$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9d303240-3acb-4d68-b814-86396ed22af1.roa File: 9d303240-3acb-4d68-b814-86396ed22af1.roa (raw, json) Hash identifier: 0TQLb8Eui69YL46nCvKO26GEv5gzecZK/QZa0mAL1iA= Subject key identifier: CC:CA:EA:DC:0B:4C:0D:5D:43:D3:A8:44:40:2B:AA:43:3A:F5:E6:2F Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 39B007D5D548299390E8AFF02191426109C0D182 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9d303240-3acb-4d68-b814-86396ed22af1.roa Signing time: Tue 29 Jul 2025 15:11:47 +0000 ROA not before: Tue 29 Jul 2025 15:11:47 +0000 ROA not after: Tue 02 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.155.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:b0:07:d5:d5:48:29:93:90:e8:af:f0:21:91:42:61:09:c0:d1:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jul 29 15:11:47 2025 GMT Not After : Sep 2 23:59:59 2025 GMT Subject: serialNumber=24a2d69bfe7a23b714651c552b7c234e567b0db75a7a1493d6b745f39501cb44, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c8:55:c9:0d:2c:d1:f1:79:ce:c1:88:e5:80: e5:82:97:84:69:71:8e:af:32:a5:d8:07:6a:56:65: 80:65:b9:c6:aa:6e:f5:82:aa:89:dc:57:a2:fc:f2: d9:47:24:b7:8d:ea:cb:49:ef:4f:6a:0d:bc:9e:b0: 65:3e:b3:d7:4e:aa:62:6e:37:a7:89:c1:e1:ff:46: b2:02:14:db:12:07:a3:20:dc:ad:65:33:e9:84:16: 2d:9a:4e:38:47:e4:71:6d:84:65:72:b9:9b:cc:00: 54:3b:cd:ce:83:e9:78:ae:1d:ae:9f:dd:02:be:bd: 2b:8c:5f:12:e5:64:4e:d1:7d:0e:9a:90:e1:36:9d: 27:f2:57:b9:c1:b9:d8:44:9d:22:4f:e4:58:b6:92: a8:fb:d7:81:3b:25:54:25:29:55:7a:6b:1f:e9:a1: e5:ff:a2:65:a6:60:f8:58:0c:78:2d:44:11:36:e0: fd:ce:78:a4:71:63:be:06:ed:dd:86:71:17:bc:ea: 23:9f:39:1c:39:4b:e6:f1:7a:2e:2a:d4:01:84:66: ce:fd:e5:c4:8d:4a:2a:f4:f7:fe:9f:ef:d7:08:21: 4f:d5:06:24:79:de:47:30:86:0e:56:78:5e:a6:38: 9f:e9:23:b2:1d:20:d3:f5:e3:56:ab:11:ed:36:e6: 20:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:CA:EA:DC:0B:4C:0D:5D:43:D3:A8:44:40:2B:AA:43:3A:F5:E6:2F X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9d303240-3acb-4d68-b814-86396ed22af1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.155.128.0/18 Signature Algorithm: sha256WithRSAEncryption 85:54:b8:03:4a:60:0f:f3:18:e1:97:b8:c7:9c:a7:68:23:31: 15:31:2b:90:c6:8c:ba:0d:77:a9:16:1b:33:ba:ff:3b:f3:71: a8:cc:40:40:ca:c0:86:44:21:3d:70:01:76:04:6b:ba:ad:c0: 62:7f:f8:d8:54:ce:a9:50:28:b9:73:9e:c2:a7:50:80:72:3b: f2:e8:98:c3:39:f0:08:95:0c:61:44:4f:03:76:24:32:91:0d: 32:71:fd:5e:a6:52:8f:d8:8f:0b:f7:33:f7:96:e7:36:5a:ff: fb:9d:2b:0f:85:f4:50:8f:50:3c:9c:36:9d:92:87:1f:01:8b: 9d:76:95:a3:09:1d:15:4c:db:78:f3:53:9e:30:bd:c0:72:49: 84:e9:54:c5:f3:bc:b6:51:ab:b8:fe:9b:6d:2a:63:22:9a:8f: 02:f6:1f:52:9d:07:d5:3c:68:e5:ef:76:a7:9d:65:e1:fc:70: ac:93:fb:7e:be:b3:dd:9a:a7:10:94:8f:fa:9b:6f:92:d9:2d: 20:a3:4b:ed:28:8c:01:f2:64:64:7f:69:e0:99:17:60:cf:86: c9:68:72:f4:ed:e9:c0:05:87:39:a5:82:32:92:30:ad:ee:02: ac:80:ae:4d:7a:f0:0e:84:65:44:30:e8:7b:5c:f7:3b:0c:75: 3d:f6:59:34 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUObAH1dVIKZOQ6K/wIZFCYQnA0YIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNzI5MTUxMTQ3WhcNMjUwOTAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AyNGEyZDY5YmZlN2EyM2I3MTQ2NTFjNTUyYjdjMjM0ZTU2 N2IwZGI3NWE3YTE0OTNkNmI3NDVmMzk1MDFjYjQ0MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2yFXJDSzR8XnOwYjlgOWCl4RpcY6vMqXYB2pWZYBlucaq bvWCqoncV6L88tlHJLeN6stJ709qDbyesGU+s9dOqmJuN6eJweH/RrICFNsSB6Mg 3K1lM+mEFi2aTjhH5HFthGVyuZvMAFQ7zc6D6XiuHa6f3QK+vSuMXxLlZE7RfQ6a kOE2nSfyV7nBudhEnSJP5Fi2kqj714E7JVQlKVV6ax/poeX/omWmYPhYDHgtRBE2 4P3OeKRxY74G7d2GcRe86iOfORw5S+bxei4q1AGEZs795cSNSir09/6f79cIIU/V BiR53kcwhg5WeF6mOJ/pI7IdINP141arEe025iCPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUzMrq3AtMDV1D06hEQCuqQzr15i8wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzlkMzAzMjQwLTNhY2ItNGQ2OC1iODE0LTg2Mzk2ZWQyMmFmMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAY2m4AwDQYJKoZIhvcNAQELBQADggEBAIVUuANKYA/zGOGXuMecp2gjMRUx K5DGjLoNd6kWGzO6/zvzcajMQEDKwIZEIT1wAXYEa7qtwGJ/+NhUzqlQKLlznsKn UIByO/LomMM58AiVDGFETwN2JDKRDTJx/V6mUo/Yjwv3M/eW5zZa//udKw+F9FCP UDycNp2Shx8Bi512laMJHRVM23jzU54wvcBySYTpVMXzvLZRq7j+m20qYyKajwL2 H1KdB9U8aOXvdqedZeH8cKyT+36+s92apxCUj/qbb5LZLSCjS+0ojAHyZGR/aeCZ F2DPhslocvTt6cAFhzmlgjKSMK3uAqyArk168A6EZUQw6Htc9zsMdT32WTQ= -----END CERTIFICATE-----Generated at Tue Aug 5 20:04:28 2025 by rpki-client