$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4f6a7b28-0aa8-467b-ab6a-29f98cfd52cc.roa File: 4f6a7b28-0aa8-467b-ab6a-29f98cfd52cc.roa (raw, json) Hash identifier: 3pKsRgC5Ztr8w8cK3qNS4AhVTVBfPr9g9bQUQ0Uhz/E= Subject key identifier: D2:94:46:B3:B1:C4:B0:97:DA:B3:7D:36:1B:E5:89:B4:13:F2:36:BF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 46682A984AA33FFAD2DEE3B52DF9F40903FEA4BB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4f6a7b28-0aa8-467b-ab6a-29f98cfd52cc.roa Signing time: Sat 30 Aug 2025 00:01:06 +0000 ROA not before: Sat 30 Aug 2025 00:01:06 +0000 ROA not after: Sat 04 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 151.150.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:68:2a:98:4a:a3:3f:fa:d2:de:e3:b5:2d:f9:f4:09:03:fe:a4:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 30 00:01:06 2025 GMT Not After : Oct 4 23:59:59 2025 GMT Subject: serialNumber=e6c6497d37d3f8bace1a5d320d822b140d4eba79d34cbb41ca5876d721a1792b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:dc:c8:f7:f5:69:8b:c9:fd:e7:5e:63:e6:91: 14:27:e7:c3:5d:17:f7:1b:62:8d:7c:db:50:b4:79: 3f:29:15:d2:24:6d:53:f1:2b:92:eb:cb:fd:9d:0f: 69:20:e7:15:5b:43:b8:bc:3a:8d:f7:ef:cc:f6:57: 49:79:6e:9e:48:78:c1:ef:54:9e:44:d8:8d:c6:54: e1:58:b4:b7:f9:1d:ca:ab:d6:6a:17:e2:95:f8:33: d6:66:ff:b7:a1:7e:7b:83:0b:e7:4b:ff:c7:c0:5d: 90:df:97:cb:d9:1c:46:e3:19:0c:8a:02:74:62:c4: 57:a7:80:c8:ac:3b:01:99:a6:74:92:78:1d:8f:92: 7d:51:11:42:94:fb:52:7e:0b:3a:d3:b0:01:7d:6f: 3f:76:e4:10:e2:1f:0e:48:76:61:1f:4b:79:23:41: a7:e8:48:da:48:8f:03:ce:71:63:cd:d7:b3:38:cc: 9f:89:aa:92:82:fe:39:a0:03:2e:17:8d:53:c5:e4: 10:2c:3f:aa:f6:20:bf:af:91:54:32:d0:d2:e4:75: 3a:7e:1e:e4:1f:5e:aa:cd:62:22:66:cb:53:53:e3: 8c:7a:a3:a7:23:b7:94:97:f5:57:eb:3e:f5:38:60: 80:ee:f9:6c:a1:f0:1b:02:46:82:e1:69:85:a1:4f: 71:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:94:46:B3:B1:C4:B0:97:DA:B3:7D:36:1B:E5:89:B4:13:F2:36:BF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4f6a7b28-0aa8-467b-ab6a-29f98cfd52cc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.150.0.0/16 Signature Algorithm: sha256WithRSAEncryption 62:dc:f6:ba:fc:0a:86:df:f5:d4:3e:b9:b5:f7:27:fa:7f:e1: 1f:04:d8:c1:81:7a:c7:4d:e2:7c:fc:08:2e:f5:b4:ec:ef:30: 48:1d:82:27:33:5f:bb:68:1b:d2:46:1a:58:bb:50:0f:ad:92: ec:57:6d:23:33:af:ec:5e:8b:37:ac:a9:5e:56:08:33:58:dc: da:24:98:8c:2a:3c:06:39:d1:88:77:4f:2e:b3:a0:4f:0c:cb: 8f:5a:f9:b9:d6:70:c4:63:05:65:a1:81:1e:d0:3a:0a:cb:68: c6:09:37:07:fd:2a:73:0b:fe:45:40:7b:fe:2d:46:e1:9b:7e: 32:e7:45:80:e5:ac:40:53:1a:03:34:19:9e:73:b9:ef:8b:13: 95:49:ec:20:4c:cf:86:8a:c9:b8:e6:f5:9d:74:a7:24:56:08: 7f:fa:4c:da:50:e0:8e:bd:e1:c4:28:b5:5b:3c:25:22:95:e4: bb:d4:f2:e2:e0:35:fe:c5:a6:ad:79:d4:6a:d2:d2:98:15:0b: cb:a0:51:56:35:06:c5:cb:31:a8:2f:16:2c:46:5e:80:4d:07: 6e:85:e7:62:48:29:c7:5d:93:35:b5:59:42:1c:c5:55:c7:0a: 16:d5:9b:0c:e5:af:2e:0a:2e:78:f5:b2:50:07:37:bf:63:71: 74:9d:69:fa -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIURmgqmEqjP/rS3uO1Lfn0CQP+pLswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODMwMDAwMTA2WhcNMjUxMDA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNmM2NDk3ZDM3ZDNmOGJhY2UxYTVkMzIwZDgyMmIxNDBk NGViYTc5ZDM0Y2JiNDFjYTU4NzZkNzIxYTE3OTJiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDB3Mj39WmLyf3nXmPmkRQn58NdF/cbYo1821C0eT8pFdIk bVPxK5Lry/2dD2kg5xVbQ7i8Oo3378z2V0l5bp5IeMHvVJ5E2I3GVOFYtLf5Hcqr 1moX4pX4M9Zm/7ehfnuDC+dL/8fAXZDfl8vZHEbjGQyKAnRixFengMisOwGZpnSS eB2Pkn1REUKU+1J+CzrTsAF9bz925BDiHw5IdmEfS3kjQafoSNpIjwPOcWPN17M4 zJ+JqpKC/jmgAy4XjVPF5BAsP6r2IL+vkVQy0NLkdTp+HuQfXqrNYiJmy1NT44x6 o6cjt5SX9VfrPvU4YIDu+Wyh8BsCRoLhaYWhT3GNAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU0pRGs7HEsJfas302G+WJtBPyNr8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRmNmE3YjI4LTBhYTgtNDY3Yi1hYjZhLTI5Zjk4Y2ZkNTJjYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCXljANBgkqhkiG9w0BAQsFAAOCAQEAYtz2uvwKht/11D65tfcn+n/hHwTY wYF6x03ifPwILvW07O8wSB2CJzNfu2gb0kYaWLtQD62S7FdtIzOv7F6LN6ypXlYI M1jc2iSYjCo8BjnRiHdPLrOgTwzLj1r5udZwxGMFZaGBHtA6Cstoxgk3B/0qcwv+ RUB7/i1G4Zt+MudFgOWsQFMaAzQZnnO574sTlUnsIEzPhorJuOb1nXSnJFYIf/pM 2lDgjr3hxCi1WzwlIpXku9Ty4uA1/sWmrXnUatLSmBULy6BRVjUGxcsxqC8WLEZe gE0HboXnYkgpx12TNbVZQhzFVccKFtWbDOWvLgouePWyUAc3v2NxdJ1p+g== -----END CERTIFICATE-----Generated at Sat Sep 6 14:11:07 2025 by rpki-client