$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/dbf08a2b-be78-45f1-8fef-fb73b3e7f3ab.roa File: dbf08a2b-be78-45f1-8fef-fb73b3e7f3ab.roa (raw, json) Hash identifier: a31wfxeeq4snQ+vuJebBQZmB88Q4B99fY4sFRh/1eIU= Subject key identifier: 7A:99:00:E6:6F:CD:7B:37:AA:E8:B6:A1:88:F4:0A:03:31:E8:80:C1 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 05B7A0584ED110A2E6AD926C0892FD6035ABD869 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/dbf08a2b-be78-45f1-8fef-fb73b3e7f3ab.roa Signing time: Tue 29 Jul 2025 18:00:55 +0000 ROA not before: Tue 29 Jul 2025 18:00:55 +0000 ROA not after: Tue 02 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.241.128.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:b7:a0:58:4e:d1:10:a2:e6:ad:92:6c:08:92:fd:60:35:ab:d8:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jul 29 18:00:55 2025 GMT Not After : Sep 2 23:59:59 2025 GMT Subject: serialNumber=76a350d56b6618ac9ebd4a281a32b34a9701ceac4750bc3be98d61f63d91691b, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:50:d7:ef:14:fe:ef:e5:ff:de:70:67:55:b5: f2:1e:99:4a:eb:9e:b4:25:4a:c5:48:c3:2a:b1:14: 8a:71:b1:01:d2:8c:3b:1e:16:05:09:04:c3:cb:63: cf:5a:ee:0a:f9:da:65:5b:be:28:b1:15:0f:99:a2: e8:5f:c0:2d:f6:51:47:4c:2f:22:f8:cf:c9:45:19: 43:11:9c:aa:18:aa:b9:3f:da:a7:4b:e3:7c:60:c2: ae:44:38:37:a9:4f:06:18:c9:9c:dc:f1:f2:3f:9e: c2:ac:52:b9:8a:6f:d5:36:ae:79:26:64:a4:0b:79: fc:5e:98:82:5e:66:73:ee:38:c1:b3:1c:ad:fc:ee: 97:61:11:c6:ae:9a:bd:eb:b2:e1:93:8a:5f:b3:57: 92:a3:3d:47:ca:32:ae:b7:24:16:ff:65:e7:b2:55: 36:02:bf:26:52:7a:b8:68:66:e3:23:2e:19:b8:a7: f3:31:4e:cd:3b:71:25:dc:4b:eb:cd:d4:b7:1c:c1: ca:5b:2e:e3:a0:4d:70:9c:93:66:cf:53:c1:42:80: 12:0e:35:ad:5e:d8:d3:a0:75:be:13:eb:ca:99:de: 1d:a4:33:26:63:8a:ee:f8:dc:7d:a5:ed:ad:93:be: d1:ff:bd:c4:29:9c:1f:44:d8:53:6c:cb:2a:9d:3d: ad:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:99:00:E6:6F:CD:7B:37:AA:E8:B6:A1:88:F4:0A:03:31:E8:80:C1 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/dbf08a2b-be78-45f1-8fef-fb73b3e7f3ab.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.241.128.0/19 Signature Algorithm: sha256WithRSAEncryption 3a:77:9a:37:72:df:aa:19:5a:82:f9:4b:13:78:5d:2a:7b:fa: ce:be:bd:77:98:70:da:26:43:1a:67:03:16:a5:cb:b3:4c:55: 59:47:4e:46:c1:dc:c6:98:b8:86:fd:c5:de:60:0d:f5:2b:02: 2d:d8:83:7e:0d:b7:da:39:af:06:13:53:b8:5c:03:47:aa:5b: a5:9e:07:a9:d1:f2:32:af:99:cb:77:52:d7:4d:de:da:fd:ad: d9:1c:f3:3a:76:63:b3:3d:85:c4:35:58:87:95:25:c1:46:3d: 93:c3:8c:17:d3:b8:1a:b3:e9:33:65:db:ba:ff:aa:f6:f5:32: 5e:2f:47:68:27:7a:41:b9:0f:5d:29:76:a7:86:aa:e1:0b:7e: ab:04:9b:ca:ae:50:f6:3e:6d:dc:07:aa:21:97:96:07:28:2e: 4e:9d:1f:9b:74:b6:99:ae:67:a8:37:c6:01:80:9f:6a:3f:1a: 1b:3a:3e:3f:6c:9d:b6:1b:67:10:9e:d2:6a:82:d8:74:2c:f2: d0:62:4d:6f:14:d1:c9:a5:48:ac:a5:39:3e:d8:17:a6:ee:02: e4:8b:5e:70:49:65:41:1c:6a:40:43:58:08:5f:1b:7c:6d:50: 47:36:e1:40:79:b1:b9:5f:f4:e8:f8:79:68:19:fa:53:95:70: c9:93:da:0b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBbegWE7REKLmrZJsCJL9YDWr2GkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNzI5MTgwMDU1WhcNMjUwOTAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A3NmEzNTBkNTZiNjYxOGFjOWViZDRhMjgxYTMyYjM0YTk3 MDFjZWFjNDc1MGJjM2JlOThkNjFmNjNkOTE2OTFiMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnUNfvFP7v5f/ecGdVtfIemUrrnrQlSsVIwyqxFIpxsQHS jDseFgUJBMPLY89a7gr52mVbviixFQ+ZouhfwC32UUdMLyL4z8lFGUMRnKoYqrk/ 2qdL43xgwq5EODepTwYYyZzc8fI/nsKsUrmKb9U2rnkmZKQLefxemIJeZnPuOMGz HK387pdhEcaumr3rsuGTil+zV5KjPUfKMq63JBb/ZeeyVTYCvyZSerhoZuMjLhm4 p/MxTs07cSXcS+vN1LccwcpbLuOgTXCck2bPU8FCgBIONa1e2NOgdb4T68qZ3h2k MyZjiu743H2l7a2TvtH/vcQpnB9E2FNsyyqdPa3rAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUepkA5m/Nezeq6LahiPQKAzHogMEwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2RiZjA4YTJiLWJlNzgtNDVmMS04ZmVmLWZiNzNiM2U3ZjNhYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAU28YAwDQYJKoZIhvcNAQELBQADggEBADp3mjdy36oZWoL5SxN4XSp7+s6+ vXeYcNomQxpnAxaly7NMVVlHTkbB3MaYuIb9xd5gDfUrAi3Yg34Nt9o5rwYTU7hc A0eqW6WeB6nR8jKvmct3UtdN3tr9rdkc8zp2Y7M9hcQ1WIeVJcFGPZPDjBfTuBqz 6TNl27r/qvb1Ml4vR2gnekG5D10pdqeGquELfqsEm8quUPY+bdwHqiGXlgcoLk6d H5t0tpmuZ6g3xgGAn2o/Ghs6Pj9snbYbZxCe0mqC2HQs8tBiTW8U0cmlSKylOT7Y F6buAuSLXnBJZUEcakBDWAhfG3xtUEc24UB5sblf9Oj4eWgZ+lOVcMmT2gs= -----END CERTIFICATE-----Generated at Mon Aug 4 21:35:43 2025 by rpki-client