$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ac129866-e40c-4b2b-adc8-dad9d3e140ef.roa File: ac129866-e40c-4b2b-adc8-dad9d3e140ef.roa (raw, json) Hash identifier: s/lTB0NotgsAe18Z10Nb3SG4Wq84GCpfO/HYJk63Nas= Subject key identifier: 02:56:D6:38:9E:62:FF:79:C1:9A:0A:DF:61:A1:7B:2B:2F:53:CE:F0 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 74B3503EDFC1ECE61EEE376393BF9377E4913398 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ac129866-e40c-4b2b-adc8-dad9d3e140ef.roa Signing time: Tue 19 Aug 2025 15:00:56 +0000 ROA not before: Tue 19 Aug 2025 15:00:56 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.128.0.0/10 maxlen: 10 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:b3:50:3e:df:c1:ec:e6:1e:ee:37:63:93:bf:93:77:e4:91:33:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 19 15:00:56 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=89896a0a917123ab4b4bac46defa47b8fed213846f73a0dddb6abe15705afabc, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:1c:a0:7f:1a:de:56:92:84:7e:e7:5d:15:59: 51:8b:97:34:45:a6:df:c3:4a:b8:1b:ef:2c:0c:b3: 1e:0a:bb:3a:e6:a1:28:b9:df:65:79:e6:67:da:24: 55:39:6e:06:f3:4c:15:52:af:80:69:87:ae:26:89: cb:d5:7e:93:66:b6:b7:d6:98:de:e3:6a:57:92:97: 30:4a:e2:a5:f4:23:fb:ed:ff:ba:07:09:ee:f6:78: 0d:3c:e5:ff:a9:f3:d2:88:e5:d2:ad:7c:1e:d1:8c: 7b:ec:09:cb:3c:14:bb:2e:63:d9:98:94:eb:9c:60: 0d:bd:73:30:c0:e5:3c:06:98:5d:72:bf:27:a2:b6: a6:3f:ce:c0:f2:de:61:bc:cd:2e:d0:ad:9b:3b:47: d8:56:c5:42:a8:77:ff:e0:63:e4:5e:e5:52:3e:ed: 58:e6:d8:96:18:7d:5a:c5:26:f3:c2:ae:b6:6c:ff: 9a:37:fb:a0:ca:18:bb:91:b2:90:ec:10:4f:87:b8: fc:b9:70:00:23:75:da:d4:31:f4:4b:36:36:fb:29: 58:eb:6e:44:35:3a:0b:27:fc:2e:14:66:66:43:de: 61:b9:59:84:6e:4f:3e:1b:b8:4f:af:75:86:35:e2: 70:4c:a5:9d:3d:f0:1c:7c:d7:4b:be:ae:d9:64:27: c1:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:56:D6:38:9E:62:FF:79:C1:9A:0A:DF:61:A1:7B:2B:2F:53:CE:F0 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ac129866-e40c-4b2b-adc8-dad9d3e140ef.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.128.0.0/10 Signature Algorithm: sha256WithRSAEncryption 9c:e1:93:3a:57:26:91:c4:92:5d:d9:d0:8a:ec:8b:49:ff:a2: 35:fa:70:d4:06:64:f2:d9:2f:5f:6f:da:49:e3:27:ee:6e:b9: aa:3d:72:14:b0:f9:35:64:4b:a0:d4:45:70:45:a9:8f:8e:27: 06:71:3f:b1:86:e5:e6:38:d3:3a:f3:15:98:63:c7:92:c2:3b: 6e:01:92:66:b5:31:c2:b1:5c:79:e9:de:14:c1:0d:91:96:88: d2:2b:ed:ad:a6:0d:b5:9e:6e:21:26:a3:78:d0:5b:0f:0f:cb: fa:d6:56:65:59:54:18:fe:47:39:0d:01:ae:fb:fd:e3:e6:b5: a8:ca:db:49:51:ef:72:b3:e1:42:ec:fa:14:68:87:c4:21:ef: 48:60:32:61:5e:f8:5f:24:ff:71:fb:f5:fa:3d:8d:5e:eb:6e: d5:4b:f0:6f:b4:22:1d:68:7f:ec:59:c4:1e:18:78:ec:30:16: 67:8e:e3:3c:0c:7c:b7:5d:6e:cb:83:ff:75:e5:94:07:c2:b8: 40:b9:9a:23:30:7f:33:e3:ca:07:25:a6:0d:98:10:80:91:57: 48:39:3d:c3:5b:ab:4c:18:1b:f1:6a:dc:f7:3d:c5:2a:fc:5a: b7:81:5c:4a:27:21:74:da:13:c9:4b:56:63:d2:4e:ef:b0:d9: 5c:62:5a:b5 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUdLNQPt/B7OYe7jdjk7+Td+SRM5gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODE5MTUwMDU2WhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A4OTg5NmEwYTkxNzEyM2FiNGI0YmFjNDZkZWZhNDdiOGZl ZDIxMzg0NmY3M2EwZGRkYjZhYmUxNTcwNWFmYWJjMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCeHKB/Gt5WkoR+510VWVGLlzRFpt/DSrgb7ywMsx4Kuzrm oSi532V55mfaJFU5bgbzTBVSr4Bph64micvVfpNmtrfWmN7jaleSlzBK4qX0I/vt /7oHCe72eA085f+p89KI5dKtfB7RjHvsCcs8FLsuY9mYlOucYA29czDA5TwGmF1y vyeitqY/zsDy3mG8zS7QrZs7R9hWxUKod//gY+Re5VI+7Vjm2JYYfVrFJvPCrrZs /5o3+6DKGLuRspDsEE+HuPy5cAAjddrUMfRLNjb7KVjrbkQ1Ogsn/C4UZmZD3mG5 WYRuTz4buE+vdYY14nBMpZ098Bx810u+rtlkJ8HRAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUAlbWOJ5i/3nBmgrfYaF7Ky9TzvAwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2FjMTI5ODY2LWU0MGMtNGIyYi1hZGM4LWRhZDlkM2UxNDBlZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwYDgDANBgkqhkiG9w0BAQsFAAOCAQEAnOGTOlcmkcSSXdnQiuyLSf+iNfpw 1AZk8tkvX2/aSeMn7m65qj1yFLD5NWRLoNRFcEWpj44nBnE/sYbl5jjTOvMVmGPH ksI7bgGSZrUxwrFceeneFMENkZaI0ivtraYNtZ5uISajeNBbDw/L+tZWZVlUGP5H OQ0Brvv94+a1qMrbSVHvcrPhQuz6FGiHxCHvSGAyYV74XyT/cfv1+j2NXutu1Uvw b7QiHWh/7FnEHhh47DAWZ47jPAx8t11uy4P/deWUB8K4QLmaIzB/M+PKByWmDZgQ gJFXSDk9w1urTBgb8Wrc9z3FKvxat4FcSichdNoTyUtWY9JO77DZXGJatQ== -----END CERTIFICATE-----Generated at Wed Aug 20 10:38:55 2025 by rpki-client