$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dff8c68e-92cf-4970-bec5-0fb3666b27a5.roa File: dff8c68e-92cf-4970-bec5-0fb3666b27a5.roa (raw, json) Hash identifier: 2tNfPdoJjdS1iYer+6HVO6smr2SQN3AUV9qOPtrQjDA= Subject key identifier: AC:3E:B0:07:25:1C:A3:05:55:C7:47:2B:1D:65:FD:2A:35:89:D4:EF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3D0441555F7B3019AB3F53A770878FCB6EFA0CE8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dff8c68e-92cf-4970-bec5-0fb3666b27a5.roa Signing time: Mon 01 Sep 2025 15:12:05 +0000 ROA not before: Mon 01 Sep 2025 15:12:05 +0000 ROA not after: Mon 06 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 146.130.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Sep 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:04:41:55:5f:7b:30:19:ab:3f:53:a7:70:87:8f:cb:6e:fa:0c:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 1 15:12:05 2025 GMT Not After : Oct 6 23:59:59 2025 GMT Subject: serialNumber=8d4a8595ccf791712919fc8a44aff6e27046d0792bb61b17e92fe35a85f950fb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:c3:48:be:e2:7a:8e:8b:ec:9c:39:97:57:36: 0a:5e:07:ed:8f:29:0d:9d:42:ad:b4:a5:be:69:d1: e5:32:04:91:81:8d:30:3c:b8:99:ca:f2:22:7d:2b: 87:0a:8f:1e:1a:95:e6:e2:58:a8:71:4c:d8:da:d0: da:9c:34:3f:f1:c0:af:95:c1:f1:24:9f:fa:54:bc: 84:3b:ca:09:96:6a:5a:dd:96:ad:da:4c:f3:2d:c8: e5:d7:de:58:e2:5f:21:60:10:bf:77:01:55:12:f2: 82:eb:32:19:28:5d:77:b6:db:0e:e7:46:a8:e2:7b: 38:c4:66:9b:b2:01:88:f2:dc:03:40:9f:d6:9c:18: 6d:de:0e:d1:9f:f5:33:9f:02:dc:76:67:d2:c0:78: 80:a1:82:bf:1b:bf:ac:6f:fd:19:e1:e3:a6:0e:7a: a7:f1:89:be:50:c2:c9:04:c8:ba:74:cc:78:f9:46: 30:cc:3f:39:4e:8c:65:e4:21:d4:d4:42:40:48:43: c4:5f:03:b2:2c:21:b4:1e:30:3c:39:62:2c:c6:10: c4:35:da:08:d5:50:bd:fd:0f:0e:ae:d3:f3:eb:5d: 92:84:03:3d:88:7f:29:da:5b:a4:b7:75:cf:d9:49: e9:21:cf:5a:75:06:90:c4:a6:65:e5:6a:01:b5:fe: fc:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:3E:B0:07:25:1C:A3:05:55:C7:47:2B:1D:65:FD:2A:35:89:D4:EF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dff8c68e-92cf-4970-bec5-0fb3666b27a5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 146.130.0.0/16 Signature Algorithm: sha256WithRSAEncryption 11:7d:79:0f:5b:db:7d:d8:15:97:f6:28:d3:e4:09:99:fb:d8: 26:e2:02:ae:7d:1f:16:b2:cc:80:8f:15:36:b6:3d:d1:ab:29: 42:b0:56:cd:64:ab:1d:6c:59:c1:1a:bd:c7:3d:12:fd:78:7b: 13:c1:71:4f:77:db:33:1c:8c:e9:6c:10:53:35:bb:20:d6:8d: f9:bd:d8:20:8d:93:ef:f0:d0:b4:64:1b:bc:17:8b:f6:0f:32: 08:93:7e:52:ad:68:b7:82:c9:87:32:29:9d:ef:8c:61:c7:76: 00:73:4c:aa:62:80:a6:ff:b7:2d:44:63:65:14:c0:f9:ae:78: 60:95:94:71:63:f9:ea:4f:3e:de:70:37:c5:f4:61:80:62:d4: 32:cc:df:bf:d9:53:25:f8:1e:16:99:59:2d:c7:87:26:30:79: a6:86:d8:f9:13:96:25:a0:02:90:21:8f:53:1b:87:39:f6:46: c8:a2:15:df:80:79:87:59:ba:4a:12:7a:8e:40:f4:44:29:6e: b0:1a:ac:95:d5:1d:42:c1:2a:92:b2:ff:5c:c3:ce:ac:f0:58: 1b:dd:a0:68:1a:fc:07:65:ac:d8:5a:01:ce:96:d0:50:34:e7: 8b:26:a4:52:6e:2e:10:4c:2b:2c:2a:56:87:eb:36:72:ed:7d: f4:90:8f:5b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUPQRBVV97MBmrP1OncIePy276DOgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTAxMTUxMjA1WhcNMjUxMDA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZDRhODU5NWNjZjc5MTcxMjkxOWZjOGE0NGFmZjZlMjcw NDZkMDc5MmJiNjFiMTdlOTJmZTM1YTg1Zjk1MGZiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCiw0i+4nqOi+ycOZdXNgpeB+2PKQ2dQq20pb5p0eUyBJGB jTA8uJnK8iJ9K4cKjx4alebiWKhxTNja0NqcND/xwK+VwfEkn/pUvIQ7ygmWalrd lq3aTPMtyOXX3ljiXyFgEL93AVUS8oLrMhkoXXe22w7nRqjiezjEZpuyAYjy3ANA n9acGG3eDtGf9TOfAtx2Z9LAeIChgr8bv6xv/Rnh46YOeqfxib5QwskEyLp0zHj5 RjDMPzlOjGXkIdTUQkBIQ8RfA7IsIbQeMDw5YizGEMQ12gjVUL39Dw6u0/PrXZKE Az2IfynaW6S3dc/ZSekhz1p1BpDEpmXlagG1/vy7AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUrD6wByUcowVVx0crHWX9KjWJ1O8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RmZjhjNjhlLTkyY2YtNDk3MC1iZWM1LTBmYjM2NjZiMjdhNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCSgjANBgkqhkiG9w0BAQsFAAOCAQEAEX15D1vbfdgVl/Yo0+QJmfvYJuIC rn0fFrLMgI8VNrY90aspQrBWzWSrHWxZwRq9xz0S/Xh7E8FxT3fbMxyM6WwQUzW7 INaN+b3YII2T7/DQtGQbvBeL9g8yCJN+Uq1ot4LJhzIpne+MYcd2AHNMqmKApv+3 LURjZRTA+a54YJWUcWP56k8+3nA3xfRhgGLUMszfv9lTJfgeFplZLceHJjB5pobY +ROWJaACkCGPUxuHOfZGyKIV34B5h1m6ShJ6jkD0RClusBqsldUdQsEqkrL/XMPO rPBYG92gaBr8B2Ws2FoBzpbQUDTniyakUm4uEEwrLCpWh+s2cu199JCPWw== -----END CERTIFICATE-----Generated at Thu Sep 18 23:33:36 2025 by rpki-client