$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b8e8988d-131d-4d71-8592-32ba54d2aaac.roa File: b8e8988d-131d-4d71-8592-32ba54d2aaac.roa (raw, json) Hash identifier: bM3Z/IJ6XjYIGPf7HIYHnOAwMZULrpJPoG1oxw+P6rU= Subject key identifier: E5:2A:B9:73:12:D5:08:4E:E0:53:C8:30:BB:19:DD:45:94:FF:61:29 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 0E508FDA962F446A622F4C0A2A6A6EB80BE92C0C Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b8e8988d-131d-4d71-8592-32ba54d2aaac.roa Signing time: Fri 25 Jul 2025 15:10:19 +0000 ROA not before: Fri 25 Jul 2025 15:10:19 +0000 ROA not after: Fri 29 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.60.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:50:8f:da:96:2f:44:6a:62:2f:4c:0a:2a:6a:6e:b8:0b:e9:2c:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jul 25 15:10:19 2025 GMT Not After : Aug 29 23:59:59 2025 GMT Subject: serialNumber=d2677286263ff04c8d6a3479c9621ee1d8d809be86a21f4067f03a98d31f55bd, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:34:db:19:69:bc:cf:61:63:3c:26:a2:d5:7c: c2:f2:79:4d:36:15:c5:47:93:ad:3b:50:99:a3:8f: 0c:58:8b:fa:4b:d3:ef:3b:40:02:c4:35:7b:3d:03: 4b:cb:98:ac:93:f6:f2:43:16:4c:68:56:34:17:bb: 59:be:1d:2e:04:e0:c9:58:5d:69:e0:0a:31:e0:e1: ca:cc:5d:29:7d:fd:97:ea:f2:f2:6a:41:16:70:ec: 56:48:ed:aa:a0:00:5a:12:e4:74:f2:59:69:53:fa: 99:9a:87:ec:0f:36:02:4e:89:f3:1b:7e:bc:8c:11: ce:a2:f7:e9:0e:cc:90:2e:73:89:e1:3c:aa:74:0d: 5f:8d:dc:38:81:b1:f0:9f:3e:52:23:75:66:4a:e7: cc:db:df:88:f8:2a:d9:fe:69:51:33:c3:35:85:f1: cd:4e:5d:2d:a4:a2:13:1a:d3:d4:9c:11:0a:71:1a: 1f:b0:c7:4f:95:05:4a:94:24:7a:cf:09:d2:f6:f2: cc:d5:b6:3d:a6:62:79:44:9a:c2:a2:97:cb:c8:5d: 32:a3:80:41:23:c0:2a:d4:e2:f5:a6:63:e3:1d:82: 81:5e:b5:fd:a2:b9:15:2f:5c:0f:b3:81:56:df:eb: 6c:d1:a6:3a:b2:eb:2d:ac:5c:91:79:2f:aa:c3:86: cc:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:2A:B9:73:12:D5:08:4E:E0:53:C8:30:BB:19:DD:45:94:FF:61:29 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b8e8988d-131d-4d71-8592-32ba54d2aaac.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.60.0.0/15 Signature Algorithm: sha256WithRSAEncryption 6e:27:55:25:7a:03:ff:e1:4f:9c:e3:6c:1a:f6:27:24:af:51: 44:0e:a1:2d:8a:8a:05:e5:ec:be:3b:40:43:3d:8e:6c:04:60: d9:71:aa:c8:c9:f2:97:14:f4:33:5a:86:42:c7:f8:90:64:eb: 67:57:ea:64:65:ba:ab:95:c2:b8:55:b5:da:3d:d8:fc:7b:39: df:31:d9:f4:d3:ad:9a:f2:ca:14:b8:cf:dc:1d:c1:a5:11:64: f3:8b:2d:1b:61:91:b3:b6:90:3b:da:57:4e:0d:ca:c8:e3:7b: c5:fc:a8:f1:e3:07:04:14:2a:78:04:9a:56:4c:60:f1:90:d4: fb:6f:f3:18:ef:72:33:58:ee:d9:81:2a:60:14:c1:32:07:77: e3:a7:95:15:19:1f:a9:73:f7:25:11:3f:95:e0:85:81:84:fe: 27:f8:65:fc:2b:13:46:c2:ca:e9:e8:e4:5e:71:b5:4b:87:fe: 6d:52:33:5c:c5:79:43:f9:cb:d7:b6:ff:34:78:72:f6:ec:11: 00:e9:d3:0e:05:fa:a5:be:1f:99:d5:da:96:6d:7c:5f:b4:47: 42:bd:92:14:ce:11:d9:44:71:7b:17:06:5f:20:24:e8:90:2c: 5e:38:5d:b0:3e:e4:eb:76:5a:76:9e:e7:e8:63:ce:b6:af:1e: a2:ee:03:3a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUDlCP2pYvRGpiL0wKKmpuuAvpLAwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNzI1MTUxMDE5WhcNMjUwODI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMjY3NzI4NjI2M2ZmMDRjOGQ2YTM0NzljOTYyMWVlMWQ4 ZDgwOWJlODZhMjFmNDA2N2YwM2E5OGQzMWY1NWJkMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFNNsZabzPYWM8JqLVfMLyeU02FcVHk607UJmjjwxYi/pL 0+87QALENXs9A0vLmKyT9vJDFkxoVjQXu1m+HS4E4MlYXWngCjHg4crMXSl9/Zfq 8vJqQRZw7FZI7aqgAFoS5HTyWWlT+pmah+wPNgJOifMbfryMEc6i9+kOzJAuc4nh PKp0DV+N3DiBsfCfPlIjdWZK58zb34j4Ktn+aVEzwzWF8c1OXS2kohMa09ScEQpx Gh+wx0+VBUqUJHrPCdL28szVtj2mYnlEmsKil8vIXTKjgEEjwCrU4vWmY+MdgoFe tf2iuRUvXA+zgVbf62zRpjqy6y2sXJF5L6rDhszBAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU5Sq5cxLVCE7gU8gwuxndRZT/YSkwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2I4ZTg5ODhkLTEzMWQtNGQ3MS04NTkyLTMyYmE1NGQyYWFhYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwESPDANBgkqhkiG9w0BAQsFAAOCAQEAbidVJXoD/+FPnONsGvYnJK9RRA6h LYqKBeXsvjtAQz2ObARg2XGqyMnylxT0M1qGQsf4kGTrZ1fqZGW6q5XCuFW12j3Y /Hs53zHZ9NOtmvLKFLjP3B3BpRFk84stG2GRs7aQO9pXTg3KyON7xfyo8eMHBBQq eASaVkxg8ZDU+2/zGO9yM1ju2YEqYBTBMgd346eVFRkfqXP3JRE/leCFgYT+J/hl /CsTRsLK6ejkXnG1S4f+bVIzXMV5Q/nL17b/NHhy9uwRAOnTDgX6pb4fmdXalm18 X7RHQr2SFM4R2URxexcGXyAk6JAsXjhdsD7k63Zadp7n6GPOtq8eou4DOg== -----END CERTIFICATE-----Generated at Tue Aug 5 08:21:20 2025 by rpki-client