$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/8cb466b5-31bc-4c4b-accf-5409fef9403f.roa File: 8cb466b5-31bc-4c4b-accf-5409fef9403f.roa (raw, json) Hash identifier: dpOqUBPlYWeZB3CJEiSJLOx6YCQ1hUwF6ZJ6kSyBiDo= Subject key identifier: A4:A3:1D:8B:10:A4:60:E1:F4:3B:66:56:A1:10:33:BB:25:4D:3F:44 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 1FFB885B0860166EC31E8F1A146A0EF95450C089 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/8cb466b5-31bc-4c4b-accf-5409fef9403f.roa Signing time: Mon 15 Sep 2025 17:40:08 +0000 ROA not before: Mon 15 Sep 2025 17:40:08 +0000 ROA not after: Mon 20 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 173.82.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 Oct 2025 18:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:fb:88:5b:08:60:16:6e:c3:1e:8f:1a:14:6a:0e:f9:54:50:c0:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Sep 15 17:40:08 2025 GMT Not After : Oct 20 23:59:59 2025 GMT Subject: serialNumber=ebba406a8dc5b54a42f6ec2856e21a5881a2540665818e2edef2a9add8f5ccf8, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:17:20:ec:6e:50:90:5f:ab:e6:a7:ab:fc:8e: f9:48:98:03:2b:38:a4:39:77:f8:b3:b4:36:d6:b4: 51:e0:ff:14:ff:8f:39:99:68:d0:2c:a8:ea:0b:ee: d1:e0:42:8e:64:80:7b:e9:b1:54:92:e9:e3:fb:d7: f4:9e:f6:ef:e0:bb:aa:24:ee:fd:da:47:ff:aa:c6: 25:02:eb:68:69:b0:16:91:b6:0f:0a:ac:be:f1:c7: ac:67:9c:58:9f:02:eb:1b:7e:ad:62:e7:c5:c3:00: 51:6d:60:a9:55:a1:a2:97:a6:2b:a4:26:e5:de:a2: b0:9c:e4:d1:b9:f1:fd:69:5f:32:aa:6a:c0:bc:6c: 83:28:39:50:e5:c8:73:09:ce:d9:6c:96:fa:bd:80: 97:ef:c8:23:d4:26:8a:c4:16:7e:7c:7c:3c:b7:d9: 4a:7a:7b:2d:e7:85:1a:2c:62:52:08:df:0e:e2:2f: b7:06:7c:dc:1b:f4:fd:09:1e:74:26:7a:1b:86:cc: a4:d1:b7:2b:47:9f:4b:6a:4c:a0:8b:6d:d6:57:24: 6d:4e:6a:00:15:f0:f0:e4:2c:06:21:da:9f:47:db: e1:77:6e:93:4f:69:b5:ae:6a:a5:30:6d:37:71:1b: 7b:8f:54:4d:2b:42:97:8b:5e:8e:c8:3c:fe:5f:a0: 4a:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:A3:1D:8B:10:A4:60:E1:F4:3B:66:56:A1:10:33:BB:25:4D:3F:44 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/8cb466b5-31bc-4c4b-accf-5409fef9403f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 173.82.0.0/16 Signature Algorithm: sha256WithRSAEncryption 1c:c8:ac:4c:d7:8a:cb:2b:ad:62:9f:e2:ae:cf:17:7c:20:3d: 3f:e1:a5:8c:1a:44:ac:a4:b5:86:d0:01:04:57:bb:b6:34:43: 14:77:fd:22:9a:aa:81:bb:55:ea:52:12:83:0e:da:c3:49:46: 0b:48:46:3c:0c:31:79:66:62:df:8c:5b:03:2a:06:a4:f3:3c: 06:6b:ab:2c:7c:ca:65:0f:53:5c:a3:dd:23:a6:12:8d:8b:c8: 3c:42:8d:16:0c:b5:6b:b0:83:76:86:df:08:42:b0:6b:58:64: 6f:87:e8:fc:dd:ce:b4:bf:56:d0:1f:c5:1a:b9:3a:9a:ab:41: e5:17:ab:fa:b9:0d:a0:d0:2e:94:8e:85:35:6d:01:ee:fe:8e: 10:b5:d1:a0:1e:1b:03:01:da:6d:ef:af:d6:cd:c9:77:0f:0a: ec:73:f8:d0:70:f7:dd:98:2d:0b:30:e6:05:a2:13:c4:9d:33: 54:17:06:16:5e:1c:52:7b:a7:94:ac:86:4c:22:4b:93:64:80: f8:cd:e6:4a:41:bd:dd:46:08:45:7b:67:8d:de:14:0b:b6:fb: 90:52:3a:5d:9f:da:43:9b:0f:1b:8c:42:ea:05:c5:b4:70:b2: d3:fa:56:d1:e5:e6:64:de:b2:24:25:fd:de:b8:f0:75:99:e8: f8:9f:b7:f8 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUH/uIWwhgFm7DHo8aFGoO+VRQwIkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwOTE1MTc0MDA4WhcNMjUxMDIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BlYmJhNDA2YThkYzViNTRhNDJmNmVjMjg1NmUyMWE1ODgx YTI1NDA2NjU4MThlMmVkZWYyYTlhZGQ4ZjVjY2Y4MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9FyDsblCQX6vmp6v8jvlImAMrOKQ5d/iztDbWtFHg/xT/ jzmZaNAsqOoL7tHgQo5kgHvpsVSS6eP71/Se9u/gu6ok7v3aR/+qxiUC62hpsBaR tg8KrL7xx6xnnFifAusbfq1i58XDAFFtYKlVoaKXpiukJuXeorCc5NG58f1pXzKq asC8bIMoOVDlyHMJztlslvq9gJfvyCPUJorEFn58fDy32Up6ey3nhRosYlII3w7i L7cGfNwb9P0JHnQmehuGzKTRtytHn0tqTKCLbdZXJG1OagAV8PDkLAYh2p9H2+F3 bpNPabWuaqUwbTdxG3uPVE0rQpeLXo7IPP5foEptAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUpKMdixCkYOH0O2ZWoRAzuyVNP0QwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzhjYjQ2NmI1LTMxYmMtNGM0Yi1hY2NmLTU0MDlmZWY5NDAzZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCtUjANBgkqhkiG9w0BAQsFAAOCAQEAHMisTNeKyyutYp/irs8XfCA9P+Gl jBpErKS1htABBFe7tjRDFHf9IpqqgbtV6lISgw7aw0lGC0hGPAwxeWZi34xbAyoG pPM8BmurLHzKZQ9TXKPdI6YSjYvIPEKNFgy1a7CDdobfCEKwa1hkb4fo/N3OtL9W 0B/FGrk6mqtB5Rer+rkNoNAulI6FNW0B7v6OELXRoB4bAwHabe+v1s3Jdw8K7HP4 0HD33ZgtCzDmBaITxJ0zVBcGFl4cUnunlKyGTCJLk2SA+M3mSkG93UYIRXtnjd4U C7b7kFI6XZ/aQ5sPG4xC6gXFtHCy0/pW0eXmZN6yJCX93rjwdZno+J+3+A== -----END CERTIFICATE-----Generated at Wed Oct 8 19:44:39 2025 by rpki-client