$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f3245ac3-fa7b-4fd7-a5ab-5d110acbb03f.roa File: f3245ac3-fa7b-4fd7-a5ab-5d110acbb03f.roa (raw, json) Hash identifier: KB0Nc2e2GBra4a9jkURi1RMg9LfauYrg5F+8DS1uiRY= Subject key identifier: 3B:EF:F7:4F:89:DC:1B:70:39:37:0E:7F:87:67:D2:E8:45:DA:6E:1F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 531B013FBBCF16A232CE6BE17395B46E9F63B691 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f3245ac3-fa7b-4fd7-a5ab-5d110acbb03f.roa Signing time: Fri 29 Aug 2025 15:00:16 +0000 ROA not before: Fri 29 Aug 2025 15:00:16 +0000 ROA not after: Fri 03 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 1.179.32.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:1b:01:3f:bb:cf:16:a2:32:ce:6b:e1:73:95:b4:6e:9f:63:b6:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 29 15:00:16 2025 GMT Not After : Oct 3 23:59:59 2025 GMT Subject: serialNumber=f9f3c9d191deb6dd4c9e8db132063316eef03907e77443ca18c0ba7a2c0b811b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:d5:26:81:3a:34:c0:71:16:b8:85:39:48:46: 45:3e:5c:c2:f1:63:c8:8d:b5:34:99:e4:57:72:7a: 65:5e:15:35:d3:55:1a:2c:6a:e7:6a:96:e1:6b:6d: 2f:b1:bd:11:9e:41:49:4f:81:a8:be:4a:44:a9:bf: f4:9f:10:2c:ed:d6:66:50:ac:8d:21:42:f1:f2:9b: af:e5:a1:be:5d:36:55:18:9d:7e:b4:60:79:0a:8f: f4:ab:fe:79:31:62:27:46:fa:dd:f5:94:29:3b:8d: d6:d8:83:56:9c:57:e1:62:9a:9f:93:6e:b3:7a:e5: b4:65:3f:2a:c4:6b:0f:3d:18:97:0c:d3:f0:96:39: 80:e7:6c:4d:41:c3:6c:67:dc:f2:b3:57:dc:0a:2a: b9:e9:fe:c2:30:ef:df:cc:d0:0b:d6:aa:46:dc:b7: 09:f0:2e:5e:a6:58:f5:14:41:87:32:24:95:1d:99: fe:5f:bf:60:ec:25:9f:62:77:84:75:b0:dc:ff:ca: c9:b0:13:7a:6b:84:36:a2:6f:6f:a1:61:11:ae:b3: ff:f7:5c:b1:a0:9b:cc:fc:d8:ea:05:1b:95:cd:33: 8f:94:4e:9f:ad:52:c6:49:0b:bb:f0:a6:24:9d:b0: a5:1e:c1:57:d9:54:48:92:7c:67:5e:6e:23:93:eb: 19:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:EF:F7:4F:89:DC:1B:70:39:37:0E:7F:87:67:D2:E8:45:DA:6E:1F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f3245ac3-fa7b-4fd7-a5ab-5d110acbb03f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 1.179.32.0/21 Signature Algorithm: sha256WithRSAEncryption 49:2d:19:f6:b0:c5:74:d9:b6:89:aa:f0:b6:b3:68:f4:da:7e: 3b:96:75:3f:79:24:64:ad:c8:83:c6:89:53:fc:f0:ab:f5:6f: 78:a5:de:8d:99:ca:f4:a9:43:b0:4d:9e:15:46:f9:f9:f0:ff: a8:6f:d2:cd:86:c4:70:12:c2:9e:9a:d2:7b:ab:6b:01:1b:65: f7:b8:5c:70:2b:02:c5:c9:d3:72:42:b1:de:b6:88:bd:36:e5: 32:b4:5a:2f:dd:7c:86:02:8d:1f:e6:dc:b9:cb:5f:38:79:6e: f3:50:4f:df:31:f3:42:80:f9:b2:43:93:99:49:10:2d:6f:93: 0b:41:48:a3:3a:f4:b5:0e:cd:81:b0:db:93:f2:bd:37:ee:63: 34:8d:07:ef:69:62:71:d1:92:e4:6b:b1:21:c1:5e:ed:5e:56: 2d:3c:c9:79:1b:39:47:69:2d:60:47:27:29:06:53:f9:8a:8d: b2:9b:42:c7:ab:5e:51:7a:33:3b:8b:b2:2b:2c:bf:78:8c:6f: a8:b6:18:7e:ff:0e:8d:ca:78:2a:0f:19:cd:81:e1:a3:36:ff: ca:0d:a6:10:22:0e:91:96:59:15:b3:17:f2:52:42:4a:57:22: 4b:3f:4e:d3:20:06:5c:8f:cd:31:bc:82:d9:dc:ac:cb:66:84: 7d:94:a4:97 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUxsBP7vPFqIyzmvhc5W0bp9jtpEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI5MTUwMDE2WhcNMjUxMDAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BmOWYzYzlkMTkxZGViNmRkNGM5ZThkYjEzMjA2MzMxNmVl ZjAzOTA3ZTc3NDQzY2ExOGMwYmE3YTJjMGI4MTFiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCO1SaBOjTAcRa4hTlIRkU+XMLxY8iNtTSZ5FdyemVeFTXT VRosaudqluFrbS+xvRGeQUlPgai+SkSpv/SfECzt1mZQrI0hQvHym6/lob5dNlUY nX60YHkKj/Sr/nkxYidG+t31lCk7jdbYg1acV+Fimp+TbrN65bRlPyrEaw89GJcM 0/CWOYDnbE1Bw2xn3PKzV9wKKrnp/sIw79/M0AvWqkbctwnwLl6mWPUUQYcyJJUd mf5fv2DsJZ9id4R1sNz/ysmwE3prhDaib2+hYRGus//3XLGgm8z82OoFG5XNM4+U Tp+tUsZJC7vwpiSdsKUewVfZVEiSfGdebiOT6xl/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUO+/3T4ncG3A5Nw5/h2fS6EXabh8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YzMjQ1YWMzLWZhN2ItNGZkNy1hNWFiLTVkMTEwYWNiYjAzZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMBsyAwDQYJKoZIhvcNAQELBQADggEBAEktGfawxXTZtomq8LazaPTafjuW dT95JGStyIPGiVP88Kv1b3il3o2ZyvSpQ7BNnhVG+fnw/6hv0s2GxHASwp6a0nur awEbZfe4XHArAsXJ03JCsd62iL025TK0Wi/dfIYCjR/m3LnLXzh5bvNQT98x80KA +bJDk5lJEC1vkwtBSKM69LUOzYGw25PyvTfuYzSNB+9pYnHRkuRrsSHBXu1eVi08 yXkbOUdpLWBHJykGU/mKjbKbQserXlF6MzuLsissv3iMb6i2GH7/Do3KeCoPGc2B 4aM2/8oNphAiDpGWWRWzF/JSQkpXIks/TtMgBlyPzTG8gtncrMtmhH2UpJc= -----END CERTIFICATE-----Generated at Sat Sep 6 14:12:16 2025 by rpki-client