$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/87c185ae-9dbb-4e48-818e-6a611c8874e1.roa File: 87c185ae-9dbb-4e48-818e-6a611c8874e1.roa (raw, json) Hash identifier: b76ptUKjJBpFYyVFudDhY9oLoHxvc8a9/04hUeZS1gQ= Subject key identifier: EB:36:78:6E:EF:C4:58:8E:E0:E2:1C:78:AE:08:94:12:7A:01:C7:E5 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 7FBA79EFD3EB762C077C551C973C216D914C32A7 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/87c185ae-9dbb-4e48-818e-6a611c8874e1.roa Signing time: Fri 11 Jul 2025 17:31:23 +0000 ROA not before: Fri 11 Jul 2025 17:31:23 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 54.240.64.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:ba:79:ef:d3:eb:76:2c:07:7c:55:1c:97:3c:21:6d:91:4c:32:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jul 11 17:31:23 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=fb4a60d8b75768374296c441a6fa11bd7df732842f60f55c890db92bf991a1d8, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:e1:48:32:1c:d4:b5:83:ac:37:31:57:37:38: 9e:fb:bd:87:ee:9c:a7:f5:25:f9:a7:07:4c:23:e0: f7:21:fa:67:35:61:17:4d:c7:b7:97:9b:dc:49:ac: 6b:7e:9c:22:08:a5:41:de:e1:f0:eb:7b:d2:81:92: 1f:b6:d1:af:24:0d:4c:33:3e:02:9b:a7:a7:49:1a: d9:53:09:75:d0:db:18:6d:c0:eb:80:b7:2a:b4:80: 69:61:6f:0f:1c:6c:6f:51:39:5d:c9:ad:8b:0b:a9: eb:9f:4a:71:d0:56:10:ff:4d:4f:b5:33:7c:d1:80: a8:97:b9:77:6c:0f:33:67:73:da:05:3e:8c:5a:b1: ca:41:f4:77:6b:3f:22:1e:6d:66:31:b5:9b:3f:5a: 6c:16:86:7f:d5:9f:a8:b1:0c:9c:c1:2d:53:12:b9: 58:75:cf:b1:41:ab:e7:7e:16:69:ad:29:81:4e:18: 38:0b:48:a8:47:eb:e6:f7:0b:56:51:5b:b7:8d:2d: 3a:3b:63:84:6b:43:03:57:6d:ba:b1:73:62:c7:37: 70:4e:b2:ea:4d:b3:9f:a9:3e:ed:ac:19:87:c5:0c: 57:62:01:07:8f:20:57:23:7d:c1:26:cc:c6:50:95: f2:f3:90:db:3f:3b:85:1a:e2:8f:93:70:f0:1d:c8: 2e:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:36:78:6E:EF:C4:58:8E:E0:E2:1C:78:AE:08:94:12:7A:01:C7:E5 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/87c185ae-9dbb-4e48-818e-6a611c8874e1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.240.64.0/20 Signature Algorithm: sha256WithRSAEncryption 8c:af:bc:de:16:73:cb:26:5d:87:73:11:3f:05:63:e2:23:3f: 1e:ab:7e:fc:33:bb:75:8a:8d:2c:f8:6c:11:ba:26:83:d2:3b: 93:ac:c5:d9:01:52:27:18:8b:b0:4b:ac:88:d4:7a:09:01:14: 67:b3:2e:44:f9:fe:45:95:a9:b2:a1:b8:26:46:eb:69:e1:b0: c0:73:63:e0:12:70:c9:5a:85:2a:e1:c4:e3:44:e8:c4:8a:26: cd:ef:06:37:8a:2a:c1:b4:9a:5e:8d:28:fb:b9:63:b7:16:4d: 0e:d0:57:43:12:2c:62:97:6d:9e:4e:34:bf:d1:c4:42:8d:43: c7:8e:d5:96:d9:4a:c5:47:57:75:1a:5c:48:52:50:88:f3:63: fc:ba:ee:12:1b:62:e5:15:9b:66:bc:4b:f5:ea:80:2e:c3:92: fb:9e:64:a6:75:3a:d0:49:9e:e4:58:5d:09:b8:a7:21:7e:21: 09:91:13:85:e5:3a:f7:39:0d:c8:d0:bb:c2:1a:7c:b2:1b:16: b3:96:6b:a8:55:c4:c8:10:56:73:f6:ff:a3:3d:ad:84:ef:1e: 16:fb:d0:f4:9a:01:9d:98:60:5c:b0:88:52:bf:06:42:51:28: a4:e6:6c:47:6a:f0:93:1a:92:f7:55:e5:c9:0e:c6:f9:6a:75: 8c:27:3e:cc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUf7p579PrdiwHfFUclzwhbZFMMqcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNzExMTczMTIzWhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BmYjRhNjBkOGI3NTc2ODM3NDI5NmM0NDFhNmZhMTFiZDdk ZjczMjg0MmY2MGY1NWM4OTBkYjkyYmY5OTFhMWQ4MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDK4UgyHNS1g6w3MVc3OJ77vYfunKf1JfmnB0wj4Pch+mc1 YRdNx7eXm9xJrGt+nCIIpUHe4fDre9KBkh+20a8kDUwzPgKbp6dJGtlTCXXQ2xht wOuAtyq0gGlhbw8cbG9ROV3JrYsLqeufSnHQVhD/TU+1M3zRgKiXuXdsDzNnc9oF PoxascpB9HdrPyIebWYxtZs/WmwWhn/Vn6ixDJzBLVMSuVh1z7FBq+d+FmmtKYFO GDgLSKhH6+b3C1ZRW7eNLTo7Y4RrQwNXbbqxc2LHN3BOsupNs5+pPu2sGYfFDFdi AQePIFcjfcEmzMZQlfLzkNs/O4Ua4o+TcPAdyC6rAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU6zZ4bu/EWI7g4hx4rgiUEnoBx+UwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzg3YzE4NWFlLTlkYmItNGU0OC04MThlLTZhNjExYzg4NzRlMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQ28EAwDQYJKoZIhvcNAQELBQADggEBAIyvvN4Wc8smXYdzET8FY+IjPx6r fvwzu3WKjSz4bBG6JoPSO5OsxdkBUicYi7BLrIjUegkBFGezLkT5/kWVqbKhuCZG 62nhsMBzY+AScMlahSrhxONE6MSKJs3vBjeKKsG0ml6NKPu5Y7cWTQ7QV0MSLGKX bZ5ONL/RxEKNQ8eO1ZbZSsVHV3UaXEhSUIjzY/y67hIbYuUVm2a8S/XqgC7Dkvue ZKZ1OtBJnuRYXQm4pyF+IQmRE4XlOvc5DcjQu8IafLIbFrOWa6hVxMgQVnP2/6M9 rYTvHhb70PSaAZ2YYFywiFK/BkJRKKTmbEdq8JMakvdV5ckOxvlqdYwnPsw= -----END CERTIFICATE-----Generated at Mon Aug 4 14:41:44 2025 by rpki-client