: serialNumber=16b3dd3f3eadd5bd13e8fef6b1bbcad22108db9721b895c868fbaa01bcac9891, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:7e:de:eb:ca:be:40:fc:6f:cb:5e:8e:31:01: 02:e5:c4:db:f5:d3:cb:12:fb:8c:b0:4d:82:62:75: 64:1e:dd:0e:0f:ef:7c:d8:6d:1e:c8:40:26:0b:e0: 69:8f:73:16:59:21:10:f2:ab:20:78:81:e4:08:6a: 64:3b:47:2f:0c:49:e2:6d:70:7e:d3:63:1e:0a:e9: 88:03:5f:a7:28:0c:84:55:e6:25:e4:5a:3b:fe:79: 93:4d:33:ec:40:8b:08:05:82:1c:ba:09:97:2b:57: 51:5a:84:22:e1:4f:72:a4:08:52:de:8a:10:63:33: 7a:16:f2:d9:b7:e0:3d:f9:45:16:c1:95:43:24:3d: f4:c5:f0:7d:f1:eb:0e:c0:62:b7:89:e9:0f:20:04: df:3b:9c:3f:97:03:3d:09:27:68:71:6e:41:d6:8b: 50:c1:7f:9a:21:02:24:ff:b6:bd:bd:56:2d:ae:ab: 7d:7b:ad:34:8d:88:b3:a3:ec:00:65:d6:02:78:5b: 1b:e4:2e:e3:f1:1f:7b:c7:c9:a3:90:cb:01:7b:37: 67:ee:92:4c:bf:21:a8:ea:7d:8c:91:f4:8e:0a:71: 2e:e2:23:a5:1e:4f:ad:2a:7d:77:03:e0:30:7d:27: 12:55:d0:3d:a4:a4:9a:53:b7:6c:93:2c:4c:44:0b: 0a:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:A2:A2:9F:62:74:1C:0E:D0:4D:77:64:46:5F:53:16:77:D6:1C:29 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3b1cedc8-8c30-4e76-9b1d-ac7b2e541a7e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.243.24.0/22 Signature Algorithm: sha256WithRSAEncryption 0c:9b:9b:35:64:63:40:7a:5c:92:25:25:c8:f0:07:73:7e:5b: 50:98:d7:a5:6a:b5:fb:dd:f5:90:50:b8:d6:9a:64:10:29:b5: 17:b6:ff:51:0e:91:e4:ae:b4:13:25:35:9f:ef:76:23:23:1b: e0:29:d6:b6:a2:6b:61:b7:5f:ab:e2:69:0d:59:ac:73:c5:af: 82:31:78:1a:a2:7a:25:f7:e8:cd:37:92:78:7c:2d:2a:d7:da: b8:18:4d:2d:42:56:d7:03:3e:92:9b:b9:18:5d:6a:55:66:55: 88:d3:d2:0d:20:df:e2:7e:73:1f:29:31:a8:36:96:88:63:68: ac:84:fa:dc:57:9e:4f:12:cd:df:88:e5:1e:87:d5:2c:86:0d: ea:0b:8b:20:b4:b3:d8:f9:25:12:d6:48:da:24:40:b6:af:97: 02:05:71:f0:d7:a9:b6:35:25:dd:42:5e:de:17:e7:f1:63:34: dd:62:7b:41:bc:0d:e0:38:2d:d6:4f:86:f1:f8:c2:c4:bd:ee: e6:8a:c1:80:2b:ef:ac:92:96:f5:02:52:39:c9:6c:78:a3:b8: a3:1c:01:6e:a8:29:8a:3e:b0:f2:3e:cb:ec:6e:e1:88:07:f5: e6:f0:ed:8f:aa:08:6e:86:25:c1:b6:9d:b6:93:ff:38:24:40: 00:33:4e:c8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEX6XZbpbvvgZWtJ/ak6r5EtAsFEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNzI5MTcyMTQwWhcNMjUwOTAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AxNmIzZGQzZjNlYWRkNWJkMTNlOGZlZjZiMWJiY2FkMjIx MDhkYjk3MjFiODk1Yzg2OGZiYWEwMWJjYWM5ODkxMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnft7ryr5A/G/LXo4xAQLlxNv108sS+4ywTYJidWQe3Q4P 73zYbR7IQCYL4GmPcxZZIRDyqyB4geQIamQ7Ry8MSeJtcH7TYx4K6YgDX6coDIRV 5iXkWjv+eZNNM+xAiwgFghy6CZcrV1FahCLhT3KkCFLeihBjM3oW8tm34D35RRbB lUMkPfTF8H3x6w7AYreJ6Q8gBN87nD+XAz0JJ2hxbkHWi1DBf5ohAiT/tr29Vi2u q317rTSNiLOj7ABl1gJ4WxvkLuPxH3vHyaOQywF7N2fukky/IajqfYyR9I4KcS7i I6UeT60qfXcD4DB9JxJV0D2kpJpTt2yTLExECwpVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUFKKin2J0HA7QTXdkRl9TFnfWHCkwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzNiMWNlZGM4LThjMzAtNGU3Ni05YjFkLWFjN2IyZTU0MWE3ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAI28xgwDQYJKoZIhvcNAQELBQADggEBAAybmzVkY0B6XJIlJcjwB3N+W1CY 16Vqtfvd9ZBQuNaaZBAptRe2/1EOkeSutBMlNZ/vdiMjG+Ap1raia2G3X6viaQ1Z rHPFr4IxeBqieiX36M03knh8LSrX2rgYTS1CVtcDPpKbuRhdalVmVYjT0g0g3+J+ cx8pMag2lohjaKyE+txXnk8Szd+I5R6H1SyGDeoLiyC0s9j5JRLWSNokQLavlwIF cfDXqbY1Jd1CXt4X5/FjNN1ie0G8DeA4LdZPhvH4wsS97uaKwYAr76ySlvUCUjnJ bHijuKMcAW6oKYo+sPI+y+xu4YgH9ebw7Y+qCG6GJcG2nbaT/zgkQAAzTsg= -----END CERTIFICATE-----Generated at Mon Aug 4 21:39:50 2025 by rpki-client