$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3be7bc40-331c-4b3d-bd23-853da36434ef.roa File: 3be7bc40-331c-4b3d-bd23-853da36434ef.roa (raw, json) Hash identifier: gDxc2sdPxeTltTEwtphCntPgfWcuewaNRecRkCsSaCw= Subject key identifier: D0:FD:E7:16:73:9E:04:43:A1:05:53:EA:2A:82:CE:27:F1:0F:A5:7B Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 6130217BFDA149A756103B708656A1279FB0D360 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3be7bc40-331c-4b3d-bd23-853da36434ef.roa Signing time: Mon 04 Aug 2025 18:21:34 +0000 ROA not before: Mon 04 Aug 2025 18:21:34 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.240.102.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:30:21:7b:fd:a1:49:a7:56:10:3b:70:86:56:a1:27:9f:b0:d3:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 4 18:21:34 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=a15ea4dcb25160ea3e2d02bc2434952dd15af57a01420c9ed6dfa669e29d59c0, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:67:32:b0:d0:3e:7e:9c:07:08:3f:80:aa:6b: 1d:ae:36:65:c9:e0:fc:1f:d4:e1:ab:23:0f:25:b3: 0d:25:1d:40:80:12:b6:98:45:ff:28:f5:89:1e:9f: a5:48:fb:47:8e:f4:27:3b:ba:3e:c7:e4:70:c8:7a: ff:39:72:7f:9f:8d:a6:72:f4:fb:38:0c:00:72:6d: 65:91:37:da:70:3c:19:fe:a3:d2:19:30:9e:81:1c: a9:14:8d:4e:a2:72:30:27:b1:45:83:4c:f8:0a:c7: cf:f3:c1:54:87:33:d3:71:8d:c5:c9:31:8d:34:b7: 59:cd:25:28:99:ac:9a:2c:fb:90:7f:8c:33:f9:6c: 21:a7:ec:95:21:4b:b8:59:7a:46:34:9f:7b:d9:7a: 1b:5a:7b:70:d0:33:9a:6b:97:e9:5c:fe:8c:d5:3a: 01:7f:87:68:8f:66:c1:09:d2:4f:24:d4:ed:3e:fd: 74:13:a2:df:de:c2:34:cb:35:86:8b:e9:9f:a6:3e: 4a:d8:d7:f8:f9:a2:a7:19:46:10:06:f0:d3:49:40: 96:19:aa:6e:8c:04:a5:77:49:31:b0:9f:f4:38:f8: c4:25:66:60:43:17:b6:64:1c:0c:ed:64:fd:38:e8: 85:98:c2:06:4d:54:6e:d2:78:c7:0a:c7:3d:c0:8d: f5:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:FD:E7:16:73:9E:04:43:A1:05:53:EA:2A:82:CE:27:F1:0F:A5:7B X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3be7bc40-331c-4b3d-bd23-853da36434ef.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.240.102.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:52:d0:2c:0e:7f:b6:98:24:b5:29:61:44:94:65:05:8c:26: 82:1b:69:db:a1:d0:4e:03:9f:8b:a4:7a:5d:54:fc:36:ef:06: ae:9d:0a:95:ff:56:96:d8:59:06:4d:94:5b:b0:45:2e:8f:e9: db:78:f8:b3:21:5b:d8:d7:f5:f7:c0:3a:7b:cf:1d:a1:aa:d5: 4e:3b:c8:a9:1b:bd:a2:fe:d5:f9:b0:79:06:b3:88:98:47:de: cc:75:9e:5a:1b:84:28:14:8d:e5:4d:fe:3c:e8:10:a6:93:40: 51:cc:a3:1d:aa:d1:cf:c8:50:07:10:3e:31:19:20:1f:52:89: cd:05:a4:29:53:53:0d:68:9e:ab:fe:97:55:b5:30:07:8c:02: cd:70:d9:1c:ba:ef:a9:d9:74:1f:9e:e8:39:52:00:96:47:8c: 5f:cc:bd:b4:1a:6a:3e:c3:4c:b5:e5:ec:95:39:a7:32:e6:5f: 18:77:a1:96:52:4c:15:c0:ee:67:dc:a2:94:35:dc:ee:34:e7: 6b:11:6a:ee:a4:2f:02:a6:25:59:a9:95:17:1a:ac:cb:2a:19: 13:87:ca:8a:c3:6f:05:f6:07:ab:99:f2:11:ff:fa:ae:70:24: 67:bb:58:8c:e1:a5:2b:d3:67:34:ed:2c:04:46:7b:a4:51:46: 40:72:cc:94 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYTAhe/2hSadWEDtwhlahJ5+w02AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODA0MTgyMTM0WhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMTVlYTRkY2IyNTE2MGVhM2UyZDAyYmMyNDM0OTUyZGQx NWFmNTdhMDE0MjBjOWVkNmRmYTY2OWUyOWQ1OWMwMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCGZzKw0D5+nAcIP4Cqax2uNmXJ4Pwf1OGrIw8lsw0lHUCA EraYRf8o9Yken6VI+0eO9Cc7uj7H5HDIev85cn+fjaZy9Ps4DABybWWRN9pwPBn+ o9IZMJ6BHKkUjU6icjAnsUWDTPgKx8/zwVSHM9NxjcXJMY00t1nNJSiZrJos+5B/ jDP5bCGn7JUhS7hZekY0n3vZehtae3DQM5prl+lc/ozVOgF/h2iPZsEJ0k8k1O0+ /XQTot/ewjTLNYaL6Z+mPkrY1/j5oqcZRhAG8NNJQJYZqm6MBKV3STGwn/Q4+MQl ZmBDF7ZkHAztZP046IWYwgZNVG7SeMcKxz3AjfU/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU0P3nFnOeBEOhBVPqKoLOJ/EPpXswHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzNiZTdiYzQwLTMzMWMtNGIzZC1iZDIzLTg1M2RhMzY0MzRlZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA28GYwDQYJKoZIhvcNAQELBQADggEBABtS0CwOf7aYJLUpYUSUZQWMJoIb aduh0E4Dn4ukel1U/DbvBq6dCpX/VpbYWQZNlFuwRS6P6dt4+LMhW9jX9ffAOnvP HaGq1U47yKkbvaL+1fmweQaziJhH3sx1nlobhCgUjeVN/jzoEKaTQFHMox2q0c/I UAcQPjEZIB9Sic0FpClTUw1onqv+l1W1MAeMAs1w2Ry676nZdB+e6DlSAJZHjF/M vbQaaj7DTLXl7JU5pzLmXxh3oZZSTBXA7mfcopQ13O4052sRau6kLwKmJVmplRca rMsqGROHyorDbwX2B6uZ8hH/+q5wJGe7WIzhpSvTZzTtLARGe6RRRkByzJQ= -----END CERTIFICATE-----Generated at Mon Aug 4 21:50:27 2025 by rpki-client