$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3c8e35a4-55f4-42e9-9859-18c9e6fdc522.roa File: 3c8e35a4-55f4-42e9-9859-18c9e6fdc522.roa (raw, json) Hash identifier: GCgKK7KrEh4Z9Com/KDCOc2FDUknhM+ijIvooUEPrx0= Subject key identifier: 5D:C5:BC:91:74:4D:B7:DF:A8:E8:3B:0D:A6:4B:75:2D:A9:79:DA:78 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 34027C70408CB9E16D0FDB4AF116A312396D2E1C Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3c8e35a4-55f4-42e9-9859-18c9e6fdc522.roa Signing time: Fri 11 Jul 2025 16:21:06 +0000 ROA not before: Fri 11 Jul 2025 16:21:06 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.234.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:02:7c:70:40:8c:b9:e1:6d:0f:db:4a:f1:16:a3:12:39:6d:2e:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jul 11 16:21:06 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=aa08688edb03296fc2ff54f507f70fd4d7f33c0d24da3539471c5c5387e5e377, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:2e:c1:90:91:26:2a:52:18:4e:d8:5b:29:09: 32:0b:c5:e3:7e:49:b8:c7:f8:b1:85:c0:c1:38:85: a4:c0:7b:a9:b8:0a:f0:dd:9e:f3:ca:18:83:0f:d0: 0e:48:50:3b:92:e7:30:45:09:48:00:21:48:2f:c5: 6b:57:58:d3:f2:c0:b4:43:2d:b1:dd:38:d6:da:f5: 59:00:af:22:1a:69:82:18:aa:ec:23:e1:f4:b5:46: 3f:43:7e:8d:0d:b6:07:08:fe:b2:73:7e:8a:88:bd: c4:16:06:60:aa:99:d1:55:95:09:e2:71:2d:85:0e: 1f:70:d5:fc:50:4c:67:2a:1c:c9:0b:e8:4a:40:20: de:08:7b:28:61:af:99:f8:79:35:37:dd:8f:0f:d9: 05:d5:4b:0a:ea:cf:9b:a9:fa:9a:5a:13:66:e7:64: 77:7e:67:f2:cf:2a:d7:a4:fb:e1:12:b6:1c:ef:7f: 03:d5:2d:8b:da:f1:d4:ad:12:b2:1a:68:14:a5:de: 1d:fc:16:fb:dd:2d:c2:63:df:a6:67:04:7a:7e:9c: f6:5f:d2:2b:b3:46:f9:5d:b4:40:f8:b2:61:c6:bc: 1d:da:54:16:9c:a3:3f:93:a0:5b:88:94:33:8c:83: 22:06:6b:c9:75:09:34:5c:6b:fb:dd:d6:10:a5:97: ce:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:C5:BC:91:74:4D:B7:DF:A8:E8:3B:0D:A6:4B:75:2D:A9:79:DA:78 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3c8e35a4-55f4-42e9-9859-18c9e6fdc522.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.234.33.0/24 Signature Algorithm: sha256WithRSAEncryption b2:89:e2:6c:a4:e2:99:86:58:13:22:47:ac:c6:7f:e8:18:66: b0:20:60:1b:2e:c5:c2:58:43:ae:36:49:15:aa:ef:9e:43:28: 4b:1b:76:5d:5d:4a:e9:f0:d2:16:14:b4:8f:ee:0f:a5:8b:bf: 59:31:e9:34:56:66:4b:4a:90:62:7c:16:2b:e5:30:6d:98:c4: 07:1c:9d:2b:fa:d3:69:f3:68:3a:ed:70:cf:8f:3e:1c:6d:7c: bb:ef:e9:e2:05:95:4a:5b:c1:ad:f9:f8:6b:d4:db:e8:5f:11: 09:27:80:31:c2:65:14:d3:24:ab:e3:35:8a:2e:98:87:40:b5: 80:29:26:69:93:04:05:b4:ff:54:27:b3:9e:31:5f:03:7a:e8: c5:9c:a6:47:4a:76:4a:c9:83:f7:e1:25:da:b4:ed:21:02:65: b8:27:fd:a3:0b:25:0c:be:93:68:32:e8:a8:e5:1e:a5:48:2e: 32:8e:5a:80:42:55:ef:19:cc:11:fc:0c:c2:fa:ca:a9:79:17: 69:b2:b8:94:39:49:27:7f:d7:9d:7b:fa:48:12:99:34:4c:56: 82:a2:aa:e1:a0:6e:68:bb:93:00:a9:e3:5c:67:6f:0c:2f:79: d5:86:27:ac:cf:11:05:91:a6:0f:a1:a1:36:ef:06:aa:d6:e5: 1a:1f:39:5a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNAJ8cECMueFtD9tK8RajEjltLhwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNzExMTYyMTA2WhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYTA4Njg4ZWRiMDMyOTZmYzJmZjU0ZjUwN2Y3MGZkNGQ3 ZjMzYzBkMjRkYTM1Mzk0NzFjNWM1Mzg3ZTVlMzc3MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpLsGQkSYqUhhO2FspCTILxeN+SbjH+LGFwME4haTAe6m4 CvDdnvPKGIMP0A5IUDuS5zBFCUgAIUgvxWtXWNPywLRDLbHdONba9VkAryIaaYIY quwj4fS1Rj9Dfo0NtgcI/rJzfoqIvcQWBmCqmdFVlQnicS2FDh9w1fxQTGcqHMkL 6EpAIN4Ieyhhr5n4eTU33Y8P2QXVSwrqz5up+ppaE2bnZHd+Z/LPKtek++ESthzv fwPVLYva8dStErIaaBSl3h38FvvdLcJj36ZnBHp+nPZf0iuzRvldtED4smHGvB3a VBacoz+ToFuIlDOMgyIGa8l1CTRca/vd1hCll855AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUXcW8kXRNt9+o6DsNpkt1Lal52ngwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzNjOGUzNWE0LTU1ZjQtNDJlOS05ODU5LTE4YzllNmZkYzUyMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAS6iEwDQYJKoZIhvcNAQELBQADggEBALKJ4myk4pmGWBMiR6zGf+gYZrAg YBsuxcJYQ642SRWq755DKEsbdl1dSunw0hYUtI/uD6WLv1kx6TRWZktKkGJ8Fivl MG2YxAccnSv602nzaDrtcM+PPhxtfLvv6eIFlUpbwa35+GvU2+hfEQkngDHCZRTT JKvjNYoumIdAtYApJmmTBAW0/1Qns54xXwN66MWcpkdKdkrJg/fhJdq07SECZbgn /aMLJQy+k2gy6KjlHqVILjKOWoBCVe8ZzBH8DML6yql5F2myuJQ5SSd/1517+kgS mTRMVoKiquGgbmi7kwCp41xnbwwvedWGJ6zPEQWRpg+hoTbvBqrW5RofOVo= -----END CERTIFICATE-----Generated at Mon Aug 4 21:43:10 2025 by rpki-client