$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/cf5c3bfc-c366-4460-974a-f2baaf91521b.roa File: cf5c3bfc-c366-4460-974a-f2baaf91521b.roa (raw, json) Hash identifier: VZGyxwZ8YLZ3twqFgL+SRoTAno3b2D9C4C1G4wZizJc= Subject key identifier: 85:A4:98:1A:99:EB:F5:D1:BA:B4:26:A7:85:CB:23:79:B5:EA:12:DE Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 70AAAFCBAA144E8A26FE8CB27D1B59B49566ADE5 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/cf5c3bfc-c366-4460-974a-f2baaf91521b.roa Signing time: Tue 29 Jul 2025 15:50:53 +0000 ROA not before: Tue 29 Jul 2025 15:50:53 +0000 ROA not after: Tue 02 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.151.192.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:aa:af:cb:aa:14:4e:8a:26:fe:8c:b2:7d:1b:59:b4:95:66:ad:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jul 29 15:50:53 2025 GMT Not After : Sep 2 23:59:59 2025 GMT Subject: serialNumber=978b7802ad809f30da0518be87550cf1b9d72c05999b5c18b4fd7d9addcd87f2, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a2:22:1d:3f:b5:d0:74:bd:4a:82:15:1c:8e: d7:92:53:45:e6:9f:03:80:c7:fe:ce:3b:43:00:4a: 56:fa:ca:47:87:11:05:98:ef:b6:d0:d2:36:c9:cd: c7:0e:5d:19:9c:c7:cb:12:70:94:37:ae:f1:13:51: 8c:a9:04:80:1d:35:a0:56:dd:71:9e:21:87:a2:96: 28:c5:9a:20:df:0e:c5:86:e3:08:c9:fd:46:c8:19: 0e:15:cb:dd:99:7d:42:da:eb:e7:7e:fe:4a:e6:0c: fb:49:af:5a:88:5c:3a:c8:30:0e:aa:3a:e6:00:2b: 0b:9e:32:3f:98:29:33:24:ae:37:3e:16:07:fe:47: 88:c2:fa:d4:07:3e:46:9a:4a:6f:d4:47:65:d6:39: 84:a3:a7:5a:ed:d0:44:5e:90:23:2d:4a:2e:12:d8: a0:2e:18:81:03:81:cc:8c:5e:df:cd:fa:41:22:49: dc:a5:b3:90:0f:db:09:70:37:91:b1:e5:22:17:d8: dd:26:34:62:18:55:3b:f1:5c:42:21:3b:ff:c0:ab: 4a:48:f9:01:5c:7a:e9:3f:bd:a5:1a:e6:45:df:da: 22:3c:64:23:4c:eb:74:fa:01:2c:eb:ab:55:b5:56: 00:39:ef:bf:9f:f0:32:7a:0d:25:06:72:19:1e:49: df:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:A4:98:1A:99:EB:F5:D1:BA:B4:26:A7:85:CB:23:79:B5:EA:12:DE X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/cf5c3bfc-c366-4460-974a-f2baaf91521b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.151.192.0/19 Signature Algorithm: sha256WithRSAEncryption 17:fa:f5:51:e3:b2:d2:b8:52:b9:c5:89:4a:5d:a7:21:21:4f: 54:78:3f:67:35:f9:72:13:81:89:79:b0:a5:b9:1e:c5:72:e6: fd:0f:9a:bf:38:18:3f:e7:00:3b:4e:5a:fc:7a:52:5b:c1:ad: e2:19:83:69:86:a8:f6:17:74:85:a6:0e:01:9a:36:c6:ab:eb: 58:55:4f:5c:d3:42:0b:25:d5:b3:96:66:72:60:cc:c3:9b:87: 93:55:bc:87:da:da:23:61:17:eb:da:ab:88:a2:2e:8e:1c:bf: 97:e8:89:e5:17:6e:00:c8:6a:42:58:b3:13:33:ed:8d:5d:4b: 7f:0b:24:e5:e1:a4:da:b4:0c:81:e0:01:fa:0b:a9:45:1d:cf: 49:77:0f:3c:ce:69:26:9e:7b:e1:64:b8:16:48:56:ae:d3:a5: dc:8c:84:ca:aa:07:83:16:ea:66:bc:94:fc:38:a7:b4:ad:4b: b9:9d:aa:ea:b1:d9:fa:28:7c:16:5f:20:eb:b0:21:4b:c3:e8: 11:b4:13:0c:ad:f9:ef:77:94:39:9a:e0:21:54:6e:b2:62:f4: be:27:d2:03:f6:f6:68:b1:3f:e3:28:c9:bc:38:b4:ff:0d:b9: 59:d5:b0:68:f2:9f:4c:ae:e1:5e:60:0e:78:65:dd:0c:6a:64: 7d:08:ff:3d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcKqvy6oUToom/oyyfRtZtJVmreUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNzI5MTU1MDUzWhcNMjUwOTAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A5NzhiNzgwMmFkODA5ZjMwZGEwNTE4YmU4NzU1MGNmMWI5 ZDcyYzA1OTk5YjVjMThiNGZkN2Q5YWRkY2Q4N2YyMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7oiIdP7XQdL1KghUcjteSU0XmnwOAx/7OO0MASlb6ykeH EQWY77bQ0jbJzccOXRmcx8sScJQ3rvETUYypBIAdNaBW3XGeIYeilijFmiDfDsWG 4wjJ/UbIGQ4Vy92ZfULa6+d+/krmDPtJr1qIXDrIMA6qOuYAKwueMj+YKTMkrjc+ Fgf+R4jC+tQHPkaaSm/UR2XWOYSjp1rt0ERekCMtSi4S2KAuGIEDgcyMXt/N+kEi Sdyls5AP2wlwN5Gx5SIX2N0mNGIYVTvxXEIhO//Aq0pI+QFceuk/vaUa5kXf2iI8 ZCNM63T6ASzrq1W1VgA577+f8DJ6DSUGchkeSd83AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUhaSYGpnr9dG6tCanhcsjebXqEt4wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2NmNWMzYmZjLWMzNjYtNDQ2MC05NzRhLWYyYmFhZjkxNTIxYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAU2l8AwDQYJKoZIhvcNAQELBQADggEBABf69VHjstK4UrnFiUpdpyEhT1R4 P2c1+XITgYl5sKW5HsVy5v0Pmr84GD/nADtOWvx6UlvBreIZg2mGqPYXdIWmDgGa Nsar61hVT1zTQgsl1bOWZnJgzMObh5NVvIfa2iNhF+vaq4iiLo4cv5foieUXbgDI akJYsxMz7Y1dS38LJOXhpNq0DIHgAfoLqUUdz0l3DzzOaSaee+FkuBZIVq7TpdyM hMqqB4MW6ma8lPw4p7StS7mdquqx2foofBZfIOuwIUvD6BG0Ewyt+e93lDma4CFU brJi9L4n0gP29mixP+Moybw4tP8NuVnVsGjyn0yu4V5gDnhl3QxqZH0I/z0= -----END CERTIFICATE-----Generated at Tue Aug 5 21:37:18 2025 by rpki-client