$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/e4a5f946-51e6-4f6c-a511-9fec767b9a94.roa File: e4a5f946-51e6-4f6c-a511-9fec767b9a94.roa (raw, json) Hash identifier: zh63l9ZrL/4DKHaEk4oxeJLbKu4Rc+zayFRB8yIhNaw= Subject key identifier: 2A:99:63:84:71:C2:D4:19:DF:03:22:AB:29:0B:0F:CD:4B:F1:5E:18 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 0CE6660FA214B4EF5FD5C38E5AB8F03EC6E56335 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/e4a5f946-51e6-4f6c-a511-9fec767b9a94.roa Signing time: Fri 25 Jul 2025 16:20:12 +0000 ROA not before: Fri 25 Jul 2025 16:20:12 +0000 ROA not after: Fri 29 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.188.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:e6:66:0f:a2:14:b4:ef:5f:d5:c3:8e:5a:b8:f0:3e:c6:e5:63:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jul 25 16:20:12 2025 GMT Not After : Aug 29 23:59:59 2025 GMT Subject: serialNumber=9cbf5c89df155166587985eef5d71ec10e4b04a2a728138d70f6bd74fcae2585, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:2a:06:a9:b1:17:d1:90:2a:ff:34:2e:57:05: 7c:f2:49:34:de:e2:b4:66:02:59:01:22:59:7a:ef: 36:b1:f6:f4:2f:20:ab:82:32:d9:04:61:be:07:49: 3d:94:e5:82:9d:d6:99:7d:2f:3e:01:02:d5:19:42: 96:a9:18:a7:21:34:59:70:0a:fe:54:d3:a3:f9:b0: d0:a8:12:30:92:0b:f0:5c:27:41:d5:7e:2f:7c:dd: 88:cb:d9:df:d6:fa:a1:e8:4f:54:0e:41:af:6d:16: 12:7f:fe:c6:f6:69:cb:71:09:97:df:71:6f:e4:57: c2:46:1d:c7:fc:83:1d:63:bd:ea:c5:f2:96:22:15: 85:3c:ab:0d:47:29:f2:b1:fa:1a:eb:51:0c:53:b8: e8:93:72:3e:1a:dd:56:d4:21:1c:c9:2b:14:01:65: ce:08:67:c1:96:2a:20:34:ef:19:03:9d:b8:de:88: 62:1a:0e:84:39:fa:cf:4a:39:4a:c6:4e:b4:4a:85: 0a:ac:b7:ee:c7:17:08:e2:25:11:7b:47:a4:38:7f: 95:ea:6d:25:cf:49:dc:30:1b:16:04:3b:21:3c:7d: ba:ce:7b:ea:33:6b:95:49:36:51:22:51:bc:fe:4e: d5:22:53:a3:98:b0:c5:3d:69:13:43:ae:66:a7:fc: c9:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:99:63:84:71:C2:D4:19:DF:03:22:AB:29:0B:0F:CD:4B:F1:5E:18 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/e4a5f946-51e6-4f6c-a511-9fec767b9a94.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.188.0.0/17 Signature Algorithm: sha256WithRSAEncryption 5e:7a:6d:ef:c3:21:48:4a:d7:05:29:af:ac:66:be:8e:5b:83: ed:02:77:26:d2:84:08:ff:c9:1b:8b:0d:28:17:1f:6b:3c:a1: 1f:1d:a8:32:65:10:4f:c5:71:14:10:b8:4a:df:cf:21:04:b6: e7:b2:88:b7:9f:66:b4:f8:a2:82:5f:e0:71:58:ea:7f:54:78: 4a:cf:4a:82:d9:ad:82:a9:bf:da:76:c3:a9:8b:55:9a:bd:d6: b7:b7:19:97:25:d6:ec:3f:4b:b6:96:66:2a:00:d8:f6:14:17: 11:0b:ae:b7:a6:b3:85:0d:a4:d9:88:22:f3:18:4a:21:fc:47: a4:9c:cc:6b:6e:31:9f:a8:b2:a6:d1:c5:ff:ce:79:a9:98:c5: ad:29:79:49:72:e4:d3:df:17:ea:11:1c:90:05:5f:e1:13:2e: 00:ca:53:18:4f:d2:1d:53:2f:87:6d:89:ef:1c:3d:58:11:a6: bf:7e:66:b2:59:07:6b:5a:b6:52:c7:ca:60:0f:c6:d0:97:00: 4a:1e:87:a8:ea:20:5a:d0:7c:0f:d6:fd:2f:6f:76:40:28:57: 13:5f:ac:61:7e:78:1a:4a:0e:3a:f3:96:f5:e1:cc:a4:ec:a6: 48:92:d5:78:8e:7d:ef:cb:92:5c:7e:05:78:39:24:77:cb:31: 14:af:05:79 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDOZmD6IUtO9f1cOOWrjwPsblYzUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNzI1MTYyMDEyWhcNMjUwODI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A5Y2JmNWM4OWRmMTU1MTY2NTg3OTg1ZWVmNWQ3MWVjMTBl NGIwNGEyYTcyODEzOGQ3MGY2YmQ3NGZjYWUyNTg1MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHKgapsRfRkCr/NC5XBXzySTTe4rRmAlkBIll67zax9vQv IKuCMtkEYb4HST2U5YKd1pl9Lz4BAtUZQpapGKchNFlwCv5U06P5sNCoEjCSC/Bc J0HVfi983YjL2d/W+qHoT1QOQa9tFhJ//sb2actxCZffcW/kV8JGHcf8gx1jverF 8pYiFYU8qw1HKfKx+hrrUQxTuOiTcj4a3VbUIRzJKxQBZc4IZ8GWKiA07xkDnbje iGIaDoQ5+s9KOUrGTrRKhQqst+7HFwjiJRF7R6Q4f5XqbSXPSdwwGxYEOyE8fbrO e+oza5VJNlEiUbz+TtUiU6OYsMU9aRNDrman/MlvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUKpljhHHC1BnfAyKrKQsPzUvxXhgwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2U0YTVmOTQ2LTUxZTYtNGY2Yy1hNTExLTlmZWM3NjdiOWE5NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAc2vAAwDQYJKoZIhvcNAQELBQADggEBAF56be/DIUhK1wUpr6xmvo5bg+0C dybShAj/yRuLDSgXH2s8oR8dqDJlEE/FcRQQuErfzyEEtueyiLefZrT4ooJf4HFY 6n9UeErPSoLZrYKpv9p2w6mLVZq91re3GZcl1uw/S7aWZioA2PYUFxELrrems4UN pNmIIvMYSiH8R6SczGtuMZ+osqbRxf/OeamYxa0peUly5NPfF+oRHJAFX+ETLgDK UxhP0h1TL4dtie8cPVgRpr9+ZrJZB2tatlLHymAPxtCXAEoeh6jqIFrQfA/W/S9v dkAoVxNfrGF+eBpKDjrzlvXhzKTspkiS1XiOfe/Lklx+BXg5JHfLMRSvBXk= -----END CERTIFICATE-----Generated at Mon Aug 4 21:34:50 2025 by rpki-client