$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/db28a28a-67ee-4d85-bb3d-cad7e12c11b1.roa File: db28a28a-67ee-4d85-bb3d-cad7e12c11b1.roa (raw, json) Hash identifier: 3hNo3QEsopjGP7NGjyEuCqSERwYJUQoff2mwkiNnVGU= Subject key identifier: F1:D4:A9:61:DB:A5:65:D3:A9:0E:DE:FF:3A:D3:E9:78:64:1A:1C:5A Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 275DC6B17B127CF3BBD4878CADD2DFBDDB0D4775 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/db28a28a-67ee-4d85-bb3d-cad7e12c11b1.roa Signing time: Tue 29 Jul 2025 15:00:24 +0000 ROA not before: Tue 29 Jul 2025 15:00:24 +0000 ROA not after: Tue 02 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.158.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:5d:c6:b1:7b:12:7c:f3:bb:d4:87:8c:ad:d2:df:bd:db:0d:47:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jul 29 15:00:24 2025 GMT Not After : Sep 2 23:59:59 2025 GMT Subject: serialNumber=0bb2d218bf7cbf60ff84e1f35576299aba3049fe4794885264f1ed0ff5e6307b, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:60:16:f8:98:11:a7:36:73:ae:4d:ef:d7:1a: 7b:0b:b0:6b:f6:bd:24:1a:59:42:c6:1e:a6:93:4d: 6e:de:3b:ae:a0:a2:6c:eb:d9:40:f0:a8:b2:1b:26: dc:7e:0e:eb:c0:51:d3:f3:95:60:da:e2:0b:99:f0: 06:bf:45:59:8b:dd:4f:57:a4:d3:e7:c6:bb:d4:29: 77:37:a5:6e:75:fb:fd:15:68:52:3f:5c:e5:40:90: 6e:ac:6e:c2:5c:88:8c:32:46:38:51:80:20:f8:db: af:67:39:c8:bf:4e:8c:ce:f6:0a:43:2a:91:db:96: 2d:de:d5:a0:06:39:9b:df:4a:52:6c:10:c0:ff:bc: cb:ea:ab:2c:2e:c5:34:1f:b6:f0:82:1d:59:15:8d: 31:4a:77:e5:56:cb:36:b4:3a:dd:c9:6c:68:20:21: d3:52:90:54:7c:1d:9e:8f:7a:fe:30:15:c3:fe:92: 09:06:c1:aa:89:25:e9:3d:b2:d4:07:66:77:7b:56: 10:99:9b:3f:2e:7e:0d:90:f0:c5:cc:01:c5:8c:d2: b4:16:9c:8e:d5:18:e7:2c:67:4f:50:86:dd:49:3d: d1:29:3b:7a:2a:a7:73:52:66:1d:89:5e:81:18:6f: 88:f4:7d:a4:98:45:1f:93:c8:0d:6a:b3:e8:38:d8: 0c:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:D4:A9:61:DB:A5:65:D3:A9:0E:DE:FF:3A:D3:E9:78:64:1A:1C:5A X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/db28a28a-67ee-4d85-bb3d-cad7e12c11b1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.158.192.0/18 Signature Algorithm: sha256WithRSAEncryption 32:b6:ba:53:f1:ea:0b:28:5d:fa:ce:41:5d:2e:9e:b6:39:5c: d3:74:2d:c3:e4:85:b0:0b:d1:0c:18:a7:bd:49:ce:82:7d:40: 90:6b:ff:ce:7b:c9:bc:dd:24:77:8c:75:4c:bc:79:22:34:4d: f5:ee:2d:29:cd:d8:bf:f4:79:af:04:87:86:2d:80:75:83:cf: 7c:cd:c7:16:24:08:c8:01:4c:ae:39:55:aa:4e:07:cc:4a:4d: 5d:de:59:cd:e0:e0:34:c8:c8:03:b1:43:5f:c0:25:58:fa:6b: 06:f1:84:c2:cc:12:34:dd:ae:65:a0:d5:8e:4e:13:fa:af:9a: 65:64:28:27:96:7e:1e:6f:cb:6b:92:32:ad:56:5c:a7:86:c6: 44:65:ed:bf:3b:71:42:b2:0e:3d:dd:ab:97:71:89:b2:e1:b1: 2b:71:0d:e0:ed:ef:a5:96:51:79:6f:6a:db:ab:be:b1:5a:4c: 0a:a6:66:00:b1:c4:61:43:c0:ea:44:f9:77:58:2c:da:ab:08: 24:0f:b3:6c:17:04:d2:55:ad:73:b0:0c:1d:05:bb:10:aa:d5: 5d:ff:a8:e9:b7:67:69:ee:ba:0f:c5:ba:19:08:fb:0d:47:87: 4a:68:a0:bc:48:c3:3a:07:bf:75:37:dd:55:90:f9:31:d3:64: 99:aa:2b:c8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJ13GsXsSfPO71IeMrdLfvdsNR3UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNzI5MTUwMDI0WhcNMjUwOTAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AwYmIyZDIxOGJmN2NiZjYwZmY4NGUxZjM1NTc2Mjk5YWJh MzA0OWZlNDc5NDg4NTI2NGYxZWQwZmY1ZTYzMDdiMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxYBb4mBGnNnOuTe/XGnsLsGv2vSQaWULGHqaTTW7eO66g omzr2UDwqLIbJtx+DuvAUdPzlWDa4guZ8Aa/RVmL3U9XpNPnxrvUKXc3pW51+/0V aFI/XOVAkG6sbsJciIwyRjhRgCD4269nOci/TozO9gpDKpHbli3e1aAGOZvfSlJs EMD/vMvqqywuxTQftvCCHVkVjTFKd+VWyza0Ot3JbGggIdNSkFR8HZ6Pev4wFcP+ kgkGwaqJJek9stQHZnd7VhCZmz8ufg2Q8MXMAcWM0rQWnI7VGOcsZ09Qht1JPdEp O3oqp3NSZh2JXoEYb4j0faSYRR+TyA1qs+g42Ax/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU8dSpYdulZdOpDt7/OtPpeGQaHFowHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2RiMjhhMjhhLTY3ZWUtNGQ4NS1iYjNkLWNhZDdlMTJjMTFiMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAY2nsAwDQYJKoZIhvcNAQELBQADggEBADK2ulPx6gsoXfrOQV0unrY5XNN0 LcPkhbAL0QwYp71JzoJ9QJBr/857ybzdJHeMdUy8eSI0TfXuLSnN2L/0ea8Eh4Yt gHWDz3zNxxYkCMgBTK45VapOB8xKTV3eWc3g4DTIyAOxQ1/AJVj6awbxhMLMEjTd rmWg1Y5OE/qvmmVkKCeWfh5vy2uSMq1WXKeGxkRl7b87cUKyDj3dq5dxibLhsStx DeDt76WWUXlvaturvrFaTAqmZgCxxGFDwOpE+XdYLNqrCCQPs2wXBNJVrXOwDB0F uxCq1V3/qOm3Z2nuug/FuhkI+w1Hh0pooLxIwzoHv3U33VWQ+THTZJmqK8g= -----END CERTIFICATE-----Generated at Tue Aug 5 16:36:11 2025 by rpki-client