$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b3455e8e-f699-45e7-a79a-1ce3d0e57b79.roa File: b3455e8e-f699-45e7-a79a-1ce3d0e57b79.roa (raw, json) Hash identifier: ftH8QJfFpXLez3LKhSjqFe3TodHhBf9J9tnjprzgeoo= Subject key identifier: AF:E5:84:D4:E8:41:29:7E:A2:F2:1F:4B:C6:FC:0E:18:E7:E7:6D:84 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1E4D7DAE6B7946CBE6AF82F5165985F39C6EAC9C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b3455e8e-f699-45e7-a79a-1ce3d0e57b79.roa Signing time: Fri 29 Aug 2025 00:20:33 +0000 ROA not before: Fri 29 Aug 2025 00:20:33 +0000 ROA not after: Fri 03 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 208.110.48.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:4d:7d:ae:6b:79:46:cb:e6:af:82:f5:16:59:85:f3:9c:6e:ac:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 29 00:20:33 2025 GMT Not After : Oct 3 23:59:59 2025 GMT Subject: serialNumber=ffe1051a35671636427dc7d979392e5c08a61271c0d65a14017d385ff7f770b3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:1f:ba:dd:02:a5:6b:bd:6f:f5:2e:f6:95:05: 16:dc:2e:31:64:82:5c:ce:75:2b:db:e3:6d:e2:42: 02:d8:86:cb:a9:b5:92:d1:fb:06:b4:0d:f5:fa:50: 27:54:20:7a:05:2d:0b:ab:4d:6c:36:32:b6:3d:f1: a1:42:60:17:79:46:b0:79:1e:13:5e:93:b4:75:48: 53:ed:cd:27:81:c7:f7:0b:c6:e9:48:ac:45:9d:69: 69:8f:09:77:cf:5e:85:08:d6:6e:4b:9a:da:ef:45: 47:be:51:e4:e2:d0:e7:85:48:31:03:35:38:dc:d2: f0:5f:4c:4e:b5:06:a3:64:0c:db:e1:a8:6a:ab:ac: d2:53:66:20:0a:af:41:cc:1e:8d:eb:f6:ed:03:be: 4f:a2:07:a9:69:c6:89:70:ac:59:31:76:3c:cc:2b: 08:0c:52:76:72:18:aa:e6:98:c1:74:6e:36:f8:de: fe:65:c0:d7:56:8b:61:2a:a3:92:46:d1:7c:6e:e0: f6:76:fb:c1:3c:ac:a0:23:6d:47:9f:a8:ae:bd:00: d7:e1:5f:e3:67:74:01:06:f8:f0:78:c9:dc:dc:5a: f3:7a:c1:c4:df:7b:ec:3d:db:b2:7e:6d:03:9d:94: 6c:53:3c:04:87:1b:3d:a2:c0:13:6f:22:72:07:f1: ab:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:E5:84:D4:E8:41:29:7E:A2:F2:1F:4B:C6:FC:0E:18:E7:E7:6D:84 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b3455e8e-f699-45e7-a79a-1ce3d0e57b79.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 208.110.48.0/20 Signature Algorithm: sha256WithRSAEncryption d3:d5:c2:5c:56:cc:86:e0:3f:f4:f8:38:c7:da:80:54:63:c8: 0a:4a:7b:57:ed:74:a8:00:f1:a3:af:13:fd:30:7d:2e:a1:6b: 5a:35:e9:8d:85:8d:29:e7:4b:42:6f:05:6d:91:51:b5:d1:e6: e8:40:49:f0:76:86:ab:d2:55:75:8c:1c:21:9a:46:2d:46:7d: df:82:fa:76:24:a3:0c:da:fc:b1:92:fc:27:17:eb:0b:75:3a: 41:d9:c2:42:f9:41:af:1a:c2:16:80:60:65:86:f9:a5:46:3a: 08:73:4f:99:a7:09:81:b4:6a:dc:1d:99:e1:39:6e:4b:1f:0b: ad:f9:5a:4e:5d:e7:21:2f:c0:0b:5c:f2:b6:8f:ac:af:b6:bc: 77:ec:fd:c2:af:f9:a9:85:0f:8d:dc:a9:2f:4b:c5:28:14:04: 59:b3:2a:8d:9a:d1:b8:32:f7:37:1c:74:5d:1c:15:0c:1e:e0: f5:0b:d1:32:32:6c:8b:1c:6a:6c:a4:e2:87:8d:82:00:98:ba: 7a:dd:fa:05:ad:92:1f:96:81:79:5b:5a:db:b0:61:ff:73:08: db:af:83:94:6c:a1:bf:85:58:b7:dc:c2:f1:39:98:77:ac:ba: c8:06:ea:3f:90:cd:5b:9f:92:c2:96:a5:4b:df:6b:c1:90:aa: a3:cb:bf:f7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHk19rmt5Rsvmr4L1FlmF85xurJwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI5MDAyMDMzWhcNMjUxMDAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BmZmUxMDUxYTM1NjcxNjM2NDI3ZGM3ZDk3OTM5MmU1YzA4 YTYxMjcxYzBkNjVhMTQwMTdkMzg1ZmY3Zjc3MGIzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDTH7rdAqVrvW/1LvaVBRbcLjFkglzOdSvb423iQgLYhsup tZLR+wa0DfX6UCdUIHoFLQurTWw2MrY98aFCYBd5RrB5HhNek7R1SFPtzSeBx/cL xulIrEWdaWmPCXfPXoUI1m5LmtrvRUe+UeTi0OeFSDEDNTjc0vBfTE61BqNkDNvh qGqrrNJTZiAKr0HMHo3r9u0Dvk+iB6lpxolwrFkxdjzMKwgMUnZyGKrmmMF0bjb4 3v5lwNdWi2Eqo5JG0Xxu4PZ2+8E8rKAjbUefqK69ANfhX+NndAEG+PB4ydzcWvN6 wcTfe+w927J+bQOdlGxTPASHGz2iwBNvInIH8auHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUr+WE1OhBKX6i8h9LxvwOGOfnbYQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IzNDU1ZThlLWY2OTktNDVlNy1hNzlhLTFjZTNkMGU1N2I3OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATQbjAwDQYJKoZIhvcNAQELBQADggEBANPVwlxWzIbgP/T4OMfagFRjyApK e1ftdKgA8aOvE/0wfS6ha1o16Y2FjSnnS0JvBW2RUbXR5uhASfB2hqvSVXWMHCGa Ri1Gfd+C+nYkowza/LGS/CcX6wt1OkHZwkL5Qa8awhaAYGWG+aVGOghzT5mnCYG0 atwdmeE5bksfC635Wk5d5yEvwAtc8raPrK+2vHfs/cKv+amFD43cqS9LxSgUBFmz Ko2a0bgy9zccdF0cFQwe4PUL0TIybIscamyk4oeNggCYunrd+gWtkh+WgXlbWtuw Yf9zCNuvg5Rsob+FWLfcwvE5mHesusgG6j+QzVufksKWpUvfa8GQqqPLv/c= -----END CERTIFICATE-----Generated at Sat Sep 6 14:08:27 2025 by rpki-client