$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3de3c612-36d7-4d0e-8a61-dc9891466376.roa File: 3de3c612-36d7-4d0e-8a61-dc9891466376.roa (raw, json) Hash identifier: QRcQdRBpCV2L42nigd1Zzj3f1dRh3uwdHH7P2d10OPA= Subject key identifier: FD:B1:46:A3:41:F7:F3:0F:DC:CA:94:DA:EB:F2:B3:10:5D:46:EC:78 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 013BD78FEA4EB429AAC9E8ABD6846805121D89A8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3de3c612-36d7-4d0e-8a61-dc9891466376.roa Signing time: Wed 13 Aug 2025 00:30:27 +0000 ROA not before: Wed 13 Aug 2025 00:30:27 +0000 ROA not after: Wed 17 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 63.246.113.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:3b:d7:8f:ea:4e:b4:29:aa:c9:e8:ab:d6:84:68:05:12:1d:89:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 13 00:30:27 2025 GMT Not After : Sep 17 23:59:59 2025 GMT Subject: serialNumber=1e3df50f43b5fb89338f76b3de37adffcde6d237018556b38cd4b368238b2eb7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:0d:5b:16:0e:ca:62:8c:ea:f2:75:e3:93:e8: 35:bd:45:7a:b2:cf:56:24:20:0e:b3:ac:e4:3a:52: c0:6b:36:a1:9b:b3:82:c5:3d:e6:a6:f7:af:70:d9: 5a:ef:6f:e9:48:82:48:f4:ed:bb:cd:20:98:23:14: 54:51:8a:9a:63:f1:64:0b:6b:3f:cf:a1:27:69:88: cb:9b:9e:11:01:39:2a:52:89:0d:c9:cc:77:28:fc: 3c:c9:ed:c3:33:6c:bb:8f:a2:b7:8c:16:36:fb:9c: 53:46:d2:45:b1:11:51:82:38:47:74:77:d9:fe:ec: a1:6f:1a:5c:43:01:d5:9c:af:f2:b5:25:d6:b2:42: 55:2f:ae:f7:d2:7f:5d:98:cf:80:71:39:85:b4:a3: 69:a5:0d:f7:ca:52:41:ae:b0:0c:76:71:b8:40:2d: fd:54:1c:c7:90:6a:ec:39:a5:5a:f3:a3:ab:04:5f: 19:51:34:87:64:04:67:f7:b9:09:99:c0:69:4a:a3: d6:6c:33:0e:a6:bb:b5:15:10:97:23:93:52:f0:2d: 47:eb:be:5c:c2:08:c5:d3:29:30:d4:88:75:29:fd: 49:39:4a:8f:0f:b5:7c:b0:14:52:7b:51:fb:ee:57: 2b:7a:d4:a2:f1:a3:6b:56:07:d6:80:04:83:5f:c8: 81:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:B1:46:A3:41:F7:F3:0F:DC:CA:94:DA:EB:F2:B3:10:5D:46:EC:78 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3de3c612-36d7-4d0e-8a61-dc9891466376.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 63.246.113.0/24 Signature Algorithm: sha256WithRSAEncryption 39:0e:67:cb:2b:6a:0f:fe:76:ec:27:be:c6:8f:c1:0f:e7:d7: 9c:17:fb:3d:ff:17:61:64:3e:0e:33:5c:23:14:e2:5c:4b:67: b4:0d:a6:cd:85:d8:77:55:35:bf:43:c6:58:64:e2:87:a7:7b: 98:29:b3:59:5d:cd:af:b0:9a:55:a5:fb:a5:fb:f0:d5:7b:f3: c5:2c:19:31:03:6f:b7:e5:ae:cd:35:94:15:71:0c:6e:97:b2: 8b:a1:b0:3e:34:c7:d7:f5:39:70:7e:2c:5e:56:b8:a9:6f:f3: e1:11:e3:a8:0f:e0:81:8e:bf:72:30:4d:40:17:48:f7:33:22: c6:23:5f:fc:92:e5:87:9b:00:3f:1b:7c:a4:a8:96:4f:8d:00: 0f:8f:e1:4d:f0:7c:31:34:1a:c6:30:b9:cd:c1:ce:39:07:dd: 7d:88:0c:ed:ad:5e:4a:78:96:8f:60:87:29:f7:d6:79:eb:76: 3d:cc:6d:6f:b7:24:49:af:02:d7:03:9d:0d:91:8d:5c:b1:3c: eb:09:8b:ea:de:95:5f:68:bc:dc:bc:03:5a:80:8c:4e:62:64: 3c:87:9d:53:7c:f9:b1:2a:a6:8a:34:ab:be:c2:ba:77:1a:8d: b1:79:f9:00:63:a9:24:1b:19:bd:69:41:6b:1f:01:10:b3:af: 71:f5:93:a1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUATvXj+pOtCmqyeir1oRoBRIdiagwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEzMDAzMDI3WhcNMjUwOTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxZTNkZjUwZjQzYjVmYjg5MzM4Zjc2YjNkZTM3YWRmZmNk ZTZkMjM3MDE4NTU2YjM4Y2Q0YjM2ODIzOGIyZWI3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDODVsWDspijOrydeOT6DW9RXqyz1YkIA6zrOQ6UsBrNqGb s4LFPeam969w2Vrvb+lIgkj07bvNIJgjFFRRippj8WQLaz/PoSdpiMubnhEBOSpS iQ3JzHco/DzJ7cMzbLuPoreMFjb7nFNG0kWxEVGCOEd0d9n+7KFvGlxDAdWcr/K1 JdayQlUvrvfSf12Yz4BxOYW0o2mlDffKUkGusAx2cbhALf1UHMeQauw5pVrzo6sE XxlRNIdkBGf3uQmZwGlKo9ZsMw6mu7UVEJcjk1LwLUfrvlzCCMXTKTDUiHUp/Uk5 So8PtXywFFJ7UfvuVyt61KLxo2tWB9aABINfyIGVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU/bFGo0H38w/cypTa6/KzEF1G7HgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNkZTNjNjEyLTM2ZDctNGQwZS04YTYxLWRjOTg5MTQ2NjM3Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA/9nEwDQYJKoZIhvcNAQELBQADggEBADkOZ8srag/+duwnvsaPwQ/n15wX +z3/F2FkPg4zXCMU4lxLZ7QNps2F2HdVNb9Dxlhk4oene5gps1ldza+wmlWl+6X7 8NV788UsGTEDb7flrs01lBVxDG6XsouhsD40x9f1OXB+LF5WuKlv8+ER46gP4IGO v3IwTUAXSPczIsYjX/yS5YebAD8bfKSolk+NAA+P4U3wfDE0GsYwuc3BzjkH3X2I DO2tXkp4lo9ghyn31nnrdj3MbW+3JEmvAtcDnQ2RjVyxPOsJi+relV9ovNy8A1qA jE5iZDyHnVN8+bEqpoo0q77CuncajbF5+QBjqSQbGb1pQWsfARCzr3H1k6E= -----END CERTIFICATE-----Generated at Wed Aug 20 10:48:41 2025 by rpki-client