$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2c91061a-ee80-4ba7-87d5-b68a7b08cc53.roa File: 2c91061a-ee80-4ba7-87d5-b68a7b08cc53.roa (raw, json) Hash identifier: C0kAYnWyO/c0JAMDyCPLA/ciNtFEXXkxKEXEb6Su6Ik= Subject key identifier: D9:D4:FB:80:54:08:75:D7:E2:18:52:C8:70:76:11:AB:83:7D:DE:9B Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 1DABE44CF698F6BCAC3EF4A745D56B673EE9CD32 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2c91061a-ee80-4ba7-87d5-b68a7b08cc53.roa Signing time: Tue 19 Aug 2025 15:41:28 +0000 ROA not before: Tue 19 Aug 2025 15:41:28 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 52.0.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:ab:e4:4c:f6:98:f6:bc:ac:3e:f4:a7:45:d5:6b:67:3e:e9:cd:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 19 15:41:28 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=451546ea353702f681d96515e27afa370eb08aab7b4c88d11d9c832dd623ecbb, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:e4:74:58:5a:43:d7:36:e5:51:47:84:d2:49: e7:b5:96:25:ef:4c:18:02:1e:ca:57:3a:0e:d9:9f: 73:e7:4d:19:7f:6e:6e:8b:74:6b:03:35:58:6b:63: 5d:e5:09:e3:57:7e:4c:99:8e:6d:e7:45:d5:39:de: 38:28:8a:45:33:77:c9:0c:60:31:38:39:82:4c:58: ee:1c:18:40:34:fc:6a:17:1b:59:c3:7d:45:66:4f: 36:9e:63:9c:d9:49:0b:74:89:11:96:26:16:ae:ed: 33:28:db:e9:a8:c5:35:b8:78:3d:31:aa:61:66:39: 91:66:85:5f:b5:b9:c9:d5:fc:61:7c:4d:49:76:3a: bc:52:6d:c6:8c:43:f9:bb:3f:b7:6a:93:05:b8:ff: 88:c8:85:e9:c2:d1:a4:af:c5:c8:07:88:ad:17:ab: 16:1c:7a:48:d0:30:ce:fe:17:58:84:f2:40:13:d2: 6e:ca:0b:c3:0f:a0:88:ef:68:9f:3f:c8:18:88:4f: 24:91:a8:75:07:54:c7:6e:ee:c1:6d:19:61:23:b6: 5a:6f:a7:1c:03:00:b8:be:b4:ac:6e:df:65:60:d7: 5b:11:fb:ab:61:e9:a0:ad:7f:95:ec:54:44:89:3f: 03:07:66:f8:35:cb:42:a4:29:6f:d4:6d:3a:8f:b2: 87:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:D4:FB:80:54:08:75:D7:E2:18:52:C8:70:76:11:AB:83:7D:DE:9B X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2c91061a-ee80-4ba7-87d5-b68a7b08cc53.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.0.0.0/15 Signature Algorithm: sha256WithRSAEncryption 84:69:44:61:5a:9a:4a:84:79:63:8b:4c:ac:f0:85:26:ca:23: a7:1d:24:56:42:84:a9:b4:93:1f:fb:11:60:39:74:66:cf:4c: af:26:1c:8a:1f:ce:2c:3b:da:00:be:74:e9:e8:7d:a3:4f:31: 27:89:74:d4:7d:cf:47:a6:fc:2c:1d:c4:f0:a7:cd:eb:b6:d7: 63:2e:3c:31:dd:77:09:65:a2:73:fc:9f:ef:88:31:08:2e:94: 6e:bc:13:6f:6d:50:8d:d2:90:68:56:56:70:f8:86:08:12:57: a5:1c:d6:5b:dc:83:29:16:ba:45:0c:4b:a9:45:44:f1:d8:85: 29:4a:37:74:a2:d2:43:ff:70:c8:e6:ae:6c:04:28:0b:88:ce: c1:8e:8e:d6:fd:19:f8:2e:6a:90:a6:b3:c4:88:f5:02:33:4e: 09:f1:4f:6a:68:9d:1e:e7:6d:c8:27:ad:0b:5e:2b:73:a6:a2: 27:de:25:bd:9f:97:ce:28:2d:88:35:b6:1f:cc:a1:1d:2d:aa: be:44:88:8f:20:ae:f8:04:0d:4c:0c:3e:3e:a6:dc:82:20:8e: 98:f4:18:f9:8e:14:2c:88:21:07:35:9f:f8:ff:c3:b5:67:4c: 38:0d:e2:3a:a5:19:ef:44:e7:ce:c7:fb:72:78:ca:e8:3a:49: 4a:d2:53:28 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUHavkTPaY9rysPvSnRdVrZz7pzTIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODE5MTU0MTI4WhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A0NTE1NDZlYTM1MzcwMmY2ODFkOTY1MTVlMjdhZmEzNzBl YjA4YWFiN2I0Yzg4ZDExZDljODMyZGQ2MjNlY2JiMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCW5HRYWkPXNuVRR4TSSee1liXvTBgCHspXOg7Zn3PnTRl/ bm6LdGsDNVhrY13lCeNXfkyZjm3nRdU53jgoikUzd8kMYDE4OYJMWO4cGEA0/GoX G1nDfUVmTzaeY5zZSQt0iRGWJhau7TMo2+moxTW4eD0xqmFmOZFmhV+1ucnV/GF8 TUl2OrxSbcaMQ/m7P7dqkwW4/4jIhenC0aSvxcgHiK0XqxYcekjQMM7+F1iE8kAT 0m7KC8MPoIjvaJ8/yBiITySRqHUHVMdu7sFtGWEjtlpvpxwDALi+tKxu32Vg11sR +6th6aCtf5XsVESJPwMHZvg1y0KkKW/UbTqPsoeRAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU2dT7gFQIddfiGFLIcHYRq4N93pswHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzJjOTEwNjFhLWVlODAtNGJhNy04N2Q1LWI2OGE3YjA4Y2M1My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwE0ADANBgkqhkiG9w0BAQsFAAOCAQEAhGlEYVqaSoR5Y4tMrPCFJsojpx0k VkKEqbSTH/sRYDl0Zs9MryYcih/OLDvaAL506eh9o08xJ4l01H3PR6b8LB3E8KfN 67bXYy48Md13CWWic/yf74gxCC6UbrwTb21QjdKQaFZWcPiGCBJXpRzWW9yDKRa6 RQxLqUVE8diFKUo3dKLSQ/9wyOaubAQoC4jOwY6O1v0Z+C5qkKazxIj1AjNOCfFP amidHudtyCetC14rc6aiJ94lvZ+XzigtiDW2H8yhHS2qvkSIjyCu+AQNTAw+Pqbc giCOmPQY+Y4ULIghBzWf+P/DtWdMOA3iOqUZ70Tnzsf7cnjK6DpJStJTKA== -----END CERTIFICATE-----Generated at Sat Aug 23 21:10:44 2025 by rpki-client