$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/e3c846b1-fb00-4cb7-823d-3a58bedd6659.roa File: e3c846b1-fb00-4cb7-823d-3a58bedd6659.roa (raw, json) Hash identifier: 7fuzRxFRFovTOzZne1J6QzTxPy6mHWdeqVyf2GuwtSI= Subject key identifier: C3:53:AE:7E:B3:01:B6:49:F1:59:7A:40:C1:F1:B7:5C:C3:13:C7:4D Certificate issuer: /CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Certificate serial: 07314DF43EDE13742A2053A6337B7AAE563AE5B9 Authority key identifier: FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/e3c846b1-fb00-4cb7-823d-3a58bedd6659.roa Signing time: Fri 29 Aug 2025 16:50:16 +0000 ROA not before: Fri 29 Aug 2025 16:50:16 +0000 ROA not after: Fri 03 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 184.169.176.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 17 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:31:4d:f4:3e:de:13:74:2a:20:53:a6:33:7b:7a:ae:56:3a:e5:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Validity Not Before: Aug 29 16:50:16 2025 GMT Not After : Oct 3 23:59:59 2025 GMT Subject: serialNumber=89f89f4d2472ef3a6971d623df1700edf087a8378b7146d74455544dbd8049c1, CN=71c3876e-b944-4600-92c7-cec33d89523f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:a8:d9:a3:ae:ec:85:1e:2e:a0:9d:f2:17:b0: 9c:cf:9e:5b:af:7b:0a:6a:31:eb:f9:0e:9d:65:79: 34:18:bc:da:9d:cc:db:99:e1:2b:6b:89:09:82:e1: 35:e5:f0:89:67:37:13:2b:aa:b9:c4:94:51:e3:e4: 71:71:57:e4:3e:4a:e7:80:26:f0:d9:b3:85:1d:b6: 8f:04:19:13:6d:14:f0:f8:9d:21:ed:ee:5c:c9:49: 6d:08:6f:ce:a4:e1:3f:c5:f9:34:40:f4:39:d6:15: 6d:44:d3:89:c9:91:24:5c:6c:4c:bc:2a:c9:db:7b: 2c:cf:80:32:ff:b1:12:5d:c1:bf:4c:9c:cd:bb:21: 69:d5:34:7a:fa:be:49:fd:c9:98:05:f3:f3:6d:ac: 72:e6:25:5a:9f:74:6c:80:8c:24:fc:da:d5:2e:15: f5:76:5d:fa:46:ed:43:b2:51:28:5f:79:b8:ea:24: a1:2e:8c:67:f0:49:21:d3:22:16:be:aa:b0:ed:75: e1:fe:ce:85:76:17:c7:74:0e:5d:83:b5:5f:13:10: c9:85:54:b5:4e:65:c7:7d:b7:51:8a:a7:fc:78:a9: c4:77:f8:f7:aa:4d:55:ff:16:a3:ee:e4:61:3b:25: ea:c1:76:05:09:42:7d:9b:24:fc:81:56:54:ed:42: 32:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:53:AE:7E:B3:01:B6:49:F1:59:7A:40:C1:F1:B7:5C:C3:13:C7:4D X509v3 Authority Key Identifier: keyid:FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/e3c846b1-fb00-4cb7-823d-3a58bedd6659.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 184.169.176.0/21 Signature Algorithm: sha256WithRSAEncryption 3a:24:3d:c5:8d:3f:45:7a:69:2f:df:78:49:c4:5d:10:4f:aa: 8f:0e:6b:3f:1a:8b:11:dd:e2:b8:b5:8a:b3:d6:82:06:72:9c: 4b:c2:85:b7:fa:03:e7:e8:90:38:50:0c:ad:de:fc:1e:be:11: cf:04:04:c5:9e:e1:c9:8c:e3:f6:d6:e5:2e:2e:6e:95:44:4c: 0d:c2:b9:72:96:02:85:fc:4b:64:7e:1a:ed:a8:2d:bc:bd:d1: a7:55:27:8d:98:25:9e:4d:df:61:2a:14:33:3e:72:ca:ec:9e: 99:7a:ec:6e:57:98:25:6e:2d:52:a0:1e:59:bf:fa:22:26:07: 09:bd:72:c7:d2:e0:ca:1c:cf:61:cb:87:4c:0f:d2:73:27:24: f4:2b:4a:29:3f:f1:29:ac:86:b3:0e:77:53:1a:13:77:9a:e7: 68:0d:d0:75:ee:d5:b1:04:17:07:c9:0b:de:80:5a:f6:6e:4a: 18:c0:f2:a9:f5:ed:01:1b:b3:07:59:e0:9b:8d:d1:63:d0:49: 6d:38:fb:77:a0:db:09:98:25:31:31:d5:c5:ee:e7:9b:93:f4: 35:2b:b0:5e:cf:a5:43:a3:04:08:8f:a0:65:3c:f4:a6:a0:78: f7:94:f8:c3:14:da:bd:ef:11:a2:e6:79:56:ee:90:50:9f:7c: 7d:8e:32:e0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBzFN9D7eE3QqIFOmM3t6rlY65bkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNWQ4MDM4MDVlMjE4MjNjOTMxOTg3ZTljOWMzN2YwNDAy MGFhYmFiZjliNGRmZjliNjQwHhcNMjUwODI5MTY1MDE2WhcNMjUxMDAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A4OWY4OWY0ZDI0NzJlZjNhNjk3MWQ2MjNkZjE3MDBlZGYw ODdhODM3OGI3MTQ2ZDc0NDU1NTQ0ZGJkODA0OWMxMS0wKwYDVQQDEyQ3MWMzODc2 ZS1iOTQ0LTQ2MDAtOTJjNy1jZWMzM2Q4OTUyM2YwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0qNmjruyFHi6gnfIXsJzPnluvewpqMev5Dp1leTQYvNqd zNuZ4StriQmC4TXl8IlnNxMrqrnElFHj5HFxV+Q+SueAJvDZs4Udto8EGRNtFPD4 nSHt7lzJSW0Ib86k4T/F+TRA9DnWFW1E04nJkSRcbEy8KsnbeyzPgDL/sRJdwb9M nM27IWnVNHr6vkn9yZgF8/NtrHLmJVqfdGyAjCT82tUuFfV2XfpG7UOyUShfebjq JKEujGfwSSHTIha+qrDtdeH+zoV2F8d0Dl2DtV8TEMmFVLVOZcd9t1GKp/x4qcR3 +PeqTVX/FqPu5GE7JerBdgUJQn2bJPyBVlTtQjI9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUw1OufrMBtknxWXpAwfG3XMMTx00wHwYDVR0jBBgwFoAU/iLg9yLMTwYM WFoSb+aiZQA2XkgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80MmIyOTkxZi0y MmM3LTQyZjctOGNmNS00ZjMxMzg4NTk3MzIvNWQ4MDM4MDVlMjE4MjNjOTMxOTg3 ZTljOWMzN2YwNDAyMGFhYmFiZjliNGRmZjliNjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYTg0MTgyM2MtYTEwZC00NzdjLWJmZGYtNDA4 NmYwYjE1OTRjL2UzYzg0NmIxLWZiMDAtNGNiNy04MjNkLTNhNThiZWRkNjY1OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2E4NDE4MjNjLWExMGQtNDc3Yy1iZmRm LTQwODZmMGIxNTk0Yy9HQ1BKTVpoLW5KdzM4RUFncXJxX20wM19tMlEuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAO4qbAwDQYJKoZIhvcNAQELBQADggEBADokPcWNP0V6aS/feEnEXRBPqo8O az8aixHd4ri1irPWggZynEvChbf6A+fokDhQDK3e/B6+Ec8EBMWe4cmM4/bW5S4u bpVETA3CuXKWAoX8S2R+Gu2oLby90adVJ42YJZ5N32EqFDM+csrsnpl67G5XmCVu LVKgHlm/+iImBwm9csfS4Mocz2HLh0wP0nMnJPQrSik/8SmshrMOd1MaE3ea52gN 0HXu1bEEFwfJC96AWvZuShjA8qn17QEbswdZ4JuN0WPQSW04+3eg2wmYJTEx1cXu 55uT9DUrsF7PpUOjBAiPoGU89KagePeU+MMU2r3vEaLmeVbukFCffH2OMuA= -----END CERTIFICATE-----Generated at Tue Sep 16 11:29:41 2025 by rpki-client