$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d46be950-bc4a-4992-b4bf-926ccaf04be0.roa File: d46be950-bc4a-4992-b4bf-926ccaf04be0.roa (raw, json) Hash identifier: 0cTV4eFctTD75vceWoNnFUXAaVsrp0klgBcp2viqKSQ= Subject key identifier: AF:7A:7C:35:41:16:DF:64:83:60:D3:90:A9:D4:B4:5E:CE:2B:91:38 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3A2D1E4AD84FB7D8046EA6192CF7997AFD173BE0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d46be950-bc4a-4992-b4bf-926ccaf04be0.roa Signing time: Sat 30 Aug 2025 00:51:42 +0000 ROA not before: Sat 30 Aug 2025 00:51:42 +0000 ROA not after: Sat 04 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 75.3.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:2d:1e:4a:d8:4f:b7:d8:04:6e:a6:19:2c:f7:99:7a:fd:17:3b:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 30 00:51:42 2025 GMT Not After : Oct 4 23:59:59 2025 GMT Subject: serialNumber=432c5c440774540cf132d7acb46863b192fa62200b4ae7316a687881542088f8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:94:5a:d0:d1:10:e7:9e:d8:16:57:72:4f:7f: 72:48:9d:f6:79:3f:09:0b:2a:db:59:85:da:d8:6e: 05:94:e5:f5:f7:e1:9c:cf:5b:be:40:54:27:63:ba: 11:25:73:d3:86:41:c0:76:02:63:bb:99:8a:3f:28: b3:d5:c8:2c:f6:76:d1:a2:6e:c8:e0:30:45:2b:fa: dc:f0:09:46:fe:d8:ba:a2:9d:8a:34:6f:26:cd:71: ab:f7:b9:11:5f:90:a8:1c:a1:93:8a:48:3e:35:0e: cd:89:db:fb:70:62:94:37:d2:55:4e:56:ff:d4:f1: da:51:1c:1b:e5:d8:2b:63:16:2a:9e:9b:bf:ac:4c: a2:b8:61:6e:66:bc:cb:dc:75:5f:73:04:e8:9d:9b: bd:b3:c6:dc:72:36:06:1b:c5:7e:3c:f1:12:bb:b9: ba:54:9d:df:9d:e0:de:f4:d1:cc:b3:33:82:4b:c4: dc:e7:cc:f6:99:92:38:0c:98:3d:df:b9:6b:6d:17: 3c:4f:0e:c5:17:b1:44:2a:1a:6c:5c:d0:82:1f:2c: a2:85:ce:56:27:f2:68:e8:da:00:52:69:e7:fa:8f: 06:1b:22:2b:56:cb:e0:80:1c:b1:42:5d:4d:12:33: a2:bd:d1:8d:3d:af:70:de:36:5e:29:c8:6c:c9:bf: a1:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:7A:7C:35:41:16:DF:64:83:60:D3:90:A9:D4:B4:5E:CE:2B:91:38 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d46be950-bc4a-4992-b4bf-926ccaf04be0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 75.3.32.0/19 Signature Algorithm: sha256WithRSAEncryption 2c:3c:3a:97:dd:32:00:96:d8:ef:a0:ed:45:5f:00:3c:19:8c: 23:47:ea:70:a4:7a:47:84:1c:91:b8:e2:5f:37:79:e3:ef:53: 40:7b:b4:18:88:3c:c4:61:23:3d:65:ee:17:8e:34:32:65:f8: 7a:d5:34:fd:21:2d:ab:3d:d9:17:b6:0b:66:36:d5:35:52:63: 78:ee:bd:47:08:bf:e8:10:14:6b:be:0b:78:3e:77:0d:b8:6b: 5a:ff:c7:e9:f9:51:0f:8d:ed:2c:81:f6:fd:26:af:e4:c5:b4: c7:b7:ea:0e:07:5e:ef:0d:82:9e:c5:2e:89:30:9e:84:db:21: 9c:59:b5:23:55:cb:a8:12:db:8a:8c:a7:fd:9c:00:20:ab:0d: 9b:a2:1a:05:09:11:c1:6d:1e:fc:91:a5:3e:ce:1d:f4:39:a4: e8:8e:f4:ee:bc:a4:e5:b5:5d:af:ba:e8:0d:7f:cf:ee:b3:ae: 8e:0d:48:e0:ec:f7:3d:59:b8:1c:ae:e5:b6:c0:96:4e:06:a1: 1d:fd:fc:e4:7f:00:fc:ce:dc:98:e4:d2:f2:28:15:08:14:2c: 16:10:57:f6:95:65:5b:a8:07:14:54:a7:42:27:01:fa:98:c4: d3:3d:b3:77:bd:b1:16:1b:fb:e6:4f:c6:41:2e:4b:d8:1b:7b: 49:64:fb:fe -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOi0eSthPt9gEbqYZLPeZev0XO+AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODMwMDA1MTQyWhcNMjUxMDA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MzJjNWM0NDA3NzQ1NDBjZjEzMmQ3YWNiNDY4NjNiMTky ZmE2MjIwMGI0YWU3MzE2YTY4Nzg4MTU0MjA4OGY4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCalFrQ0RDnntgWV3JPf3JInfZ5PwkLKttZhdrYbgWU5fX3 4ZzPW75AVCdjuhElc9OGQcB2AmO7mYo/KLPVyCz2dtGibsjgMEUr+tzwCUb+2Lqi nYo0bybNcav3uRFfkKgcoZOKSD41Ds2J2/twYpQ30lVOVv/U8dpRHBvl2CtjFiqe m7+sTKK4YW5mvMvcdV9zBOidm72zxtxyNgYbxX488RK7ubpUnd+d4N700cyzM4JL xNznzPaZkjgMmD3fuWttFzxPDsUXsUQqGmxc0IIfLKKFzlYn8mjo2gBSaef6jwYb IitWy+CAHLFCXU0SM6K90Y09r3DeNl4pyGzJv6GHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUr3p8NUEW32SDYNOQqdS0Xs4rkTgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q0NmJlOTUwLWJjNGEtNDk5Mi1iNGJmLTkyNmNjYWYwNGJlMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVLAyAwDQYJKoZIhvcNAQELBQADggEBACw8OpfdMgCW2O+g7UVfADwZjCNH 6nCkekeEHJG44l83eePvU0B7tBiIPMRhIz1l7heONDJl+HrVNP0hLas92Re2C2Y2 1TVSY3juvUcIv+gQFGu+C3g+dw24a1r/x+n5UQ+N7SyB9v0mr+TFtMe36g4HXu8N gp7FLokwnoTbIZxZtSNVy6gS24qMp/2cACCrDZuiGgUJEcFtHvyRpT7OHfQ5pOiO 9O68pOW1Xa+66A1/z+6zro4NSODs9z1ZuByu5bbAlk4GoR39/OR/APzO3Jjk0vIo FQgULBYQV/aVZVuoBxRUp0InAfqYxNM9s3e9sRYb++ZPxkEuS9gbe0lk+/4= -----END CERTIFICATE-----Generated at Sat Sep 6 14:12:14 2025 by rpki-client