$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/47d76cb8-4a77-4b47-bcc1-2306da9cea6d.roa File: 47d76cb8-4a77-4b47-bcc1-2306da9cea6d.roa (raw, json) Hash identifier: Z7S4LjxWf6MZz661XbyLQKv5Ew/TBdzc1R3RhE9M02Q= Subject key identifier: 78:7A:5F:33:42:52:B0:3C:5B:A8:1A:C0:91:C0:33:C9:01:70:F1:D5 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 1E11D775A8E92219B0FF8B6C8E90D81598F4D5D9 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/47d76cb8-4a77-4b47-bcc1-2306da9cea6d.roa Signing time: Fri 11 Jul 2025 17:11:31 +0000 ROA not before: Fri 11 Jul 2025 17:11:31 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.95.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:11:d7:75:a8:e9:22:19:b0:ff:8b:6c:8e:90:d8:15:98:f4:d5:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jul 11 17:11:31 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=0313fdc34adc623c4d8d4e12030d4b683ba16c26a83adbb627a468d8316f68b0, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:8b:e7:10:fa:4b:9d:1a:59:ea:96:d6:cd:fe: 72:11:25:25:c2:e3:54:56:34:ec:ca:a7:37:91:a5: 63:ac:71:a3:eb:a8:52:67:12:de:14:06:45:32:6e: 7f:f7:37:6b:ab:bd:e7:e0:2e:ef:82:ce:07:07:76: 01:17:5f:4d:f3:44:cd:93:50:3c:71:7b:a3:64:e2: ad:56:99:92:4a:e5:85:23:36:ba:cf:d9:e8:e1:76: 97:37:65:f2:3e:c3:44:2d:e2:b0:34:93:45:83:bf: 32:97:ee:d3:98:96:ac:e7:51:e9:81:f8:0e:7c:e6: 9b:cf:fa:4b:db:d2:84:8f:5b:b4:3d:3f:93:79:1e: f7:b1:04:95:0d:c9:bc:61:76:84:50:6e:56:67:47: 57:97:a7:3c:f6:20:4c:8d:23:a6:40:3a:33:0f:94: 41:dd:3b:dd:91:7b:d6:62:dd:21:f8:1c:5e:cb:c2: 75:42:78:dd:f2:70:e8:4c:d5:32:ef:26:92:c3:2a: 7c:c6:12:56:e4:fe:b1:42:f8:da:84:e2:27:79:62: 5d:ca:1d:04:c4:e7:21:68:b4:9a:71:5f:d8:aa:e4: b7:48:24:eb:52:0f:d6:27:74:ee:37:31:eb:7e:40: b2:7d:b1:cd:9a:a6:24:c7:e9:99:05:f7:25:6b:46: c4:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:7A:5F:33:42:52:B0:3C:5B:A8:1A:C0:91:C0:33:C9:01:70:F1:D5 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/47d76cb8-4a77-4b47-bcc1-2306da9cea6d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.95.248.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:98:b4:13:20:b5:48:31:84:dd:46:5d:9f:96:7f:61:9b:a9: e1:5a:bb:ca:34:13:d1:05:90:45:2c:1b:64:a4:b8:90:53:e0: a5:d5:22:7b:5b:24:15:4b:99:b3:da:2f:43:8f:fc:1a:05:1f: 1c:33:97:f6:ad:ec:27:ba:b2:57:f2:a9:d8:0c:69:97:57:b6: 24:d8:a5:6f:e2:bd:d0:3b:f4:93:2b:85:41:07:9a:e2:50:10: b5:0f:69:a0:19:75:b1:18:b5:eb:f5:05:d6:0c:2f:d6:f3:17: 96:3a:65:ec:e6:48:47:d2:da:ee:89:9c:f9:f7:78:f0:b0:9e: 3c:64:eb:e0:dc:13:6e:73:26:db:12:a9:c8:0a:85:ae:b6:96: 85:6b:ea:1d:a4:10:82:69:4e:46:5f:a7:1c:cb:42:2d:ac:25: 12:75:bb:61:de:fd:19:e7:4b:ae:9a:06:90:37:b4:48:a1:78: e9:b8:ca:16:ff:69:86:15:ac:58:4d:5b:20:a2:90:a4:d7:7d: 96:ab:88:8e:df:27:61:02:91:f0:de:86:97:62:75:ae:9d:2e: 20:15:cd:97:19:7f:c2:4d:a8:b4:06:a8:99:4c:45:20:4a:0b: 74:7b:4b:76:9d:56:ae:fe:55:a9:60:68:ae:c8:97:36:4a:df: 66:4a:c9:97 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHhHXdajpIhmw/4tsjpDYFZj01dkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNzExMTcxMTMxWhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMzEzZmRjMzRhZGM2MjNjNGQ4ZDRlMTIwMzBkNGI2ODNi YTE2YzI2YTgzYWRiYjYyN2E0NjhkODMxNmY2OGIwMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDWi+cQ+kudGlnqltbN/nIRJSXC41RWNOzKpzeRpWOscaPr qFJnEt4UBkUybn/3N2urvefgLu+CzgcHdgEXX03zRM2TUDxxe6Nk4q1WmZJK5YUj NrrP2ejhdpc3ZfI+w0Qt4rA0k0WDvzKX7tOYlqznUemB+A585pvP+kvb0oSPW7Q9 P5N5HvexBJUNybxhdoRQblZnR1eXpzz2IEyNI6ZAOjMPlEHdO92Re9Zi3SH4HF7L wnVCeN3ycOhM1TLvJpLDKnzGElbk/rFC+NqE4id5Yl3KHQTE5yFotJpxX9iq5LdI JOtSD9YndO43Met+QLJ9sc2apiTH6ZkF9yVrRsQlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUeHpfM0JSsDxbqBrAkcAzyQFw8dUwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzQ3ZDc2Y2I4LTRhNzctNGI0Ny1iY2MxLTIzMDZkYTljZWE2ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA0X/gwDQYJKoZIhvcNAQELBQADggEBAFyYtBMgtUgxhN1GXZ+Wf2GbqeFa u8o0E9EFkEUsG2SkuJBT4KXVIntbJBVLmbPaL0OP/BoFHxwzl/at7Ce6slfyqdgM aZdXtiTYpW/ivdA79JMrhUEHmuJQELUPaaAZdbEYtev1BdYML9bzF5Y6ZezmSEfS 2u6JnPn3ePCwnjxk6+DcE25zJtsSqcgKha62loVr6h2kEIJpTkZfpxzLQi2sJRJ1 u2He/RnnS66aBpA3tEiheOm4yhb/aYYVrFhNWyCikKTXfZariI7fJ2ECkfDehpdi da6dLiAVzZcZf8JNqLQGqJlMRSBKC3R7S3adVq7+ValgaK7IlzZK32ZKyZc= -----END CERTIFICATE-----Generated at Mon Aug 4 21:36:56 2025 by rpki-client