$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/54642dc4-ea28-4022-89e1-e118cd602991.roa File: 54642dc4-ea28-4022-89e1-e118cd602991.roa (raw, json) Hash identifier: n52Bc6q9ruf1Gat74ZVz189WnTSFJysSC38tUN1uL7Y= Subject key identifier: FA:C1:7E:0E:C5:40:25:51:DF:08:22:C7:C7:8C:F8:2D:1F:B4:12:D7 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 4F863E57FC13BF0E901832FAE80DE13E5AE05423 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/54642dc4-ea28-4022-89e1-e118cd602991.roa Signing time: Fri 22 Aug 2025 00:50:56 +0000 ROA not before: Fri 22 Aug 2025 00:50:56 +0000 ROA not after: Fri 26 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.95.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:86:3e:57:fc:13:bf:0e:90:18:32:fa:e8:0d:e1:3e:5a:e0:54:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 22 00:50:56 2025 GMT Not After : Sep 26 23:59:59 2025 GMT Subject: serialNumber=00b591f57e2763886d2ccb6af32a35fe30a54aa31b5507c69fe9778b5214da80, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:df:68:31:1a:06:8f:05:b8:37:88:f6:12:54: bc:c8:17:5d:ee:4a:00:6f:75:12:fa:28:48:d0:f5: f5:a6:2d:2b:cb:4f:df:30:2f:1a:c2:95:9d:2f:ed: a6:eb:d8:12:b3:95:aa:03:ca:60:74:05:47:df:20: f7:93:80:d0:b9:11:a8:15:8a:9b:b8:92:4c:81:61: c2:9e:ea:52:a6:a5:a9:54:59:ae:e6:30:80:05:b6: 0c:83:34:9d:04:c4:88:99:ec:52:ec:7f:37:d5:80: 86:2d:f1:d2:09:60:69:9b:7a:d4:bd:7f:72:fd:32: 5e:00:79:5b:85:0e:c6:09:01:a1:1c:e8:e9:51:56: f2:ca:6d:c2:f1:e6:21:32:49:21:a2:a1:b5:e1:73: 16:ce:ca:9b:07:47:44:31:06:19:1b:28:cc:03:a7: b6:e2:07:fb:b9:07:02:b5:c9:2c:c9:83:1f:03:12: 81:4a:80:d3:75:36:12:c0:05:2e:f3:6f:73:dd:28: 1e:d1:0f:73:18:53:43:fe:df:12:ed:20:fc:ac:e7: 48:a4:70:81:22:fa:39:e1:d4:e6:38:51:97:d6:b6: 76:f2:b5:3e:ab:22:25:33:cd:b7:d7:76:57:db:ec: 7c:64:61:c7:9d:b5:94:27:60:a7:fe:21:35:37:9f: 75:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:C1:7E:0E:C5:40:25:51:DF:08:22:C7:C7:8C:F8:2D:1F:B4:12:D7 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/54642dc4-ea28-4022-89e1-e118cd602991.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.95.128.0/18 Signature Algorithm: sha256WithRSAEncryption 99:fc:1d:2b:64:7e:a7:c4:d5:b7:80:b1:15:a0:24:9b:2a:7c: 86:3a:35:d8:4c:30:4e:db:93:c6:72:58:0c:a1:ad:77:d4:e1: 7a:6c:ac:63:52:bf:63:1f:d6:03:ec:a0:b0:bd:5e:4b:c8:1a: 49:f0:09:39:c2:fb:0c:1c:c5:eb:fd:4a:77:d6:80:57:b9:75: dd:72:c5:46:dd:59:46:23:d6:c4:2a:23:41:5b:14:c4:35:5e: 7c:0b:b4:a6:e0:9a:b5:38:cf:22:c1:ec:05:d9:8c:a9:e1:1f: 90:ad:67:33:d7:b1:6b:71:a2:eb:36:5f:7d:fe:f1:e6:b0:9c: 7f:3a:63:d8:01:b6:0a:3f:7e:5d:19:8d:df:86:f2:4b:df:49: 2a:cb:76:44:60:42:15:6e:f5:54:c7:55:2f:33:f3:23:dc:6e: da:c8:66:88:ee:48:d5:f7:81:b5:31:ae:25:33:40:7d:0c:c8: a1:09:8e:97:a7:46:e7:39:82:6a:52:ff:27:5f:52:eb:22:3c: c2:22:ca:8c:82:68:85:ba:19:17:0b:9b:3b:b5:88:a0:6b:8e: 77:c7:fb:55:bb:da:bf:b7:9c:e0:1b:a2:ff:38:45:b0:47:ce: de:90:e5:a4:33:12:f1:62:fa:4c:d4:43:2a:6c:55:35:4b:f7: f1:9a:78:01 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUT4Y+V/wTvw6QGDL66A3hPlrgVCMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODIyMDA1MDU2WhcNMjUwOTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMGI1OTFmNTdlMjc2Mzg4NmQyY2NiNmFmMzJhMzVmZTMw YTU0YWEzMWI1NTA3YzY5ZmU5Nzc4YjUyMTRkYTgwMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDZ32gxGgaPBbg3iPYSVLzIF13uSgBvdRL6KEjQ9fWmLSvL T98wLxrClZ0v7abr2BKzlaoDymB0BUffIPeTgNC5EagVipu4kkyBYcKe6lKmpalU Wa7mMIAFtgyDNJ0ExIiZ7FLsfzfVgIYt8dIJYGmbetS9f3L9Ml4AeVuFDsYJAaEc 6OlRVvLKbcLx5iEySSGiobXhcxbOypsHR0QxBhkbKMwDp7biB/u5BwK1ySzJgx8D EoFKgNN1NhLABS7zb3PdKB7RD3MYU0P+3xLtIPys50ikcIEi+jnh1OY4UZfWtnby tT6rIiUzzbfXdlfb7HxkYcedtZQnYKf+ITU3n3XdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU+sF+DsVAJVHfCCLHx4z4LR+0EtcwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzU0NjQyZGM0LWVhMjgtNDAyMi04OWUxLWUxMThjZDYwMjk5MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAY0X4AwDQYJKoZIhvcNAQELBQADggEBAJn8HStkfqfE1beAsRWgJJsqfIY6 NdhMME7bk8ZyWAyhrXfU4XpsrGNSv2Mf1gPsoLC9XkvIGknwCTnC+wwcxev9SnfW gFe5dd1yxUbdWUYj1sQqI0FbFMQ1XnwLtKbgmrU4zyLB7AXZjKnhH5CtZzPXsWtx ous2X33+8eawnH86Y9gBtgo/fl0Zjd+G8kvfSSrLdkRgQhVu9VTHVS8z8yPcbtrI ZojuSNX3gbUxriUzQH0MyKEJjpenRuc5gmpS/ydfUusiPMIiyoyCaIW6GRcLmzu1 iKBrjnfH+1W72r+3nOAbov84RbBHzt6Q5aQzEvFi+kzUQypsVTVL9/GaeAE= -----END CERTIFICATE-----Generated at Sat Aug 23 08:13:06 2025 by rpki-client