$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/df607230-41e6-480a-813d-bbc6101bd307.roa File: df607230-41e6-480a-813d-bbc6101bd307.roa (raw, json) Hash identifier: i5ZDQVlD+FXC+nXB7f2VbCJdk7s7w6N9eYN/aEq1sYI= Subject key identifier: 3C:5A:34:65:3F:A8:78:21:23:B9:20:BD:8C:C3:B7:3A:E9:D6:FE:E5 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 5A0A4B2BCBC3ED97C20E68A36C67F77BEDE3EF07 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/df607230-41e6-480a-813d-bbc6101bd307.roa Signing time: Fri 25 Jul 2025 15:31:08 +0000 ROA not before: Fri 25 Jul 2025 15:31:08 +0000 ROA not after: Fri 29 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.19.192.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 08 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:0a:4b:2b:cb:c3:ed:97:c2:0e:68:a3:6c:67:f7:7b:ed:e3:ef:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jul 25 15:31:08 2025 GMT Not After : Aug 29 23:59:59 2025 GMT Subject: serialNumber=b417fe373f0a879510beb77c68de683771bc51a4e8c58ef5a0b2df6b81e0f1dc, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:74:2c:c6:1a:ac:10:f6:9e:63:6d:db:90:d6: ed:0f:27:4e:85:4a:1b:3d:46:ed:d5:0f:9a:fe:00: 8b:ba:16:57:03:01:91:6e:67:59:d4:08:0d:97:f5: f5:1f:81:23:d0:f9:43:d7:9d:4e:4b:ee:6d:22:24: 1e:e0:5f:23:5e:0d:14:20:d7:52:b7:5c:1c:75:93: ec:3e:fa:7b:c2:50:cc:c3:56:73:d8:a7:f6:74:aa: ea:be:69:0c:d0:21:0b:26:fa:3e:1c:4b:58:b8:15: e9:48:a8:cd:c4:ed:2f:5b:6c:28:be:1c:0a:67:20: 72:34:31:01:04:b8:25:b8:d7:9e:cb:4d:d0:d3:15: 2a:b2:96:59:1a:99:74:ea:af:70:c9:70:78:36:fd: 52:fe:d2:44:db:f1:ee:0d:4c:8c:d2:06:c5:7e:92: fb:38:30:a2:e1:59:85:d3:2a:3b:e3:e5:5b:1f:83: b4:d9:e3:16:eb:af:01:db:17:bc:2e:98:1f:12:49: d3:c9:f2:69:9f:10:e6:91:56:ad:41:8d:33:ff:90: ab:cd:80:c3:f4:b5:f9:4f:93:f2:57:3c:a7:50:15: 16:e3:7b:ea:6f:a0:10:69:6b:28:91:1c:e1:08:2a: ef:45:b3:6a:43:fb:de:77:85:a6:cb:b0:2b:bb:42: 8d:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:5A:34:65:3F:A8:78:21:23:B9:20:BD:8C:C3:B7:3A:E9:D6:FE:E5 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/df607230-41e6-480a-813d-bbc6101bd307.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.19.192.0/19 Signature Algorithm: sha256WithRSAEncryption 8c:26:d2:7f:5d:1f:59:dd:f0:43:2b:f5:6b:3b:fb:ec:86:ee: 7f:96:e4:1d:35:54:9a:44:57:c6:b7:21:16:da:3f:32:47:ab: 6d:87:e1:67:eb:b0:2b:2b:2f:f3:a4:b7:b8:2c:b0:94:22:71: 27:31:28:8c:11:72:1e:a2:6d:81:b7:19:bd:2b:ac:19:8a:3c: d3:c6:86:91:4b:43:60:ed:22:06:ba:a1:5f:62:5e:d7:40:6b: c3:e1:b1:08:1d:33:59:48:2c:58:cf:4f:73:c6:1c:db:0f:76: 47:96:42:41:37:bc:43:04:41:e0:e1:6e:99:9f:5d:1d:9f:6b: 9e:52:1a:30:99:1d:2b:fb:2d:9d:38:be:79:20:b6:0c:63:4f: 71:f4:87:0b:58:1b:6b:c8:69:98:b7:bc:53:ab:c3:63:bf:83: ae:14:a7:65:e9:49:11:63:b1:4f:97:61:fc:be:91:88:12:9d: 7c:04:e2:b6:cd:f4:f4:0c:fc:59:aa:3c:59:54:04:63:f2:1e: 3a:8c:27:40:6f:a8:b2:86:b6:96:db:83:09:d8:0c:df:cd:e9: 58:8a:6d:94:90:63:19:cb:0e:08:fc:87:7f:75:f1:2b:53:88: d2:56:1c:82:9c:59:99:54:b9:94:a2:d2:35:81:83:64:0c:d8: 17:8c:95:32 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWgpLK8vD7ZfCDmijbGf3e+3j7wcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNzI1MTUzMTA4WhcNMjUwODI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BiNDE3ZmUzNzNmMGE4Nzk1MTBiZWI3N2M2OGRlNjgzNzcx YmM1MWE0ZThjNThlZjVhMGIyZGY2YjgxZTBmMWRjMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCedCzGGqwQ9p5jbduQ1u0PJ06FShs9Ru3VD5r+AIu6FlcD AZFuZ1nUCA2X9fUfgSPQ+UPXnU5L7m0iJB7gXyNeDRQg11K3XBx1k+w++nvCUMzD VnPYp/Z0quq+aQzQIQsm+j4cS1i4FelIqM3E7S9bbCi+HApnIHI0MQEEuCW4157L TdDTFSqyllkamXTqr3DJcHg2/VL+0kTb8e4NTIzSBsV+kvs4MKLhWYXTKjvj5Vsf g7TZ4xbrrwHbF7wumB8SSdPJ8mmfEOaRVq1BjTP/kKvNgMP0tflPk/JXPKdQFRbj e+pvoBBpayiRHOEIKu9Fs2pD+953habLsCu7Qo1vAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUPFo0ZT+oeCEjuSC9jMO3OunW/uUwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2RmNjA3MjMwLTQxZTYtNDgwYS04MTNkLWJiYzYxMDFiZDMwNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAU0E8AwDQYJKoZIhvcNAQELBQADggEBAIwm0n9dH1nd8EMr9Ws7++yG7n+W 5B01VJpEV8a3IRbaPzJHq22H4WfrsCsrL/Okt7gssJQicScxKIwRch6ibYG3Gb0r rBmKPNPGhpFLQ2DtIga6oV9iXtdAa8PhsQgdM1lILFjPT3PGHNsPdkeWQkE3vEME QeDhbpmfXR2fa55SGjCZHSv7LZ04vnkgtgxjT3H0hwtYG2vIaZi3vFOrw2O/g64U p2XpSRFjsU+XYfy+kYgSnXwE4rbN9PQM/FmqPFlUBGPyHjqMJ0BvqLKGtpbbgwnY DN/N6ViKbZSQYxnLDgj8h3918StTiNJWHIKcWZlUuZSi0jWBg2QM2BeMlTI= -----END CERTIFICATE-----Generated at Wed Aug 6 00:37:08 2025 by rpki-client