$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7d0e3caf-bdbd-4f93-a5c4-ad3263a8469c.roa File: 7d0e3caf-bdbd-4f93-a5c4-ad3263a8469c.roa (raw, json) Hash identifier: 87XBuXHgjuHH50KGfFcBBk0Cby68bG5XzG/GPvvEn/I= Subject key identifier: 21:5E:E3:C1:CF:D8:7D:A4:21:E0:6B:2E:2F:CA:7E:DA:C5:8E:8B:E6 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 01EE22EAA9F2D9473D8CD1C3E56DEA7A1D6705AC Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7d0e3caf-bdbd-4f93-a5c4-ad3263a8469c.roa Signing time: Tue 05 Aug 2025 15:11:02 +0000 ROA not before: Tue 05 Aug 2025 15:11:02 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 146.207.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:ee:22:ea:a9:f2:d9:47:3d:8c:d1:c3:e5:6d:ea:7a:1d:67:05:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 5 15:11:02 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=575365fad4468a8adb9acef70f88e71df9bb5cb091599a44e6d46a91323f3456, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:1b:e1:4b:dc:23:74:0e:2e:6e:1a:a4:77:7f: 19:cf:d6:56:b5:94:c3:0e:47:f4:67:b6:ff:48:a3: e6:82:20:28:25:4a:b8:df:78:ba:f0:28:6c:58:96: b5:ab:f4:0b:3f:17:1e:18:75:1b:fa:58:7f:9e:1f: ae:12:e8:c1:e1:87:9e:82:f7:d7:87:e2:62:39:2a: 24:8a:e5:86:08:0f:7f:de:c4:6e:4b:3e:63:e5:44: a6:4b:a1:e9:35:7c:a9:17:0a:f7:f5:aa:a9:c6:44: 57:91:96:2e:2d:27:79:18:0c:6e:df:43:65:e4:dc: 14:9f:21:0f:f7:fa:cf:b9:c6:1c:a2:d5:45:25:4a: 9e:4f:05:f2:5a:2b:94:03:c7:63:38:8f:1b:f2:e0: 99:97:3b:97:0d:3b:92:ca:6a:40:1e:d2:12:48:19: 5c:96:75:f8:85:50:6c:8e:76:57:b7:f2:99:bc:81: 16:84:d9:7e:11:8a:62:ba:a9:65:bf:24:0c:1b:8a: d6:ff:77:e8:86:fa:41:e5:10:da:1d:49:67:1d:18: 61:65:32:63:65:f7:8a:f2:69:43:a8:af:8b:2b:0c: 0f:51:b5:16:7e:d1:e6:60:0b:ed:3d:e8:bb:62:b7: cd:53:36:c6:fc:56:dd:43:53:4b:cc:fe:97:10:eb: 6d:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:5E:E3:C1:CF:D8:7D:A4:21:E0:6B:2E:2F:CA:7E:DA:C5:8E:8B:E6 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/7d0e3caf-bdbd-4f93-a5c4-ad3263a8469c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 146.207.0.0/16 Signature Algorithm: sha256WithRSAEncryption a3:eb:61:89:b5:93:ee:d6:e6:49:59:71:24:e8:ca:2b:28:40: 21:07:12:7c:68:86:11:d8:a2:fe:40:69:47:72:ea:cf:1b:44: 97:2d:9e:1c:f5:93:b5:7c:4d:f2:4f:8a:a3:07:6c:45:a1:d9: fe:d8:b5:94:20:8a:9e:70:e5:73:38:1c:58:4c:85:bd:9e:50: dc:c7:71:68:33:08:8c:4d:48:2d:54:37:dd:e4:59:f7:6e:04: 2d:4f:34:10:13:4e:c2:30:3a:22:14:7f:f8:9c:48:79:7d:dc: be:06:35:90:97:17:b7:a1:57:3b:cd:28:40:9f:7d:74:54:b6: a2:9a:0c:44:c5:da:a2:43:70:fb:8f:a9:08:81:16:5a:f2:22: 1d:47:dc:fd:15:94:1e:a7:06:05:75:83:be:9f:85:0d:50:89: 15:5c:2d:24:57:13:88:f7:1d:35:76:12:34:2f:20:49:c7:6f: 38:44:f7:ee:2f:bc:27:94:23:b4:7e:30:56:b4:05:ae:d7:01: 59:8a:24:5e:6c:23:85:63:1c:22:a3:fc:34:cf:91:e0:a8:eb: 3a:ab:b4:14:03:51:df:fe:03:bd:ad:82:c6:d3:51:31:67:bd: bf:f2:29:ff:bc:4e:3a:0b:ed:a5:15:fd:46:a2:50:31:74:39: 3d:e1:c6:20 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUAe4i6qny2Uc9jNHD5W3qeh1nBawwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODA1MTUxMTAyWhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NzUzNjVmYWQ0NDY4YThhZGI5YWNlZjcwZjg4ZTcxZGY5 YmI1Y2IwOTE1OTlhNDRlNmQ0NmE5MTMyM2YzNDU2MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIG+FL3CN0Di5uGqR3fxnP1la1lMMOR/Rntv9Io+aCICgl SrjfeLrwKGxYlrWr9As/Fx4YdRv6WH+eH64S6MHhh56C99eH4mI5KiSK5YYID3/e xG5LPmPlRKZLoek1fKkXCvf1qqnGRFeRli4tJ3kYDG7fQ2Xk3BSfIQ/3+s+5xhyi 1UUlSp5PBfJaK5QDx2M4jxvy4JmXO5cNO5LKakAe0hJIGVyWdfiFUGyOdle38pm8 gRaE2X4RimK6qWW/JAwbitb/d+iG+kHlENodSWcdGGFlMmNl94ryaUOor4srDA9R tRZ+0eZgC+096Ltit81TNsb8Vt1DU0vM/pcQ622rAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUIV7jwc/YfaQh4GsuL8p+2sWOi+YwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzdkMGUzY2FmLWJkYmQtNGY5My1hNWM0LWFkMzI2M2E4NDY5Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCSzzANBgkqhkiG9w0BAQsFAAOCAQEAo+thibWT7tbmSVlxJOjKKyhAIQcS fGiGEdii/kBpR3LqzxtEly2eHPWTtXxN8k+KowdsRaHZ/ti1lCCKnnDlczgcWEyF vZ5Q3MdxaDMIjE1ILVQ33eRZ924ELU80EBNOwjA6IhR/+JxIeX3cvgY1kJcXt6FX O80oQJ99dFS2opoMRMXaokNw+4+pCIEWWvIiHUfc/RWUHqcGBXWDvp+FDVCJFVwt JFcTiPcdNXYSNC8gScdvOET37i+8J5QjtH4wVrQFrtcBWYokXmwjhWMcIqP8NM+R 4KjrOqu0FANR3/4Dva2CxtNRMWe9v/Ip/7xOOgvtpRX9RqJQMXQ5PeHGIA== -----END CERTIFICATE-----Generated at Wed Aug 20 10:41:21 2025 by rpki-client