$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5f5ec269-4223-4a97-9c74-2227dc1f1b15.roa File: 5f5ec269-4223-4a97-9c74-2227dc1f1b15.roa (raw, json) Hash identifier: X/q9D/NGNoXLmXd3UusdJWMYbTw40ta+n0qt83n2wNY= Subject key identifier: A3:61:BE:74:2B:B7:67:FE:F7:E3:8F:85:E5:E9:4A:E0:D3:37:E2:68 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 207FB491D6AAEF4451893689987083A8ABD1516C Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5f5ec269-4223-4a97-9c74-2227dc1f1b15.roa Signing time: Tue 05 Aug 2025 16:41:13 +0000 ROA not before: Tue 05 Aug 2025 16:41:13 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.70.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:7f:b4:91:d6:aa:ef:44:51:89:36:89:98:70:83:a8:ab:d1:51:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 5 16:41:13 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=117875fe3ee6d541fdd23b161ad804ffc3b299262e1166375521812082378f66, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:84:73:c6:b2:57:8e:dc:0b:7c:b4:8e:bb:14: f6:e3:70:23:4e:c9:ad:74:2d:66:5f:cb:b3:aa:ae: 9c:46:b9:07:fe:ff:68:c6:03:cd:69:21:15:f6:e3: 15:2b:0b:7c:ad:bc:fe:28:8e:11:b3:b5:2a:fa:6c: e6:65:37:6c:8d:ef:90:ae:d2:a8:de:0b:e2:11:64: a7:8a:f7:26:87:3f:91:e0:da:b8:3b:76:41:7b:9b: ed:90:23:aa:e6:e6:fd:91:36:69:11:ca:f3:e5:92: fa:16:be:f3:42:50:32:5e:33:71:bf:2f:46:f0:77: c8:b1:6c:ee:96:cf:cb:7e:57:b1:35:c0:b8:e5:14: cc:c2:fb:66:bd:87:82:ce:1c:31:ec:c4:81:0c:51: 85:44:6a:1d:87:52:58:e8:02:ea:d5:b2:af:d5:c2: e8:a1:a9:63:54:e8:06:f8:c6:7b:ba:74:ec:6f:42: f0:5c:b9:41:22:73:fa:64:38:b1:02:41:1e:0c:9e: 8a:6f:da:1d:2e:7a:10:cc:37:77:4b:a0:ae:c0:a4: e6:58:1b:80:26:69:fa:f4:e5:b1:8b:ad:10:f3:ae: 00:57:52:a7:c2:41:10:3a:11:80:1f:bc:09:2a:6b: e0:8b:7a:10:77:21:49:da:0d:83:68:5b:d8:63:82: df:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:61:BE:74:2B:B7:67:FE:F7:E3:8F:85:E5:E9:4A:E0:D3:37:E2:68 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5f5ec269-4223-4a97-9c74-2227dc1f1b15.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.70.0.0/15 Signature Algorithm: sha256WithRSAEncryption 28:80:34:80:69:0e:10:0c:54:80:6a:c8:e5:fa:5f:3d:3a:fb: a5:bc:c8:73:12:2c:9f:c7:07:b7:4e:e0:cd:e9:76:e5:92:da: fa:b8:3d:57:21:c5:f3:9d:a4:b4:19:88:9b:94:7e:4a:c1:f9: 34:8d:0b:98:92:79:12:85:45:07:01:7b:80:da:87:17:d4:6f: 44:63:db:26:29:82:20:1b:03:52:09:9e:aa:bf:8c:8f:7d:b0: 75:e3:1b:75:6a:7a:54:5c:d5:68:80:1b:bc:ea:11:6a:3d:43: a1:4c:40:b0:92:0b:5d:32:e8:0d:c3:f8:fb:7e:9b:26:ef:bc: 1c:bb:d6:2c:5b:fc:fa:3f:19:f7:15:74:a3:0e:98:be:e6:a6: 21:19:6a:3c:2d:ad:40:cd:55:28:d0:79:57:c7:a1:5a:15:c6: 6d:08:f5:d2:6c:10:7d:8e:e0:1e:c6:d6:1d:92:ce:d2:fa:0e: d5:cb:be:f8:db:90:4c:e9:cd:51:80:66:7b:0e:66:be:26:a2: 28:f6:df:21:15:25:ae:27:aa:ab:5c:e0:54:3d:8c:cf:d9:4c: e8:35:72:2b:b0:58:0a:4a:d8:d5:03:c9:d0:5d:70:a2:cd:78: 3b:b6:c0:a9:11:73:b8:12:b0:39:8b:ad:1e:96:4d:f5:ea:d1: 8d:29:0f:eb -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUIH+0kdaq70RRiTaJmHCDqKvRUWwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODA1MTY0MTEzWhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMTc4NzVmZTNlZTZkNTQxZmRkMjNiMTYxYWQ4MDRmZmMz YjI5OTI2MmUxMTY2Mzc1NTIxODEyMDgyMzc4ZjY2MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9hHPGsleO3At8tI67FPbjcCNOya10LWZfy7OqrpxGuQf+ /2jGA81pIRX24xUrC3ytvP4ojhGztSr6bOZlN2yN75Cu0qjeC+IRZKeK9yaHP5Hg 2rg7dkF7m+2QI6rm5v2RNmkRyvPlkvoWvvNCUDJeM3G/L0bwd8ixbO6Wz8t+V7E1 wLjlFMzC+2a9h4LOHDHsxIEMUYVEah2HUljoAurVsq/VwuihqWNU6Ab4xnu6dOxv QvBcuUEic/pkOLECQR4Mnopv2h0uehDMN3dLoK7ApOZYG4Amafr05bGLrRDzrgBX UqfCQRA6EYAfvAkqa+CLehB3IUnaDYNoW9hjgt+ZAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUo2G+dCu3Z/7344+F5elK4NM34mgwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzVmNWVjMjY5LTQyMjMtNGE5Ny05Yzc0LTIyMjdkYzFmMWIxNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwESRjANBgkqhkiG9w0BAQsFAAOCAQEAKIA0gGkOEAxUgGrI5fpfPTr7pbzI cxIsn8cHt07gzel25ZLa+rg9VyHF852ktBmIm5R+SsH5NI0LmJJ5EoVFBwF7gNqH F9RvRGPbJimCIBsDUgmeqr+Mj32wdeMbdWp6VFzVaIAbvOoRaj1DoUxAsJILXTLo DcP4+36bJu+8HLvWLFv8+j8Z9xV0ow6YvuamIRlqPC2tQM1VKNB5V8ehWhXGbQj1 0mwQfY7gHsbWHZLO0voO1cu++NuQTOnNUYBmew5mviaiKPbfIRUlrieqq1zgVD2M z9lM6DVyK7BYCkrY1QPJ0F1wos14O7bAqRFzuBKwOYutHpZN9erRjSkP6w== -----END CERTIFICATE-----Generated at Tue Aug 5 21:36:16 2025 by rpki-client