$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f250c72a-5bf6-4da2-9ad8-ff850d5aa21d.roa File: f250c72a-5bf6-4da2-9ad8-ff850d5aa21d.roa (raw, json) Hash identifier: zMZs6xh3c6qKFSUrqUd6QlN8dQQ71TNhwYgj0TW2Qp4= Subject key identifier: 05:85:A4:B0:CC:4D:0B:53:67:7B:EB:5C:DB:03:12:CD:DA:64:0C:8D Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 088804B490A3C00DF8CC2947342013C98F29605C Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f250c72a-5bf6-4da2-9ad8-ff850d5aa21d.roa Signing time: Wed 06 Aug 2025 00:40:38 +0000 ROA not before: Wed 06 Aug 2025 00:40:38 +0000 ROA not after: Wed 10 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 3.4.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:88:04:b4:90:a3:c0:0d:f8:cc:29:47:34:20:13:c9:8f:29:60:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 6 00:40:38 2025 GMT Not After : Sep 10 23:59:59 2025 GMT Subject: serialNumber=5d2ee6b4aab4adc05359c6689dba3425b77dc458cb92fe0f547e8a1f4863635e, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:24:f9:79:ca:39:0f:90:3c:07:40:9a:a6:26: 6b:40:ec:ad:52:af:5f:8b:55:dc:d7:b0:de:46:bd: 13:33:c5:e7:57:5f:ee:08:b6:96:c3:53:a8:2d:40: 2f:e1:7d:5c:18:bc:4f:d6:08:b3:00:d6:13:f4:23: 90:3f:0f:33:37:52:7f:80:f6:82:35:c6:7a:b4:01: e4:f8:d5:b3:8e:8f:91:a0:57:22:86:99:9d:c6:82: ee:d6:66:b3:fe:9a:ed:79:aa:cf:40:db:2c:ca:f1: 6e:6d:b5:64:0e:79:88:5c:4c:a0:81:55:48:d4:89: ae:1d:87:20:ed:ed:d1:68:6b:92:95:06:74:49:39: 3e:ce:b1:b4:d5:92:59:8b:e0:a3:7d:99:b9:3c:ec: dd:9e:82:b8:aa:a8:b5:e0:07:9f:e5:63:d7:97:1f: 4b:d6:86:62:71:35:3e:94:bc:80:9a:49:48:2d:df: 20:cd:20:2b:59:d6:c8:cb:56:b8:c1:f4:1a:67:96: a0:dd:57:b6:17:5e:51:42:d4:09:bd:fd:b1:09:68: 6d:29:4f:52:55:11:22:d8:49:bf:04:9e:ee:0c:dd: 80:6e:22:04:b2:6f:30:b5:9c:b3:e0:13:b6:5f:fe: 20:ee:6b:cd:42:7a:ac:2a:37:a1:4b:47:34:0e:ee: eb:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:85:A4:B0:CC:4D:0B:53:67:7B:EB:5C:DB:03:12:CD:DA:64:0C:8D X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f250c72a-5bf6-4da2-9ad8-ff850d5aa21d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.4.10.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:26:36:a3:21:59:26:c3:ed:3d:b1:57:ee:60:8c:f2:c0:0d: f5:be:10:62:12:19:01:92:62:14:7e:d6:d0:b4:6f:5e:df:c7: b9:e0:4d:96:90:0b:84:ce:f6:16:4d:65:4e:ea:c0:b4:1a:68: a5:53:53:40:fd:03:41:db:27:e4:97:51:9f:62:8b:5d:9a:5b: b4:25:7c:5a:22:12:f0:e2:43:3d:ff:4d:27:3e:9a:26:10:42: cc:a8:28:05:10:e4:7a:4f:80:d7:70:5f:14:35:3d:be:5f:83: 0c:b4:1a:8f:06:6f:cd:60:76:d6:98:42:86:65:67:7b:91:7d: 8a:f4:64:ce:21:a6:e9:0e:70:e1:d6:70:29:7d:e5:0b:63:f9: 84:27:3a:5c:07:b1:c7:ac:04:9d:1b:79:94:e0:81:24:6d:38: 48:a6:7c:fb:17:08:ce:88:d0:6d:56:c9:1f:36:d1:0f:18:24: 6c:83:89:fb:7e:e6:0a:09:c3:32:13:32:be:b9:6f:18:c3:51: 2b:20:38:be:66:22:4b:c2:d5:2c:30:cb:a9:85:e0:b7:fb:c0: c8:8c:b1:cc:db:e4:f7:6d:62:c5:b3:98:2b:6e:81:6d:13:ac: 58:bd:de:49:ac:0c:84:c4:50:37:37:e4:26:55:aa:ef:e8:91: c3:df:66:d0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCIgEtJCjwA34zClHNCATyY8pYFwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODA2MDA0MDM4WhcNMjUwOTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZDJlZTZiNGFhYjRhZGMwNTM1OWM2Njg5ZGJhMzQyNWI3 N2RjNDU4Y2I5MmZlMGY1NDdlOGExZjQ4NjM2MzVlMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDwJPl5yjkPkDwHQJqmJmtA7K1Sr1+LVdzXsN5GvRMzxedX X+4ItpbDU6gtQC/hfVwYvE/WCLMA1hP0I5A/DzM3Un+A9oI1xnq0AeT41bOOj5Gg VyKGmZ3Ggu7WZrP+mu15qs9A2yzK8W5ttWQOeYhcTKCBVUjUia4dhyDt7dFoa5KV BnRJOT7OsbTVklmL4KN9mbk87N2egriqqLXgB5/lY9eXH0vWhmJxNT6UvICaSUgt 3yDNICtZ1sjLVrjB9BpnlqDdV7YXXlFC1Am9/bEJaG0pT1JVESLYSb8Enu4M3YBu IgSybzC1nLPgE7Zf/iDua81CeqwqN6FLRzQO7uvdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUBYWksMxNC1Nne+tc2wMSzdpkDI0wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2YyNTBjNzJhLTViZjYtNGRhMi05YWQ4LWZmODUwZDVhYTIxZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAADBAowDQYJKoZIhvcNAQELBQADggEBAD0mNqMhWSbD7T2xV+5gjPLADfW+ EGISGQGSYhR+1tC0b17fx7ngTZaQC4TO9hZNZU7qwLQaaKVTU0D9A0HbJ+SXUZ9i i12aW7QlfFoiEvDiQz3/TSc+miYQQsyoKAUQ5HpPgNdwXxQ1Pb5fgwy0Go8Gb81g dtaYQoZlZ3uRfYr0ZM4hpukOcOHWcCl95Qtj+YQnOlwHscesBJ0beZTggSRtOEim fPsXCM6I0G1WyR820Q8YJGyDift+5goJwzITMr65bxjDUSsgOL5mIkvC1Swwy6mF 4Lf7wMiMsczb5PdtYsWzmCtugW0TrFi93kmsDITEUDc35CZVqu/okcPfZtA= -----END CERTIFICATE-----Generated at Wed Aug 20 10:39:17 2025 by rpki-client