$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8e3e61d4-d511-4b5c-b686-ca4337a7cd4c.roa File: 8e3e61d4-d511-4b5c-b686-ca4337a7cd4c.roa (raw, json) Hash identifier: qBudIfcGF2GihtQWBekoPUESLbe1LS1cWaUbXLgto5g= Subject key identifier: 21:0B:C0:F5:94:D4:03:D0:47:CF:3A:19:4F:1A:39:09:AB:DE:94:45 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 6781300C34A45292227AC4600204BDA5D8E9AC64 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8e3e61d4-d511-4b5c-b686-ca4337a7cd4c.roa Signing time: Tue 19 Aug 2025 15:01:03 +0000 ROA not before: Tue 19 Aug 2025 15:01:03 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.136.0.0/13 maxlen: 13 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:81:30:0c:34:a4:52:92:22:7a:c4:60:02:04:bd:a5:d8:e9:ac:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 19 15:01:03 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=2057f28a482862f22cf36b0088958eaafd8b4410287c8a587ffe5cb8bfa45b2c, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:1e:9e:8c:7a:d3:46:d6:88:27:74:c4:ce:70: 83:97:6d:39:c4:87:36:70:2f:a1:11:e7:aa:64:3c: f3:a2:e9:4e:4d:b8:f9:e1:89:10:27:f9:b6:e9:35: 3a:44:de:6c:48:ea:35:5a:88:7c:d3:41:4b:38:b8: af:0b:84:ed:4c:60:7c:46:cd:7b:1d:47:73:9d:b0: 32:ad:41:da:5d:b1:2e:45:7c:2d:28:cb:e4:6e:6c: d1:d8:be:14:6e:32:4c:ae:c6:41:1e:3e:ad:5d:9b: b6:00:0b:a9:68:ae:33:b8:67:14:8c:c1:98:a7:cf: 4c:63:66:39:fe:6b:dd:3e:68:60:56:e7:68:36:e9: 6d:20:d4:e1:9a:a1:36:e9:c2:3e:d3:00:6b:90:46: 73:1d:21:40:a7:98:5d:07:95:65:28:77:92:6c:f2: e0:87:e6:f3:85:98:98:b9:cd:7b:88:b7:bb:f7:d7: 32:2e:26:7f:e3:8e:a5:b7:78:09:60:6f:68:cc:1a: 1b:e3:06:04:de:9f:40:32:6b:6d:37:c8:4c:60:1b: 00:10:6e:87:73:d1:ad:ad:da:08:ae:b6:e5:15:b8: 48:98:81:98:dd:2b:e2:b2:f0:d3:ef:c1:42:b7:e4: 6b:f3:fe:b9:3e:5e:75:dc:e7:51:71:cf:f8:61:a0: 8c:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:0B:C0:F5:94:D4:03:D0:47:CF:3A:19:4F:1A:39:09:AB:DE:94:45 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/8e3e61d4-d511-4b5c-b686-ca4337a7cd4c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.136.0.0/13 Signature Algorithm: sha256WithRSAEncryption 61:9f:57:6b:4d:7f:f3:c4:f7:55:bd:7e:a1:cf:a3:2c:b0:3d: 6a:dd:62:68:a9:b6:8d:d5:a4:75:29:38:cb:76:99:68:34:d2: 0b:dd:b5:45:80:e6:54:a3:21:bd:ee:ae:9f:2b:39:b8:66:3a: 2f:8e:e2:c4:82:0d:25:fa:ab:a8:74:a7:45:94:24:53:72:2a: 0f:85:8c:3e:c8:41:08:bb:9b:d6:56:e9:5c:12:15:cb:d8:87: ef:f1:69:ef:9c:89:d5:3c:e9:6d:0e:0e:eb:54:7e:b7:bc:9d: 3a:cf:62:00:dc:b6:49:a9:0b:df:82:32:dd:dd:4f:16:ab:42: 9d:14:56:81:ac:cc:cc:f6:47:c6:0e:69:89:3b:91:01:12:d6: e9:79:28:6c:4d:c8:2c:70:bb:62:69:00:32:f3:62:53:7e:43: 1f:4a:c6:9a:1c:b9:c5:09:be:b2:97:67:23:6d:e9:e9:d6:fe: 37:11:cb:f8:82:fe:4f:f8:63:78:2b:79:85:46:30:3a:82:49: 2e:e0:80:1f:5c:d4:b9:89:8f:da:05:35:f0:69:d9:37:0f:17: 57:63:b3:67:e9:8d:13:b6:99:6a:a8:c3:d7:09:bd:e0:9a:ce: 59:e4:f7:8f:86:c2:43:31:7e:fd:27:84:25:10:63:e3:da:a1: f4:eb:a0:22 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUZ4EwDDSkUpIiesRgAgS9pdjprGQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODE5MTUwMTAzWhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AyMDU3ZjI4YTQ4Mjg2MmYyMmNmMzZiMDA4ODk1OGVhYWZk OGI0NDEwMjg3YzhhNTg3ZmZlNWNiOGJmYTQ1YjJjMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDgHp6MetNG1ogndMTOcIOXbTnEhzZwL6ER56pkPPOi6U5N uPnhiRAn+bbpNTpE3mxI6jVaiHzTQUs4uK8LhO1MYHxGzXsdR3OdsDKtQdpdsS5F fC0oy+RubNHYvhRuMkyuxkEePq1dm7YAC6lorjO4ZxSMwZinz0xjZjn+a90+aGBW 52g26W0g1OGaoTbpwj7TAGuQRnMdIUCnmF0HlWUod5Js8uCH5vOFmJi5zXuIt7v3 1zIuJn/jjqW3eAlgb2jMGhvjBgTen0Aya203yExgGwAQbodz0a2t2giutuUVuEiY gZjdK+Ky8NPvwUK35Gvz/rk+XnXc51Fxz/hhoIw1AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUIQvA9ZTUA9BHzzoZTxo5CavelEUwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzhlM2U2MWQ0LWQ1MTEtNGI1Yy1iNjg2LWNhNDMzN2E3Y2Q0Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwMDiDANBgkqhkiG9w0BAQsFAAOCAQEAYZ9Xa01/88T3Vb1+oc+jLLA9at1i aKm2jdWkdSk4y3aZaDTSC921RYDmVKMhve6unys5uGY6L47ixIINJfqrqHSnRZQk U3IqD4WMPshBCLub1lbpXBIVy9iH7/Fp75yJ1TzpbQ4O61R+t7ydOs9iANy2SakL 34Iy3d1PFqtCnRRWgazMzPZHxg5piTuRARLW6XkobE3ILHC7YmkAMvNiU35DH0rG mhy5xQm+spdnI23p6db+NxHL+IL+T/hjeCt5hUYwOoJJLuCAH1zUuYmP2gU18GnZ Nw8XV2OzZ+mNE7aZaqjD1wm94JrOWeT3j4bCQzF+/SeEJRBj49qh9OugIg== -----END CERTIFICATE-----Generated at Wed Aug 20 10:37:55 2025 by rpki-client