$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9b297106-5adb-42a3-be39-8d4eb4ec1873.roa File: 9b297106-5adb-42a3-be39-8d4eb4ec1873.roa (raw, json) Hash identifier: HZ2yWSKGEjrLd/7oPLu/qXsuZynIZ+tx9uQ3K77JNyo= Subject key identifier: CB:E7:0D:D9:1A:35:66:A7:7E:05:8A:F4:E8:BE:09:DC:1F:12:D6:B2 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 3D0651E2A443D1B2E85A66DA84935F32A97C3D65 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9b297106-5adb-42a3-be39-8d4eb4ec1873.roa Signing time: Fri 11 Jul 2025 17:51:05 +0000 ROA not before: Fri 11 Jul 2025 17:51:05 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 54.88.0.0/14 maxlen: 14 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:06:51:e2:a4:43:d1:b2:e8:5a:66:da:84:93:5f:32:a9:7c:3d:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jul 11 17:51:05 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=3c76a42bf635ad07267a45c2c15f04a3282a9ac12ae438d5f486c2ad0883b551, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:c1:90:cc:ee:b7:64:89:7b:f3:aa:9b:8d:6a: a8:81:a7:e7:bc:c3:7f:67:42:5e:1b:67:0f:68:43: 02:dc:3f:f9:43:8b:ea:7b:d1:a4:81:23:1a:67:fd: 4b:5b:ba:11:44:e8:ba:99:c5:7e:9b:7c:49:6f:d5: b3:a9:c2:24:6c:0a:c7:f4:4e:22:46:4b:33:1b:95: 41:15:e2:e3:37:53:01:14:d7:1c:b8:1f:cb:1d:da: 03:3e:1d:a4:1a:d1:d4:77:5a:51:b5:b1:f3:85:79: 07:92:5e:13:e1:ad:ce:09:73:ee:b6:7d:67:05:87: 07:14:50:46:ef:42:cd:b6:7f:50:59:a9:f2:41:20: b3:bf:d1:d0:75:15:9b:93:a2:2e:f3:62:ef:7d:97: 0d:8e:0c:21:57:a7:67:2d:21:3d:d7:4b:01:9e:60: 33:7f:8e:36:37:30:b2:30:98:56:23:77:0c:a2:79: f0:8e:24:2b:f0:dd:a8:f0:df:1e:44:8b:7e:d3:97: 7f:8f:1e:60:57:b7:48:fb:c8:9c:2d:ed:ed:4a:02: b4:74:0a:13:3e:4d:c1:45:7c:af:da:cd:03:f6:86: 2c:0e:99:03:0c:fd:56:e2:23:f6:40:b5:35:12:07: 99:c5:5d:66:57:2f:3c:91:01:f5:40:a4:60:d7:93: 03:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:E7:0D:D9:1A:35:66:A7:7E:05:8A:F4:E8:BE:09:DC:1F:12:D6:B2 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9b297106-5adb-42a3-be39-8d4eb4ec1873.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.88.0.0/14 Signature Algorithm: sha256WithRSAEncryption 04:56:24:d6:50:4e:52:be:80:c4:28:46:49:f2:e2:63:04:2c: f2:23:e0:4d:12:68:6e:9f:e6:85:2e:b3:29:9e:a1:39:49:4a: c2:ff:4e:0c:79:b3:c5:fd:98:f1:4f:13:37:52:30:23:c3:4a: ad:ed:08:0c:c4:71:ed:b7:16:ac:76:bc:6c:ef:9a:63:fc:e9: ea:f4:ce:76:d2:8f:9a:74:09:5c:b1:b3:35:1a:4f:c0:fe:dc: c8:cf:0f:39:80:44:ff:6a:20:c1:46:01:33:77:51:e4:a8:e5: 1a:0c:35:16:74:de:06:c6:cb:f4:47:e4:3b:15:21:c4:01:84: 22:75:a7:b6:0b:e5:10:81:95:ea:41:d2:cc:2e:70:fe:ce:90: 5c:c8:80:64:f3:0c:9f:ba:d5:73:d2:4e:28:66:f4:86:c7:14: 35:06:a5:a8:74:33:31:f7:24:ba:e9:70:6f:11:8c:e1:b6:8f: 71:03:a0:3f:a2:f9:3b:93:a6:90:99:0f:ea:85:5b:51:37:43: 4e:45:99:d3:80:31:21:52:41:4f:67:ea:3c:e5:7c:7b:0a:9d: 89:db:b1:21:dc:39:9a:d3:fb:b9:ec:f0:de:3e:1b:c2:f2:fb: ed:4b:cb:8c:06:15:74:a5:ec:af:b4:e2:90:29:96:47:13:28: dd:0d:8e:c0 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUPQZR4qRD0bLoWmbahJNfMql8PWUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNzExMTc1MTA1WhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0AzYzc2YTQyYmY2MzVhZDA3MjY3YTQ1YzJjMTVmMDRhMzI4 MmE5YWMxMmFlNDM4ZDVmNDg2YzJhZDA4ODNiNTUxMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMwZDM7rdkiXvzqpuNaqiBp+e8w39nQl4bZw9oQwLcP/lD i+p70aSBIxpn/UtbuhFE6LqZxX6bfElv1bOpwiRsCsf0TiJGSzMblUEV4uM3UwEU 1xy4H8sd2gM+HaQa0dR3WlG1sfOFeQeSXhPhrc4Jc+62fWcFhwcUUEbvQs22f1BZ qfJBILO/0dB1FZuToi7zYu99lw2ODCFXp2ctIT3XSwGeYDN/jjY3MLIwmFYjdwyi efCOJCvw3ajw3x5Ei37Tl3+PHmBXt0j7yJwt7e1KArR0ChM+TcFFfK/azQP2hiwO mQMM/VbiI/ZAtTUSB5nFXWZXLzyRAfVApGDXkwPdAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUy+cN2Ro1Zqd+BYr06L4J3B8S1rIwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzliMjk3MTA2LTVhZGItNDJhMy1iZTM5LThkNGViNGVjMTg3My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwI2WDANBgkqhkiG9w0BAQsFAAOCAQEABFYk1lBOUr6AxChGSfLiYwQs8iPg TRJobp/mhS6zKZ6hOUlKwv9ODHmzxf2Y8U8TN1IwI8NKre0IDMRx7bcWrHa8bO+a Y/zp6vTOdtKPmnQJXLGzNRpPwP7cyM8POYBE/2ogwUYBM3dR5KjlGgw1FnTeBsbL 9EfkOxUhxAGEInWntgvlEIGV6kHSzC5w/s6QXMiAZPMMn7rVc9JOKGb0hscUNQal qHQzMfckuulwbxGM4baPcQOgP6L5O5OmkJkP6oVbUTdDTkWZ04AxIVJBT2fqPOV8 ewqdiduxIdw5mtP7uezw3j4bwvL77UvLjAYVdKXsr7TikCmWRxMo3Q2OwA== -----END CERTIFICATE-----Generated at Mon Aug 4 18:59:20 2025 by rpki-client