$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d5df39b2-9bcd-491e-bf74-f057dc8aa854.roa File: d5df39b2-9bcd-491e-bf74-f057dc8aa854.roa (raw, json) Hash identifier: NBt/7cXOv3XO76+98zCSgXIwoZAx1gjtd/tcZ4SI1fc= Subject key identifier: CC:A2:EF:F0:B1:D3:74:03:67:69:66:CF:7C:CB:F0:78:1D:18:F7:29 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 4334AA72AC46680E5F38AF0725B3B426BA88C56B Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d5df39b2-9bcd-491e-bf74-f057dc8aa854.roa Signing time: Tue 29 Jul 2025 16:00:20 +0000 ROA not before: Tue 29 Jul 2025 16:00:20 +0000 ROA not after: Tue 02 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.207.192.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:34:aa:72:ac:46:68:0e:5f:38:af:07:25:b3:b4:26:ba:88:c5:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jul 29 16:00:20 2025 GMT Not After : Sep 2 23:59:59 2025 GMT Subject: serialNumber=6ebc61fa488f07e77e9b72931d2543acaa6154144e01686e2f8de383863249b3, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:e6:c5:d8:8e:90:30:bc:01:0e:b6:a8:69:43: 2f:4c:1f:04:2e:ee:99:4d:fe:7d:c2:fc:c6:1f:84: 62:21:08:97:1f:8f:23:10:5b:39:05:09:5d:fd:91: ab:30:04:05:1b:0c:5a:53:0d:66:86:a8:31:91:7d: 2f:ff:f4:dd:de:95:f9:32:b7:ad:42:ae:f0:2c:44: d4:8a:9e:14:81:8f:53:d3:6e:36:23:61:ce:de:0e: 30:ae:76:9c:cf:83:e3:10:b0:40:7e:8b:47:10:39: 7a:13:80:c1:37:ce:eb:14:72:ac:25:13:92:cb:ca: 4d:c2:2c:4c:24:c0:0a:74:77:7b:7f:e1:11:7b:1d: 33:73:4d:c4:d6:ac:1b:e5:ac:95:79:52:32:77:93: 68:e6:02:31:bc:1b:85:5e:0f:5a:94:1d:be:d2:53: 05:b3:75:92:dc:a0:ac:27:b1:49:8e:76:ec:c2:3c: a8:c5:f2:da:3e:f1:e0:57:22:d8:fc:89:6c:5c:e4: f2:55:ce:4f:68:14:37:69:c0:da:f7:f2:3b:58:d3: cc:69:f6:52:4a:b1:f7:0d:44:96:d9:31:e9:69:1b: 78:f3:e8:67:8e:78:3a:c9:15:e6:bb:9c:7f:45:1a: 29:f9:76:b5:49:6d:22:e6:29:e1:44:17:ad:ee:16: 3f:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:A2:EF:F0:B1:D3:74:03:67:69:66:CF:7C:CB:F0:78:1D:18:F7:29 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d5df39b2-9bcd-491e-bf74-f057dc8aa854.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.207.192.0/19 Signature Algorithm: sha256WithRSAEncryption 02:f9:5d:0f:b7:9b:32:33:74:01:df:3d:54:e7:53:16:ed:30: 75:cf:0f:07:61:c7:67:93:d4:7c:1c:d4:5c:76:73:e4:a4:3d: 3f:84:39:f5:c3:5f:b5:7c:ce:26:35:87:80:84:f2:be:12:30: 74:d9:e4:fb:70:83:0e:58:e0:eb:ea:ee:f9:ef:3a:eb:76:b2: f2:a4:28:a7:34:c8:68:c3:ee:9b:57:d9:b9:9f:65:53:15:f2: 47:ad:fb:a4:ba:d0:f3:e1:aa:5c:bd:09:8a:9b:d8:50:17:0a: 79:10:6b:0a:27:22:cc:a5:ad:ca:24:b7:10:e2:0a:69:b6:7b: 62:26:10:ab:95:90:e0:08:39:6d:9c:14:41:1c:04:5a:72:67: 27:f0:9f:1d:4a:2e:71:49:92:78:ab:02:e3:ba:8a:16:80:d5: cb:3c:ae:7f:5f:f2:b6:db:93:88:9e:25:fb:53:b4:f0:ee:92: 65:63:aa:dc:dc:eb:81:4a:6c:54:22:58:46:f4:9a:ca:f1:86: cd:a3:24:84:a8:0c:ee:0d:d7:8e:97:c2:31:53:12:65:39:b8: d5:32:5d:ea:07:69:8f:c0:99:e4:59:72:8f:bd:3a:2f:4b:9f: 58:dd:91:17:85:b1:13:f4:ab:17:55:d4:b6:fa:d1:7e:90:42: 7c:7e:5a:81 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQzSqcqxGaA5fOK8HJbO0JrqIxWswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNzI5MTYwMDIwWhcNMjUwOTAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZWJjNjFmYTQ4OGYwN2U3N2U5YjcyOTMxZDI1NDNhY2Fh NjE1NDE0NGUwMTY4NmUyZjhkZTM4Mzg2MzI0OWIzMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCF5sXYjpAwvAEOtqhpQy9MHwQu7plN/n3C/MYfhGIhCJcf jyMQWzkFCV39kaswBAUbDFpTDWaGqDGRfS//9N3elfkyt61CrvAsRNSKnhSBj1PT bjYjYc7eDjCudpzPg+MQsEB+i0cQOXoTgME3zusUcqwlE5LLyk3CLEwkwAp0d3t/ 4RF7HTNzTcTWrBvlrJV5UjJ3k2jmAjG8G4VeD1qUHb7SUwWzdZLcoKwnsUmOduzC PKjF8to+8eBXItj8iWxc5PJVzk9oFDdpwNr38jtY08xp9lJKsfcNRJbZMelpG3jz 6GeOeDrJFea7nH9FGin5drVJbSLmKeFEF63uFj//AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUzKLv8LHTdANnaWbPfMvweB0Y9ykwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2Q1ZGYzOWIyLTliY2QtNDkxZS1iZjc0LWYwNTdkYzhhYTg1NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAU2z8AwDQYJKoZIhvcNAQELBQADggEBAAL5XQ+3mzIzdAHfPVTnUxbtMHXP Dwdhx2eT1Hwc1Fx2c+SkPT+EOfXDX7V8ziY1h4CE8r4SMHTZ5Ptwgw5Y4Ovq7vnv Out2svKkKKc0yGjD7ptX2bmfZVMV8ket+6S60PPhqly9CYqb2FAXCnkQawonIsyl rcoktxDiCmm2e2ImEKuVkOAIOW2cFEEcBFpyZyfwnx1KLnFJknirAuO6ihaA1cs8 rn9f8rbbk4ieJftTtPDukmVjqtzc64FKbFQiWEb0msrxhs2jJISoDO4N146XwjFT EmU5uNUyXeoHaY/AmeRZco+9Oi9Ln1jdkReFsRP0qxdV1Lb60X6QQnx+WoE= -----END CERTIFICATE-----Generated at Tue Aug 5 16:35:28 2025 by rpki-client