$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/667cce7c-f6ee-42a8-93fc-00c115087f86.roa File: 667cce7c-f6ee-42a8-93fc-00c115087f86.roa (raw, json) Hash identifier: W23n/XoITYlEsiyyWnNAqdVVipStRXyNMnX3yTL9bH0= Subject key identifier: 57:CC:B4:CA:88:95:24:1A:B4:93:12:2E:AA:5C:61:42:10:29:91:37 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 3BA600E5D676C2CFB54B876C9C73224292097CBB Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/667cce7c-f6ee-42a8-93fc-00c115087f86.roa Signing time: Fri 25 Jul 2025 15:21:03 +0000 ROA not before: Fri 25 Jul 2025 15:21:03 +0000 ROA not after: Fri 29 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 34.255.0.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:a6:00:e5:d6:76:c2:cf:b5:4b:87:6c:9c:73:22:42:92:09:7c:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jul 25 15:21:03 2025 GMT Not After : Aug 29 23:59:59 2025 GMT Subject: serialNumber=f9234c4da559e62814385a1d9610f57eb68986f6312f3c7f2c3e03d3871caeb2, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:74:3e:e2:4e:c6:a6:db:99:d9:f9:86:64:c7: f7:30:4e:8e:2f:f1:cd:78:5c:24:cc:7f:ca:6f:75: b3:f8:01:5e:50:7b:76:d5:91:ee:13:af:56:62:26: 38:57:9d:2a:13:51:bd:51:f1:8e:56:72:be:d7:65: c4:ba:16:15:ca:67:9d:14:90:06:79:f3:12:12:bc: ef:26:0b:42:a2:96:b0:30:02:8c:69:d8:53:aa:4a: f2:aa:ad:98:46:17:b5:a4:d6:85:61:24:b6:0e:2d: 7e:49:b7:6e:af:4d:a2:94:19:b5:eb:32:a1:2c:0c: 84:c3:44:21:ac:e9:96:47:0b:fb:e2:db:b8:33:b4: 9a:03:cb:ac:c2:d7:e9:97:97:55:f1:37:57:44:b5: ff:ab:fd:ff:59:39:ab:21:f4:73:69:12:eb:2d:11: 1f:5b:67:69:0b:7f:e0:2f:30:cc:82:a1:96:d2:0f: 16:58:57:ba:f9:85:2b:bb:17:3b:3c:dc:e8:4b:00: f1:c2:c7:18:23:ba:2d:22:dd:75:8e:0b:2c:ee:9f: 05:15:91:9b:80:6b:6e:5c:a2:1b:e9:95:c8:2b:95: 43:ac:41:82:5b:9c:bf:ae:96:39:44:0a:1c:71:18: 0a:6f:8d:2a:06:62:ee:ce:14:c9:4b:1a:37:a1:45: 24:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:CC:B4:CA:88:95:24:1A:B4:93:12:2E:AA:5C:61:42:10:29:91:37 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/667cce7c-f6ee-42a8-93fc-00c115087f86.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 34.255.0.0/18 Signature Algorithm: sha256WithRSAEncryption 0c:9a:8a:4b:66:e8:96:9b:7c:b9:ae:06:9c:77:86:e0:b6:d6: f5:0c:48:bd:45:07:be:82:27:33:b0:10:f7:46:af:53:37:49: d3:48:0f:81:0b:cb:03:d8:c7:7b:81:3b:e3:38:fe:6a:be:90: 76:56:44:7a:08:e6:16:b3:44:93:31:d7:34:e7:f1:90:79:ac: 66:0e:8b:e1:9e:70:c4:76:b5:29:f6:57:8e:a7:15:0b:ae:bf: a7:12:0d:08:5d:4f:30:95:ff:4b:03:85:3c:b4:a5:46:85:d0: 3e:8e:64:f1:51:cd:d8:9d:88:90:cf:20:4e:9b:34:ec:85:0e: b6:79:60:3b:11:16:2a:81:82:61:35:a1:da:d7:2a:e7:d7:2c: 14:24:0d:b5:05:e0:3e:df:a7:b1:ab:dc:92:6c:f9:ea:54:cb: 75:ad:27:89:96:25:46:de:bb:4d:d3:a2:d1:f2:97:82:6b:6c: 8c:b9:8b:da:25:df:d9:88:db:99:47:cc:ff:97:8b:a8:32:56: fc:c5:74:e9:04:76:9f:48:cd:4a:b1:26:af:f9:4d:24:b2:68: 67:8b:34:37:0c:56:68:7c:4d:fd:53:22:6b:bc:1a:29:37:c2: bd:38:85:46:54:11:de:6f:b6:8f:56:28:a1:4f:aa:94:71:bf: b9:8a:f6:b0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUO6YA5dZ2ws+1S4dsnHMiQpIJfLswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNzI1MTUyMTAzWhcNMjUwODI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BmOTIzNGM0ZGE1NTllNjI4MTQzODVhMWQ5NjEwZjU3ZWI2 ODk4NmY2MzEyZjNjN2YyYzNlMDNkMzg3MWNhZWIyMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5dD7iTsam25nZ+YZkx/cwTo4v8c14XCTMf8pvdbP4AV5Q e3bVke4Tr1ZiJjhXnSoTUb1R8Y5Wcr7XZcS6FhXKZ50UkAZ58xISvO8mC0KilrAw Aoxp2FOqSvKqrZhGF7Wk1oVhJLYOLX5Jt26vTaKUGbXrMqEsDITDRCGs6ZZHC/vi 27gztJoDy6zC1+mXl1XxN1dEtf+r/f9ZOash9HNpEustER9bZ2kLf+AvMMyCoZbS DxZYV7r5hSu7Fzs83OhLAPHCxxgjui0i3XWOCyzunwUVkZuAa25cohvplcgrlUOs QYJbnL+uljlEChxxGApvjSoGYu7OFMlLGjehRSR7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUV8y0yoiVJBq0kxIuqlxhQhApkTcwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzY2N2NjZTdjLWY2ZWUtNDJhOC05M2ZjLTAwYzExNTA4N2Y4Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYi/wAwDQYJKoZIhvcNAQELBQADggEBAAyaiktm6JabfLmuBpx3huC21vUM SL1FB76CJzOwEPdGr1M3SdNID4ELywPYx3uBO+M4/mq+kHZWRHoI5hazRJMx1zTn 8ZB5rGYOi+GecMR2tSn2V46nFQuuv6cSDQhdTzCV/0sDhTy0pUaF0D6OZPFRzdid iJDPIE6bNOyFDrZ5YDsRFiqBgmE1odrXKufXLBQkDbUF4D7fp7Gr3JJs+epUy3Wt J4mWJUbeu03TotHyl4JrbIy5i9ol39mI25lHzP+Xi6gyVvzFdOkEdp9IzUqxJq/5 TSSyaGeLNDcMVmh8Tf1TImu8Gik3wr04hUZUEd5vto9WKKFPqpRxv7mK9rA= -----END CERTIFICATE-----Generated at Mon Aug 4 21:29:48 2025 by rpki-client