$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f3258fb5-90ca-480b-9923-260e8ad61e8d.roa File: f3258fb5-90ca-480b-9923-260e8ad61e8d.roa (raw, json) Hash identifier: kViozAttVgnQj9FCz7/3qG0JexloNDN1d9+Djgi39Aw= Subject key identifier: C0:54:18:68:45:63:36:94:02:31:82:4B:35:74:23:9D:DA:43:6E:BD Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 75A7D07008288F5583E3F1D007ABA0EDFECD385F Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f3258fb5-90ca-480b-9923-260e8ad61e8d.roa Signing time: Mon 18 Aug 2025 16:11:42 +0000 ROA not before: Mon 18 Aug 2025 16:11:42 +0000 ROA not after: Mon 22 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 15.181.32.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:a7:d0:70:08:28:8f:55:83:e3:f1:d0:07:ab:a0:ed:fe:cd:38:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 18 16:11:42 2025 GMT Not After : Sep 22 23:59:59 2025 GMT Subject: serialNumber=54b730cce535606209535cd949ab2c3c93c729b65fbe97a3df107c681260c34c, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:be:51:2d:68:4d:01:4b:cc:f7:26:c4:08:0d: d6:b0:9e:c1:8b:e8:51:8e:28:d1:bb:98:b5:1e:c5: 8e:b4:64:3f:b4:d2:88:48:44:c2:3c:e4:b4:1e:50: 11:28:0a:fc:07:0f:aa:79:9c:3b:87:44:99:e2:af: b5:fd:82:f0:96:a7:31:ef:68:ef:0f:91:d0:6c:1b: 84:fb:14:29:6a:3b:f2:4e:b9:9b:4e:77:17:97:23: 01:ac:65:4b:6e:a4:a1:e6:7f:53:69:58:de:c4:6d: e2:8e:b0:4c:df:4c:45:02:06:d0:7b:c4:0c:08:3e: 39:35:87:c5:4b:a4:ab:e5:63:d9:3c:a0:0f:e8:44: ad:a5:80:38:87:33:ec:61:01:10:b7:1e:7e:9a:1c: 15:31:fd:57:67:db:04:e1:62:73:6b:14:4b:e2:2a: 79:90:f8:00:40:d5:82:8e:56:b5:e5:1a:eb:2f:67: 78:42:44:c3:08:b1:97:87:f3:aa:0c:f8:5c:20:91: df:e1:7c:cd:6f:24:0c:a0:2a:a4:d4:05:65:4c:d8: ce:1a:e7:6a:e9:f3:a1:ca:f1:50:82:a6:8a:31:48: e5:f1:f6:f1:6b:1d:09:60:d8:7c:52:ab:43:07:f1: 55:25:b4:06:ad:1a:f8:b1:7b:37:07:e6:62:49:ab: 7c:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:54:18:68:45:63:36:94:02:31:82:4B:35:74:23:9D:DA:43:6E:BD X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f3258fb5-90ca-480b-9923-260e8ad61e8d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.181.32.0/21 Signature Algorithm: sha256WithRSAEncryption 7e:3e:54:5b:46:6f:ca:55:d5:4d:21:48:45:11:cf:03:fe:e5: 85:a8:05:64:cd:a4:e8:12:10:69:2d:a5:09:d9:9d:77:ed:12: 58:62:c1:0f:b5:2c:4b:e8:90:1f:2c:66:b3:44:90:6b:d1:ab: a3:a0:4b:84:ec:8e:ef:94:c2:dd:45:ac:65:a6:e5:a5:d1:7b: 38:84:e5:cb:de:e7:c7:89:82:f0:e5:8c:78:d5:23:83:c3:dd: c6:5a:3f:59:32:3a:02:ae:5a:58:90:57:d0:02:f2:ab:d5:56: 7e:27:53:a9:47:cb:9f:5d:ab:84:00:5a:12:1f:50:b7:f2:77: 0e:82:b6:93:34:8b:f0:7c:b4:61:54:07:46:8b:75:35:11:0d: 25:b5:eb:c1:1e:ee:38:e7:e5:e1:c7:f4:ed:99:39:7d:66:a1: 96:3a:92:f2:cd:64:34:72:bb:8a:1c:40:90:92:16:64:6a:db: fc:07:e0:4e:a8:9e:1b:15:d8:c8:79:72:df:5b:4b:f8:b3:80: 77:78:8f:1d:77:65:a0:97:c6:22:2a:71:9f:d4:df:77:a1:15: 01:98:75:b8:b3:7b:a3:64:20:32:e3:98:05:d9:58:f5:2e:9f: d5:89:5a:df:29:ad:a9:a8:44:2c:81:06:d4:87:c8:14:47:2d: 0d:aa:bf:b3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdafQcAgoj1WD4/HQB6ug7f7NOF8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODE4MTYxMTQyWhcNMjUwOTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A1NGI3MzBjY2U1MzU2MDYyMDk1MzVjZDk0OWFiMmMzYzkz YzcyOWI2NWZiZTk3YTNkZjEwN2M2ODEyNjBjMzRjMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5vlEtaE0BS8z3JsQIDdawnsGL6FGOKNG7mLUexY60ZD+0 0ohIRMI85LQeUBEoCvwHD6p5nDuHRJnir7X9gvCWpzHvaO8PkdBsG4T7FClqO/JO uZtOdxeXIwGsZUtupKHmf1NpWN7EbeKOsEzfTEUCBtB7xAwIPjk1h8VLpKvlY9k8 oA/oRK2lgDiHM+xhARC3Hn6aHBUx/Vdn2wThYnNrFEviKnmQ+ABA1YKOVrXlGusv Z3hCRMMIsZeH86oM+Fwgkd/hfM1vJAygKqTUBWVM2M4a52rp86HK8VCCpooxSOXx 9vFrHQlg2HxSq0MH8VUltAatGvixezcH5mJJq3ydAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUwFQYaEVjNpQCMYJLNXQjndpDbr0wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2YzMjU4ZmI1LTkwY2EtNDgwYi05OTIzLTI2MGU4YWQ2MWU4ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMPtSAwDQYJKoZIhvcNAQELBQADggEBAH4+VFtGb8pV1U0hSEURzwP+5YWo BWTNpOgSEGktpQnZnXftElhiwQ+1LEvokB8sZrNEkGvRq6OgS4Tsju+Uwt1FrGWm 5aXReziE5cve58eJgvDljHjVI4PD3cZaP1kyOgKuWliQV9AC8qvVVn4nU6lHy59d q4QAWhIfULfydw6CtpM0i/B8tGFUB0aLdTURDSW168Ee7jjn5eHH9O2ZOX1moZY6 kvLNZDRyu4ocQJCSFmRq2/wH4E6onhsV2Mh5ct9bS/izgHd4jx13ZaCXxiIqcZ/U 33ehFQGYdbize6NkIDLjmAXZWPUun9WJWt8pramoRCyBBtSHyBRHLQ2qv7M= -----END CERTIFICATE-----Generated at Sat Aug 23 10:21:04 2025 by rpki-client