$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bf517b2e-8f05-4d24-bfe1-6207c312e178.roa File: bf517b2e-8f05-4d24-bfe1-6207c312e178.roa (raw, json) Hash identifier: 5aaAJsG+etOhnsgoSVOBSxvaoRL7Ew2zlLN88RkTqdQ= Subject key identifier: 87:7E:13:EB:6B:39:E3:6E:91:ED:A2:A7:81:8D:72:10:F1:21:97:25 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2E3434F7C81AD7B7211BCC0430852FFB4BB8B766 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bf517b2e-8f05-4d24-bfe1-6207c312e178.roa Signing time: Tue 02 Sep 2025 00:21:33 +0000 ROA not before: Tue 02 Sep 2025 00:21:33 +0000 ROA not after: Tue 07 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 57.246.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Sep 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:34:34:f7:c8:1a:d7:b7:21:1b:cc:04:30:85:2f:fb:4b:b8:b7:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 2 00:21:33 2025 GMT Not After : Oct 7 23:59:59 2025 GMT Subject: serialNumber=ce1edba7f6fff11cf40fdc02d03a557c1ffb77db1733ab392a07999bb604cb33, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:58:4a:29:39:77:99:a4:72:15:4c:b4:8d:9a: 37:94:07:55:82:2e:a6:ce:1b:27:eb:0a:9a:e8:91: 12:0a:c5:6a:d0:21:86:dd:62:bd:6b:87:9c:6c:00: 35:d2:1b:45:bc:c3:47:60:4f:f3:4b:2e:dc:ba:71: 4f:b3:e1:86:89:cf:6c:3f:c7:b8:c9:39:4f:44:05: 0e:02:d4:5b:40:3b:36:8b:11:bb:78:39:4f:4d:4a: 0c:32:34:82:7a:34:12:30:8b:c4:ff:9e:10:ed:4b: cc:ec:b0:26:b6:f0:01:a5:8e:f2:d5:49:9e:ff:dd: 22:bf:b1:73:18:f2:ca:73:ce:42:e9:3a:41:72:b7: d4:52:74:b6:bb:71:c2:88:a3:c6:93:72:80:47:61: 0f:22:2e:3d:6d:74:c4:61:a0:45:37:65:b8:02:e0: 31:ed:28:f4:bc:62:c6:9b:25:52:53:4e:1f:8e:23: 86:12:31:90:c7:e0:48:88:a5:30:15:5c:ba:1c:45: e3:89:3e:66:91:97:39:ca:0c:8e:2d:88:2d:aa:14: 22:d8:b4:98:30:d1:6c:ff:94:a8:05:7e:2f:87:9d: 8b:7c:a2:84:35:83:b9:08:2a:bf:d5:e4:f5:30:1f: 70:c4:12:34:b3:2c:5d:80:5b:bb:f7:38:4e:d7:fd: c2:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:7E:13:EB:6B:39:E3:6E:91:ED:A2:A7:81:8D:72:10:F1:21:97:25 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bf517b2e-8f05-4d24-bfe1-6207c312e178.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 57.246.0.0/16 Signature Algorithm: sha256WithRSAEncryption 6d:57:3f:d0:2e:78:7c:b8:8c:d0:60:b8:e3:5c:db:8f:92:bf: 64:56:36:69:ba:a6:87:4a:21:d0:d7:a4:72:b0:e5:75:9b:85: 60:62:91:fe:bc:2c:cf:e8:30:ac:d8:67:5e:d1:74:eb:7f:cf: 47:07:ae:03:0c:f1:83:d9:f3:96:f2:76:09:3b:d7:b5:17:50: eb:f2:0d:0c:93:20:57:ab:5b:0b:05:04:b3:97:a8:ab:1d:e1: de:09:5f:6e:9f:3d:91:51:fa:c8:1c:9a:b0:0f:42:e1:03:29: a1:9e:2f:42:26:63:a2:02:e0:4e:9c:eb:65:e3:be:a8:57:73: d0:a0:04:24:5d:bf:dd:42:4e:a0:52:24:60:34:a6:c2:72:53: ab:2a:9b:3d:44:80:22:55:4f:23:c7:d1:f0:f8:0d:72:80:e6: b1:e8:f6:78:c2:e2:69:72:7d:7b:80:86:92:ba:f7:4f:a3:1d: 3d:a9:98:9b:70:00:97:99:ea:6c:44:47:b1:36:3e:38:af:65: 64:2e:4e:99:3c:5f:2c:54:1a:bf:3a:26:e9:49:0e:6f:95:ad: 62:db:81:1b:bf:c9:d7:2c:a7:21:e3:11:9b:34:d8:f2:86:1f: 22:f7:76:04:f4:5c:92:39:e8:52:9d:7e:82:01:38:ca:9f:3e: bd:24:a7:88 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIULjQ098ga17chG8wEMIUv+0u4t2YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTAyMDAyMTMzWhcNMjUxMDA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZTFlZGJhN2Y2ZmZmMTFjZjQwZmRjMDJkMDNhNTU3YzFm ZmI3N2RiMTczM2FiMzkyYTA3OTk5YmI2MDRjYjMzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCYWEopOXeZpHIVTLSNmjeUB1WCLqbOGyfrCprokRIKxWrQ IYbdYr1rh5xsADXSG0W8w0dgT/NLLty6cU+z4YaJz2w/x7jJOU9EBQ4C1FtAOzaL Ebt4OU9NSgwyNIJ6NBIwi8T/nhDtS8zssCa28AGljvLVSZ7/3SK/sXMY8spzzkLp OkFyt9RSdLa7ccKIo8aTcoBHYQ8iLj1tdMRhoEU3ZbgC4DHtKPS8YsabJVJTTh+O I4YSMZDH4EiIpTAVXLocReOJPmaRlznKDI4tiC2qFCLYtJgw0Wz/lKgFfi+HnYt8 ooQ1g7kIKr/V5PUwH3DEEjSzLF2AW7v3OE7X/cKbAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUh34T62s5426R7aKngY1yEPEhlyUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JmNTE3YjJlLThmMDUtNGQyNC1iZmUxLTYyMDdjMzEyZTE3OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA59jANBgkqhkiG9w0BAQsFAAOCAQEAbVc/0C54fLiM0GC441zbj5K/ZFY2 abqmh0oh0NekcrDldZuFYGKR/rwsz+gwrNhnXtF063/PRweuAwzxg9nzlvJ2CTvX tRdQ6/INDJMgV6tbCwUEs5eoqx3h3glfbp89kVH6yByasA9C4QMpoZ4vQiZjogLg TpzrZeO+qFdz0KAEJF2/3UJOoFIkYDSmwnJTqyqbPUSAIlVPI8fR8PgNcoDmsej2 eMLiaXJ9e4CGkrr3T6MdPamYm3AAl5nqbERHsTY+OK9lZC5OmTxfLFQavzom6UkO b5WtYtuBG7/J1yynIeMRmzTY8oYfIvd2BPRckjnoUp1+ggE4yp8+vSSniA== -----END CERTIFICATE-----Generated at Sat Sep 6 16:54:36 2025 by rpki-client