$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/ef566134-dc37-415a-a1e3-05f23305a92b.roa File: ef566134-dc37-415a-a1e3-05f23305a92b.roa (raw, json) Hash identifier: k9JQqJ8f/E1JYbJeUZNtTgtmECbYtlUg3/tXmjJigt4= Subject key identifier: 02:FF:21:69:6C:61:F2:F8:EA:BC:91:35:C6:86:B6:27:17:BE:6C:F9 Certificate issuer: /CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Certificate serial: 5D79E93D5B7A9EA0B98163BDB6F25696DFB57046 Authority key identifier: 7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/ef566134-dc37-415a-a1e3-05f23305a92b.roa Signing time: Wed 20 Aug 2025 00:20:15 +0000 ROA not before: Wed 20 Aug 2025 00:20:15 +0000 ROA not after: Wed 24 Sep 2025 23:59:59 +0000 asID: 7224 IP address blocks: 172.96.104.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Aug 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:79:e9:3d:5b:7a:9e:a0:b9:81:63:bd:b6:f2:56:96:df:b5:70:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Validity Not Before: Aug 20 00:20:15 2025 GMT Not After : Sep 24 23:59:59 2025 GMT Subject: serialNumber=b6555e591fe60f8fac57bd01719e9d7758792df9ec76ea8aa754151f9db61fed, CN=b0dbbb6a-5472-4b68-ae4d-401518603039 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:59:41:74:74:94:ab:2a:3f:6e:44:14:2e:6b: 95:70:27:b8:1f:07:f9:2c:22:74:f4:6e:b9:49:e5: bc:9b:0d:d3:6b:89:b8:c7:f4:ec:dd:d4:c9:e4:4f: 5f:aa:b4:3d:df:7d:b4:1c:06:d2:30:63:9f:f9:37: f4:4b:ca:e1:78:01:86:97:02:a2:62:03:a0:2d:58: be:a6:98:66:a6:ad:6b:a0:1a:fb:b5:18:85:12:19: 69:1d:ff:ce:a8:f2:5d:a0:9c:1c:d2:05:24:8c:69: a5:e0:c6:ab:ae:8d:47:b2:1e:1c:55:f4:5d:27:65: 46:73:eb:b1:e6:43:5f:9f:05:a9:e7:c7:fe:1c:35: b4:14:38:f3:47:f8:49:6c:12:67:c6:87:fa:95:04: 46:94:df:aa:55:bc:1d:31:0c:4e:8f:4d:e5:e0:3e: 00:60:a3:d8:12:95:1a:55:d2:f7:ee:65:5c:24:57: cc:8e:a1:af:a8:92:f9:86:bf:a5:35:09:34:d1:bb: 9d:61:07:27:aa:31:7d:b8:8b:d6:63:3f:fc:6d:b7: 52:ea:d9:d2:a3:42:85:6e:37:3d:cf:d6:dd:12:df: 9c:50:47:72:87:15:78:16:36:f3:5c:88:1c:3d:19: bd:4f:af:3a:be:dd:20:e7:6a:3c:ba:22:e7:51:4d: 45:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:FF:21:69:6C:61:F2:F8:EA:BC:91:35:C6:86:B6:27:17:BE:6C:F9 X509v3 Authority Key Identifier: keyid:7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/ef566134-dc37-415a-a1e3-05f23305a92b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 172.96.104.0/21 Signature Algorithm: sha256WithRSAEncryption 0a:84:16:f9:08:01:76:01:5f:cd:4c:0b:8e:73:e7:d6:32:56: b7:cb:d8:81:cd:27:d3:66:fc:a0:21:49:e8:02:b5:a7:79:17: af:a8:39:4f:4d:11:ed:d5:76:72:b3:95:ba:88:26:b0:d3:6f: 09:7b:0b:da:c1:d7:a8:1a:a5:46:63:90:ad:4a:18:8e:3a:db: a5:93:b1:09:e3:ae:fa:3e:7e:95:db:39:f1:0e:61:f9:ef:80: 78:e8:e3:c9:80:07:fa:da:90:10:9c:3c:82:b5:e5:09:6d:e8: 53:08:5d:00:13:85:4c:ef:08:69:40:7e:03:51:d8:4b:64:6e: 24:7a:15:8c:9d:6d:06:95:9e:65:e3:1b:1c:d2:72:37:2d:54: 1f:fa:2f:ba:ff:85:99:43:b0:b2:a2:bd:c3:d0:64:69:6a:37: c9:a8:84:46:fd:6b:89:32:a2:a0:54:32:7a:df:21:1e:71:bd: 05:9f:82:f0:2e:c1:f6:57:7e:f5:ee:f8:86:e3:92:91:bb:8a: 3f:3c:41:a4:7f:95:cc:37:61:cb:7a:c9:f3:51:e2:c3:c1:a6: 84:a8:fd:13:7a:f1:1c:cd:70:ce:6c:ee:17:b0:b1:d4:0b:0d: e1:0d:ba:14:de:ef:ab:e0:b0:b4:4b:99:a9:5b:60:0d:59:cf: 83:d1:89:23 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXXnpPVt6nqC5gWO9tvJWlt+1cEYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMGVlNDU4M2Q4NGQ5YjRmMDgyNGNiODBiYThmYzEyNDBi NDc5NGI1MTUwNzFlOTc1MWQwHhcNMjUwODIwMDAyMDE1WhcNMjUwOTI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BiNjU1NWU1OTFmZTYwZjhmYWM1N2JkMDE3MTllOWQ3NzU4 NzkyZGY5ZWM3NmVhOGFhNzU0MTUxZjlkYjYxZmVkMS0wKwYDVQQDEyRiMGRiYmI2 YS01NDcyLTRiNjgtYWU0ZC00MDE1MTg2MDMwMzkwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxWUF0dJSrKj9uRBQua5VwJ7gfB/ksInT0brlJ5bybDdNr ibjH9Ozd1MnkT1+qtD3ffbQcBtIwY5/5N/RLyuF4AYaXAqJiA6AtWL6mmGamrWug Gvu1GIUSGWkd/86o8l2gnBzSBSSMaaXgxquujUeyHhxV9F0nZUZz67HmQ1+fBann x/4cNbQUOPNH+ElsEmfGh/qVBEaU36pVvB0xDE6PTeXgPgBgo9gSlRpV0vfuZVwk V8yOoa+okvmGv6U1CTTRu51hByeqMX24i9ZjP/xtt1Lq2dKjQoVuNz3P1t0S35xQ R3KHFXgWNvNciBw9Gb1Przq+3SDnajy6IudRTUWDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUAv8haWxh8vjqvJE1xoa2Jxe+bPkwHwYDVR0jBBgwFoAUfYRHxJeKC0xz m+v2kuJMdd0/vK4wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS9iNGU0ZmVjNS0z NTEwLTQwMTctOTBlZi04MzkxNDEyZWNkNmMvMGVlNDU4M2Q4NGQ5YjRmMDgyNGNi ODBiYThmYzEyNDBiNDc5NGI1MTUwNzFlOTc1MWQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZGZkN2Y2ZDMtZTZlOS00OTg3LTlhZTctZDA1 MmM1MzUzODk4L2VmNTY2MTM0LWRjMzctNDE1YS1hMWUzLTA1ZjIzMzA1YTkyYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2RmZDdmNmQzLWU2ZTktNDk4Ny05YWU3 LWQwNTJjNTM1Mzg5OC8yYlR3Z2t5NEM2ajhFa0MwZVV0UlVISHBkUjAuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAOsYGgwDQYJKoZIhvcNAQELBQADggEBAAqEFvkIAXYBX81MC45z59YyVrfL 2IHNJ9Nm/KAhSegCtad5F6+oOU9NEe3VdnKzlbqIJrDTbwl7C9rB16gapUZjkK1K GI4626WTsQnjrvo+fpXbOfEOYfnvgHjo48mAB/rakBCcPIK15Qlt6FMIXQAThUzv CGlAfgNR2EtkbiR6FYydbQaVnmXjGxzScjctVB/6L7r/hZlDsLKivcPQZGlqN8mo hEb9a4kyoqBUMnrfIR5xvQWfgvAuwfZXfvXu+IbjkpG7ij88QaR/lcw3Yct6yfNR 4sPBpoSo/RN68RzNcM5s7hewsdQLDeENuhTe76vgsLRLmalbYA1Zz4PRiSM= -----END CERTIFICATE-----Generated at Sat Aug 23 16:22:52 2025 by rpki-client