$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a092f82c-3055-4fdd-916a-baf2fcb56fd3.roa File: a092f82c-3055-4fdd-916a-baf2fcb56fd3.roa (raw, json) Hash identifier: mqYGDpkxvHh8kNRcepBsCzHY7b8//MsJ9Pgxgs3xyVE= Subject key identifier: 2F:DA:0B:09:31:59:FB:51:EC:32:72:DC:E8:1B:42:F3:82:A4:82:4C Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 2BB772DD4EEA5CF404701E9D89818122563F2F89 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a092f82c-3055-4fdd-916a-baf2fcb56fd3.roa Signing time: Tue 29 Jul 2025 17:51:50 +0000 ROA not before: Tue 29 Jul 2025 17:51:50 +0000 ROA not after: Tue 02 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.245.80.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:b7:72:dd:4e:ea:5c:f4:04:70:1e:9d:89:81:81:22:56:3f:2f:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jul 29 17:51:50 2025 GMT Not After : Sep 2 23:59:59 2025 GMT Subject: serialNumber=fca1e361b18ece95fd6de70198a3cc5ff9fa8fc6d26e32106a8f8c66d0cd7649, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ad:13:6b:b8:ee:4c:59:34:13:9a:f6:fe:e7: 8d:ea:03:d8:47:29:44:5e:bc:56:0f:c7:ed:28:5a: a3:59:ff:6b:f2:03:29:e0:99:2f:5c:9c:58:00:0c: 2e:4a:c9:27:3a:dc:8f:9f:89:a8:d5:92:ab:e8:1d: 07:cf:be:4a:5f:4e:6c:27:09:80:47:84:eb:12:ea: b5:fa:bd:9c:fe:88:a8:5a:b9:4b:0f:88:56:3a:2b: 3d:7c:8d:2c:3d:c7:4f:e2:28:ad:49:73:22:0b:bd: 55:8c:35:b2:77:9b:9c:cf:94:79:c4:a6:f1:62:33: a6:36:bf:f5:ab:e7:ec:f5:92:2a:84:06:b6:b5:be: d4:ab:f6:ab:ad:c9:24:83:60:f1:e6:bd:bb:fb:0c: 59:f6:c8:31:57:3c:59:ce:c2:20:28:40:60:23:ba: 7a:0a:64:79:8e:60:2f:ae:9a:f0:38:8e:a9:97:cc: 1b:ed:c4:f1:29:e4:9a:1f:e9:25:e7:34:3d:57:8a: 83:5b:f8:04:48:4a:25:fa:14:c3:41:d1:9b:e8:b5: 40:3e:b0:8a:42:e5:46:d5:50:e1:b3:17:3e:6f:e5: 16:01:23:e0:91:3e:ca:a0:90:76:06:4f:c3:95:73: 53:51:50:b3:c3:c1:f8:91:a3:ac:cf:d1:07:bf:a5: ed:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:DA:0B:09:31:59:FB:51:EC:32:72:DC:E8:1B:42:F3:82:A4:82:4C X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a092f82c-3055-4fdd-916a-baf2fcb56fd3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.245.80.0/20 Signature Algorithm: sha256WithRSAEncryption 87:09:b5:95:85:c1:89:c2:b1:0c:a9:79:61:97:10:68:21:4c: 65:56:e5:89:50:5b:54:c4:13:62:0a:4d:d1:f3:52:c5:85:5d: ff:7f:3d:c9:63:fd:08:4e:40:71:91:b6:13:d3:0f:64:62:3d: eb:ea:d0:12:50:65:1d:ca:d6:4e:8b:c1:c1:c0:1a:a1:9e:07: af:5e:31:5b:26:17:9d:6d:70:e5:4b:a8:8c:d1:b8:c6:91:fd: cc:40:a4:7c:2c:53:c1:a7:d3:cf:ee:88:67:73:d0:97:8e:6c: 4d:9a:24:fb:71:ab:e5:31:ce:bd:bc:c8:78:d0:ba:2e:a9:a0: 2a:63:31:e6:e1:10:f0:92:5b:0d:69:29:85:62:35:b4:1c:32: bf:5d:25:19:a7:ea:7b:52:be:ea:2d:84:16:c1:7c:ea:53:17: 73:5e:db:df:b2:bd:37:25:ac:2c:1e:2e:fb:0f:db:8d:85:a4: 16:c1:e1:76:9b:5c:47:72:e0:7d:a9:f9:03:23:78:99:f8:37: e0:38:51:63:8c:36:2a:3a:26:cc:2c:df:ce:a1:9b:23:e0:77: de:09:24:a9:82:81:f3:52:03:3a:99:11:88:94:80:8e:90:d9: de:0d:96:a5:60:ab:fd:b5:fa:84:28:4f:1f:77:64:8d:29:53: 23:46:b2:85 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUK7dy3U7qXPQEcB6diYGBIlY/L4kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNzI5MTc1MTUwWhcNMjUwOTAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BmY2ExZTM2MWIxOGVjZTk1ZmQ2ZGU3MDE5OGEzY2M1ZmY5 ZmE4ZmM2ZDI2ZTMyMTA2YThmOGM2NmQwY2Q3NjQ5MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzrRNruO5MWTQTmvb+543qA9hHKURevFYPx+0oWqNZ/2vy AyngmS9cnFgADC5KySc63I+fiajVkqvoHQfPvkpfTmwnCYBHhOsS6rX6vZz+iKha uUsPiFY6Kz18jSw9x0/iKK1JcyILvVWMNbJ3m5zPlHnEpvFiM6Y2v/Wr5+z1kiqE Bra1vtSr9qutySSDYPHmvbv7DFn2yDFXPFnOwiAoQGAjunoKZHmOYC+umvA4jqmX zBvtxPEp5Jof6SXnND1XioNb+ARISiX6FMNB0ZvotUA+sIpC5UbVUOGzFz5v5RYB I+CRPsqgkHYGT8OVc1NRULPDwfiRo6zP0Qe/pe3XAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUL9oLCTFZ+1HsMnLc6BtC84KkgkwwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2EwOTJmODJjLTMwNTUtNGZkZC05MTZhLWJhZjJmY2I1NmZkMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQ29VAwDQYJKoZIhvcNAQELBQADggEBAIcJtZWFwYnCsQypeWGXEGghTGVW 5YlQW1TEE2IKTdHzUsWFXf9/Pclj/QhOQHGRthPTD2RiPevq0BJQZR3K1k6LwcHA GqGeB69eMVsmF51tcOVLqIzRuMaR/cxApHwsU8Gn08/uiGdz0JeObE2aJPtxq+Ux zr28yHjQui6poCpjMebhEPCSWw1pKYViNbQcMr9dJRmn6ntSvuothBbBfOpTF3Ne 29+yvTclrCweLvsP242FpBbB4XabXEdy4H2p+QMjeJn4N+A4UWOMNio6Jsws386h myPgd94JJKmCgfNSAzqZEYiUgI6Q2d4NlqVgq/21+oQoTx93ZI0pUyNGsoU= -----END CERTIFICATE-----Generated at Mon Aug 4 21:44:02 2025 by rpki-client