$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b0a8b46-f8a6-4f03-81cc-e42817a6a82d.roa File: 3b0a8b46-f8a6-4f03-81cc-e42817a6a82d.roa (raw, json) Hash identifier: D/jbCq18922Lf8oX3r7ToRJGxYU6WlCbwHPWeHYPqG0= Subject key identifier: AA:18:A3:38:DE:30:13:C1:DE:5A:76:CC:49:52:0E:9D:3E:DC:BB:0F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 64E06E3E460F94F849D831C0F30FAE1C23EB9E8D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b0a8b46-f8a6-4f03-81cc-e42817a6a82d.roa Signing time: Mon 14 Jul 2025 15:10:24 +0000 ROA not before: Mon 14 Jul 2025 15:10:24 +0000 ROA not after: Mon 18 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 46.215.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:e0:6e:3e:46:0f:94:f8:49:d8:31:c0:f3:0f:ae:1c:23:eb:9e:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 14 15:10:24 2025 GMT Not After : Aug 18 23:59:59 2025 GMT Subject: serialNumber=d31026f043820dde9ca9dc39005e0de087cbdf31f40c9b4b22b0b52d801ea5df, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:20:42:b5:a7:91:81:6b:fe:12:0d:8a:e4:a4: 03:3f:5c:9a:3e:5f:04:df:a9:42:df:9c:16:95:72: 4d:cb:5b:9a:64:87:18:bb:64:98:b6:61:49:6b:45: 76:34:8f:12:b8:2b:cf:0d:06:fc:7f:10:ba:cd:30: 2f:9f:3e:4b:b5:19:ce:76:1f:ca:73:87:f2:21:cb: 04:38:86:ff:b7:d6:e1:35:a5:a1:50:a7:e9:f6:91: 50:38:3d:d8:f0:98:b2:b4:04:25:7c:57:80:93:74: eb:76:3e:63:3c:87:a9:cf:39:b4:32:26:22:82:5d: 97:0d:a3:e2:ac:d9:2d:3e:4c:34:98:a3:a3:55:54: 13:80:f3:34:ad:04:48:ea:d8:c7:cc:7f:a8:8f:a5: 09:95:47:f8:81:3b:66:09:37:22:ec:4e:f3:b2:18: 90:77:9b:1a:eb:db:a7:39:8b:00:e2:0a:7f:89:2a: 52:6d:a1:95:36:69:8c:43:e6:dc:12:d4:1a:ca:bb: c2:95:a7:4a:4f:5f:cf:06:e5:42:25:43:c6:e1:6d: 2a:af:68:7c:b9:49:62:08:b5:18:4c:81:1b:bd:85: b1:24:20:a3:bb:23:92:42:cf:62:1f:fb:2c:60:ab: d4:10:b2:72:5c:88:7a:6e:c0:96:d8:be:5e:5e:84: fa:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:18:A3:38:DE:30:13:C1:DE:5A:76:CC:49:52:0E:9D:3E:DC:BB:0F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b0a8b46-f8a6-4f03-81cc-e42817a6a82d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.215.0.0/16 Signature Algorithm: sha256WithRSAEncryption 54:46:b3:22:d8:a5:64:01:27:7b:fd:55:2a:6c:1c:dd:b2:9e: 8b:09:0a:59:d1:1d:92:e3:fb:2c:94:9f:4a:91:0f:bf:df:23: d8:c7:02:3d:70:8c:9c:f5:59:b1:86:b5:35:e0:66:75:12:ff: dc:38:3f:45:50:ae:5b:4b:40:f4:09:3b:b3:0a:09:52:3d:e0: cc:cd:12:6f:fd:d8:c7:2d:69:00:d6:6d:86:a5:db:2e:28:b3: f4:58:08:72:46:c8:13:55:3d:b2:20:75:99:be:52:6a:f0:aa: 6f:06:c8:6e:38:ac:43:02:fa:11:08:27:be:fc:df:4d:4d:e3: 9f:ba:9c:70:e8:17:4d:51:dd:32:64:08:04:4e:1a:9f:00:4f: 0e:60:49:eb:15:9c:07:87:64:21:5e:01:e6:d5:80:6c:ab:00: ff:34:fc:32:00:e3:06:1e:57:18:f5:ae:93:ec:b8:a0:4f:1a: c7:da:a8:28:f6:d0:e2:e4:a5:ae:ae:80:5f:66:e4:91:36:f9: dd:27:2d:80:7e:22:79:16:2c:31:29:c0:6d:30:d6:5a:fc:9e: 35:89:97:18:f2:d6:72:fd:2e:b8:5e:f6:33:e0:d9:f5:f7:0a: ba:88:14:e7:f3:19:a6:3b:50:a8:5a:1a:b3:bd:05:2d:70:a6: 75:1b:99:3e -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUZOBuPkYPlPhJ2DHA8w+uHCPrno0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzE0MTUxMDI0WhcNMjUwODE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMzEwMjZmMDQzODIwZGRlOWNhOWRjMzkwMDVlMGRlMDg3 Y2JkZjMxZjQwYzliNGIyMmIwYjUyZDgwMWVhNWRmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7IEK1p5GBa/4SDYrkpAM/XJo+XwTfqULfnBaVck3LW5pk hxi7ZJi2YUlrRXY0jxK4K88NBvx/ELrNMC+fPku1Gc52H8pzh/IhywQ4hv+31uE1 paFQp+n2kVA4PdjwmLK0BCV8V4CTdOt2PmM8h6nPObQyJiKCXZcNo+Ks2S0+TDSY o6NVVBOA8zStBEjq2MfMf6iPpQmVR/iBO2YJNyLsTvOyGJB3mxrr26c5iwDiCn+J KlJtoZU2aYxD5twS1BrKu8KVp0pPX88G5UIlQ8bhbSqvaHy5SWIItRhMgRu9hbEk IKO7I5JCz2If+yxgq9QQsnJciHpuwJbYvl5ehPqnAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUqhijON4wE8HeWnbMSVIOnT7cuw8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNiMGE4YjQ2LWY4YTYtNGYwMy04MWNjLWU0MjgxN2E2YTgyZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAu1zANBgkqhkiG9w0BAQsFAAOCAQEAVEazItilZAEne/1VKmwc3bKeiwkK WdEdkuP7LJSfSpEPv98j2McCPXCMnPVZsYa1NeBmdRL/3Dg/RVCuW0tA9Ak7swoJ Uj3gzM0Sb/3Yxy1pANZthqXbLiiz9FgIckbIE1U9siB1mb5SavCqbwbIbjisQwL6 EQgnvvzfTU3jn7qccOgXTVHdMmQIBE4anwBPDmBJ6xWcB4dkIV4B5tWAbKsA/zT8 MgDjBh5XGPWuk+y4oE8ax9qoKPbQ4uSlrq6AX2bkkTb53SctgH4ieRYsMSnAbTDW WvyeNYmXGPLWcv0uuF72M+DZ9fcKuogU5/MZpjtQqFoas70FLXCmdRuZPg== -----END CERTIFICATE-----Generated at Mon Jul 21 23:23:26 2025 by rpki-client