$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/8b4d99c5-89ad-4008-a629-96e00cf5656f.roa File: 8b4d99c5-89ad-4008-a629-96e00cf5656f.roa (raw, json) Hash identifier: Hfs4SoT9s9nwpNL/IbAd01lm4G5LIleSMuxv0nJcBdY= Subject key identifier: AD:8B:36:79:F1:FF:36:E5:C4:4D:1A:50:02:66:8F:49:AD:6E:63:DF Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 1A73EBCD9F418BB6AADC22B285A194EC7659E768 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/8b4d99c5-89ad-4008-a629-96e00cf5656f.roa Signing time: Tue 19 Aug 2025 00:40:52 +0000 ROA not before: Tue 19 Aug 2025 00:40:52 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 207.171.160.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:73:eb:cd:9f:41:8b:b6:aa:dc:22:b2:85:a1:94:ec:76:59:e7:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Aug 19 00:40:52 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=f0963e86dff31d54a2aa7f42974d9b7bda960dcc9169e98b5daa4ad1286f1ecd, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:92:20:c5:16:b2:d7:8d:0d:47:46:64:de:d8: 4f:59:2c:12:0a:18:ce:05:da:d2:a4:77:62:37:b6: 8e:49:13:bb:55:12:89:17:69:eb:f7:da:c6:55:a2: 79:95:55:70:8e:da:47:ac:a1:c0:9f:54:7a:c9:25: 16:84:0b:30:7e:07:8f:4a:57:4e:9e:4a:18:a4:dc: b0:dd:63:50:48:a0:ee:e0:ab:a9:fc:20:79:a1:22: 5d:38:e2:51:ce:50:98:b4:53:93:9d:1f:85:76:af: c4:9a:3a:4d:7b:a8:f4:06:02:bb:e6:6d:f5:3f:ef: d4:cb:34:a8:ad:d7:16:41:a2:bb:63:0b:0c:2a:40: 2e:db:2a:a9:ee:7f:44:32:f2:41:6d:06:c5:9c:2a: ac:9d:94:65:4a:48:3a:da:73:54:ca:00:53:f7:6d: 2c:c7:18:eb:27:02:18:a4:ca:2e:1c:ee:c1:ea:48: 12:5f:e6:3b:b2:c4:10:ad:a1:41:dd:09:9d:11:9d: 3f:a8:51:c6:87:e9:d9:25:b3:5c:89:31:c6:8a:9d: 8f:05:6b:e5:8f:9a:af:7e:a5:c4:1b:72:22:e2:1d: 27:ae:66:58:52:71:88:3e:ed:a1:f9:31:67:c6:80: f3:5e:a2:a3:71:d0:fd:cb:ba:ee:e8:15:7b:67:46: f0:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:8B:36:79:F1:FF:36:E5:C4:4D:1A:50:02:66:8F:49:AD:6E:63:DF X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/8b4d99c5-89ad-4008-a629-96e00cf5656f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 207.171.160.0/20 Signature Algorithm: sha256WithRSAEncryption 0c:54:a5:5c:11:53:5e:5b:b3:c3:58:17:8d:ad:12:af:15:8f: a5:b7:92:03:9f:10:07:6c:d3:1d:8e:7d:92:8e:33:e2:3d:11: d5:c0:af:89:72:11:0e:0f:73:96:d2:1a:e1:34:34:e6:56:41: 44:88:43:0e:da:86:3b:3a:0f:4b:30:d5:03:fd:ad:14:95:30: 21:dc:73:ca:4f:6f:79:3e:59:e5:b8:e6:62:e5:50:f3:7a:16: ca:05:58:f1:c2:dc:61:13:d3:4f:7e:34:1b:5a:42:c2:4a:06: 59:97:4d:62:c8:f9:c8:a1:4c:af:6c:8c:8f:c1:26:35:1d:3d: fe:2d:86:dd:56:81:2d:e4:ea:ad:c8:ab:c1:82:36:41:af:2f: c3:01:c9:08:c2:14:57:ab:d8:44:23:f4:ed:18:0f:ee:09:8b: 5f:68:11:b6:f7:44:8d:bf:b0:b1:ad:ad:c9:b5:b9:7a:31:79: ca:c5:ee:7a:2e:14:ee:81:e6:64:b5:c8:ce:e0:ec:45:ea:60: a4:9c:4f:73:bf:36:f1:ec:68:02:ab:85:be:69:ae:b5:07:a9: 0c:9f:80:4d:ee:53:64:f0:42:5d:97:f4:48:2e:5b:60:be:65: e7:50:ac:f9:f8:5b:f1:d8:33:b2:9b:74:2e:2d:fb:cb:ce:e2: fb:68:ea:d6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGnPrzZ9Bi7aq3CKyhaGU7HZZ52gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUwODE5MDA0MDUyWhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BmMDk2M2U4NmRmZjMxZDU0YTJhYTdmNDI5NzRkOWI3YmRh OTYwZGNjOTE2OWU5OGI1ZGFhNGFkMTI4NmYxZWNkMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDlkiDFFrLXjQ1HRmTe2E9ZLBIKGM4F2tKkd2I3to5JE7tV EokXaev32sZVonmVVXCO2kesocCfVHrJJRaECzB+B49KV06eShik3LDdY1BIoO7g q6n8IHmhIl044lHOUJi0U5OdH4V2r8SaOk17qPQGArvmbfU/79TLNKit1xZBortj CwwqQC7bKqnuf0Qy8kFtBsWcKqydlGVKSDrac1TKAFP3bSzHGOsnAhikyi4c7sHq SBJf5juyxBCtoUHdCZ0RnT+oUcaH6dkls1yJMcaKnY8Fa+WPmq9+pcQbciLiHSeu ZlhScYg+7aH5MWfGgPNeoqNx0P3Luu7oFXtnRvDZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUrYs2efH/NuXETRpQAmaPSa1uY98wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzhiNGQ5OWM1LTg5YWQtNDAwOC1hNjI5LTk2ZTAwY2Y1NjU2Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATPq6AwDQYJKoZIhvcNAQELBQADggEBAAxUpVwRU15bs8NYF42tEq8Vj6W3 kgOfEAds0x2OfZKOM+I9EdXAr4lyEQ4Pc5bSGuE0NOZWQUSIQw7ahjs6D0sw1QP9 rRSVMCHcc8pPb3k+WeW45mLlUPN6FsoFWPHC3GET009+NBtaQsJKBlmXTWLI+cih TK9sjI/BJjUdPf4tht1WgS3k6q3Iq8GCNkGvL8MByQjCFFer2EQj9O0YD+4Ji19o Ebb3RI2/sLGtrcm1uXoxecrF7nouFO6B5mS1yM7g7EXqYKScT3O/NvHsaAKrhb5p rrUHqQyfgE3uU2TwQl2X9EguW2C+ZedQrPn4W/HYM7KbdC4t+8vO4vto6tY= -----END CERTIFICATE-----Generated at Sat Aug 23 12:10:22 2025 by rpki-client