$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3cf5f416-8b16-485d-b4ee-307762770eef.roa File: 3cf5f416-8b16-485d-b4ee-307762770eef.roa (raw, json) Hash identifier: eI2tSVCuV2DWadOvFJKLN0S+P/4AglF+pIk6QgQONE4= Subject key identifier: 64:18:6B:7A:BC:9F:8A:7A:07:AD:46:77:A5:F4:42:E2:89:1F:68:3F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 76B980BDDD56B2A14E789BFEC3660D0355E01609 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3cf5f416-8b16-485d-b4ee-307762770eef.roa Signing time: Tue 12 Aug 2025 00:50:14 +0000 ROA not before: Tue 12 Aug 2025 00:50:14 +0000 ROA not after: Tue 16 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.156.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:b9:80:bd:dd:56:b2:a1:4e:78:9b:fe:c3:66:0d:03:55:e0:16:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 12 00:50:14 2025 GMT Not After : Sep 16 23:59:59 2025 GMT Subject: serialNumber=81b6066bab15d5917e367cce9c4d2f94624239cdf89dd6862b8c25ec1d9639d5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:ed:5e:9d:9a:a4:5c:06:09:81:04:12:e1:6a: 09:5e:0b:73:43:2e:d5:53:d3:e6:65:0f:37:3b:1d: cc:c2:26:0c:24:e3:b1:bf:80:d8:c7:61:1a:4c:b9: 74:34:56:72:97:a2:90:79:7c:20:48:79:c4:0e:26: a8:b0:ca:01:12:47:b3:65:7d:b6:16:d7:3f:32:9a: 08:22:d3:62:83:c5:e9:1a:ff:d4:a5:d0:6c:6d:d9: af:96:ba:19:c5:28:62:bc:e9:4d:f6:15:59:1e:76: d1:2a:69:46:bd:c5:66:04:dc:76:ee:32:1d:e7:07: 63:dc:8c:12:c8:41:7e:89:70:93:3b:a8:0a:5b:71: 13:bd:3d:74:a0:44:54:0f:8e:d3:45:ed:0a:ca:17: 7d:ae:5d:82:c3:2c:f8:15:03:0e:ec:6c:fe:42:02: 6b:2f:84:17:5c:9c:83:b6:43:73:e1:4a:3f:bd:77: 3e:57:13:b2:95:09:f0:13:0f:f1:71:61:4c:9c:0a: c8:cf:8b:a9:f1:68:cf:e0:7d:36:1f:28:7e:93:57: c9:a9:b0:e7:54:32:9e:1c:d8:f6:ca:13:39:6d:26: 0d:ac:0f:98:1d:d5:9c:38:0e:42:90:e9:6f:7b:4c: 96:fa:20:2e:78:c1:58:77:e5:bb:0a:f2:2a:de:c9: 69:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:18:6B:7A:BC:9F:8A:7A:07:AD:46:77:A5:F4:42:E2:89:1F:68:3F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3cf5f416-8b16-485d-b4ee-307762770eef.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.156.192.0/18 Signature Algorithm: sha256WithRSAEncryption a3:15:73:39:e8:29:c2:42:b6:1c:ad:d5:0b:f0:92:94:bf:05: 0b:bd:42:13:cc:b4:a4:44:d9:ea:29:28:b0:bb:4a:8c:81:3c: e5:50:54:1f:68:e0:ee:3d:4e:b0:6c:ad:c6:c5:0f:fa:97:d0: ed:2d:ef:17:1b:20:2a:36:89:68:5d:2f:2f:d2:c7:56:ce:73: ad:d6:99:29:ae:3c:f3:f0:3a:57:7f:83:31:f0:7b:4d:08:3f: 60:6d:19:35:11:ed:51:fe:6d:e2:e1:8b:4c:1c:4e:8d:46:9e: 0d:87:a7:fa:35:a9:c9:30:8a:7e:5a:ff:0f:9e:29:9b:73:0f: c4:25:4f:c7:a4:39:21:97:31:7a:f4:e8:59:a5:c8:7f:0e:c1: 20:3d:e0:9d:53:db:c3:87:df:47:4a:7d:c7:95:95:ec:37:c4: f1:15:df:42:04:d2:de:3d:04:68:be:4a:68:35:33:c1:a6:7d: 52:91:97:79:8c:2a:31:06:27:f9:d6:86:f1:a1:88:56:53:12: 1e:23:a3:17:8c:b3:28:6d:64:43:d8:3b:a6:c7:5d:88:7a:fb: 07:7a:f9:c9:93:a6:fb:51:3b:18:a1:ab:05:63:09:91:ad:47: d8:59:31:e7:ae:7f:3a:12:5b:39:84:ad:4b:47:14:40:ac:5f: 4b:29:03:57 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdrmAvd1WsqFOeJv+w2YNA1XgFgkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEyMDA1MDE0WhcNMjUwOTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MWI2MDY2YmFiMTVkNTkxN2UzNjdjY2U5YzRkMmY5NDYy NDIzOWNkZjg5ZGQ2ODYyYjhjMjVlYzFkOTYzOWQ1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDM7V6dmqRcBgmBBBLhagleC3NDLtVT0+ZlDzc7HczCJgwk 47G/gNjHYRpMuXQ0VnKXopB5fCBIecQOJqiwygESR7NlfbYW1z8ymggi02KDxeka /9Sl0Gxt2a+WuhnFKGK86U32FVkedtEqaUa9xWYE3HbuMh3nB2PcjBLIQX6JcJM7 qApbcRO9PXSgRFQPjtNF7QrKF32uXYLDLPgVAw7sbP5CAmsvhBdcnIO2Q3PhSj+9 dz5XE7KVCfATD/FxYUycCsjPi6nxaM/gfTYfKH6TV8mpsOdUMp4c2PbKEzltJg2s D5gd1Zw4DkKQ6W97TJb6IC54wVh35bsK8ireyWltAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUZBhreryfinoHrUZ3pfRC4okfaD8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNjZjVmNDE2LThiMTYtNDg1ZC1iNGVlLTMwNzc2Mjc3MGVlZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZjnMAwDQYJKoZIhvcNAQELBQADggEBAKMVcznoKcJCthyt1QvwkpS/BQu9 QhPMtKRE2eopKLC7SoyBPOVQVB9o4O49TrBsrcbFD/qX0O0t7xcbICo2iWhdLy/S x1bOc63WmSmuPPPwOld/gzHwe00IP2BtGTUR7VH+beLhi0wcTo1Gng2Hp/o1qckw in5a/w+eKZtzD8QlT8ekOSGXMXr06FmlyH8OwSA94J1T28OH30dKfceVlew3xPEV 30IE0t49BGi+Smg1M8GmfVKRl3mMKjEGJ/nWhvGhiFZTEh4joxeMsyhtZEPYO6bH XYh6+wd6+cmTpvtROxihqwVjCZGtR9hZMeeufzoSWzmErUtHFECsX0spA1c= -----END CERTIFICATE-----Generated at Wed Aug 20 10:48:24 2025 by rpki-client