$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d977da5b-fb78-4494-bb71-22f73b146561.roa File: d977da5b-fb78-4494-bb71-22f73b146561.roa (raw, json) Hash identifier: +bgEaD6WbU/mO39tgsbt2H5NhKdbAv9EMTF8V4Q3/6E= Subject key identifier: 1E:19:EE:F8:0A:43:36:3E:08:83:D0:1B:FB:49:68:B0:9E:60:23:E8 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 7DBF105F6297CA78CEA2459F2CD85A7913B904FE Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d977da5b-fb78-4494-bb71-22f73b146561.roa Signing time: Fri 25 Jul 2025 16:10:22 +0000 ROA not before: Fri 25 Jul 2025 16:10:22 +0000 ROA not after: Fri 29 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.178.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:bf:10:5f:62:97:ca:78:ce:a2:45:9f:2c:d8:5a:79:13:b9:04:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jul 25 16:10:22 2025 GMT Not After : Aug 29 23:59:59 2025 GMT Subject: serialNumber=155bdf9ad0c62cc16a37db56ee8fca0a4e0dd35178d7b55255e65b9d4670500d, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:ca:1e:6e:de:f8:f1:fb:3c:45:e1:2d:27:af: c7:63:bd:3f:d4:f0:cc:21:ef:e3:81:db:be:e5:9e: bb:e8:7b:1f:db:13:0d:67:46:fb:72:37:9f:e2:75: eb:48:05:90:2e:70:68:af:00:42:92:26:ae:b0:2c: 52:6f:1a:f2:ea:1a:5a:bc:93:40:4a:ad:cb:a9:e5: a4:9b:ad:5c:bd:c7:2b:18:63:1d:65:cb:1d:f7:be: cf:c4:f8:66:d5:9f:47:58:00:50:3e:3e:c6:4e:06: b7:b5:2c:09:85:d6:e3:02:bb:e8:15:d2:81:c5:ac: c9:af:ee:26:d8:19:54:cb:27:a5:0f:d9:2f:78:e6: 15:0a:9f:df:d3:be:b7:3d:3a:78:f2:e3:d6:a9:7d: 69:27:e9:69:f0:bf:78:a2:81:15:3b:f9:b6:16:98: 84:ea:57:5a:a2:a2:f2:3a:be:7e:93:80:28:35:ab: 32:6d:50:69:f4:b9:82:73:cc:65:32:2d:be:51:4a: 44:d0:3b:c5:c5:aa:a1:f7:d3:ea:30:c3:76:7e:11: 8c:9c:61:08:1d:36:a9:4e:ee:ee:c5:d1:b4:64:79: 00:22:1e:e1:36:d0:5f:53:99:11:c8:d7:9a:ae:c8: dd:33:72:ed:bf:e9:2e:d4:43:95:4c:57:fc:cb:d6: 48:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:19:EE:F8:0A:43:36:3E:08:83:D0:1B:FB:49:68:B0:9E:60:23:E8 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d977da5b-fb78-4494-bb71-22f73b146561.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.178.0.0/16 Signature Algorithm: sha256WithRSAEncryption a3:8b:ed:88:fc:53:99:05:26:a4:d0:2e:7e:a4:4b:4b:02:ea: 79:b6:ae:3c:ff:3c:71:67:b4:12:e4:07:50:e3:18:81:dc:cc: a2:2f:2d:78:ed:fb:8c:b1:03:e6:84:66:12:7f:86:b9:2b:5e: 89:59:1a:ec:c7:ba:d8:52:cd:1c:46:b1:f3:8d:79:0a:46:0c: db:db:1e:62:35:15:35:8d:3a:65:96:79:5b:10:ab:7a:58:58: 16:ca:a2:81:58:ad:00:df:ba:87:40:39:5f:ae:19:59:2f:3f: 8b:d9:f0:d3:ad:ef:d1:82:22:70:a3:69:c9:6b:41:f3:60:fd: fb:91:e6:83:fa:b2:bf:ec:b1:16:f9:6d:82:3c:2d:9d:ec:2d: df:f6:1b:4b:99:e7:12:6f:51:87:ef:3c:d1:f6:c1:b4:e2:17: 73:2a:ae:b0:6b:b4:83:02:7b:1b:38:0a:12:bc:0e:5b:e2:45: 13:b7:c1:86:80:9c:6e:62:92:e6:5d:e9:3b:a6:59:28:bf:59: c4:01:46:5c:ea:60:ac:a3:68:ba:34:19:93:84:d5:4e:bd:5d: 81:46:35:43:cb:25:fc:62:73:e3:4a:6b:56:c7:5a:5b:35:0c: e6:d5:89:94:b3:42:e4:f9:08:4b:f0:89:52:08:d9:92:46:a2: ea:47:c3:01 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUfb8QX2KXynjOokWfLNhaeRO5BP4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNzI1MTYxMDIyWhcNMjUwODI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNTViZGY5YWQwYzYyY2MxNmEzN2RiNTZlZThmY2EwYTRl MGRkMzUxNzhkN2I1NTI1NWU2NWI5ZDQ2NzA1MDBkMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCVyh5u3vjx+zxF4S0nr8djvT/U8Mwh7+OB277lnrvoex/b Ew1nRvtyN5/idetIBZAucGivAEKSJq6wLFJvGvLqGlq8k0BKrcup5aSbrVy9xysY Yx1lyx33vs/E+GbVn0dYAFA+PsZOBre1LAmF1uMCu+gV0oHFrMmv7ibYGVTLJ6UP 2S945hUKn9/Tvrc9Onjy49apfWkn6Wnwv3iigRU7+bYWmITqV1qiovI6vn6TgCg1 qzJtUGn0uYJzzGUyLb5RSkTQO8XFqqH30+oww3Z+EYycYQgdNqlO7u7F0bRkeQAi HuE20F9TmRHI15quyN0zcu2/6S7UQ5VMV/zL1khPAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUHhnu+ApDNj4Ig9Ab+0losJ5gI+gwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2Q5NzdkYTViLWZiNzgtNDQ5NC1iYjcxLTIyZjczYjE0NjU2MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2sjANBgkqhkiG9w0BAQsFAAOCAQEAo4vtiPxTmQUmpNAufqRLSwLqebau PP88cWe0EuQHUOMYgdzMoi8teO37jLED5oRmEn+GuSteiVka7Me62FLNHEax8415 CkYM29seYjUVNY06ZZZ5WxCrelhYFsqigVitAN+6h0A5X64ZWS8/i9nw063v0YIi cKNpyWtB82D9+5Hmg/qyv+yxFvltgjwtnewt3/YbS5nnEm9Rh+880fbBtOIXcyqu sGu0gwJ7GzgKErwOW+JFE7fBhoCcbmKS5l3pO6ZZKL9ZxAFGXOpgrKNoujQZk4TV Tr1dgUY1Q8sl/GJz40prVsdaWzUM5tWJlLNC5PkIS/CJUgjZkkai6kfDAQ== -----END CERTIFICATE-----Generated at Mon Aug 4 21:50:33 2025 by rpki-client