$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a8da99a1-9b93-4e3e-98d2-a2d003ec40d7.roa File: a8da99a1-9b93-4e3e-98d2-a2d003ec40d7.roa (raw, json) Hash identifier: U8Qw22xoEC0i0bFelpUOgb7nkFz+e4E8APET2+wi4/g= Subject key identifier: 6F:98:46:A1:A5:22:BF:D7:55:1B:C9:23:27:3A:3F:0F:B9:18:4A:32 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 047529AFEC90436DA639536CBCCFEB12143B3135 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a8da99a1-9b93-4e3e-98d2-a2d003ec40d7.roa Signing time: Fri 25 Jul 2025 16:21:45 +0000 ROA not before: Fri 25 Jul 2025 16:21:45 +0000 ROA not after: Fri 29 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.214.32.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:75:29:af:ec:90:43:6d:a6:39:53:6c:bc:cf:eb:12:14:3b:31:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jul 25 16:21:45 2025 GMT Not After : Aug 29 23:59:59 2025 GMT Subject: serialNumber=88f50673f21b3f5b163150ef0a46fe00fac708691b563915fb6056983a385ce7, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:26:00:3b:48:68:67:e4:91:2a:cd:e0:91:b1: b9:ab:9f:f2:da:72:cd:e8:6e:95:60:d4:c9:1e:7e: b8:1b:fc:67:c5:a8:5f:f3:08:bf:bb:95:60:a7:11: 4d:80:94:e1:15:5a:08:93:23:4b:7d:b1:6e:5a:d7: 9c:89:ec:ea:a1:03:aa:94:7a:03:81:b9:b1:48:3d: c7:67:9e:e5:25:a6:06:2a:75:7a:2f:fd:f6:1c:06: 2a:92:3a:16:aa:25:7f:71:25:c8:78:33:14:9a:0e: 1f:76:3d:e2:aa:a0:38:c2:d2:90:98:f5:40:2f:39: e3:cc:61:5d:81:61:fc:15:09:99:88:57:03:a1:bf: b1:f6:a0:f2:3c:35:59:78:82:ee:d8:e1:c5:8c:98: 75:b1:5d:c0:ed:09:60:93:cd:80:c8:1d:f8:e0:d9: aa:b7:b2:9d:d0:a4:5e:18:f4:ef:42:ae:6e:03:9f: 32:f5:26:bf:cb:53:56:fd:09:7e:fb:e2:bd:5f:b9: 43:90:4f:76:ec:84:be:00:15:0b:8e:f5:8b:ff:77: aa:af:1a:40:69:91:95:62:00:07:05:12:71:fb:a8: e9:79:3a:d1:ef:d3:fb:e8:1e:a7:90:65:bf:e0:4a: d5:4b:e6:50:e6:15:aa:84:06:b8:bf:ce:7f:f2:e0: d7:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:98:46:A1:A5:22:BF:D7:55:1B:C9:23:27:3A:3F:0F:B9:18:4A:32 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a8da99a1-9b93-4e3e-98d2-a2d003ec40d7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.214.32.0/20 Signature Algorithm: sha256WithRSAEncryption 1e:d4:72:5a:22:83:38:92:09:77:b7:a5:71:da:35:eb:fa:4f: 0c:9d:78:63:19:14:18:a3:ca:70:22:c7:0d:93:b5:65:b1:c0: ac:50:24:34:f9:90:22:d0:f8:bd:36:4e:a6:88:e2:75:35:20: 67:14:34:d0:c8:e5:4a:2c:f7:29:2c:8d:94:fa:9f:5d:c4:7d: 77:f7:89:39:90:ce:73:ba:f4:6d:37:e8:81:38:50:96:6c:f7: 58:35:88:81:a5:ae:70:d0:f1:12:02:d1:e3:a3:cc:26:0a:a5: 0b:02:99:6e:9a:d8:00:52:b9:47:aa:6e:20:aa:a0:81:4f:dd: f1:49:c7:79:43:7a:e7:1d:ee:c3:9c:0e:85:4c:d2:42:3c:5c: 7a:fd:a4:65:8a:51:f5:20:38:5d:93:9b:d7:1a:2a:04:f2:4d: e1:5d:7a:0d:01:b6:ed:b1:ee:58:80:e0:07:bd:fc:b5:28:9f: 53:e3:a2:74:b6:6a:b6:fb:33:a9:46:4f:6e:37:e7:27:d5:3b: da:42:72:99:3e:24:be:d2:66:93:5e:c5:1b:f7:05:2a:2e:c5: f8:c4:bd:37:ae:73:ff:58:bc:3f:43:ce:79:d8:10:f2:ec:27: ba:5c:a7:66:d1:a7:9d:23:12:47:30:cf:c1:7c:d1:56:3f:40: 7a:6e:96:6d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBHUpr+yQQ22mOVNsvM/rEhQ7MTUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNzI1MTYyMTQ1WhcNMjUwODI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A4OGY1MDY3M2YyMWIzZjViMTYzMTUwZWYwYTQ2ZmUwMGZh YzcwODY5MWI1NjM5MTVmYjYwNTY5ODNhMzg1Y2U3MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAJgA7SGhn5JEqzeCRsbmrn/Lacs3obpVg1Mkefrgb/GfF qF/zCL+7lWCnEU2AlOEVWgiTI0t9sW5a15yJ7OqhA6qUegOBubFIPcdnnuUlpgYq dXov/fYcBiqSOhaqJX9xJch4MxSaDh92PeKqoDjC0pCY9UAvOePMYV2BYfwVCZmI VwOhv7H2oPI8NVl4gu7Y4cWMmHWxXcDtCWCTzYDIHfjg2aq3sp3QpF4Y9O9Crm4D nzL1Jr/LU1b9CX774r1fuUOQT3bshL4AFQuO9Yv/d6qvGkBpkZViAAcFEnH7qOl5 OtHv0/voHqeQZb/gStVL5lDmFaqEBri/zn/y4NfhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUb5hGoaUiv9dVG8kjJzo/D7kYSjIwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2E4ZGE5OWExLTliOTMtNGUzZS05OGQyLWEyZDAwM2VjNDBkNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQ21iAwDQYJKoZIhvcNAQELBQADggEBAB7UcloigziSCXe3pXHaNev6Twyd eGMZFBijynAixw2TtWWxwKxQJDT5kCLQ+L02TqaI4nU1IGcUNNDI5Uos9yksjZT6 n13EfXf3iTmQznO69G036IE4UJZs91g1iIGlrnDQ8RIC0eOjzCYKpQsCmW6a2ABS uUeqbiCqoIFP3fFJx3lDeucd7sOcDoVM0kI8XHr9pGWKUfUgOF2Tm9caKgTyTeFd eg0Btu2x7liA4Ae9/LUon1PjonS2arb7M6lGT2435yfVO9pCcpk+JL7SZpNexRv3 BSouxfjEvTeuc/9YvD9DznnYEPLsJ7pcp2bRp50jEkcwz8F80VY/QHpulm0= -----END CERTIFICATE-----Generated at Mon Aug 4 21:29:59 2025 by rpki-client