$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6d54f6ca-1175-4454-9f47-f101ffa12e6d.roa File: 6d54f6ca-1175-4454-9f47-f101ffa12e6d.roa (raw, json) Hash identifier: q9DfspUuedhaRtKoLB6/65jZ49G6wGIzLGjUWC1VDmI= Subject key identifier: A4:9D:6E:12:67:16:B7:CD:C8:09:B8:0A:DF:D2:B6:9D:56:F0:FE:E0 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 4C0A836F39B4BAC50F4AF872819C83C0117A6315 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6d54f6ca-1175-4454-9f47-f101ffa12e6d.roa Signing time: Fri 25 Jul 2025 15:10:20 +0000 ROA not before: Fri 25 Jul 2025 15:10:20 +0000 ROA not after: Fri 29 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.88.0.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:0a:83:6f:39:b4:ba:c5:0f:4a:f8:72:81:9c:83:c0:11:7a:63:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jul 25 15:10:20 2025 GMT Not After : Aug 29 23:59:59 2025 GMT Subject: serialNumber=2746623f7cc3c6b0f0780630d00f68dc3f50ff6085567d9b5fddb88df8c693d0, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:b0:21:04:b6:29:f1:04:a7:0e:53:73:d5:7a: 44:5d:38:52:07:2d:df:9d:a2:d6:d1:2c:a4:eb:5b: 83:aa:97:2d:e4:4b:f1:87:45:8c:2d:f7:29:8b:89: e5:46:04:f4:ea:d7:23:09:2a:cc:05:f5:4a:ae:b8: 19:43:68:68:ed:27:29:31:a0:e6:b6:0c:ca:fb:aa: 3b:05:e6:5e:16:fc:b9:00:39:4c:35:db:e9:87:f0: 74:81:f6:5a:b6:00:31:80:4c:55:99:1e:13:65:e3: c7:db:9e:b8:f1:99:02:03:90:a6:5f:29:c2:c3:a3: e1:e5:36:e0:50:b5:f8:34:56:82:99:00:52:fe:4b: fd:a7:f4:86:eb:a0:99:44:82:67:91:20:98:e5:0e: c7:b3:1d:6c:3b:2b:10:a7:43:a4:db:87:a7:c7:84: 74:e3:be:13:cc:87:83:2b:d9:05:77:8e:0a:24:f3: ac:dc:4a:6f:d8:8a:52:5c:f9:bc:a1:42:c6:13:45: 83:7e:6e:86:e4:14:97:74:cc:6e:d1:26:37:06:3c: d5:3a:59:4e:31:3c:6c:eb:9c:b9:e7:6f:4b:be:bb: 10:f1:57:1b:bf:34:22:6c:17:38:7a:2e:1f:4e:d6: e6:d5:66:83:81:17:22:f3:01:8c:a7:2b:c2:a6:dd: 26:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:9D:6E:12:67:16:B7:CD:C8:09:B8:0A:DF:D2:B6:9D:56:F0:FE:E0 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6d54f6ca-1175-4454-9f47-f101ffa12e6d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.88.0.0/19 Signature Algorithm: sha256WithRSAEncryption 6a:04:92:04:cc:5b:54:32:6f:21:09:a3:37:bf:80:79:5e:99: 4f:c3:79:6a:82:1e:66:c1:57:fb:2e:52:3e:ad:2f:ec:3b:25: cb:33:32:84:c2:aa:ee:7f:ed:80:89:b4:24:b0:26:74:76:2c: 22:57:bc:a7:5c:8e:0f:cf:d0:79:1a:52:2a:2b:17:a5:50:29: 46:50:43:37:aa:d2:cd:d2:7c:cb:8f:c1:3b:5c:80:07:50:02: c0:98:ff:46:b7:f7:4d:62:52:fd:41:69:ed:aa:16:0b:22:89: 32:1c:84:09:0d:92:c1:4b:1a:e8:61:ad:e2:06:36:0a:5f:5d: 7f:0a:c7:ab:ec:f7:07:2c:53:50:2a:50:c4:98:a4:2a:32:ea: c8:f0:f0:26:33:66:c1:05:ce:c9:0c:f1:8c:f4:9e:bd:f8:d5: 5c:7c:cf:29:8d:d6:24:b8:46:44:7e:a8:46:92:44:96:8e:e8: 23:d7:8e:c1:e7:ef:82:59:1f:82:f9:54:24:d1:92:7c:24:5e: a2:f0:29:ff:54:ca:de:1d:62:6f:52:08:d5:43:95:51:52:72: 0f:08:5a:bb:8a:2c:e5:16:58:61:e7:c0:d3:d7:32:b7:aa:f2: b1:cf:09:8a:d1:f5:28:1f:1f:c1:f9:f1:38:ce:01:b1:10:62: 63:4b:8b:07 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTAqDbzm0usUPSvhygZyDwBF6YxUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNzI1MTUxMDIwWhcNMjUwODI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AyNzQ2NjIzZjdjYzNjNmIwZjA3ODA2MzBkMDBmNjhkYzNm NTBmZjYwODU1NjdkOWI1ZmRkYjg4ZGY4YzY5M2QwMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3sCEEtinxBKcOU3PVekRdOFIHLd+dotbRLKTrW4Oqly3k S/GHRYwt9ymLieVGBPTq1yMJKswF9UquuBlDaGjtJykxoOa2DMr7qjsF5l4W/LkA OUw12+mH8HSB9lq2ADGATFWZHhNl48fbnrjxmQIDkKZfKcLDo+HlNuBQtfg0VoKZ AFL+S/2n9IbroJlEgmeRIJjlDsezHWw7KxCnQ6Tbh6fHhHTjvhPMh4Mr2QV3jgok 86zcSm/YilJc+byhQsYTRYN+bobkFJd0zG7RJjcGPNU6WU4xPGzrnLnnb0u+uxDx Vxu/NCJsFzh6Lh9O1ubVZoOBFyLzAYynK8Km3SYjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUpJ1uEmcWt83ICbgK39K2nVbw/uAwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzZkNTRmNmNhLTExNzUtNDQ1NC05ZjQ3LWYxMDFmZmExMmU2ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUSWAAwDQYJKoZIhvcNAQELBQADggEBAGoEkgTMW1QybyEJoze/gHlemU/D eWqCHmbBV/suUj6tL+w7JcszMoTCqu5/7YCJtCSwJnR2LCJXvKdcjg/P0HkaUior F6VQKUZQQzeq0s3SfMuPwTtcgAdQAsCY/0a3901iUv1Bae2qFgsiiTIchAkNksFL GuhhreIGNgpfXX8Kx6vs9wcsU1AqUMSYpCoy6sjw8CYzZsEFzskM8Yz0nr341Vx8 zymN1iS4RkR+qEaSRJaO6CPXjsHn74JZH4L5VCTRknwkXqLwKf9Uyt4dYm9SCNVD lVFScg8IWruKLOUWWGHnwNPXMreq8rHPCYrR9SgfH8H58TjOAbEQYmNLiwc= -----END CERTIFICATE-----Generated at Tue Aug 5 16:51:59 2025 by rpki-client