$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9dd61ff9-fe4a-41e9-b9cb-c1484aa5ce10.roa File: 9dd61ff9-fe4a-41e9-b9cb-c1484aa5ce10.roa (raw, json) Hash identifier: fOTDtLXx/zCX0YYc3ZuhJnZ/43LX7fbq6W/LOcmPAp0= Subject key identifier: 5F:70:51:CB:F8:2F:ED:54:D2:CD:5E:DD:0B:8F:FF:66:57:FE:BB:5C Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 3598096FC5B45497011B6F96BC1CA08E313C1DD2 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9dd61ff9-fe4a-41e9-b9cb-c1484aa5ce10.roa Signing time: Fri 25 Jul 2025 15:51:03 +0000 ROA not before: Fri 25 Jul 2025 15:51:03 +0000 ROA not after: Fri 29 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.64.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:98:09:6f:c5:b4:54:97:01:1b:6f:96:bc:1c:a0:8e:31:3c:1d:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jul 25 15:51:03 2025 GMT Not After : Aug 29 23:59:59 2025 GMT Subject: serialNumber=82bdae9041adfb030ecf03f61b200a80aec11bc340b9c913118cb35d6b9acdb9, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:e6:f6:80:0f:11:92:96:03:f1:32:76:3f:e8: 5c:0c:af:8c:5f:72:06:d5:e0:c5:3a:00:77:32:e2: bb:7e:bd:2d:c2:d7:72:c7:c9:65:c1:05:cb:ec:1b: 64:ce:76:aa:6d:7d:1d:a9:4d:23:7d:f4:58:e4:5c: cf:86:eb:5c:49:19:19:b2:3a:0e:35:b1:6a:63:72: 5c:93:fb:4d:0d:d9:d8:a8:62:47:42:dc:12:36:14: 4d:11:d4:a2:21:01:4a:63:92:a3:03:8e:99:63:01: 84:6f:41:3b:70:db:66:8b:29:0f:47:7e:4f:59:df: 01:5f:9e:af:89:ff:b8:d3:57:02:6d:a8:a0:ab:6d: 79:f3:97:7d:3a:5e:1d:99:76:19:a7:9f:26:77:ba: d7:e1:d2:f8:b0:03:cd:10:15:38:8a:fd:73:93:a7: c7:08:9f:a0:17:cf:9b:aa:ae:ee:48:2e:13:a2:52: a1:63:d3:24:f3:a3:ae:27:e5:b4:60:45:c5:52:70: 49:c5:08:2b:26:c2:be:47:90:1f:16:ac:ef:fa:0c: 98:12:f7:2f:7f:05:53:76:83:45:06:1e:be:16:21: 35:42:a2:6a:cf:a5:6c:e2:19:48:31:fc:26:13:e3: 12:b3:4c:ea:42:98:6b:5d:ce:22:8c:51:fd:18:50: c1:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:70:51:CB:F8:2F:ED:54:D2:CD:5E:DD:0B:8F:FF:66:57:FE:BB:5C X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9dd61ff9-fe4a-41e9-b9cb-c1484aa5ce10.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.64.0.0/17 Signature Algorithm: sha256WithRSAEncryption 95:82:f3:7c:f1:9d:06:ac:e7:8d:72:73:51:19:2c:40:30:04: 8d:95:30:fd:48:60:3e:02:8c:75:56:ad:aa:bd:00:be:44:13: 8a:9f:13:4f:2a:37:97:d5:59:98:66:c7:c0:0c:0e:75:bc:8d: 74:8f:c6:f4:fc:64:f1:af:f3:2a:ab:63:47:5d:4b:d1:aa:c0: 06:c8:f7:86:71:fc:f5:5a:34:e6:34:fa:a3:06:14:68:24:d0: 4f:04:85:f1:6e:9a:31:67:b0:c0:c3:09:5a:ce:36:50:cb:8d: 87:52:c4:cd:cd:08:4a:77:36:8d:e6:3b:32:43:d8:47:38:ed: 12:ea:9c:93:00:55:9a:f7:7f:a4:b0:83:0d:aa:d9:19:53:23: b7:7c:ac:b4:ca:88:77:25:33:50:5a:5f:cf:59:d5:01:a0:35: 34:1a:30:51:a7:ad:84:bd:7b:8e:f5:1d:2e:61:99:9f:9d:cf: 39:3f:9e:8e:e1:c3:72:49:18:13:ad:9f:78:52:be:ed:ca:7a: 82:91:d6:88:8a:56:7a:45:79:6d:5d:f3:e7:b3:ec:07:20:f2: ea:28:28:a1:8a:d2:30:13:20:a1:b6:8c:2d:96:8c:c1:32:1f: 62:a7:84:a3:a0:1b:97:47:a1:b8:f1:b5:0c:d8:16:8e:68:1f: 59:fe:bd:f9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNZgJb8W0VJcBG2+WvBygjjE8HdIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNzI1MTU1MTAzWhcNMjUwODI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MmJkYWU5MDQxYWRmYjAzMGVjZjAzZjYxYjIwMGE4MGFl YzExYmMzNDBiOWM5MTMxMThjYjM1ZDZiOWFjZGI5MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDU5vaADxGSlgPxMnY/6FwMr4xfcgbV4MU6AHcy4rt+vS3C 13LHyWXBBcvsG2TOdqptfR2pTSN99FjkXM+G61xJGRmyOg41sWpjclyT+00N2dio YkdC3BI2FE0R1KIhAUpjkqMDjpljAYRvQTtw22aLKQ9Hfk9Z3wFfnq+J/7jTVwJt qKCrbXnzl306Xh2ZdhmnnyZ3utfh0viwA80QFTiK/XOTp8cIn6AXz5uqru5ILhOi UqFj0yTzo64n5bRgRcVScEnFCCsmwr5HkB8WrO/6DJgS9y9/BVN2g0UGHr4WITVC omrPpWziGUgx/CYT4xKzTOpCmGtdziKMUf0YUMEZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUX3BRy/gv7VTSzV7dC4//Zlf+u1wwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzlkZDYxZmY5LWZlNGEtNDFlOS1iOWNiLWMxNDg0YWE1Y2UxMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAc0QAAwDQYJKoZIhvcNAQELBQADggEBAJWC83zxnQas541yc1EZLEAwBI2V MP1IYD4CjHVWraq9AL5EE4qfE08qN5fVWZhmx8AMDnW8jXSPxvT8ZPGv8yqrY0dd S9GqwAbI94Zx/PVaNOY0+qMGFGgk0E8EhfFumjFnsMDDCVrONlDLjYdSxM3NCEp3 No3mOzJD2Ec47RLqnJMAVZr3f6Swgw2q2RlTI7d8rLTKiHclM1BaX89Z1QGgNTQa MFGnrYS9e471HS5hmZ+dzzk/no7hw3JJGBOtn3hSvu3KeoKR1oiKVnpFeW1d8+ez 7Acg8uooKKGK0jATIKG2jC2WjMEyH2KnhKOgG5dHobjxtQzYFo5oH1n+vfk= -----END CERTIFICATE-----Generated at Mon Aug 4 21:44:01 2025 by rpki-client