$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/646ca2ce-9692-42e4-9657-70d79c5090e3.roa File: 646ca2ce-9692-42e4-9657-70d79c5090e3.roa (raw, json) Hash identifier: 1YnxnrJKbQWzKJ9GaoThsymqZt3FoYIoIpKX6B7/nd8= Subject key identifier: 2A:18:A5:F5:55:DC:B3:2A:07:42:DD:BA:9A:FD:9C:71:F4:D9:4F:BB Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 1B3E7D2519CB288B44155D0FC5810286F959B021 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/646ca2ce-9692-42e4-9657-70d79c5090e3.roa Signing time: Tue 05 Aug 2025 16:51:04 +0000 ROA not before: Tue 05 Aug 2025 16:51:04 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.162.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:3e:7d:25:19:cb:28:8b:44:15:5d:0f:c5:81:02:86:f9:59:b0:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 5 16:51:04 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=f20c785b48b506927ae92e7ccb59307f63b57e4823c851003e5f2e4ed20ddacd, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:02:11:5b:b4:40:65:06:d4:90:d8:d0:c0:34: 0a:10:57:24:20:37:72:eb:d9:21:6f:bc:c3:2a:60: e4:86:7e:f3:0b:a2:c4:21:6a:b1:51:05:0e:d0:82: 09:9a:65:b0:4b:c8:78:3e:0d:d8:91:01:0b:30:ff: df:b0:a6:4d:b7:54:c3:cb:48:2a:fe:1c:3d:91:21: 66:4a:2d:b8:09:58:4b:ba:a3:7f:12:f3:59:e4:07: 44:8e:0c:31:de:1f:bf:59:2e:2b:c9:b6:ab:e1:f6: f0:11:97:65:58:47:3c:27:96:c2:5f:e4:1d:ee:d3: dc:51:5a:e4:d4:8c:e6:ce:52:93:ed:b0:39:97:22: 11:09:58:a8:aa:80:87:fd:c9:42:7f:f9:70:4a:ae: 9f:b9:bf:77:89:4c:55:25:bc:54:b2:45:17:16:f4: 74:e7:52:33:08:01:15:e4:14:a4:a6:a2:bd:bd:0d: d3:c8:36:bb:07:d2:86:c4:30:8a:db:10:78:bc:0d: bb:cc:f3:1f:7d:5f:7a:c5:17:b2:6e:3d:bc:4f:bc: e3:98:8d:32:b8:ec:92:5b:6c:06:7f:74:4c:93:47: 2c:d3:ba:22:41:48:4c:85:67:18:39:a5:4f:30:70: f1:e9:c7:d6:84:47:0d:54:0c:a6:e6:72:00:cc:b0: 37:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:18:A5:F5:55:DC:B3:2A:07:42:DD:BA:9A:FD:9C:71:F4:D9:4F:BB X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/646ca2ce-9692-42e4-9657-70d79c5090e3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.162.64.0/18 Signature Algorithm: sha256WithRSAEncryption 04:51:4d:61:6c:2d:83:b2:5b:61:c4:24:38:84:95:2e:0b:03: 0b:ac:c2:b2:60:75:09:52:88:61:da:fe:a8:e0:d8:9e:93:da: 18:ac:a6:14:0a:33:13:f8:ca:24:08:68:9a:56:62:ae:0a:04: 42:b5:1a:5f:4d:36:59:ff:57:89:ec:23:42:6a:d0:b8:b8:22: 8f:86:a8:dc:d9:50:a7:31:47:9a:53:62:2d:2a:c2:44:87:9f: 33:bf:59:3f:ee:8c:ae:e6:9a:ae:9c:87:49:ee:47:c8:31:45: c4:87:29:98:28:19:3f:bb:d1:ce:05:f1:92:aa:a8:48:3d:ec: 4b:31:21:c7:60:7e:9c:06:e5:c2:84:4e:3c:5b:50:3e:56:71: 7c:8e:84:e9:02:6c:21:e0:95:41:38:e5:1a:2b:3f:2b:ff:05: 4c:a4:da:58:e1:f6:fb:db:70:6c:e4:e6:6f:69:e7:54:bd:c9: ea:81:6a:1c:d1:45:38:0c:1b:5d:dc:15:32:b9:ef:b8:d2:74: 38:80:33:f1:b6:f6:54:12:3f:d4:4c:56:18:ea:6e:45:a6:56: 02:c5:d7:e1:89:40:30:d6:76:3d:9a:e9:a9:44:b9:3e:cd:03: 0e:02:c4:91:81:1c:4c:07:9f:5c:77:d1:9c:aa:04:b3:40:b5: 2e:06:dc:65 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGz59JRnLKItEFV0PxYEChvlZsCEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODA1MTY1MTA0WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMjBjNzg1YjQ4YjUwNjkyN2FlOTJlN2NjYjU5MzA3ZjYz YjU3ZTQ4MjNjODUxMDAzZTVmMmU0ZWQyMGRkYWNkMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRAhFbtEBlBtSQ2NDANAoQVyQgN3Lr2SFvvMMqYOSGfvML osQharFRBQ7QggmaZbBLyHg+DdiRAQsw/9+wpk23VMPLSCr+HD2RIWZKLbgJWEu6 o38S81nkB0SODDHeH79ZLivJtqvh9vARl2VYRzwnlsJf5B3u09xRWuTUjObOUpPt sDmXIhEJWKiqgIf9yUJ/+XBKrp+5v3eJTFUlvFSyRRcW9HTnUjMIARXkFKSmor29 DdPINrsH0obEMIrbEHi8DbvM8x99X3rFF7JuPbxPvOOYjTK47JJbbAZ/dEyTRyzT uiJBSEyFZxg5pU8wcPHpx9aERw1UDKbmcgDMsDfhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUKhil9VXcsyoHQt26mv2ccfTZT7swHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzY0NmNhMmNlLTk2OTItNDJlNC05NjU3LTcwZDc5YzUwOTBlMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYSokAwDQYJKoZIhvcNAQELBQADggEBAARRTWFsLYOyW2HEJDiElS4LAwus wrJgdQlSiGHa/qjg2J6T2hisphQKMxP4yiQIaJpWYq4KBEK1Gl9NNln/V4nsI0Jq 0Li4Io+GqNzZUKcxR5pTYi0qwkSHnzO/WT/ujK7mmq6ch0nuR8gxRcSHKZgoGT+7 0c4F8ZKqqEg97EsxIcdgfpwG5cKETjxbUD5WcXyOhOkCbCHglUE45RorPyv/BUyk 2ljh9vvbcGzk5m9p51S9yeqBahzRRTgMG13cFTK577jSdDiAM/G29lQSP9RMVhjq bkWmVgLF1+GJQDDWdj2a6alEuT7NAw4CxJGBHEwHn1x30ZyqBLNAtS4G3GU= -----END CERTIFICATE-----Generated at Wed Aug 20 10:42:09 2025 by rpki-client