$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ceeae408-2342-4712-b02b-4bd25196b1fa.roa File: ceeae408-2342-4712-b02b-4bd25196b1fa.roa (raw, json) Hash identifier: Id1DrKpWdCJf+idXevX+rNZXEuYdG7QCU/D7PFfKFvM= Subject key identifier: 17:14:3D:81:EE:E2:5E:9E:ED:BF:35:36:76:5F:73:66:4F:8B:A6:89 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 08E8BE98B51771CD8CF541E21D09D8CAED86697D Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ceeae408-2342-4712-b02b-4bd25196b1fa.roa Signing time: Mon 28 Jul 2025 15:40:33 +0000 ROA not before: Mon 28 Jul 2025 15:40:33 +0000 ROA not after: Mon 01 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.60.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 08 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:e8:be:98:b5:17:71:cd:8c:f5:41:e2:1d:09:d8:ca:ed:86:69:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jul 28 15:40:33 2025 GMT Not After : Sep 1 23:59:59 2025 GMT Subject: serialNumber=324218ad258ff7eccb38ea95433fa1e6cb9d9aef5dc97dd2c593014d9a8f857c, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:6d:34:48:2c:7e:bb:91:a9:7d:a8:24:f5:01: 7c:83:92:4e:e0:ab:bd:30:39:ca:76:1f:49:e4:e0: 1e:25:04:55:2a:83:f9:6a:d8:11:0d:d0:8c:0e:91: db:ba:ed:72:51:6f:9e:f4:97:18:91:43:a1:28:61: ae:ab:0e:f5:e7:62:f4:86:ea:97:86:cc:5e:2f:25: e8:0f:dc:f4:a6:bf:b5:a5:e7:be:51:75:d8:30:2c: 0e:61:60:73:00:8c:8f:63:86:5c:6e:5b:60:e0:64: 21:76:62:6b:18:ab:76:31:81:fb:ca:95:8e:42:ee: 54:ad:4e:d3:2d:70:4c:3e:c3:45:58:e6:d4:82:55: 87:24:da:3e:51:70:e2:be:22:ed:7d:d9:a4:0c:da: 22:4c:d7:e8:d1:ae:3c:5c:8d:ad:83:04:d2:06:37: 8e:10:16:7d:ed:e7:14:03:fd:64:17:87:5e:0d:24: c1:ff:ed:96:72:20:53:40:3f:6a:eb:3b:ab:15:65: 0c:78:47:53:ef:07:f3:4b:d5:ee:52:c7:2d:64:b7: 4e:2c:f1:15:31:01:b5:54:a3:cc:3f:9d:e9:33:b3: 3a:0c:09:2b:59:a7:4e:36:66:b5:30:fc:c7:7e:e6: 0d:b2:11:a5:25:b4:f3:83:4b:42:dd:78:df:68:10: d3:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:14:3D:81:EE:E2:5E:9E:ED:BF:35:36:76:5F:73:66:4F:8B:A6:89 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ceeae408-2342-4712-b02b-4bd25196b1fa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.60.64.0/18 Signature Algorithm: sha256WithRSAEncryption 42:5e:31:db:1e:b2:fe:09:60:49:a0:1e:2a:08:23:fd:f6:56: 5c:15:65:9d:27:58:6d:29:16:21:30:c3:67:0a:be:10:07:20: 87:e0:b9:68:3c:f8:1c:9e:ff:4b:ce:b3:b4:96:5d:17:f0:72: 30:21:4b:a1:35:77:f4:c6:90:de:95:4b:e5:39:12:f1:48:4f: ba:a2:dc:29:1a:c9:aa:13:07:13:3b:57:f5:4b:cc:30:0a:aa: 60:71:7f:f0:9c:32:b7:63:31:8c:2f:9c:75:4f:da:63:41:b8: 87:c9:4f:f0:b1:c4:a4:51:a0:4e:90:e6:d7:81:af:a8:bd:a2: 1c:4f:a3:83:c6:e2:e9:aa:c9:25:47:d4:01:2d:8e:32:ef:9e: 84:1e:fc:e9:aa:d0:a4:38:98:01:e2:df:ad:06:73:ba:b0:96: 76:cc:73:38:5f:56:dc:1f:cc:b5:e9:24:e4:d6:f1:bd:00:ba: d7:44:4a:64:af:77:bf:d2:b2:3f:08:08:6b:a3:9e:6f:60:58: 59:18:af:98:29:7a:98:3d:83:46:a4:f3:59:e9:8f:83:34:3c: 3b:d5:e5:50:b3:7b:94:a0:0b:f9:fa:9c:f0:19:0c:7f:19:bb: e0:2c:31:77:0d:37:8d:68:b6:81:0e:c2:59:f6:7e:fe:78:28: 3a:f8:6a:bd -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCOi+mLUXcc2M9UHiHQnYyu2GaX0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNzI4MTU0MDMzWhcNMjUwOTAxMjM1OTU5 WjB6MUkwRwYDVQQFE0AzMjQyMThhZDI1OGZmN2VjY2IzOGVhOTU0MzNmYTFlNmNi OWQ5YWVmNWRjOTdkZDJjNTkzMDE0ZDlhOGY4NTdjMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCbTRILH67kal9qCT1AXyDkk7gq70wOcp2H0nk4B4lBFUq g/lq2BEN0IwOkdu67XJRb570lxiRQ6EoYa6rDvXnYvSG6peGzF4vJegP3PSmv7Wl 575RddgwLA5hYHMAjI9jhlxuW2DgZCF2YmsYq3YxgfvKlY5C7lStTtMtcEw+w0VY 5tSCVYck2j5RcOK+Iu192aQM2iJM1+jRrjxcja2DBNIGN44QFn3t5xQD/WQXh14N JMH/7ZZyIFNAP2rrO6sVZQx4R1PvB/NL1e5Sxy1kt04s8RUxAbVUo8w/nekzszoM CStZp042ZrUw/Md+5g2yEaUltPODS0LdeN9oENP9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUFxQ9ge7iXp7tvzU2dl9zZk+LpokwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2NlZWFlNDA4LTIzNDItNDcxMi1iMDJiLTRiZDI1MTk2YjFmYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAY0PEAwDQYJKoZIhvcNAQELBQADggEBAEJeMdsesv4JYEmgHioII/32VlwV ZZ0nWG0pFiEww2cKvhAHIIfguWg8+Bye/0vOs7SWXRfwcjAhS6E1d/TGkN6VS+U5 EvFIT7qi3CkayaoTBxM7V/VLzDAKqmBxf/CcMrdjMYwvnHVP2mNBuIfJT/CxxKRR oE6Q5teBr6i9ohxPo4PG4umqySVH1AEtjjLvnoQe/Omq0KQ4mAHi360Gc7qwlnbM czhfVtwfzLXpJOTW8b0AutdESmSvd7/Ssj8ICGujnm9gWFkYr5gpepg9g0ak81np j4M0PDvV5VCze5SgC/n6nPAZDH8Zu+AsMXcNN41otoEOwln2fv54KDr4ar0= -----END CERTIFICATE-----Generated at Wed Aug 6 05:17:39 2025 by rpki-client