$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/de727a70-4836-4d71-a1ed-7cbb988d1b87.roa File: de727a70-4836-4d71-a1ed-7cbb988d1b87.roa (raw, json) Hash identifier: Rf9dVXnTYbHaCGN+l241u7NoX0prKY6eN8hpuC3nNMA= Subject key identifier: 40:4B:BC:FD:3A:14:16:2D:7E:69:47:52:1D:3E:30:01:AE:57:C7:4E Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 5CEF368911DA7DE339868F0271F96B6619888ECE Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/de727a70-4836-4d71-a1ed-7cbb988d1b87.roa Signing time: Fri 22 Aug 2025 00:40:27 +0000 ROA not before: Fri 22 Aug 2025 00:40:27 +0000 ROA not after: Fri 26 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.46.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:ef:36:89:11:da:7d:e3:39:86:8f:02:71:f9:6b:66:19:88:8e:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 22 00:40:27 2025 GMT Not After : Sep 26 23:59:59 2025 GMT Subject: serialNumber=02d5bf6814594ed44dc0ca38277410a694bfded2df75d80bd1f3686967b7830f, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:c4:e8:9b:83:4d:6d:f9:1e:48:7d:fb:df:fb: 94:d9:66:91:a1:5e:fd:0c:3c:4b:d9:c7:c6:62:05: 5b:de:0f:ef:c9:ea:09:08:b4:47:e2:33:91:16:58: c9:b8:19:a4:25:be:e3:0e:cb:82:42:ab:cd:ed:17: c3:1a:cc:49:d2:f9:5d:04:f4:ae:e8:3b:7a:e3:b3: 0a:5c:6f:5b:98:d3:c8:c8:e5:93:eb:40:16:3c:15: d0:d6:38:2a:0d:cd:60:2f:72:5b:88:a4:6a:18:07: 9e:9d:06:4d:5f:da:c7:9c:da:85:c9:c9:b1:64:c7: 9e:85:86:0c:c7:34:fc:13:56:a2:4a:48:1a:ae:26: b1:e6:5b:23:85:43:22:93:2f:ab:a8:4a:a5:26:d2: f0:0e:24:ab:92:58:ef:d2:2d:cf:7e:71:96:29:ae: c7:e9:05:55:69:92:51:e5:1b:ab:dc:bd:be:ce:56: 3e:8b:28:e5:87:f8:02:7d:39:11:b2:f1:a8:ab:2c: e0:da:4d:c3:c3:3f:1e:6f:11:d8:b9:bc:86:b1:eb: 46:ab:a7:3f:2e:84:a7:18:41:e1:36:8d:91:23:78: b6:94:20:c1:19:d3:86:f8:cf:08:2c:d0:94:5e:26: 86:4b:7d:cd:39:dd:cd:a8:16:4d:89:f1:15:ad:d3: f4:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:4B:BC:FD:3A:14:16:2D:7E:69:47:52:1D:3E:30:01:AE:57:C7:4E X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/de727a70-4836-4d71-a1ed-7cbb988d1b87.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.46.192.0/19 Signature Algorithm: sha256WithRSAEncryption ab:0f:1b:c6:51:27:a0:67:00:19:07:e0:ff:a9:c7:3e:85:41: fc:18:35:18:72:63:32:91:e0:70:42:64:2e:a6:aa:64:8f:3d: c9:7d:35:86:e9:e5:99:6e:61:da:28:70:d9:42:71:54:8f:60: b2:81:e4:0b:2b:ec:f4:32:f7:c9:23:5b:9b:41:47:5b:61:3d: c4:b1:b6:50:d1:8b:9c:e7:ea:d8:76:e8:b7:9b:d4:46:bd:68: 0d:06:7d:10:9c:bd:09:5d:ec:30:1c:3b:3f:a0:60:a7:a3:4a: 50:88:29:eb:7c:07:79:f2:8c:af:c1:3d:59:cd:3d:14:da:2c: e6:29:18:32:42:7c:ed:02:24:2a:99:93:15:b7:a9:af:f5:21: ac:66:eb:a2:b5:a2:c4:07:cc:9e:99:8b:45:40:f9:cd:f2:95: a4:26:2c:5f:73:60:3f:4d:d5:11:10:84:d7:01:93:22:32:f4: 13:ce:c8:13:89:a6:9c:40:e3:33:f8:82:fc:37:dc:fb:ca:da: 02:e1:61:be:da:66:d5:e5:5a:18:7a:3c:34:2e:64:00:75:cd: 97:66:a9:68:2a:cb:4b:a0:4d:e2:ad:8c:83:13:d1:09:3f:58: b1:be:e1:9a:6d:08:45:ae:74:eb:58:a3:24:a8:1b:19:69:5d: 89:3b:91:cc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXO82iRHafeM5ho8CcflrZhmIjs4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODIyMDA0MDI3WhcNMjUwOTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMmQ1YmY2ODE0NTk0ZWQ0NGRjMGNhMzgyNzc0MTBhNjk0 YmZkZWQyZGY3NWQ4MGJkMWYzNjg2OTY3Yjc4MzBmMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCSxOibg01t+R5Iffvf+5TZZpGhXv0MPEvZx8ZiBVveD+/J 6gkItEfiM5EWWMm4GaQlvuMOy4JCq83tF8MazEnS+V0E9K7oO3rjswpcb1uY08jI 5ZPrQBY8FdDWOCoNzWAvcluIpGoYB56dBk1f2sec2oXJybFkx56FhgzHNPwTVqJK SBquJrHmWyOFQyKTL6uoSqUm0vAOJKuSWO/SLc9+cZYprsfpBVVpklHlG6vcvb7O Vj6LKOWH+AJ9ORGy8airLODaTcPDPx5vEdi5vIax60arpz8uhKcYQeE2jZEjeLaU IMEZ04b4zwgs0JReJoZLfc053c2oFk2J8RWt0/QVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQEu8/ToUFi1+aUdSHT4wAa5Xx04wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2RlNzI3YTcwLTQ4MzYtNGQ3MS1hMWVkLTdjYmI5ODhkMWI4Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAU0LsAwDQYJKoZIhvcNAQELBQADggEBAKsPG8ZRJ6BnABkH4P+pxz6FQfwY NRhyYzKR4HBCZC6mqmSPPcl9NYbp5ZluYdoocNlCcVSPYLKB5Asr7PQy98kjW5tB R1thPcSxtlDRi5zn6th26Leb1Ea9aA0GfRCcvQld7DAcOz+gYKejSlCIKet8B3ny jK/BPVnNPRTaLOYpGDJCfO0CJCqZkxW3qa/1Iaxm66K1osQHzJ6Zi0VA+c3ylaQm LF9zYD9N1REQhNcBkyIy9BPOyBOJppxA4zP4gvw33PvK2gLhYb7aZtXlWhh6PDQu ZAB1zZdmqWgqy0ugTeKtjIMT0Qk/WLG+4ZptCEWudOtYoySoGxlpXYk7kcw= -----END CERTIFICATE-----Generated at Sat Aug 23 10:06:27 2025 by rpki-client