$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/db24d6e0-8f0a-4452-af86-47c1cc9931b2.roa File: db24d6e0-8f0a-4452-af86-47c1cc9931b2.roa (raw, json) Hash identifier: z+6BoYeckZaHKxO4IP9ZuqK7TOyb16bMjj5TXBluGok= Subject key identifier: 7D:A0:45:4F:B9:89:F1:34:69:DD:CA:05:2E:43:14:C2:3D:2A:63:69 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 14E2A8B7404435361D4115830062463A34EC7374 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/db24d6e0-8f0a-4452-af86-47c1cc9931b2.roa Signing time: Fri 11 Jul 2025 16:41:57 +0000 ROA not before: Fri 11 Jul 2025 16:41:57 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.35.232.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:e2:a8:b7:40:44:35:36:1d:41:15:83:00:62:46:3a:34:ec:73:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jul 11 16:41:57 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=1627c52973408694c5e6670540583b22634b52798409ff5fca783c12a0962247, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:77:76:c0:a2:80:d0:44:5d:c5:c7:e1:17:53: c9:5f:a6:a2:b2:f0:c5:97:7c:b2:20:84:09:b9:b3: e2:f0:a1:b2:26:db:cc:43:b6:26:57:ad:84:e8:28: d3:a0:05:e2:b8:e7:ff:2c:b6:d7:44:60:21:35:fb: 84:73:cf:bb:92:94:e3:0d:44:7b:f2:b3:d3:a1:3e: 9f:48:f3:64:ec:40:fa:4e:f7:70:63:96:92:0b:96: 01:64:c7:46:1b:74:8b:34:67:cd:27:74:e8:c2:2c: ef:f2:e8:a8:e9:0b:bb:7e:20:22:61:28:fc:ae:19: 5f:fc:a7:61:26:af:88:70:84:e0:84:a7:a2:58:5f: 91:13:3b:93:3a:0e:95:fb:0c:4f:a1:3e:bd:f7:3f: 20:6f:6c:88:96:85:80:ff:7e:61:b9:96:f8:25:02: b7:ca:45:7f:c9:cc:6b:1e:51:61:33:81:66:47:2d: 23:64:5a:d7:f8:02:54:74:b9:31:84:3d:fc:c8:e8: 6d:18:90:eb:8e:c6:ee:35:a3:d8:37:cd:d8:aa:d7: 85:e4:2b:6c:11:38:0e:92:dc:34:f4:5e:cb:9a:13: 14:cd:00:9f:c8:7f:0c:98:93:78:84:df:02:54:65: 71:71:bc:52:ea:f2:86:14:4e:d9:18:7b:dd:12:0a: 76:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:A0:45:4F:B9:89:F1:34:69:DD:CA:05:2E:43:14:C2:3D:2A:63:69 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/db24d6e0-8f0a-4452-af86-47c1cc9931b2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.35.232.0/21 Signature Algorithm: sha256WithRSAEncryption 85:fd:d4:9c:95:59:4f:19:4c:eb:79:9c:b5:2e:86:9a:55:4d: 90:9d:8c:61:21:23:3e:d9:85:53:a5:dd:84:80:51:bd:91:b6: 1f:93:c2:3a:18:a7:24:69:ef:9c:7d:db:c0:3b:22:8d:94:c1: 1b:fa:a7:7c:66:ea:de:75:a9:b8:72:08:11:49:86:81:34:ed: ae:35:9e:b4:5b:2e:14:1c:f5:bc:e6:c6:f3:a4:4c:d7:64:62: 46:26:2a:3c:9d:ee:b9:95:54:85:ad:f0:9a:74:01:4b:26:69: aa:9c:5b:8e:53:b6:cb:31:df:d8:12:8a:1e:b4:52:42:94:f2: fb:a4:0c:50:f7:96:7e:d8:f0:fb:3f:58:6a:c9:4f:64:3e:26: b7:0c:92:1d:fe:a0:59:5f:04:07:91:ed:0e:db:43:6c:04:ef: ad:5e:4c:f7:de:61:10:e3:14:89:79:b2:e7:8a:32:52:de:20: 1d:c0:44:46:d4:71:fd:ab:80:1b:cb:b3:2b:50:b6:09:d8:9a: 0f:a9:b2:d5:93:ff:56:93:7c:59:11:19:ce:9f:37:06:d1:4f: 31:25:37:3b:43:53:cc:b2:98:56:76:e4:0f:9d:e5:20:95:0d: 48:97:62:26:3c:c1:de:bf:17:3e:ba:4e:0a:22:8b:13:72:f0: d7:d7:0f:4b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFOKot0BENTYdQRWDAGJGOjTsc3QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNzExMTY0MTU3WhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNjI3YzUyOTczNDA4Njk0YzVlNjY3MDU0MDU4M2IyMjYz NGI1Mjc5ODQwOWZmNWZjYTc4M2MxMmEwOTYyMjQ3MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyd3bAooDQRF3Fx+EXU8lfpqKy8MWXfLIghAm5s+LwobIm 28xDtiZXrYToKNOgBeK45/8sttdEYCE1+4Rzz7uSlOMNRHvys9OhPp9I82TsQPpO 93BjlpILlgFkx0YbdIs0Z80ndOjCLO/y6KjpC7t+ICJhKPyuGV/8p2Emr4hwhOCE p6JYX5ETO5M6DpX7DE+hPr33PyBvbIiWhYD/fmG5lvglArfKRX/JzGseUWEzgWZH LSNkWtf4AlR0uTGEPfzI6G0YkOuOxu41o9g3zdiq14XkK2wROA6S3DT0XsuaExTN AJ/IfwyYk3iE3wJUZXFxvFLq8oYUTtkYe90SCnaRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUfaBFT7mJ8TRp3coFLkMUwj0qY2kwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2RiMjRkNmUwLThmMGEtNDQ1Mi1hZjg2LTQ3YzFjYzk5MzFiMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMSI+gwDQYJKoZIhvcNAQELBQADggEBAIX91JyVWU8ZTOt5nLUuhppVTZCd jGEhIz7ZhVOl3YSAUb2Rth+TwjoYpyRp75x928A7Io2UwRv6p3xm6t51qbhyCBFJ hoE07a41nrRbLhQc9bzmxvOkTNdkYkYmKjyd7rmVVIWt8Jp0AUsmaaqcW45Ttssx 39gSih60UkKU8vukDFD3ln7Y8Ps/WGrJT2Q+JrcMkh3+oFlfBAeR7Q7bQ2wE761e TPfeYRDjFIl5sueKMlLeIB3AREbUcf2rgBvLsytQtgnYmg+pstWT/1aTfFkRGc6f NwbRTzElNztDU8yymFZ25A+d5SCVDUiXYiY8wd6/Fz66TgoiixNy8NfXD0s= -----END CERTIFICATE-----Generated at Mon Aug 4 21:42:10 2025 by rpki-client