$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d3446807-54fa-46e2-b8d5-9d8328bad7de.roa File: d3446807-54fa-46e2-b8d5-9d8328bad7de.roa (raw, json) Hash identifier: MzQnDL3PK5hqiqv8dPvPAvJ/tQRera2sBkoCUHhfWXc= Subject key identifier: 46:6B:63:58:FF:67:0B:BD:00:41:01:BD:F8:93:07:95:4D:B4:D3:CC Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 63DFC14285536AEF9ECCE4EC01EBE7E7F3A0651F Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d3446807-54fa-46e2-b8d5-9d8328bad7de.roa Signing time: Tue 29 Jul 2025 17:51:53 +0000 ROA not before: Tue 29 Jul 2025 17:51:53 +0000 ROA not after: Tue 02 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.247.176.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:df:c1:42:85:53:6a:ef:9e:cc:e4:ec:01:eb:e7:e7:f3:a0:65:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jul 29 17:51:53 2025 GMT Not After : Sep 2 23:59:59 2025 GMT Subject: serialNumber=5e2b81b7980b333de23de965e4112fc8032594487d375093bb08680fe1a6146d, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:9d:16:aa:7b:bc:87:a5:2c:98:8f:01:10:d9: e7:6f:28:9e:1e:83:da:39:57:8c:25:19:23:a7:1b: 0b:24:9b:24:86:4d:69:f5:18:de:f7:f2:d9:4f:72: 76:a7:ee:92:73:8e:82:bc:e2:c1:a7:6e:92:e7:69: 2a:67:e1:9d:a7:7c:4e:3d:f6:4c:bd:64:ba:42:7e: a5:8e:d0:52:49:ec:39:e5:00:03:dd:c9:8c:76:87: 3b:c4:ee:32:8a:35:fa:93:bf:00:c8:ce:35:2e:e4: c9:cd:a1:82:1a:f2:51:42:22:77:47:4b:9d:db:2f: 5c:a3:c4:da:ed:1c:aa:99:43:80:e1:55:6a:d1:de: 35:2e:6e:ad:c8:d3:4c:ae:52:ac:7c:10:08:ec:f1: ee:1d:8b:91:b7:94:9d:54:dd:f6:19:f0:b2:1a:0e: c1:b5:49:ad:65:28:43:3b:58:15:e6:2e:d0:88:cc: 4b:36:19:69:51:44:09:0a:a0:49:2a:ad:6e:c7:f0: df:89:68:a7:99:3d:84:9c:9b:b8:67:f6:21:50:16: a5:7f:25:ee:3b:4a:62:f2:28:82:ff:07:0d:b8:c4: 3d:bf:53:d0:a9:68:e3:56:a4:d5:c2:09:b4:94:06: 44:13:e9:06:7b:6e:b5:c5:44:19:52:79:7e:ba:3c: 39:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:6B:63:58:FF:67:0B:BD:00:41:01:BD:F8:93:07:95:4D:B4:D3:CC X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d3446807-54fa-46e2-b8d5-9d8328bad7de.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.247.176.0/20 Signature Algorithm: sha256WithRSAEncryption 5c:eb:08:e1:00:67:98:16:5f:b0:24:b8:0a:cd:5a:8d:a3:39: 3b:24:86:a8:e0:9b:6d:1b:d5:8e:09:8e:09:73:df:0f:25:b4: bd:46:cc:08:c8:a4:3a:6e:a1:e5:f8:96:8c:e0:36:41:96:3f: 5e:90:c8:d1:8e:8a:fe:2b:b2:ec:28:c7:d1:ec:c6:65:51:81: 66:09:7e:3e:e8:75:70:56:09:0e:44:d9:63:84:72:b7:7e:aa: 54:ed:4d:09:4c:26:17:93:5a:76:da:0e:ad:07:17:fe:a4:c0: 6c:52:a0:fe:e0:07:e2:24:4c:08:12:51:a6:b0:a7:eb:db:12: b2:5a:c6:4f:21:4e:35:51:55:e7:f4:29:f3:59:48:db:2e:38: d0:79:6b:bf:52:cb:de:3f:a2:ec:e4:96:4d:be:9d:fa:a7:b9: 9c:3c:5c:55:30:14:59:a1:a4:90:3a:8a:36:66:33:41:05:26: 13:f5:fe:3b:ad:78:94:82:9b:b8:95:b9:93:e1:73:13:e0:8c: 41:c3:7c:e4:f7:c5:da:80:24:73:2b:9e:25:a4:52:d4:00:7f: b4:12:f7:7b:63:32:fa:5d:b8:2f:4b:fc:8e:92:5c:9c:e1:d4: 45:81:ff:73:ef:42:67:7a:6b:98:7c:87:79:7d:3b:e0:8b:bb: 2c:40:c6:46 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUY9/BQoVTau+ezOTsAevn5/OgZR8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNzI5MTc1MTUzWhcNMjUwOTAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZTJiODFiNzk4MGIzMzNkZTIzZGU5NjVlNDExMmZjODAz MjU5NDQ4N2QzNzUwOTNiYjA4NjgwZmUxYTYxNDZkMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDlnRaqe7yHpSyYjwEQ2edvKJ4eg9o5V4wlGSOnGwskmySG TWn1GN738tlPcnan7pJzjoK84sGnbpLnaSpn4Z2nfE499ky9ZLpCfqWO0FJJ7Dnl AAPdyYx2hzvE7jKKNfqTvwDIzjUu5MnNoYIa8lFCIndHS53bL1yjxNrtHKqZQ4Dh VWrR3jUubq3I00yuUqx8EAjs8e4di5G3lJ1U3fYZ8LIaDsG1Sa1lKEM7WBXmLtCI zEs2GWlRRAkKoEkqrW7H8N+JaKeZPYScm7hn9iFQFqV/Je47SmLyKIL/Bw24xD2/ U9CpaONWpNXCCbSUBkQT6QZ7brXFRBlSeX66PDllAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQURmtjWP9nC70AQQG9+JMHlU2008wwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2QzNDQ2ODA3LTU0ZmEtNDZlMi1iOGQ1LTlkODMyOGJhZDdkZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQ297AwDQYJKoZIhvcNAQELBQADggEBAFzrCOEAZ5gWX7AkuArNWo2jOTsk hqjgm20b1Y4Jjglz3w8ltL1GzAjIpDpuoeX4lozgNkGWP16QyNGOiv4rsuwox9Hs xmVRgWYJfj7odXBWCQ5E2WOEcrd+qlTtTQlMJheTWnbaDq0HF/6kwGxSoP7gB+Ik TAgSUaawp+vbErJaxk8hTjVRVef0KfNZSNsuONB5a79Sy94/ouzklk2+nfqnuZw8 XFUwFFmhpJA6ijZmM0EFJhP1/juteJSCm7iVuZPhcxPgjEHDfOT3xdqAJHMrniWk UtQAf7QS93tjMvpduC9L/I6SXJzh1EWB/3PvQmd6a5h8h3l9O+CLuyxAxkY= -----END CERTIFICATE-----Generated at Tue Aug 5 08:24:58 2025 by rpki-client