$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f185f8bb-54a6-4a09-8db9-eecdc9cec451.roa File: f185f8bb-54a6-4a09-8db9-eecdc9cec451.roa (raw, json) Hash identifier: X1ALPiZCYNp/6QY+8Ch8jNL4i5Cpn2rJyKAFHQSd5xo= Subject key identifier: B7:13:07:66:FC:3F:F6:34:6C:CA:1A:C7:20:7D:53:6C:56:AC:5E:4F Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 1DA83B45A576DB64BA902781B6007E2CF0724017 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f185f8bb-54a6-4a09-8db9-eecdc9cec451.roa Signing time: Fri 11 Jul 2025 17:20:05 +0000 ROA not before: Fri 11 Jul 2025 17:20:05 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.95.112.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:a8:3b:45:a5:76:db:64:ba:90:27:81:b6:00:7e:2c:f0:72:40:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jul 11 17:20:05 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=11d7f12e5dec7bd5f83845925bd431bde6036cccc1b2802f3c856cfa48d6ca27, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:d1:f1:bd:41:ae:6a:f0:c7:02:b3:c4:c5:e5: 72:0b:a7:23:79:5f:51:ff:65:01:1a:aa:60:d4:5e: 74:25:2b:76:b4:ab:53:27:d1:e0:49:86:d3:02:dd: a3:1c:18:b8:d3:f8:1b:2c:c2:38:b0:fb:36:fa:c4: 4a:b8:cb:35:1b:48:5b:ec:b0:65:7c:18:05:5e:f3: 41:48:6e:a2:f9:7c:ef:f8:4d:34:43:05:83:67:a4: 43:8b:fd:3d:8f:6f:f3:71:c6:6e:4f:30:b0:29:6d: c2:f4:64:4c:08:b6:fa:7a:dc:14:c0:48:fa:97:88: 85:00:ad:24:2b:f3:e2:ed:f0:70:33:78:52:b8:c5: d4:7d:30:5d:d3:61:99:d6:ae:42:85:97:28:4e:b0: 98:f6:10:90:17:43:c0:4a:a5:af:c7:6f:ad:f1:fb: c6:4f:d5:95:41:34:33:ee:26:57:8f:fb:35:db:37: 33:71:db:18:43:c9:e3:d4:fe:ef:6b:2c:ed:1a:ca: d9:70:71:9a:8f:21:16:68:e8:86:50:69:78:9b:9b: c5:b6:fc:3b:57:f2:61:bd:f0:47:14:3b:c6:17:d7: 30:16:14:2e:26:a4:11:15:4e:7b:95:bc:d9:4d:5d: ba:c3:ed:e2:c5:c7:a3:46:73:6b:98:a6:dd:28:46: 02:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:13:07:66:FC:3F:F6:34:6C:CA:1A:C7:20:7D:53:6C:56:AC:5E:4F X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f185f8bb-54a6-4a09-8db9-eecdc9cec451.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.95.112.0/20 Signature Algorithm: sha256WithRSAEncryption 66:bf:19:35:b5:f2:f8:c9:54:ce:1f:67:53:72:51:02:42:da: 20:99:86:59:08:8a:de:c3:92:13:0e:57:6a:3f:6b:1d:c7:0b: 31:f5:24:e9:b0:47:d9:fa:a4:e9:36:36:eb:7d:d6:00:82:0e: b7:d1:84:cd:8a:31:4d:7f:38:68:a3:39:88:f4:14:58:dd:0d: aa:ac:57:ca:07:0a:c1:88:4c:c0:6b:07:ff:75:1f:f5:ce:5a: 47:b0:5f:57:1c:23:f7:9b:9e:c9:df:07:a7:f2:42:f4:0f:ee: 69:78:8a:8c:36:66:93:15:46:0b:2f:1b:3e:f3:91:0e:53:84: 37:14:e2:0a:e9:f2:b5:73:ad:aa:41:ec:e8:31:b0:03:e2:76: cc:51:90:6d:29:87:fb:2f:0d:25:4e:45:ae:81:ec:1e:e2:2e: f5:4b:b5:19:0d:3c:a8:e0:ca:9e:7a:e7:61:d7:89:eb:e7:28: 5c:07:e4:60:02:07:36:d5:ea:4b:fa:89:f1:26:c8:6e:2f:e7: 67:43:34:2f:36:14:a0:66:c7:5c:a2:cf:41:f1:61:64:4a:e2: 9d:26:2b:20:a5:8f:79:97:ee:c4:69:27:fd:92:10:3a:82:84: d1:42:69:cc:d5:8a:f2:04:70:0b:07:68:47:13:c2:7b:31:45: 17:77:5d:6a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHag7RaV222S6kCeBtgB+LPByQBcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNzExMTcyMDA1WhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMWQ3ZjEyZTVkZWM3YmQ1ZjgzODQ1OTI1YmQ0MzFiZGU2 MDM2Y2NjYzFiMjgwMmYzYzg1NmNmYTQ4ZDZjYTI3MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDM0fG9Qa5q8McCs8TF5XILpyN5X1H/ZQEaqmDUXnQlK3a0 q1Mn0eBJhtMC3aMcGLjT+Bsswjiw+zb6xEq4yzUbSFvssGV8GAVe80FIbqL5fO/4 TTRDBYNnpEOL/T2Pb/Nxxm5PMLApbcL0ZEwItvp63BTASPqXiIUArSQr8+Lt8HAz eFK4xdR9MF3TYZnWrkKFlyhOsJj2EJAXQ8BKpa/Hb63x+8ZP1ZVBNDPuJleP+zXb NzNx2xhDyePU/u9rLO0aytlwcZqPIRZo6IZQaXibm8W2/DtX8mG98EcUO8YX1zAW FC4mpBEVTnuVvNlNXbrD7eLFx6NGc2uYpt0oRgJfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUtxMHZvw/9jRsyhrHIH1TbFasXk8wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2YxODVmOGJiLTU0YTYtNGEwOS04ZGI5LWVlY2RjOWNlYzQ1MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQ0X3AwDQYJKoZIhvcNAQELBQADggEBAGa/GTW18vjJVM4fZ1NyUQJC2iCZ hlkIit7DkhMOV2o/ax3HCzH1JOmwR9n6pOk2Nut91gCCDrfRhM2KMU1/OGijOYj0 FFjdDaqsV8oHCsGITMBrB/91H/XOWkewX1ccI/ebnsnfB6fyQvQP7ml4iow2ZpMV RgsvGz7zkQ5ThDcU4grp8rVzrapB7OgxsAPidsxRkG0ph/svDSVORa6B7B7iLvVL tRkNPKjgyp5652HXievnKFwH5GACBzbV6kv6ifEmyG4v52dDNC82FKBmx1yiz0Hx YWRK4p0mKyClj3mX7sRpJ/2SEDqChNFCaczVivIEcAsHaEcTwnsxRRd3XWo= -----END CERTIFICATE-----Generated at Mon Aug 4 22:15:09 2025 by rpki-client