$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/77f4a6fe-dba8-4f3c-a121-690184a9631f.roa File: 77f4a6fe-dba8-4f3c-a121-690184a9631f.roa (raw, json) Hash identifier: qGlpdyEudrGsH14PyHY4HZk06Zhb7Nlf3H/a+jtnEKc= Subject key identifier: FF:01:5A:BB:54:53:48:03:68:06:F3:88:1D:C4:11:61:D7:3D:A5:28 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 4BA8E477BF944E635DDBB7276E94B4B5A074DBBB Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/77f4a6fe-dba8-4f3c-a121-690184a9631f.roa Signing time: Tue 22 Jul 2025 15:10:56 +0000 ROA not before: Tue 22 Jul 2025 15:10:56 +0000 ROA not after: Tue 26 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.234.8.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:a8:e4:77:bf:94:4e:63:5d:db:b7:27:6e:94:b4:b5:a0:74:db:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jul 22 15:10:56 2025 GMT Not After : Aug 26 23:59:59 2025 GMT Subject: serialNumber=9df16003e8619338a21e9f1dee74b76cda407955862d7bc3fc6f241a7bc3ef19, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:4c:05:2d:c5:c9:1f:17:e2:fc:16:30:27:2f: 4e:79:d9:50:9b:4b:7b:b3:d5:a4:8f:a4:dc:3f:e5: db:f2:78:2a:a4:72:05:cd:89:88:d8:6c:2d:04:fe: 0c:42:e8:d4:ff:ff:fe:4a:65:5a:b8:dd:24:9c:11: 4c:48:83:b3:ea:f8:58:5c:f8:56:78:ab:aa:0d:02: 5d:13:fd:63:34:7b:58:fa:30:f7:18:60:a1:10:26: 7b:29:4d:c4:e8:29:22:17:87:90:99:d8:4c:6e:82: fe:18:68:bf:e8:a5:d7:46:cb:00:cb:37:76:58:89: 06:d8:9b:3a:ec:d9:86:2b:6b:30:f4:15:1b:37:1e: ac:54:51:c5:cf:a4:a0:91:8c:8f:16:e1:ce:89:eb: 13:a2:f2:6b:c6:05:02:cb:8b:fa:c2:73:bb:70:b5: 84:1b:e7:8e:ae:3d:b6:24:45:76:96:50:b7:97:3d: 61:22:57:f6:16:ed:b1:ea:62:35:20:9f:af:64:b1: 64:69:bf:64:2d:55:5d:2a:1e:19:7b:fb:21:02:27: 3c:fd:2f:66:5f:03:11:b5:89:be:a7:9b:52:08:0c: fe:97:40:31:7f:a3:06:29:78:d3:ab:9f:fa:ea:ba: d6:77:30:00:9f:9a:59:77:7a:1b:dc:fc:dd:3d:eb: cb:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:01:5A:BB:54:53:48:03:68:06:F3:88:1D:C4:11:61:D7:3D:A5:28 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/77f4a6fe-dba8-4f3c-a121-690184a9631f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.234.8.0/23 Signature Algorithm: sha256WithRSAEncryption 4d:03:de:e2:76:8a:5d:de:e3:c1:90:ab:6d:f2:8b:ff:4e:5e: 35:bd:45:5d:61:08:0d:91:b0:78:6a:54:75:6f:98:f3:f8:f7: 27:f3:53:c4:64:ee:56:d5:b0:29:d2:a0:6f:76:a8:4c:90:8d: 1b:3c:9d:27:6f:a6:e7:e4:e9:ea:76:ca:9b:8f:e2:b4:65:1e: 1a:6d:a3:56:fc:ec:14:21:2b:62:40:01:be:f4:6b:23:45:f8: a2:14:a7:fe:92:e8:1f:90:02:5d:76:c4:20:9b:75:49:18:5c: 9b:2a:3e:fe:f9:45:38:e4:87:6b:bf:92:46:72:d6:8c:15:ae: 11:58:33:12:15:28:37:d9:a5:f9:d7:3f:8e:6b:32:61:49:26: c8:52:0b:10:7d:e4:f6:87:bb:05:40:01:69:08:74:b1:2c:30: 4c:67:28:c0:61:17:8c:26:77:59:aa:b6:c4:01:47:6c:8e:05: 8e:79:70:f7:74:02:42:30:fc:76:b3:70:d6:bb:0b:85:95:a2: 25:c4:b1:c8:3d:c0:8b:b4:68:d7:c9:67:41:61:04:84:5c:f1: 11:88:6d:61:88:6d:84:34:14:84:3d:9e:29:da:e9:85:6a:4a: 85:b0:2e:eb:08:8d:9c:69:ce:c0:43:ec:33:9a:34:c3:42:e9: 8e:da:6c:e1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUS6jkd7+UTmNd27cnbpS0taB027swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNzIyMTUxMDU2WhcNMjUwODI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZGYxNjAwM2U4NjE5MzM4YTIxZTlmMWRlZTc0Yjc2Y2Rh NDA3OTU1ODYyZDdiYzNmYzZmMjQxYTdiYzNlZjE5MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzTAUtxckfF+L8FjAnL0552VCbS3uz1aSPpNw/5dvyeCqk cgXNiYjYbC0E/gxC6NT///5KZVq43SScEUxIg7Pq+Fhc+FZ4q6oNAl0T/WM0e1j6 MPcYYKEQJnspTcToKSIXh5CZ2Exugv4YaL/opddGywDLN3ZYiQbYmzrs2YYrazD0 FRs3HqxUUcXPpKCRjI8W4c6J6xOi8mvGBQLLi/rCc7twtYQb546uPbYkRXaWULeX PWEiV/YW7bHqYjUgn69ksWRpv2QtVV0qHhl7+yECJzz9L2ZfAxG1ib6nm1IIDP6X QDF/owYpeNOrn/rqutZ3MACfmll3ehvc/N0968ujAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU/wFau1RTSANoBvOIHcQRYdc9pSgwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzc3ZjRhNmZlLWRiYTgtNGYzYy1hMTIxLTY5MDE4NGE5NjMxZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEN6ggwDQYJKoZIhvcNAQELBQADggEBAE0D3uJ2il3e48GQq23yi/9OXjW9 RV1hCA2RsHhqVHVvmPP49yfzU8Rk7lbVsCnSoG92qEyQjRs8nSdvpufk6ep2ypuP 4rRlHhpto1b87BQhK2JAAb70ayNF+KIUp/6S6B+QAl12xCCbdUkYXJsqPv75RTjk h2u/kkZy1owVrhFYMxIVKDfZpfnXP45rMmFJJshSCxB95PaHuwVAAWkIdLEsMExn KMBhF4wmd1mqtsQBR2yOBY55cPd0AkIw/HazcNa7C4WVoiXEscg9wIu0aNfJZ0Fh BIRc8RGIbWGIbYQ0FIQ9nina6YVqSoWwLusIjZxpzsBD7DOaNMNC6Y7abOE= -----END CERTIFICATE-----Generated at Mon Aug 4 21:31:36 2025 by rpki-client