$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0a5def47-5f65-4acd-8637-b56197048231.roa File: 0a5def47-5f65-4acd-8637-b56197048231.roa (raw, json) Hash identifier: jASavkzvDlWaaCpGJUAEpD70tT5Qr2ZAxkSyzI+ug8M= Subject key identifier: E7:76:F2:A6:88:2A:0D:3E:EF:2B:B1:F3:54:E1:D0:5A:17:6D:19:3F Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 3EF4A1BDBF7B468A61DD11E0FA987DD80A35ADFA Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0a5def47-5f65-4acd-8637-b56197048231.roa Signing time: Mon 04 Aug 2025 18:21:22 +0000 ROA not before: Mon 04 Aug 2025 18:21:22 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 54.239.8.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:f4:a1:bd:bf:7b:46:8a:61:dd:11:e0:fa:98:7d:d8:0a:35:ad:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 4 18:21:22 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=2820560303db7cad017cf50581e9a51caac6561016cc8bd7f47d0a040f86ff20, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:a1:df:80:65:4b:87:af:d7:ad:d0:04:85:65: ce:d6:9d:33:75:5f:cd:72:e2:14:90:e2:fc:0b:70: 65:95:a6:c7:7b:f5:d6:62:16:f5:32:a0:f9:27:70: 29:3d:af:06:12:a0:99:9d:5b:a9:ea:87:f4:e4:e3: b1:60:f7:2b:92:15:d9:e5:84:a0:f0:5c:b9:c1:65: 36:e6:ae:c3:4d:58:ee:50:1b:ab:39:26:4b:60:6d: 43:4c:e9:78:5b:0a:6c:76:d6:d8:85:c0:16:9e:09: 60:86:c3:f0:22:56:2d:c4:e0:91:ba:cd:4d:96:6d: ca:56:c8:05:18:ab:f8:f1:02:01:69:45:34:94:e2: f6:45:2a:4b:66:24:fe:1f:1e:d2:1e:81:e3:c8:79: e7:72:0d:df:10:43:7c:9a:64:17:6b:75:5d:96:da: a5:c2:13:82:2a:88:e4:92:7a:2c:91:df:bb:45:74: b9:b3:50:81:0f:cf:b1:cb:27:54:5f:6c:59:d0:f6: 45:79:4d:bf:36:b8:2e:64:be:5e:00:f6:80:a5:e2: 9a:2c:3d:81:af:7a:54:b3:b6:bf:18:c0:0e:57:f4: 7e:19:da:91:5e:fa:d7:0d:44:3d:26:b7:8a:30:7c: 4b:8c:ce:ab:01:61:6d:cc:e5:a3:b3:b8:6e:42:22: 53:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:76:F2:A6:88:2A:0D:3E:EF:2B:B1:F3:54:E1:D0:5A:17:6D:19:3F X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0a5def47-5f65-4acd-8637-b56197048231.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.239.8.0/21 Signature Algorithm: sha256WithRSAEncryption 79:22:e8:54:88:8b:5f:f3:56:91:af:ef:f7:84:e7:80:c0:aa: 5a:e1:cb:fd:0e:fc:ca:a2:bb:47:79:a7:f0:dd:19:5d:03:38: 44:6b:44:ff:11:5a:db:e1:d5:ee:e0:47:42:a1:f2:34:e5:78: dc:e4:a1:bb:f8:87:d1:87:dd:77:58:59:5c:c7:0d:a0:5d:13: 86:33:f7:42:fd:34:4d:8b:27:1d:4b:4b:d3:bf:12:d9:cd:e5: 4d:71:b8:fa:47:e1:e2:0a:59:cd:97:63:3b:22:55:11:08:ad: 68:02:ae:38:30:54:96:d3:f7:75:36:43:8d:dc:58:47:c8:ec: 12:23:e9:c2:59:b0:3d:dd:20:bf:23:9b:73:ba:5f:e9:a5:34: bf:d5:c9:55:39:a7:e2:ef:d7:ba:a1:dd:58:c2:38:f4:c7:47: e7:d8:8d:b0:df:06:61:cc:36:1f:6e:b2:bc:25:0e:41:88:22: 1e:bd:ba:38:90:e9:28:f1:a2:0e:72:bd:5d:a8:f5:ef:70:3c: ab:6e:f3:dc:d9:71:a1:a6:c5:8f:9e:39:ab:b2:3a:40:5e:82: 0e:64:7f:10:d9:2f:ca:3f:98:9d:f1:a2:20:6e:0e:e4:01:60: 92:24:35:ac:49:9d:12:89:d8:9a:91:de:77:18:32:c5:f3:75: f3:18:72:34 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPvShvb97Roph3RHg+ph92Ao1rfowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODA0MTgyMTIyWhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0AyODIwNTYwMzAzZGI3Y2FkMDE3Y2Y1MDU4MWU5YTUxY2Fh YzY1NjEwMTZjYzhiZDdmNDdkMGEwNDBmODZmZjIwMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpod+AZUuHr9et0ASFZc7WnTN1X81y4hSQ4vwLcGWVpsd7 9dZiFvUyoPkncCk9rwYSoJmdW6nqh/Tk47Fg9yuSFdnlhKDwXLnBZTbmrsNNWO5Q G6s5JktgbUNM6XhbCmx21tiFwBaeCWCGw/AiVi3E4JG6zU2WbcpWyAUYq/jxAgFp RTSU4vZFKktmJP4fHtIegePIeedyDd8QQ3yaZBdrdV2W2qXCE4IqiOSSeiyR37tF dLmzUIEPz7HLJ1RfbFnQ9kV5Tb82uC5kvl4A9oCl4posPYGvelSztr8YwA5X9H4Z 2pFe+tcNRD0mt4owfEuMzqsBYW3M5aOzuG5CIlM5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU53bypogqDT7vK7HzVOHQWhdtGT8wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzBhNWRlZjQ3LTVmNjUtNGFjZC04NjM3LWI1NjE5NzA0ODIzMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAM27wgwDQYJKoZIhvcNAQELBQADggEBAHki6FSIi1/zVpGv7/eE54DAqlrh y/0O/Mqiu0d5p/DdGV0DOERrRP8RWtvh1e7gR0Kh8jTleNzkobv4h9GH3XdYWVzH DaBdE4Yz90L9NE2LJx1LS9O/EtnN5U1xuPpH4eIKWc2XYzsiVREIrWgCrjgwVJbT 93U2Q43cWEfI7BIj6cJZsD3dIL8jm3O6X+mlNL/VyVU5p+Lv17qh3VjCOPTHR+fY jbDfBmHMNh9usrwlDkGIIh69ujiQ6Sjxog5yvV2o9e9wPKtu89zZcaGmxY+eOauy OkBegg5kfxDZL8o/mJ3xoiBuDuQBYJIkNaxJnRKJ2JqR3ncYMsXzdfMYcjQ= -----END CERTIFICATE-----Generated at Sat Aug 23 10:17:15 2025 by rpki-client