$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/72eaefd1-9fd2-48be-828b-856127447e1b.roa File: 72eaefd1-9fd2-48be-828b-856127447e1b.roa (raw, json) Hash identifier: EnIddLxUnD/6wEaFdVXaHREKWqwtHO0ZS3NsMxskrUE= Subject key identifier: E9:1E:11:EB:75:5B:7D:2D:71:2C:9F:5F:6F:FB:95:E6:47:F6:2F:5E Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 69C0D33DE1AA6AA84D1D2F706EACAF9A03C65B1B Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/72eaefd1-9fd2-48be-828b-856127447e1b.roa Signing time: Tue 29 Jul 2025 17:52:01 +0000 ROA not before: Tue 29 Jul 2025 17:52:01 +0000 ROA not after: Tue 02 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.244.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:c0:d3:3d:e1:aa:6a:a8:4d:1d:2f:70:6e:ac:af:9a:03:c6:5b:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jul 29 17:52:01 2025 GMT Not After : Sep 2 23:59:59 2025 GMT Subject: serialNumber=d10cc1f83e86f41607ceacb1296a39c5d1daeaa6e41f8af9300830f8d19168e4, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:22:05:97:31:fa:47:ee:25:5c:d4:55:07:c6: 89:89:29:21:d7:b2:41:d9:ef:29:16:51:c9:1e:08: bb:5b:9c:55:39:4b:b4:ff:c6:e0:e8:21:02:86:5c: f1:31:6d:ca:de:ca:c0:d0:eb:86:be:f6:5a:98:32: 7d:45:6b:a8:24:db:92:40:14:83:43:00:66:31:97: e6:4a:8a:94:f1:20:5f:da:68:03:f1:e8:55:ce:6d: 0e:1d:c4:91:8d:f5:2a:25:10:1e:50:bc:2a:1c:77: 5a:d6:c0:e8:22:32:67:d7:2f:96:3f:eb:ec:cc:0b: 99:67:a0:3d:98:a8:54:33:e2:b5:89:8e:ca:5f:b7: f2:48:89:a6:56:ba:27:db:6a:ce:0e:dc:5a:36:b2: 7f:75:f7:6f:c5:e3:40:e5:0f:7a:0f:8d:67:0b:0f: e3:a4:2c:23:30:61:04:31:95:7c:d2:e5:5e:6d:4d: 5f:ec:d8:4d:3d:3a:c2:86:31:70:68:80:22:16:4d: c3:6f:09:7d:ee:26:c7:8b:d8:c5:f4:8a:c5:29:0e: 07:85:6d:0a:7e:7f:6a:ad:96:42:2d:79:1c:4b:0a: 09:6e:7e:36:00:14:a6:b8:8e:f4:ee:85:61:14:9f: 4c:e4:1d:c2:d1:2c:9d:94:03:1a:14:77:4b:84:59: 22:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:1E:11:EB:75:5B:7D:2D:71:2C:9F:5F:6F:FB:95:E6:47:F6:2F:5E X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/72eaefd1-9fd2-48be-828b-856127447e1b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.244.64.0/18 Signature Algorithm: sha256WithRSAEncryption 8e:a8:77:87:82:06:07:15:b1:b9:39:f7:b9:f8:b7:84:04:32: b2:58:e0:10:96:0b:f3:de:a7:60:75:7f:fe:86:88:07:e6:8d: 50:c8:54:d4:5e:46:c7:4e:08:4e:25:46:17:f5:ef:e5:c4:5c: 8e:94:13:0f:c8:a8:db:e4:91:34:33:65:4f:30:a1:a0:22:3e: d8:d3:ea:26:ad:24:15:65:65:a8:41:57:0d:2e:63:41:0f:c3: dd:38:1c:37:a7:c2:83:28:09:4e:70:da:10:9b:ed:4e:7a:a4: b1:79:74:3f:82:55:ab:e0:c8:62:63:25:b7:e0:9a:55:8a:a1: b8:3c:c2:03:3d:7e:8e:ab:9e:53:bd:33:44:cf:67:03:bf:6f: 71:20:5b:8c:ff:05:43:81:86:ea:cb:7f:0a:ec:cc:70:d0:4e: bf:e1:29:30:23:67:54:bc:41:bc:92:b8:fc:4e:49:a3:86:0d: d4:e1:47:73:80:fd:c2:cb:db:08:3d:a4:f4:6a:5e:c1:25:19: 79:5f:13:b3:98:ba:db:90:91:17:84:65:81:82:98:01:62:58: 4b:cf:94:70:37:f3:1f:0e:18:2c:dd:8d:9b:15:f4:d1:89:84: c3:58:c3:76:bd:a5:86:83:81:f2:17:db:94:1c:e7:7a:45:45: e3:52:81:24 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUacDTPeGqaqhNHS9wbqyvmgPGWxswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNzI5MTc1MjAxWhcNMjUwOTAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BkMTBjYzFmODNlODZmNDE2MDdjZWFjYjEyOTZhMzljNWQx ZGFlYWE2ZTQxZjhhZjkzMDA4MzBmOGQxOTE2OGU0MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2IgWXMfpH7iVc1FUHxomJKSHXskHZ7ykWUckeCLtbnFU5 S7T/xuDoIQKGXPExbcreysDQ64a+9lqYMn1Fa6gk25JAFINDAGYxl+ZKipTxIF/a aAPx6FXObQ4dxJGN9SolEB5QvCocd1rWwOgiMmfXL5Y/6+zMC5lnoD2YqFQz4rWJ jspft/JIiaZWuifbas4O3Fo2sn9192/F40DlD3oPjWcLD+OkLCMwYQQxlXzS5V5t TV/s2E09OsKGMXBogCIWTcNvCX3uJseL2MX0isUpDgeFbQp+f2qtlkIteRxLCglu fjYAFKa4jvTuhWEUn0zkHcLRLJ2UAxoUd0uEWSJtAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU6R4R63VbfS1xLJ9fb/uV5kf2L14wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzcyZWFlZmQxLTlmZDItNDhiZS04MjhiLTg1NjEyNzQ0N2UxYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAY29EAwDQYJKoZIhvcNAQELBQADggEBAI6od4eCBgcVsbk597n4t4QEMrJY 4BCWC/Pep2B1f/6GiAfmjVDIVNReRsdOCE4lRhf17+XEXI6UEw/IqNvkkTQzZU8w oaAiPtjT6iatJBVlZahBVw0uY0EPw904HDenwoMoCU5w2hCb7U56pLF5dD+CVavg yGJjJbfgmlWKobg8wgM9fo6rnlO9M0TPZwO/b3EgW4z/BUOBhurLfwrszHDQTr/h KTAjZ1S8QbySuPxOSaOGDdThR3OA/cLL2wg9pPRqXsElGXlfE7OYutuQkReEZYGC mAFiWEvPlHA38x8OGCzdjZsV9NGJhMNYw3a9pYaDgfIX25Qc53pFReNSgSQ= -----END CERTIFICATE-----Generated at Mon Aug 4 21:47:14 2025 by rpki-client