$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8af8a158-8bde-4268-a5db-85868bfe4ce7.roa File: 8af8a158-8bde-4268-a5db-85868bfe4ce7.roa (raw, json) Hash identifier: irKdNrG2eqnxC3OaaiK9aqp5PlFGYfsIj1gZSZUnIDE= Subject key identifier: 2C:4E:8F:75:1C:05:A7:CF:15:3B:F9:D7:FD:1E:95:D5:47:3D:21:AB Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 112F3C6FB5B8681F3E6B2B5FA97AFA334F7CB1AC Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8af8a158-8bde-4268-a5db-85868bfe4ce7.roa Signing time: Fri 25 Jul 2025 16:21:49 +0000 ROA not before: Fri 25 Jul 2025 16:21:49 +0000 ROA not after: Fri 29 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.215.96.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:2f:3c:6f:b5:b8:68:1f:3e:6b:2b:5f:a9:7a:fa:33:4f:7c:b1:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jul 25 16:21:49 2025 GMT Not After : Aug 29 23:59:59 2025 GMT Subject: serialNumber=bc0991b3c48f73e37fa7aacbaa9cee8007e66946c3ef0a8d2f1e742e7ea6f6aa, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:20:0e:46:26:40:0f:07:4b:88:c0:bc:47:42: 37:1d:26:19:54:c4:48:9d:d9:71:02:60:b2:af:67: c5:01:7f:c1:e1:b4:13:10:f6:83:a4:12:84:51:ab: d0:e4:fa:13:59:98:26:3c:34:79:1a:17:e8:c9:49: 8f:79:98:7a:a7:89:d0:0d:4e:14:4e:02:07:42:66: 8a:8d:b5:0c:a7:82:fc:53:fb:74:89:5c:7b:77:db: de:4d:29:75:bc:b5:5a:22:a4:d6:2e:ad:0d:3a:51: 01:48:b4:25:36:1e:d9:8d:4b:56:bd:db:f1:f1:d9: 28:a6:09:65:3d:e0:56:74:29:96:72:f7:a9:51:d1: 36:e6:2e:f4:b8:a6:ae:1b:a5:9a:51:bb:85:bc:1e: 21:a3:e4:9a:c0:68:bd:c3:e0:8e:bb:26:2e:fb:e9: 29:45:52:ae:8f:d9:5d:32:30:dc:c5:3d:12:69:25: 97:e9:46:5d:38:25:c0:33:15:73:7c:ec:3c:13:3e: c9:49:c2:34:6e:c2:1f:35:98:4d:4c:a4:a0:86:1a: 8e:e2:15:7e:01:9d:71:70:0c:c4:df:0c:21:30:5f: c0:5b:6f:23:a4:0a:da:b7:9b:ab:17:d4:95:df:19: 38:b2:09:0a:0e:13:26:a5:37:03:3a:48:01:c5:0d: 26:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:4E:8F:75:1C:05:A7:CF:15:3B:F9:D7:FD:1E:95:D5:47:3D:21:AB X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8af8a158-8bde-4268-a5db-85868bfe4ce7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.215.96.0/19 Signature Algorithm: sha256WithRSAEncryption 5b:ba:3c:28:30:41:c8:67:3f:b4:ea:f4:e3:d2:13:8e:2b:cc: 33:ae:dc:f8:ae:b7:e0:c3:c3:c3:ae:f4:be:d8:55:da:ca:fe: b6:ab:d2:77:78:27:9f:db:65:c1:d8:6c:dd:93:6a:d2:79:99: 71:a3:e5:81:e4:7a:47:5f:e9:ef:03:b6:27:8f:a9:c1:7d:5d: 60:4d:88:81:3d:74:ac:51:1c:13:c3:1e:95:1a:ad:89:a8:29: 22:4e:ca:f8:5b:5b:59:81:c0:43:07:36:a9:d6:65:35:3c:f1: 9e:2d:24:13:16:96:39:c2:93:45:60:48:3f:5a:e6:f6:83:bb: ef:2c:d3:48:38:3b:25:e1:3a:31:ad:f5:b5:a3:88:7f:5d:10: db:3e:4f:53:02:88:70:67:d6:42:18:70:8d:3c:9f:ae:52:f5: 6e:25:e9:37:04:d2:92:13:85:f8:07:ab:2f:62:76:41:1f:db: 1e:e7:4e:43:11:7a:f4:59:24:13:33:f7:2e:ff:9a:4b:2b:5c: 69:f6:b2:75:e6:9c:0f:16:4f:1b:4c:db:e2:7f:63:b2:10:60: f1:90:b4:93:2e:c5:04:d0:00:a0:c5:a8:27:77:81:7a:09:3b: 25:9a:87:ed:a8:03:37:f7:02:d8:01:be:8d:01:ed:56:32:37: ba:e6:71:0a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUES88b7W4aB8+aytfqXr6M098sawwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNzI1MTYyMTQ5WhcNMjUwODI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BiYzA5OTFiM2M0OGY3M2UzN2ZhN2FhY2JhYTljZWU4MDA3 ZTY2OTQ2YzNlZjBhOGQyZjFlNzQyZTdlYTZmNmFhMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDIA5GJkAPB0uIwLxHQjcdJhlUxEid2XECYLKvZ8UBf8Hh tBMQ9oOkEoRRq9Dk+hNZmCY8NHkaF+jJSY95mHqnidANThROAgdCZoqNtQyngvxT +3SJXHt3295NKXW8tVoipNYurQ06UQFItCU2HtmNS1a92/Hx2SimCWU94FZ0KZZy 96lR0TbmLvS4pq4bpZpRu4W8HiGj5JrAaL3D4I67Ji776SlFUq6P2V0yMNzFPRJp JZfpRl04JcAzFXN87DwTPslJwjRuwh81mE1MpKCGGo7iFX4BnXFwDMTfDCEwX8Bb byOkCtq3m6sX1JXfGTiyCQoOEyalNwM6SAHFDSb3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQULE6PdRwFp88VO/nX/R6V1Uc9IaswHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzhhZjhhMTU4LThiZGUtNDI2OC1hNWRiLTg1ODY4YmZlNGNlNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAU212AwDQYJKoZIhvcNAQELBQADggEBAFu6PCgwQchnP7Tq9OPSE44rzDOu 3Piut+DDw8Ou9L7YVdrK/rar0nd4J5/bZcHYbN2TatJ5mXGj5YHkekdf6e8DtieP qcF9XWBNiIE9dKxRHBPDHpUarYmoKSJOyvhbW1mBwEMHNqnWZTU88Z4tJBMWljnC k0VgSD9a5vaDu+8s00g4OyXhOjGt9bWjiH9dENs+T1MCiHBn1kIYcI08n65S9W4l 6TcE0pIThfgHqy9idkEf2x7nTkMRevRZJBMz9y7/mksrXGn2snXmnA8WTxtM2+J/ Y7IQYPGQtJMuxQTQAKDFqCd3gXoJOyWah+2oAzf3AtgBvo0B7VYyN7rmcQo= -----END CERTIFICATE-----Generated at Mon Aug 4 21:35:41 2025 by rpki-client