$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d3e9f4ef-521d-44ce-8ce6-9861c07bae55.roa File: d3e9f4ef-521d-44ce-8ce6-9861c07bae55.roa (raw, json) Hash identifier: OaPXqYaQTxUeyppyqQUf40y0Mj/vA6XdmuIp8llpbm0= Subject key identifier: 19:F2:3B:2D:EB:51:0C:C6:94:8D:A4:2E:10:00:06:62:24:A8:A0:63 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 06338DE2641C9D81282E9D85E693FB33797803BF Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d3e9f4ef-521d-44ce-8ce6-9861c07bae55.roa Signing time: Mon 04 Aug 2025 18:01:36 +0000 ROA not before: Mon 04 Aug 2025 18:01:36 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 165.208.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:33:8d:e2:64:1c:9d:81:28:2e:9d:85:e6:93:fb:33:79:78:03:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 4 18:01:36 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=329e9612573579c9299cc70e3da0b0a9911e681c96011c2786b912b38e40d034, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:2c:da:fa:bb:95:45:5a:bc:01:83:4a:7d:bf: 95:da:ad:53:ba:b3:14:65:78:dd:73:ff:53:e6:00: 48:f3:21:20:35:07:e8:cd:89:9a:83:8e:cd:2e:87: 94:f7:8a:b9:8d:76:e4:a0:45:df:d1:1b:eb:75:13: 01:a2:8b:20:36:0f:40:86:0f:27:7f:d3:af:4b:82: 65:61:b6:76:53:2b:3b:88:b6:aa:51:9b:d4:85:ef: 88:3f:66:b1:8d:4f:1b:47:41:c3:be:a2:92:19:94: 8d:a9:58:97:4c:4c:f8:8b:83:70:2a:07:b4:cc:9f: 9f:9c:95:a1:61:33:ec:5a:17:f4:de:89:c8:c5:9f: 48:b5:08:0d:df:bc:6b:87:55:d9:9a:84:a2:23:84: 60:a0:a1:93:82:48:9d:7f:5e:1e:46:7d:a9:fa:28: f8:c7:77:94:41:eb:94:63:7a:e7:c5:06:07:d9:63: 1d:e8:bf:71:8f:6c:6f:17:22:74:f7:37:f5:a7:ab: 2f:33:41:2b:67:ec:d2:c7:90:5f:cd:92:35:89:d9: 8f:08:f1:13:48:0b:af:34:a6:36:e6:db:b0:f8:b2: c4:17:37:62:10:11:51:75:79:d4:3a:60:57:0f:47: 39:1b:58:34:d7:e9:f1:42:65:6c:74:46:b1:f5:13: e6:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:F2:3B:2D:EB:51:0C:C6:94:8D:A4:2E:10:00:06:62:24:A8:A0:63 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d3e9f4ef-521d-44ce-8ce6-9861c07bae55.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 165.208.0.0/16 Signature Algorithm: sha256WithRSAEncryption 9f:f3:80:ec:62:56:75:bf:bf:19:26:33:01:e0:f2:fa:b1:59: a4:17:88:2e:54:c6:86:54:73:a2:7f:c0:7f:05:3f:8a:36:3d: e3:69:86:2c:bd:f0:40:19:12:b0:3a:b9:e1:47:8d:e0:e1:27: 77:58:f6:ad:10:ea:9f:a4:37:f0:dd:81:f0:fd:c9:e7:e9:0f: 91:24:30:9d:a5:5d:ac:a8:62:c9:15:ff:65:f0:37:2a:d6:3d: 93:85:db:99:a7:ea:e8:0b:65:72:75:49:08:ba:70:4d:13:9c: 1f:be:ff:7a:21:81:c7:c5:9b:80:ff:eb:1b:73:e0:a7:9d:ab: 3e:07:a1:b1:57:95:3d:51:7f:78:b1:c2:12:89:47:48:90:6f: 49:59:d8:f0:73:0c:3d:39:82:90:d8:59:e0:97:1a:a7:56:09: ec:0e:f9:fd:3e:40:be:b8:14:34:bf:ca:72:1e:1e:25:c0:a9: 57:4c:ed:d7:e8:f5:d6:25:e1:e6:4e:6b:9f:98:27:36:e2:72: 60:70:dd:34:b9:fe:a2:1c:f3:5e:4a:17:5a:7d:16:7c:49:0b: b8:af:6d:ac:73:e5:5b:11:2f:ce:77:9b:22:77:e1:2a:14:57: 2a:e6:f5:82:e1:f1:69:74:ea:fa:69:e7:a0:7a:04:29:93:39: 66:d7:84:9e -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUBjON4mQcnYEoLp2F5pP7M3l4A78wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODA0MTgwMTM2WhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMjllOTYxMjU3MzU3OWM5Mjk5Y2M3MGUzZGEwYjBhOTkx MWU2ODFjOTYwMTFjMjc4NmI5MTJiMzhlNDBkMDM0MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGLNr6u5VFWrwBg0p9v5XarVO6sxRleN1z/1PmAEjzISA1 B+jNiZqDjs0uh5T3irmNduSgRd/RG+t1EwGiiyA2D0CGDyd/069LgmVhtnZTKzuI tqpRm9SF74g/ZrGNTxtHQcO+opIZlI2pWJdMTPiLg3AqB7TMn5+claFhM+xaF/Te icjFn0i1CA3fvGuHVdmahKIjhGCgoZOCSJ1/Xh5Gfan6KPjHd5RB65RjeufFBgfZ Yx3ov3GPbG8XInT3N/Wnqy8zQStn7NLHkF/NkjWJ2Y8I8RNIC680pjbm27D4ssQX N2IQEVF1edQ6YFcPRzkbWDTX6fFCZWx0RrH1E+brAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUGfI7LetRDMaUjaQuEAAGYiSooGMwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2QzZTlmNGVmLTUyMWQtNDRjZS04Y2U2LTk4NjFjMDdiYWU1NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCl0DANBgkqhkiG9w0BAQsFAAOCAQEAn/OA7GJWdb+/GSYzAeDy+rFZpBeI LlTGhlRzon/AfwU/ijY942mGLL3wQBkSsDq54UeN4OEnd1j2rRDqn6Q38N2B8P3J 5+kPkSQwnaVdrKhiyRX/ZfA3KtY9k4Xbmafq6AtlcnVJCLpwTROcH77/eiGBx8Wb gP/rG3Pgp52rPgehsVeVPVF/eLHCEolHSJBvSVnY8HMMPTmCkNhZ4Jcap1YJ7A75 /T5AvrgUNL/Kch4eJcCpV0zt1+j11iXh5k5rn5gnNuJyYHDdNLn+ohzzXkoXWn0W fEkLuK9trHPlWxEvznebInfhKhRXKub1guHxaXTq+mnnoHoEKZM5ZteEng== -----END CERTIFICATE-----Generated at Tue Aug 5 16:35:59 2025 by rpki-client