$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/59be11b5-cdad-4d33-8ce3-2cf1e764f2c4.roa File: 59be11b5-cdad-4d33-8ce3-2cf1e764f2c4.roa (raw, json) Hash identifier: 15aJdSVgZ9pKFDnTmalu5+N24OykElWbTZOnj1trjaQ= Subject key identifier: BD:7C:F2:E7:A7:11:56:85:80:B2:58:0D:64:2A:51:44:48:F8:A8:6C Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 712D7EB2ACDFD0D99F1E3EF63D5958CB4E54FDC4 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/59be11b5-cdad-4d33-8ce3-2cf1e764f2c4.roa Signing time: Sat 26 Jul 2025 00:21:46 +0000 ROA not before: Sat 26 Jul 2025 00:21:46 +0000 ROA not after: Sat 30 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.177.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:2d:7e:b2:ac:df:d0:d9:9f:1e:3e:f6:3d:59:58:cb:4e:54:fd:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jul 26 00:21:46 2025 GMT Not After : Aug 30 23:59:59 2025 GMT Subject: serialNumber=d8ce32d32193c6e9feafc08fd22a405a45d2187f207610b7b73ff6d2db7b127c, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:c3:11:3b:b9:cf:45:58:54:cd:db:bf:00:68: 30:94:de:c6:74:23:d9:06:21:f6:f3:cc:30:16:8f: 2c:b3:73:23:d6:c6:21:bf:92:88:32:fe:4f:86:fb: d1:f8:e1:f5:f1:8f:af:a5:07:10:42:1d:a8:eb:ac: ab:7d:9e:45:62:95:75:a4:85:25:92:5b:92:5d:4d: 35:f7:f2:b7:0f:b4:cd:fe:6b:02:44:ce:6c:be:32: 46:6c:6c:ce:33:94:3e:96:15:d0:f2:88:7f:29:4b: ff:83:e3:a3:97:7b:2b:eb:35:57:48:f2:1c:1f:5e: 3d:60:50:a6:e9:36:4c:1f:6e:fe:1c:3e:36:3a:7e: d3:91:36:12:9d:5b:b4:6f:c9:7c:c9:fb:6c:4c:0c: 33:3c:34:ad:38:a4:b8:29:85:3a:e0:f5:dc:81:13: d0:05:94:d8:e9:bf:5a:74:a2:2a:c9:5c:41:18:ce: a6:c0:f2:99:23:a9:18:fe:00:3f:a7:6a:41:b1:c1: e5:ca:60:0f:4d:ce:89:68:5f:76:a8:de:c0:5d:72: dd:64:90:8e:09:7a:b9:8c:d5:43:eb:8c:be:2e:a0: 0d:2a:ac:e8:34:42:be:81:3b:52:5e:e0:4a:25:4d: 1f:a9:18:fc:8f:94:e9:74:7d:e0:00:ba:8a:86:1d: 44:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:7C:F2:E7:A7:11:56:85:80:B2:58:0D:64:2A:51:44:48:F8:A8:6C X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/59be11b5-cdad-4d33-8ce3-2cf1e764f2c4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.177.85.0/24 Signature Algorithm: sha256WithRSAEncryption 8b:bb:d0:c0:6a:10:44:ca:07:e2:e3:ba:36:70:8f:4a:91:1a: af:da:9f:2f:47:33:d2:b4:de:80:68:db:a7:fe:d5:35:5f:f1: f0:f1:c2:1d:26:a1:0d:fa:c7:da:9d:93:41:f1:74:06:c1:1f: 28:77:db:ce:f9:70:40:4b:83:3c:d2:9d:bc:83:6b:f9:55:aa: 2b:66:11:25:f5:08:d3:3b:64:9d:44:86:41:ef:7c:36:00:df: 09:64:ac:c5:c7:30:c3:11:f1:66:5f:20:57:8a:5b:65:d3:8b: 45:be:75:7c:d5:1b:2d:91:11:58:db:3b:98:eb:44:5c:50:a9: 99:60:fc:34:20:c3:3d:f5:53:78:72:56:ab:a8:56:ae:87:34: d5:af:94:c9:52:28:2c:c6:f9:7f:6a:02:ae:40:93:04:d1:48: de:5a:17:63:df:7f:06:d5:76:e8:01:d8:d9:a4:36:67:ac:83: d2:fd:d8:e6:4c:7b:29:68:d6:bb:1a:5d:ac:79:0a:c3:66:2b: 94:90:a6:d0:30:40:c1:1d:24:55:37:07:67:75:54:60:4c:4d: f5:50:28:74:4d:68:19:c6:9a:cf:f6:f6:e7:73:bc:3e:5f:7f: d9:93:1e:96:38:f7:fb:72:51:05:2f:e0:5e:8a:f3:9d:cc:3a: ff:83:aa:58 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcS1+sqzf0NmfHj72PVlYy05U/cQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNzI2MDAyMTQ2WhcNMjUwODMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BkOGNlMzJkMzIxOTNjNmU5ZmVhZmMwOGZkMjJhNDA1YTQ1 ZDIxODdmMjA3NjEwYjdiNzNmZjZkMmRiN2IxMjdjMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6wxE7uc9FWFTN278AaDCU3sZ0I9kGIfbzzDAWjyyzcyPW xiG/kogy/k+G+9H44fXxj6+lBxBCHajrrKt9nkVilXWkhSWSW5JdTTX38rcPtM3+ awJEzmy+MkZsbM4zlD6WFdDyiH8pS/+D46OXeyvrNVdI8hwfXj1gUKbpNkwfbv4c PjY6ftORNhKdW7RvyXzJ+2xMDDM8NK04pLgphTrg9dyBE9AFlNjpv1p0oirJXEEY zqbA8pkjqRj+AD+nakGxweXKYA9NzoloX3ao3sBdct1kkI4JermM1UPrjL4uoA0q rOg0Qr6BO1Je4EolTR+pGPyPlOl0feAAuoqGHURdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUvXzy56cRVoWAslgNZCpRREj4qGwwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzU5YmUxMWI1LWNkYWQtNGQzMy04Y2UzLTJjZjFlNzY0ZjJjNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAPsVUwDQYJKoZIhvcNAQELBQADggEBAIu70MBqEETKB+LjujZwj0qRGq/a ny9HM9K03oBo26f+1TVf8fDxwh0moQ36x9qdk0HxdAbBHyh32875cEBLgzzSnbyD a/lVqitmESX1CNM7ZJ1EhkHvfDYA3wlkrMXHMMMR8WZfIFeKW2XTi0W+dXzVGy2R EVjbO5jrRFxQqZlg/DQgwz31U3hyVquoVq6HNNWvlMlSKCzG+X9qAq5AkwTRSN5a F2PffwbVdugB2NmkNmesg9L92OZMeylo1rsaXax5CsNmK5SQptAwQMEdJFU3B2d1 VGBMTfVQKHRNaBnGms/29udzvD5ff9mTHpY49/tyUQUv4F6K853MOv+Dqlg= -----END CERTIFICATE-----Generated at Mon Aug 4 21:42:04 2025 by rpki-client