$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0c8cadeb-865b-42fe-884c-4bbbea22939c.roa File: 0c8cadeb-865b-42fe-884c-4bbbea22939c.roa (raw, json) Hash identifier: P1h3wsGPpw49CGNZNHiX+UDt20WDR+bh0b5RueQjlOI= Subject key identifier: D5:D5:AB:16:57:90:7E:1C:E9:B7:2C:01:28:8B:B6:73:25:6A:C2:DA Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 41D22D8FC759F094C38F8789D98377FE4DD34EA2 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0c8cadeb-865b-42fe-884c-4bbbea22939c.roa Signing time: Wed 20 Aug 2025 00:41:30 +0000 ROA not before: Wed 20 Aug 2025 00:41:30 +0000 ROA not after: Wed 24 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 15.230.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:d2:2d:8f:c7:59:f0:94:c3:8f:87:89:d9:83:77:fe:4d:d3:4e:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 20 00:41:30 2025 GMT Not After : Sep 24 23:59:59 2025 GMT Subject: serialNumber=8eab3e10feb206a82fe485a8350dca3c861db7bf2164c2941e850fa6e20ccc0e, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:63:2b:f1:d5:dd:ab:d6:29:d1:38:3e:39:c5: f6:e2:3e:a7:84:77:d5:84:e9:19:98:f6:da:94:c4: 89:70:80:ad:c2:5b:6d:9d:67:3e:ca:2c:ca:27:b7: d9:83:4c:86:fb:10:ff:c5:3b:77:b3:eb:a4:03:5a: f8:5b:9a:be:28:c3:aa:35:0f:0d:2f:ca:99:c4:75: dd:25:7c:1a:e0:64:29:b8:86:82:c1:92:78:be:60: 1a:ad:31:a0:37:39:24:ff:22:59:26:9a:98:40:e7: 37:4a:62:f1:4c:f6:83:68:cf:1a:d6:eb:6e:de:60: c8:c2:bf:89:4d:d1:e9:95:0b:bf:f1:b1:fc:42:63: c4:30:b0:d3:09:20:a9:e4:40:dc:e1:3b:57:cc:ff: 59:e9:99:0e:53:f9:f5:78:2b:15:32:fa:7f:38:d2: 22:bc:11:f1:f5:15:75:a3:1d:19:6d:c8:b0:a8:93: 94:b4:ef:b1:21:0b:dd:4a:52:8e:7c:62:59:b1:75: 3a:51:eb:e0:06:e9:4b:df:b7:d8:ec:84:64:87:7e: a8:b7:f6:2e:6d:20:9f:da:99:c6:3f:5e:63:d9:8e: 0b:9d:49:6a:ec:31:c4:b1:45:8c:27:1b:8e:f2:75: 16:c1:01:ba:a1:a0:e3:20:d5:4a:dc:11:e0:2b:42: 9d:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:D5:AB:16:57:90:7E:1C:E9:B7:2C:01:28:8B:B6:73:25:6A:C2:DA X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0c8cadeb-865b-42fe-884c-4bbbea22939c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.230.57.0/24 Signature Algorithm: sha256WithRSAEncryption 61:d7:2e:44:86:d8:9d:34:3f:aa:5c:43:f9:3b:c4:fd:5a:17: 12:86:5c:5d:ae:03:59:95:f1:cf:63:a8:d9:e8:28:8f:a2:0c: 35:16:93:d4:12:d9:1f:d5:96:84:6b:7d:08:0c:c4:83:e5:5a: 5a:2d:90:87:07:6e:b2:1d:8e:1e:65:5e:a6:55:be:c8:e1:e2: 4a:d1:ee:99:7e:5c:ad:c4:85:d6:9e:eb:08:ce:99:b8:44:2b: 2e:a5:6d:d3:e1:4a:12:56:d8:8f:f1:b9:59:61:57:95:df:cd: 85:8b:20:e2:9e:1e:66:79:10:89:04:07:9e:a4:24:12:0d:41: 39:9e:f6:ee:e9:15:b1:51:b5:bc:21:af:83:65:bf:ae:a8:7d: c8:ad:dd:23:1d:ae:b7:20:4b:13:c0:b1:5e:c4:1e:3d:8e:f9: 81:9c:fd:bc:fa:61:bb:93:a3:63:b8:c9:6f:74:b7:98:b7:4f: 53:0f:68:35:77:f3:35:c6:8e:fd:83:cc:ba:98:1c:37:a0:2d: 7c:61:e0:3f:d4:c0:3f:1c:26:11:f4:a6:41:fe:6d:84:0f:9c: 88:cf:71:15:6e:63:21:70:10:b4:da:e6:1b:b2:9b:43:55:9a: 37:85:2c:db:3c:6b:a8:fa:eb:cd:15:00:a2:e2:a0:cd:15:70: 0d:9d:5b:4b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQdItj8dZ8JTDj4eJ2YN3/k3TTqIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODIwMDA0MTMwWhcNMjUwOTI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZWFiM2UxMGZlYjIwNmE4MmZlNDg1YTgzNTBkY2EzYzg2 MWRiN2JmMjE2NGMyOTQxZTg1MGZhNmUyMGNjYzBlMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCYYyvx1d2r1inROD45xfbiPqeEd9WE6RmY9tqUxIlwgK3C W22dZz7KLMont9mDTIb7EP/FO3ez66QDWvhbmr4ow6o1Dw0vypnEdd0lfBrgZCm4 hoLBkni+YBqtMaA3OST/IlkmmphA5zdKYvFM9oNozxrW627eYMjCv4lN0emVC7/x sfxCY8QwsNMJIKnkQNzhO1fM/1npmQ5T+fV4KxUy+n840iK8EfH1FXWjHRltyLCo k5S077EhC91KUo58YlmxdTpR6+AG6Uvft9jshGSHfqi39i5tIJ/amcY/XmPZjgud SWrsMcSxRYwnG47ydRbBAbqhoOMg1UrcEeArQp2VAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU1dWrFleQfhzptywBKIu2cyVqwtowHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzBjOGNhZGViLTg2NWItNDJmZS04ODRjLTRiYmJlYTIyOTM5Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAP5jkwDQYJKoZIhvcNAQELBQADggEBAGHXLkSG2J00P6pcQ/k7xP1aFxKG XF2uA1mV8c9jqNnoKI+iDDUWk9QS2R/VloRrfQgMxIPlWlotkIcHbrIdjh5lXqZV vsjh4krR7pl+XK3Ehdae6wjOmbhEKy6lbdPhShJW2I/xuVlhV5XfzYWLIOKeHmZ5 EIkEB56kJBINQTme9u7pFbFRtbwhr4Nlv66ofcit3SMdrrcgSxPAsV7EHj2O+YGc /bz6YbuTo2O4yW90t5i3T1MPaDV38zXGjv2DzLqYHDegLXxh4D/UwD8cJhH0pkH+ bYQPnIjPcRVuYyFwELTa5huym0NVmjeFLNs8a6j6680VAKLioM0VcA2dW0s= -----END CERTIFICATE-----Generated at Sat Aug 23 08:03:43 2025 by rpki-client