$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/e28d298f-e48a-4aaf-bf51-472ca8677cc8.roa File: e28d298f-e48a-4aaf-bf51-472ca8677cc8.roa (raw, json) Hash identifier: WxUGaq2Im67ZIlgMzJwTLfLe2je5Ajk60TK+qR4QOYs= Subject key identifier: B9:DB:2A:9B:E7:0E:08:51:12:D6:A0:D2:F5:81:4E:B9:7F:B6:C4:5C Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 029D3704DB7AEC2A6C3B400C5FE3C7DBE154B1FF Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/e28d298f-e48a-4aaf-bf51-472ca8677cc8.roa Signing time: Fri 25 Jul 2025 16:00:59 +0000 ROA not before: Fri 25 Jul 2025 16:00:59 +0000 ROA not after: Fri 29 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 54.161.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:9d:37:04:db:7a:ec:2a:6c:3b:40:0c:5f:e3:c7:db:e1:54:b1:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jul 25 16:00:59 2025 GMT Not After : Aug 29 23:59:59 2025 GMT Subject: serialNumber=56caba1a761d9b7b132689b77d0ff2b049ea6deade6a87b0ff4da915209527f7, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:5d:98:de:ad:52:7a:6c:9d:3f:4b:d3:0b:1d: 56:2b:44:ec:a5:f6:08:ae:f2:26:6d:f4:d0:78:24: 1d:5e:64:a1:b7:6f:38:29:b5:24:b1:86:ad:a9:5f: 18:0a:3b:3e:6e:88:e6:af:80:c4:fd:b0:fe:5e:cd: af:5d:57:f2:fe:06:40:8b:78:ef:f0:7e:23:b0:aa: 55:89:15:aa:6c:7a:ea:88:19:2f:56:59:31:a9:ae: f5:e4:a6:c9:40:c2:af:26:59:eb:a6:bf:c6:e5:33: 98:b8:ee:4b:b7:9a:83:d2:dd:71:94:d7:86:22:13: 8c:ee:59:ac:e1:36:ff:30:8e:b8:fb:11:09:93:0b: 0e:fc:e6:1a:44:d7:96:c1:34:78:b6:ea:58:7e:f7: 6d:71:8a:61:81:9b:e4:da:9a:65:31:28:3a:78:2d: b5:4b:26:ad:7a:e1:59:4b:eb:cf:e5:99:37:62:e6: 5b:16:af:5d:8e:5d:35:5b:ae:91:27:84:1b:55:55: 19:8c:49:b5:0d:5b:1d:6e:aa:c2:e3:b6:ed:17:4c: 81:56:f9:7d:3d:11:7f:13:26:b4:24:77:e3:e9:28: b5:94:1a:9e:68:51:9b:b2:a9:2f:60:44:7d:d1:2d: 49:b2:c9:b7:a0:85:34:f3:11:43:9f:1c:7b:3c:34: 3a:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:DB:2A:9B:E7:0E:08:51:12:D6:A0:D2:F5:81:4E:B9:7F:B6:C4:5C X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/e28d298f-e48a-4aaf-bf51-472ca8677cc8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.161.128.0/17 Signature Algorithm: sha256WithRSAEncryption 2b:15:e3:f9:0d:1e:d1:d0:b4:e8:1a:97:42:ce:ee:9c:23:62: dd:df:0d:60:2a:ae:69:33:14:13:3c:e7:82:e5:f8:43:1d:88: 18:e9:d9:28:b4:24:10:3f:2e:d2:19:2a:6e:15:98:2c:2f:27: f5:c7:97:b2:1a:1c:30:9d:b7:52:06:fd:34:21:92:33:e2:c3: b0:9b:51:85:38:2f:e9:e1:7b:21:21:79:fa:af:1d:3d:95:0f: e0:94:f4:fb:77:64:97:6b:e7:41:49:3c:24:7b:2b:60:9b:d8: 14:3c:cf:58:db:6a:1a:02:4e:34:42:bc:97:3a:c6:d1:2b:ee: ca:a2:40:9b:cf:7d:32:1e:a0:8f:e0:40:86:65:e9:02:1d:a8: a2:13:06:49:da:a3:47:17:bb:9e:a9:b5:cd:e6:d3:e4:80:f5: a4:6e:a6:a3:a5:be:43:db:86:88:76:5f:64:0e:c4:e7:1d:f7: 54:b1:55:14:8c:2c:84:29:97:67:cd:ac:21:26:fe:75:02:9a: 0a:1e:b9:42:a5:62:29:dc:03:ca:fc:d8:fb:4f:47:b5:0e:da: 94:73:e5:e6:89:46:b4:f1:23:dd:3d:ad:d1:5e:85:1a:3f:75: b8:0c:26:2a:90:0b:06:f5:94:7e:29:63:b4:8b:c9:05:45:e4: 5e:7f:25:54 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAp03BNt67CpsO0AMX+PH2+FUsf8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNzI1MTYwMDU5WhcNMjUwODI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NmNhYmExYTc2MWQ5YjdiMTMyNjg5Yjc3ZDBmZjJiMDQ5 ZWE2ZGVhZGU2YTg3YjBmZjRkYTkxNTIwOTUyN2Y3MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDNXZjerVJ6bJ0/S9MLHVYrROyl9giu8iZt9NB4JB1eZKG3 bzgptSSxhq2pXxgKOz5uiOavgMT9sP5eza9dV/L+BkCLeO/wfiOwqlWJFapseuqI GS9WWTGprvXkpslAwq8mWeumv8blM5i47ku3moPS3XGU14YiE4zuWazhNv8wjrj7 EQmTCw785hpE15bBNHi26lh+921ximGBm+TammUxKDp4LbVLJq164VlL68/lmTdi 5lsWr12OXTVbrpEnhBtVVRmMSbUNWx1uqsLjtu0XTIFW+X09EX8TJrQkd+PpKLWU Gp5oUZuyqS9gRH3RLUmyybeghTTzEUOfHHs8NDqbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUudsqm+cOCFES1qDS9YFOuX+2xFwwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2UyOGQyOThmLWU0OGEtNGFhZi1iZjUxLTQ3MmNhODY3N2NjOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAc2oYAwDQYJKoZIhvcNAQELBQADggEBACsV4/kNHtHQtOgal0LO7pwjYt3f DWAqrmkzFBM854Ll+EMdiBjp2Si0JBA/LtIZKm4VmCwvJ/XHl7IaHDCdt1IG/TQh kjPiw7CbUYU4L+nheyEhefqvHT2VD+CU9Pt3ZJdr50FJPCR7K2Cb2BQ8z1jbahoC TjRCvJc6xtEr7sqiQJvPfTIeoI/gQIZl6QIdqKITBknao0cXu56ptc3m0+SA9aRu pqOlvkPbhoh2X2QOxOcd91SxVRSMLIQpl2fNrCEm/nUCmgoeuUKlYincA8r82PtP R7UO2pRz5eaJRrTxI909rdFehRo/dbgMJiqQCwb1lH4pY7SLyQVF5F5/JVQ= -----END CERTIFICATE-----Generated at Mon Aug 4 14:04:06 2025 by rpki-client