$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a23f57bf-3947-48c4-91f1-e4364b7d94a1.roa File: a23f57bf-3947-48c4-91f1-e4364b7d94a1.roa (raw, json) Hash identifier: kny0T8hP3zxS/fg95Ar01zt0emO+97BUEvaDChZ7NMs= Subject key identifier: 83:F8:62:1D:37:40:D4:3E:4D:B6:DD:CD:3B:ED:F8:0F:57:7A:32:A8 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 41665FA314D3B466F09C4C8F0093C7EF8CE7BFDD Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a23f57bf-3947-48c4-91f1-e4364b7d94a1.roa Signing time: Tue 19 Aug 2025 00:40:52 +0000 ROA not before: Tue 19 Aug 2025 00:40:52 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 207.171.160.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:66:5f:a3:14:d3:b4:66:f0:9c:4c:8f:00:93:c7:ef:8c:e7:bf:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Aug 19 00:40:52 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=fc4dbc7bb570101de4e70914d09671726628729711766e03eef4b43d9e8f90af, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:00:eb:43:41:f1:c8:a9:11:17:5c:b5:45:40: 5b:fd:e7:78:3d:39:9d:d6:32:97:78:fc:01:b6:d6: 25:b3:25:18:89:94:74:52:ef:2a:16:06:1d:1c:db: df:39:2d:2d:0b:a0:25:8e:80:e5:8f:c4:09:a5:fc: 4e:7d:89:97:87:c9:d1:13:44:7c:3c:15:42:d3:e0: ef:66:f9:1f:bf:3e:59:49:97:a1:2b:17:b2:16:30: 81:78:9c:2b:36:c7:97:52:f5:f0:60:f3:3c:d5:af: e3:0b:8f:14:f2:47:1f:8b:0e:95:cc:a7:ff:35:86: 75:3e:f0:e0:bd:04:09:55:97:58:e0:77:bd:d9:bc: 71:6f:97:f7:95:08:12:b8:a9:50:c8:9a:d0:e1:d8: 8c:01:96:95:ad:c4:b8:18:65:92:69:5e:5e:66:b4: a9:c2:5f:ff:8f:b3:a4:4a:75:b0:3c:3b:90:31:9c: 1b:dc:28:d9:4b:20:74:0a:38:20:e7:cd:12:0a:db: fe:66:86:ef:7f:e4:fc:09:95:24:27:d2:98:17:51: 49:4c:ff:07:95:ee:a7:d2:83:7c:3c:c7:af:da:9e: 9f:bf:f9:a5:ea:c6:1a:5a:43:72:d9:ac:8f:be:27: 57:3e:88:92:67:4f:2a:30:2e:40:81:91:cd:72:3f: d3:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:F8:62:1D:37:40:D4:3E:4D:B6:DD:CD:3B:ED:F8:0F:57:7A:32:A8 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a23f57bf-3947-48c4-91f1-e4364b7d94a1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 207.171.160.0/19 Signature Algorithm: sha256WithRSAEncryption aa:ca:42:09:e4:95:50:59:02:0f:2e:c5:27:1b:5c:e9:73:76: 88:1e:2a:74:83:88:91:f8:46:ac:db:56:00:ae:c2:d1:fd:0d: 70:c0:8a:1d:24:73:f5:7f:69:1b:a5:a5:66:37:6e:7b:a7:b6: c2:59:73:81:bd:bd:bb:c1:5f:49:0e:21:dd:bb:70:36:07:1d: 6c:c7:73:da:02:01:b8:39:f0:e8:2f:fa:a7:16:8e:4a:75:b9: d5:bf:9d:46:9a:c7:3e:9a:4d:a6:15:f7:17:ed:84:e3:32:5c: 34:38:f8:92:2c:82:03:ba:ef:8b:42:af:a8:f3:e9:ad:8b:f5: 7e:04:90:87:8c:b2:6e:8d:d6:6e:83:60:88:4a:ed:24:ef:11: 0e:2a:e7:e8:9f:a5:6c:ba:87:b8:9e:f4:6f:fe:d9:7d:e6:41: ce:da:cd:c5:c3:b9:85:8c:e6:dc:eb:27:4c:29:76:47:50:53: da:44:6b:16:50:9e:97:50:70:fe:01:ca:3f:bc:78:d7:8d:4e: b4:89:54:be:bd:ad:d5:a1:42:08:28:bb:ba:17:71:7b:8c:14: 5e:5f:58:c9:d8:85:e3:76:af:f3:6b:10:a7:e1:e4:2d:9e:c9: 34:1a:fc:95:a0:16:7e:e7:b9:54:05:01:06:b7:43:40:65:6e: 28:f7:23:c6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQWZfoxTTtGbwnEyPAJPH74znv90wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUwODE5MDA0MDUyWhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BmYzRkYmM3YmI1NzAxMDFkZTRlNzA5MTRkMDk2NzE3MjY2 Mjg3Mjk3MTE3NjZlMDNlZWY0YjQzZDllOGY5MGFmMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8AOtDQfHIqREXXLVFQFv953g9OZ3WMpd4/AG21iWzJRiJ lHRS7yoWBh0c2985LS0LoCWOgOWPxAml/E59iZeHydETRHw8FULT4O9m+R+/PllJ l6ErF7IWMIF4nCs2x5dS9fBg8zzVr+MLjxTyRx+LDpXMp/81hnU+8OC9BAlVl1jg d73ZvHFvl/eVCBK4qVDImtDh2IwBlpWtxLgYZZJpXl5mtKnCX/+Ps6RKdbA8O5Ax nBvcKNlLIHQKOCDnzRIK2/5mhu9/5PwJlSQn0pgXUUlM/weV7qfSg3w8x6/anp+/ +aXqxhpaQ3LZrI++J1c+iJJnTyowLkCBkc1yP9MhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUg/hiHTdA1D5Ntt3NO+34D1d6MqgwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2EyM2Y1N2JmLTM5NDctNDhjNC05MWYxLWU0MzY0YjdkOTRhMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXPq6AwDQYJKoZIhvcNAQELBQADggEBAKrKQgnklVBZAg8uxScbXOlzdoge KnSDiJH4RqzbVgCuwtH9DXDAih0kc/V/aRulpWY3bnuntsJZc4G9vbvBX0kOId27 cDYHHWzHc9oCAbg58Ogv+qcWjkp1udW/nUaaxz6aTaYV9xfthOMyXDQ4+JIsggO6 74tCr6jz6a2L9X4EkIeMsm6N1m6DYIhK7STvEQ4q5+ifpWy6h7ie9G/+2X3mQc7a zcXDuYWM5tzrJ0wpdkdQU9pEaxZQnpdQcP4Byj+8eNeNTrSJVL69rdWhQggou7oX cXuMFF5fWMnYheN2r/NrEKfh5C2eyTQa/JWgFn7nuVQFAQa3Q0Blbij3I8Y= -----END CERTIFICATE-----Generated at Sat Aug 23 08:07:07 2025 by rpki-client