$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/868750b4-8c5d-4422-8cce-ebfbf71e5945.roa File: 868750b4-8c5d-4422-8cce-ebfbf71e5945.roa (raw, json) Hash identifier: fFTRNOnv75cUI+6RkrbJFNV2+fDFCAdY7iwotNRndHc= Subject key identifier: A6:68:D7:86:EE:9D:45:12:26:74:30:87:B4:38:6B:93:EB:6C:F2:41 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 0B3B36EEB170F9D3AC607C7BB7040015B21CC04F Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/868750b4-8c5d-4422-8cce-ebfbf71e5945.roa Signing time: Fri 25 Jul 2025 16:30:10 +0000 ROA not before: Fri 25 Jul 2025 16:30:10 +0000 ROA not after: Fri 29 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.210.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:3b:36:ee:b1:70:f9:d3:ac:60:7c:7b:b7:04:00:15:b2:1c:c0:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jul 25 16:30:10 2025 GMT Not After : Aug 29 23:59:59 2025 GMT Subject: serialNumber=618f411dbb0580291f9124beb236b58a1c6bda8477081680275e71b628c23264, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:73:d8:3e:5e:04:c0:45:d5:ea:5f:47:40:b6: 2d:a8:a4:b3:0b:05:2b:76:cb:24:44:d9:66:b8:ac: b8:b6:b6:5d:fc:ec:8a:7b:c3:56:ba:41:15:63:83: 53:11:2b:31:5d:50:16:43:99:e4:5c:ca:d4:76:2e: 6f:52:c9:c7:bb:f4:17:4a:b4:43:4a:b1:3c:c1:d3: e2:0e:57:6a:df:c7:b5:84:55:5a:44:4a:62:ef:35: 38:ab:d5:10:94:bf:38:de:e7:7d:6c:d5:a6:e0:b2: 19:44:7a:e6:ee:87:21:72:f5:bc:3a:67:c2:fb:21: cf:0a:b4:2b:5b:1d:2e:fc:30:50:47:5a:00:14:47: bd:21:e6:c9:dd:9c:38:8e:d7:e1:a3:29:32:41:ec: fd:05:3f:f6:90:13:ad:1c:54:b9:bd:de:47:1c:7c: 2a:ed:e8:34:ca:95:bc:3e:ad:ad:15:43:8b:6e:89: 48:a0:a2:3a:25:47:ed:ed:1d:a6:4d:db:6e:07:43: 6d:15:cf:74:e7:04:dc:5a:28:1a:53:82:e6:cd:17: 4d:31:f0:f9:dc:49:13:4d:0e:33:f3:87:14:83:d5: 39:24:92:26:a1:18:2a:c3:c7:f6:82:f5:4b:6d:ae: 1f:62:31:72:7c:ad:d1:ef:fe:66:25:bb:d9:d9:ac: b4:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:68:D7:86:EE:9D:45:12:26:74:30:87:B4:38:6B:93:EB:6C:F2:41 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/868750b4-8c5d-4422-8cce-ebfbf71e5945.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.210.0.0/16 Signature Algorithm: sha256WithRSAEncryption 71:b8:34:12:6c:96:0a:e1:6a:c2:86:47:2d:fb:92:99:9d:28: 8c:4a:ad:fc:04:de:02:96:39:72:1e:9b:08:5a:bb:3e:47:4d: 2d:31:5f:20:19:ea:bb:5a:4f:be:17:a7:16:60:1e:60:b8:89: 14:be:f0:7f:22:5b:62:e9:7f:ec:26:67:46:e7:bd:52:6a:27: e2:51:73:bb:2b:bd:16:08:ec:ca:06:38:69:86:aa:39:38:1c: 75:9e:e2:3f:40:c9:64:00:fd:3f:19:fa:4d:29:ae:48:ac:b4: 05:31:e5:2e:b1:41:30:4b:f1:91:b7:1d:91:f5:df:21:71:b8: d1:c3:6b:47:0b:bb:97:ea:4c:88:27:cd:d3:e8:4b:b5:06:b2: 3d:89:fb:30:18:12:91:37:c9:f6:33:10:d8:d9:e8:13:e7:28: 4c:79:db:e8:01:e3:3c:5a:02:ac:ae:fb:04:f2:be:9a:7e:c7: 67:92:20:f2:20:0f:c8:b8:a3:8f:f8:59:b8:ac:fd:f5:bd:e3: 64:b5:e8:78:26:00:67:b9:ad:fc:07:ab:ab:59:13:d2:1e:7e: 26:46:c5:94:da:90:94:fd:71:5a:69:8c:f8:c7:65:e7:0b:63: 70:5c:fb:95:75:95:f3:c3:08:b2:e1:63:6a:d1:55:78:9f:f8: ae:ad:72:e2 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUCzs27rFw+dOsYHx7twQAFbIcwE8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNzI1MTYzMDEwWhcNMjUwODI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A2MThmNDExZGJiMDU4MDI5MWY5MTI0YmViMjM2YjU4YTFj NmJkYTg0NzcwODE2ODAyNzVlNzFiNjI4YzIzMjY0MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9c9g+XgTARdXqX0dAti2opLMLBSt2yyRE2Wa4rLi2tl38 7Ip7w1a6QRVjg1MRKzFdUBZDmeRcytR2Lm9Syce79BdKtENKsTzB0+IOV2rfx7WE VVpESmLvNTir1RCUvzje531s1abgshlEeubuhyFy9bw6Z8L7Ic8KtCtbHS78MFBH WgAUR70h5sndnDiO1+GjKTJB7P0FP/aQE60cVLm93kccfCrt6DTKlbw+ra0VQ4tu iUigojolR+3tHaZN224HQ20Vz3TnBNxaKBpTgubNF00x8PncSRNNDjPzhxSD1Tkk kiahGCrDx/aC9Uttrh9iMXJ8rdHv/mYlu9nZrLQHAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUpmjXhu6dRRImdDCHtDhrk+ts8kEwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzg2ODc1MGI0LThjNWQtNDQyMi04Y2NlLWViZmJmNzFlNTk0NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA20jANBgkqhkiG9w0BAQsFAAOCAQEAcbg0EmyWCuFqwoZHLfuSmZ0ojEqt /ATeApY5ch6bCFq7PkdNLTFfIBnqu1pPvhenFmAeYLiJFL7wfyJbYul/7CZnRue9 Umon4lFzuyu9FgjsygY4aYaqOTgcdZ7iP0DJZAD9Pxn6TSmuSKy0BTHlLrFBMEvx kbcdkfXfIXG40cNrRwu7l+pMiCfN0+hLtQayPYn7MBgSkTfJ9jMQ2NnoE+coTHnb 6AHjPFoCrK77BPK+mn7HZ5Ig8iAPyLijj/hZuKz99b3jZLXoeCYAZ7mt/Aerq1kT 0h5+JkbFlNqQlP1xWmmM+Mdl5wtjcFz7lXWV88MIsuFjatFVeJ/4rq1y4g== -----END CERTIFICATE-----Generated at Mon Aug 4 22:15:50 2025 by rpki-client