$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/dcd7e384-f30e-45f8-b9c4-ffc1a149e46e.roa File: dcd7e384-f30e-45f8-b9c4-ffc1a149e46e.roa (raw, json) Hash identifier: 1YJ/5fy5esclOQ6ILJdpOiuEL2NUA7zAG/U+tkpFHKo= Subject key identifier: C3:DA:AA:65:B2:C4:FE:9B:F6:3B:97:64:51:6F:34:6D:0D:41:1C:98 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 097431EA2D6D606D7C2CCA8CF33118B78C508656 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/dcd7e384-f30e-45f8-b9c4-ffc1a149e46e.roa Signing time: Tue 29 Jul 2025 18:11:19 +0000 ROA not before: Tue 29 Jul 2025 18:11:19 +0000 ROA not after: Tue 02 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.250.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:74:31:ea:2d:6d:60:6d:7c:2c:ca:8c:f3:31:18:b7:8c:50:86:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jul 29 18:11:19 2025 GMT Not After : Sep 2 23:59:59 2025 GMT Subject: serialNumber=8100bb7364ef49565072ac8144f91c59a9a627ceff5ae074e56e9a4866387f5b, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:0c:2d:75:4d:bd:61:89:3b:a6:d6:d6:fd:ac: 29:e7:f7:bc:37:d0:2c:e2:10:7f:79:0b:4e:8a:16: 58:5e:0a:a6:3e:ad:b5:f6:12:42:e7:21:1d:41:38: 60:c4:6c:f1:cf:f1:12:66:4c:47:cd:9f:33:cc:1d: 03:f7:2c:3b:ec:1a:9f:04:7c:5c:ce:33:e9:fa:55: db:16:68:23:c5:e8:57:ae:ed:5d:73:2f:fd:cb:d1: 84:c7:61:d2:3b:c2:08:5e:b3:99:4c:17:54:70:4e: c9:0b:8a:47:fb:0f:f6:ae:22:2a:ec:05:1a:e1:5e: 7e:f9:34:50:26:ea:ac:66:e8:7a:df:a5:81:fe:4c: e0:b4:4f:cb:e1:c1:e7:2a:37:a0:87:b6:74:aa:01: 49:c7:3a:20:a7:e8:0c:ff:ca:9e:32:83:1b:c1:e7: db:81:c0:56:c6:71:c0:30:8a:39:a4:3c:37:5d:fb: f2:c5:31:5d:01:45:42:86:1a:8b:4b:7b:52:dc:9a: 13:e8:36:65:f9:d4:1b:aa:c6:d8:41:9e:d8:44:7d: ba:37:bb:39:76:30:52:7d:88:4b:d5:85:44:6d:91: 91:87:e6:c4:ea:1f:87:03:ae:6c:3d:d2:25:df:de: 2a:3b:89:8e:46:67:f6:0f:e3:16:6a:2a:fa:b8:f0: 26:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:DA:AA:65:B2:C4:FE:9B:F6:3B:97:64:51:6F:34:6D:0D:41:1C:98 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/dcd7e384-f30e-45f8-b9c4-ffc1a149e46e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.250.192.0/18 Signature Algorithm: sha256WithRSAEncryption 85:eb:0b:eb:ba:ce:c3:b8:38:b1:4a:d7:9d:7d:41:d5:0f:f1: d6:97:1a:58:f2:5a:87:1c:de:4b:fa:69:bf:1a:83:00:9e:2f: 0f:7d:2c:fc:bb:1c:bc:51:33:64:1c:7a:8c:c3:64:af:b2:84: f2:fa:14:0e:bb:d9:3d:b0:6b:7f:ca:f6:53:7b:7b:5b:38:cb: d9:8c:9d:59:3f:ba:31:b5:44:c5:3b:1e:5d:0a:f5:13:04:8a: 03:39:86:76:51:d8:cc:b6:f4:13:ba:53:f0:1b:85:e1:2f:cf: e9:34:e2:4f:b4:6a:da:1e:81:1b:c3:e9:92:b5:47:ce:e6:ff: 40:b8:7c:74:f0:05:06:c4:4b:d1:ce:30:d0:23:de:41:77:10: 17:ce:a4:eb:fd:63:3c:14:c1:4c:aa:e9:d9:85:0d:5d:c6:05: 21:8e:52:a2:7e:8f:8a:49:79:13:85:1b:e8:6e:a2:04:b2:72: 6f:ac:aa:49:4d:fe:90:96:8e:88:57:e6:64:64:35:a2:25:a6: ea:8c:95:7b:e7:ae:c2:6b:f6:d9:3c:e7:17:2e:db:8f:ba:50: c4:38:2f:da:e5:75:41:0a:6e:fc:f2:c4:d7:ea:07:99:56:f5: 37:f4:27:04:dc:67:f1:16:d8:b1:c8:dd:5f:f7:be:09:c6:99: 0b:79:c1:9c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCXQx6i1tYG18LMqM8zEYt4xQhlYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNzI5MTgxMTE5WhcNMjUwOTAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A4MTAwYmI3MzY0ZWY0OTU2NTA3MmFjODE0NGY5MWM1OWE5 YTYyN2NlZmY1YWUwNzRlNTZlOWE0ODY2Mzg3ZjViMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1DC11Tb1hiTum1tb9rCnn97w30CziEH95C06KFlheCqY+ rbX2EkLnIR1BOGDEbPHP8RJmTEfNnzPMHQP3LDvsGp8EfFzOM+n6VdsWaCPF6Feu 7V1zL/3L0YTHYdI7wghes5lMF1RwTskLikf7D/auIirsBRrhXn75NFAm6qxm6Hrf pYH+TOC0T8vhwecqN6CHtnSqAUnHOiCn6Az/yp4ygxvB59uBwFbGccAwijmkPDdd +/LFMV0BRUKGGotLe1LcmhPoNmX51BuqxthBnthEfbo3uzl2MFJ9iEvVhURtkZGH 5sTqH4cDrmw90iXf3io7iY5GZ/YP4xZqKvq48CZ1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUw9qqZbLE/pv2O5dkUW80bQ1BHJgwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2RjZDdlMzg0LWYzMGUtNDVmOC1iOWM0LWZmYzFhMTQ5ZTQ2ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAY2+sAwDQYJKoZIhvcNAQELBQADggEBAIXrC+u6zsO4OLFK1519QdUP8daX GljyWocc3kv6ab8agwCeLw99LPy7HLxRM2QceozDZK+yhPL6FA672T2wa3/K9lN7 e1s4y9mMnVk/ujG1RMU7Hl0K9RMEigM5hnZR2My29BO6U/AbheEvz+k04k+0atoe gRvD6ZK1R87m/0C4fHTwBQbES9HOMNAj3kF3EBfOpOv9YzwUwUyq6dmFDV3GBSGO UqJ+j4pJeROFG+huogSycm+sqklN/pCWjohX5mRkNaIlpuqMlXvnrsJr9tk85xcu 24+6UMQ4L9rldUEKbvzyxNfqB5lW9Tf0JwTcZ/EW2LHI3V/3vgnGmQt5wZw= -----END CERTIFICATE-----Generated at Mon Aug 4 21:33:26 2025 by rpki-client