$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/66496eeb-98fc-4220-823f-0c3b38023275.roa File: 66496eeb-98fc-4220-823f-0c3b38023275.roa (raw, json) Hash identifier: +Os2gQPP0GMxvme34GuaBC/QEjXNnT7MvWj2a728y24= Subject key identifier: 1C:55:77:7F:79:6B:F8:82:07:4A:A3:26:D7:9C:E0:8D:07:12:06:53 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 5F9DC71942AE0A4A0D4D9B83D55ED09C9404F27F Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/66496eeb-98fc-4220-823f-0c3b38023275.roa Signing time: Fri 11 Jul 2025 15:32:02 +0000 ROA not before: Fri 11 Jul 2025 15:32:02 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 7224 IP address blocks: 15.248.105.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:9d:c7:19:42:ae:0a:4a:0d:4d:9b:83:d5:5e:d0:9c:94:04:f2:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jul 11 15:32:02 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=12da7cf447ec519d6d1e2adf250c7199efaf6f04d8f8de43f1b626a64fef1991, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:76:8e:f6:40:c7:ba:e5:db:bc:bc:75:ba:86: 0f:37:15:fd:f9:af:c0:6e:b5:43:da:9a:f9:e2:e0: e2:fd:39:9f:bd:1b:a8:58:67:b7:2a:e5:6a:1b:0f: 59:79:e9:31:6b:25:2b:09:80:17:02:a5:24:54:70: cc:ba:57:82:7c:7b:40:72:76:8b:8e:99:85:b7:9b: f4:4a:39:b3:4b:47:d3:ef:98:c1:31:5e:a5:ae:94: c7:d0:50:a7:72:2e:be:63:10:6b:98:6a:21:0b:0f: 7f:01:cf:8b:63:35:f6:ac:a5:38:95:03:df:67:fc: f2:28:4a:7f:7f:33:6a:7d:d0:db:00:f1:e0:49:51: 0d:df:0b:34:6b:98:52:ee:f3:d3:85:e5:9d:b0:dc: f2:90:8b:e6:8f:7b:51:8b:f6:01:d8:b5:31:95:cd: cf:4d:1d:f3:0d:7a:92:81:5b:89:c8:12:aa:3e:60: 51:d9:1e:30:ad:4e:02:db:3e:26:69:0f:d1:1a:c1: 5a:00:01:f7:e3:b9:3f:67:44:b7:37:87:66:78:8e: 83:9e:e0:50:0f:cd:9c:c1:1e:8b:07:eb:4e:22:c5: 37:b7:8d:eb:b6:a6:6f:92:57:33:43:fa:d3:42:8c: 21:6d:97:81:df:b7:db:d1:59:a7:aa:8d:df:c4:66: e7:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:55:77:7F:79:6B:F8:82:07:4A:A3:26:D7:9C:E0:8D:07:12:06:53 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/66496eeb-98fc-4220-823f-0c3b38023275.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.248.105.0/24 Signature Algorithm: sha256WithRSAEncryption 23:b9:5b:ba:e0:19:7e:de:16:db:00:75:6a:71:49:3d:88:e7: 34:6c:a3:2c:8b:be:d5:3f:1f:31:ed:39:89:ba:f4:9c:2a:c6: 05:db:88:12:f4:f5:f0:b4:85:f3:65:bd:d0:83:74:a8:35:67: 5e:54:a0:ea:da:37:12:62:02:40:1a:c0:8e:5c:37:6f:2c:b5: 6d:58:37:dc:e8:00:a8:c0:95:46:62:57:48:d8:a7:5c:34:dd: f2:c9:b7:71:0e:76:1d:e6:68:71:71:14:93:48:fe:49:6a:78: f3:9c:fd:ca:79:50:1f:a2:c0:42:cb:0b:e7:e6:3a:f7:30:82: 51:c2:82:a0:58:84:f7:db:3e:34:e7:f1:c3:fe:d3:e3:33:2c: fb:60:45:a0:4d:28:25:6e:bd:6a:6f:f7:79:63:93:81:38:38: 7b:4b:9e:57:f1:c6:e0:89:bd:65:6e:5a:86:05:74:41:65:8e: 9f:f3:ee:d8:8a:de:7e:6e:80:3b:3c:e1:33:2c:06:3c:c0:c0: e5:f3:9d:e1:67:43:0a:9f:73:0d:05:61:01:55:07:c2:f7:c1: c5:d8:1b:9b:5d:9d:10:41:29:0a:5d:d4:18:60:6a:83:0f:c1: 48:75:d5:97:b7:34:25:9c:d4:92:ed:d1:6b:10:af:43:8e:12: d0:2f:74:31 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUX53HGUKuCkoNTZuD1V7QnJQE8n8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNzExMTUzMjAyWhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMmRhN2NmNDQ3ZWM1MTlkNmQxZTJhZGYyNTBjNzE5OWVm YWY2ZjA0ZDhmOGRlNDNmMWI2MjZhNjRmZWYxOTkxMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrdo72QMe65du8vHW6hg83Ff35r8ButUPamvni4OL9OZ+9 G6hYZ7cq5WobD1l56TFrJSsJgBcCpSRUcMy6V4J8e0BydouOmYW3m/RKObNLR9Pv mMExXqWulMfQUKdyLr5jEGuYaiELD38Bz4tjNfaspTiVA99n/PIoSn9/M2p90NsA 8eBJUQ3fCzRrmFLu89OF5Z2w3PKQi+aPe1GL9gHYtTGVzc9NHfMNepKBW4nIEqo+ YFHZHjCtTgLbPiZpD9EawVoAAffjuT9nRLc3h2Z4joOe4FAPzZzBHosH604ixTe3 jeu2pm+SVzND+tNCjCFtl4Hft9vRWaeqjd/EZud9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUHFV3f3lr+IIHSqMm15zgjQcSBlMwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzY2NDk2ZWViLTk4ZmMtNDIyMC04MjNmLTBjM2IzODAyMzI3NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAP+GkwDQYJKoZIhvcNAQELBQADggEBACO5W7rgGX7eFtsAdWpxST2I5zRs oyyLvtU/HzHtOYm69JwqxgXbiBL09fC0hfNlvdCDdKg1Z15UoOraNxJiAkAawI5c N28stW1YN9zoAKjAlUZiV0jYp1w03fLJt3EOdh3maHFxFJNI/klqePOc/cp5UB+i wELLC+fmOvcwglHCgqBYhPfbPjTn8cP+0+MzLPtgRaBNKCVuvWpv93ljk4E4OHtL nlfxxuCJvWVuWoYFdEFljp/z7tiK3n5ugDs84TMsBjzAwOXzneFnQwqfcw0FYQFV B8L3wcXYG5tdnRBBKQpd1BhgaoMPwUh11Ze3NCWc1JLt0WsQr0OOEtAvdDE= -----END CERTIFICATE-----Generated at Tue Aug 5 08:17:01 2025 by rpki-client