$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bbbaf6ca-d6ff-4a0d-8fb0-91210ecbc5ad.roa File: bbbaf6ca-d6ff-4a0d-8fb0-91210ecbc5ad.roa (raw, json) Hash identifier: 2bzkuNq7e6EWxRcAoy6iwL8dwF4t/HQhnwnKJWfGTSw= Subject key identifier: C8:49:36:C3:87:51:63:92:23:46:BC:CB:86:CA:F9:72:FC:52:0D:09 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 2BB234EAAC05F731DDBF254B17D12FA5D0EE7408 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bbbaf6ca-d6ff-4a0d-8fb0-91210ecbc5ad.roa Signing time: Tue 19 Aug 2025 15:11:45 +0000 ROA not before: Tue 19 Aug 2025 15:11:45 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.248.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:b2:34:ea:ac:05:f7:31:dd:bf:25:4b:17:d1:2f:a5:d0:ee:74:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 19 15:11:45 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=7d34da32835ffb3d228749c952042f43e37cc36664d719309c5a24969e159f48, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:7a:ec:d2:d6:ef:cc:c9:b6:5c:5b:eb:9b:e4: cd:9e:b1:5e:cb:46:8b:86:2f:c0:82:56:6b:63:2c: f5:c5:7e:fb:b7:b1:57:34:1a:70:ba:b6:0c:c8:a6: 5d:08:a6:01:dd:ac:dc:b3:91:73:09:87:4e:9f:18: b8:2f:37:ad:d0:7f:d2:75:61:bf:b1:ea:27:30:ad: fe:f9:e2:e8:5c:aa:0e:8a:44:44:98:54:69:af:ce: 46:f2:4d:dc:a6:d4:fa:0a:52:91:21:3f:18:2f:3b: 95:2c:36:52:5d:54:7d:e0:16:ec:44:53:cb:fb:91: 5f:d4:af:66:b0:a1:e2:89:a6:5f:51:d3:bb:b3:08: e7:4b:52:14:70:2f:6f:16:38:75:1f:7a:80:8f:3b: e1:b5:2d:d7:f0:f8:ed:4c:ed:8b:73:15:8b:37:8c: 2d:16:95:bc:b8:ca:9a:21:4f:7b:3e:51:08:ab:ce: 5f:1c:af:88:60:b1:75:8f:a8:21:87:6d:dd:a6:1d: 15:90:6e:17:da:6b:a6:d6:11:e6:9c:3b:8c:54:f6: 60:62:1e:9e:17:fc:a5:f1:9e:95:c0:7b:b0:47:fc: b3:fc:d3:64:8e:f3:19:2c:57:93:12:d2:26:ec:2b: 9f:73:dc:d8:d0:fc:55:17:41:d0:28:b0:09:f7:b0: 60:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:49:36:C3:87:51:63:92:23:46:BC:CB:86:CA:F9:72:FC:52:0D:09 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bbbaf6ca-d6ff-4a0d-8fb0-91210ecbc5ad.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.248.0.0/17 Signature Algorithm: sha256WithRSAEncryption 0f:bd:73:b3:b3:20:55:48:a2:3d:35:c3:e1:55:19:3a:79:8e: 0c:27:a2:29:ce:3e:be:0c:7f:26:11:78:97:bc:72:98:a6:e1: 6c:16:c3:ca:80:b2:7b:d5:b5:0c:88:20:a8:4f:19:ee:37:cc: f8:56:d6:2e:f8:1d:42:6e:70:f5:92:39:88:01:49:e2:9d:0f: 70:ff:3a:e7:a0:57:b2:17:07:2b:4b:7b:1a:e8:73:0d:32:68: 23:3c:72:2a:da:36:e3:67:79:53:80:ea:ee:98:11:cc:bd:e6: 9a:ca:1b:04:28:9c:8c:01:11:e4:8e:e0:94:3b:d7:51:e4:6d: ac:9a:00:c0:f8:75:6a:13:a5:8b:19:50:dd:e1:41:e5:e1:e0: 8f:2f:e7:d4:4f:78:4d:92:2b:25:10:5e:84:56:e4:53:70:24: 70:f7:9b:c1:7b:5a:fa:1c:8c:c4:da:70:b9:4b:cd:aa:7b:24: 5d:79:3b:ac:48:cb:1f:15:01:b2:0f:4e:26:2a:fd:4f:32:da: 3d:95:ac:58:8e:f0:46:73:33:fd:d6:1b:44:52:1b:58:3b:0a: 7a:c5:f5:64:bf:03:b2:07:df:77:3c:b8:1a:14:9b:77:cb:44: bf:d7:a9:3e:c0:f1:aa:4b:41:b2:27:09:f9:6f:3e:b2:be:e8: d5:55:7e:02 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUK7I06qwF9zHdvyVLF9EvpdDudAgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODE5MTUxMTQ1WhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZDM0ZGEzMjgzNWZmYjNkMjI4NzQ5Yzk1MjA0MmY0M2Uz N2NjMzY2NjRkNzE5MzA5YzVhMjQ5NjllMTU5ZjQ4MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCReuzS1u/MybZcW+ub5M2esV7LRouGL8CCVmtjLPXFfvu3 sVc0GnC6tgzIpl0IpgHdrNyzkXMJh06fGLgvN63Qf9J1Yb+x6icwrf754uhcqg6K RESYVGmvzkbyTdym1PoKUpEhPxgvO5UsNlJdVH3gFuxEU8v7kV/Ur2awoeKJpl9R 07uzCOdLUhRwL28WOHUfeoCPO+G1Ldfw+O1M7YtzFYs3jC0Wlby4ypohT3s+UQir zl8cr4hgsXWPqCGHbd2mHRWQbhfaa6bWEeacO4xU9mBiHp4X/KXxnpXAe7BH/LP8 02SO8xksV5MS0ibsK59z3NjQ/FUXQdAosAn3sGClAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUyEk2w4dRY5IjRrzLhsr5cvxSDQkwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2JiYmFmNmNhLWQ2ZmYtNGEwZC04ZmIwLTkxMjEwZWNiYzVhZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcD+AAwDQYJKoZIhvcNAQELBQADggEBAA+9c7OzIFVIoj01w+FVGTp5jgwn oinOPr4MfyYReJe8cpim4WwWw8qAsnvVtQyIIKhPGe43zPhW1i74HUJucPWSOYgB SeKdD3D/OuegV7IXBytLexrocw0yaCM8ciraNuNneVOA6u6YEcy95prKGwQonIwB EeSO4JQ711HkbayaAMD4dWoTpYsZUN3hQeXh4I8v59RPeE2SKyUQXoRW5FNwJHD3 m8F7WvocjMTacLlLzap7JF15O6xIyx8VAbIPTiYq/U8y2j2VrFiO8EZzM/3WG0RS G1g7CnrF9WS/A7IH33c8uBoUm3fLRL/XqT7A8apLQbInCflvPrK+6NVVfgI= -----END CERTIFICATE-----Generated at Wed Aug 20 10:38:51 2025 by rpki-client