$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3cbc6787-d399-4def-9a56-fbcef999e554.roa File: 3cbc6787-d399-4def-9a56-fbcef999e554.roa (raw, json) Hash identifier: P/9df7BDvrUwExhqL8xQCu9yJqkFNgxsH1MKDc+NRjE= Subject key identifier: 7F:AA:E6:4E:50:A9:4D:36:1A:88:9C:26:A0:80:05:1B:32:F3:1B:F6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 12B9274E60F423A4EAF7EF2E965EEDB615B1CC4A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3cbc6787-d399-4def-9a56-fbcef999e554.roa Signing time: Wed 13 Aug 2025 00:40:28 +0000 ROA not before: Wed 13 Aug 2025 00:40:28 +0000 ROA not after: Wed 17 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 72.242.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:b9:27:4e:60:f4:23:a4:ea:f7:ef:2e:96:5e:ed:b6:15:b1:cc:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 13 00:40:28 2025 GMT Not After : Sep 17 23:59:59 2025 GMT Subject: serialNumber=c35e4d15514a18c0803edcbd45cd89e3f3e32226b6f7550ff0a6d677e2eea6b5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:54:ff:f5:5c:8d:1d:d9:86:cc:ce:2f:11:37: 40:6b:0b:76:3a:da:92:6f:91:fb:c4:c9:e2:9a:f1: fc:8a:0e:bf:8c:1a:6d:01:9b:59:52:42:12:f1:8a: f7:23:a0:3a:93:de:57:81:d4:c0:df:ff:ea:7a:3f: 1a:9b:92:78:ef:d8:32:12:78:7b:ba:b7:80:21:cd: 3b:6e:5b:38:11:83:ce:ea:c0:64:19:e3:37:a2:47: cd:5b:13:f8:a3:64:44:8c:9a:d9:4c:60:fa:ae:2f: b3:ea:e2:74:24:f3:fe:37:05:66:4e:df:9a:b5:41: 59:c8:8c:6c:7b:ef:50:86:b2:4b:0a:bb:5f:31:1c: c7:3d:40:3b:84:75:50:b0:26:09:23:a0:c9:06:4b: 95:71:23:69:63:63:5c:98:67:35:5c:2a:ab:3b:86: 02:fc:40:bd:60:ee:dc:b4:9a:fb:f4:bd:46:e6:18: 62:bc:80:08:cd:38:05:de:fc:89:e7:47:64:76:ac: 79:0a:5e:6b:34:83:c8:07:79:ed:0e:83:40:fb:8e: 3a:2c:73:08:73:f7:c8:ed:af:b7:77:b6:0e:38:b1: 5a:99:06:3d:80:cf:f6:a1:07:54:9a:a2:b4:04:7a: fd:67:97:0b:13:04:df:c9:6b:20:4d:47:e4:b3:27: 95:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:AA:E6:4E:50:A9:4D:36:1A:88:9C:26:A0:80:05:1B:32:F3:1B:F6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3cbc6787-d399-4def-9a56-fbcef999e554.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 72.242.0.0/15 Signature Algorithm: sha256WithRSAEncryption 6f:75:69:98:02:d9:e8:9b:24:2b:28:e8:9e:4d:9b:18:45:b8: 94:c6:ae:d6:86:b9:53:98:94:72:22:3d:86:52:8c:c9:b0:ec: f2:83:e7:2e:31:d7:30:97:89:df:48:28:fc:c4:52:d2:82:6e: 8c:e3:8d:9d:5c:70:5b:e0:c9:88:6e:49:b6:a9:62:f6:22:c7: c5:b6:45:42:6e:a3:26:57:ac:36:87:ba:c4:a8:d0:5e:44:8d: 17:07:40:cd:a2:50:59:d3:2b:03:7e:89:e7:13:60:ba:7d:ba: 8e:dc:10:7c:02:be:b1:33:b6:4a:b1:dd:18:6d:ff:cc:91:6a: c0:fb:6c:f7:d2:21:65:e7:98:eb:46:d8:52:d9:d7:04:a4:ca: 74:fe:50:a9:92:9f:1f:17:5e:33:75:1b:c0:c6:83:d0:46:06: b7:5e:93:9b:5e:b5:20:72:6c:db:f1:49:a6:ab:55:b2:74:71: e2:9b:93:9d:8e:09:b8:7e:c1:65:f2:a3:1a:f6:30:ee:cf:11: eb:3d:a3:37:8d:1b:92:89:60:1b:46:97:79:e9:2a:eb:8e:7b: 63:63:ef:ad:2e:b9:0f:04:af:a9:94:e0:62:14:cb:bf:51:8c: 5a:98:b2:1b:d4:f7:63:fd:ef:64:4b:30:3e:c6:e8:34:e7:18: e7:fc:87:81 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUErknTmD0I6Tq9+8ull7tthWxzEowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEzMDA0MDI4WhcNMjUwOTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMzVlNGQxNTUxNGExOGMwODAzZWRjYmQ0NWNkODllM2Yz ZTMyMjI2YjZmNzU1MGZmMGE2ZDY3N2UyZWVhNmI1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRVP/1XI0d2YbMzi8RN0BrC3Y62pJvkfvEyeKa8fyKDr+M Gm0Bm1lSQhLxivcjoDqT3leB1MDf/+p6Pxqbknjv2DISeHu6t4AhzTtuWzgRg87q wGQZ4zeiR81bE/ijZESMmtlMYPquL7Pq4nQk8/43BWZO35q1QVnIjGx771CGsksK u18xHMc9QDuEdVCwJgkjoMkGS5VxI2ljY1yYZzVcKqs7hgL8QL1g7ty0mvv0vUbm GGK8gAjNOAXe/InnR2R2rHkKXms0g8gHee0Og0D7jjoscwhz98jtr7d3tg44sVqZ Bj2Az/ahB1SaorQEev1nlwsTBN/JayBNR+SzJ5W3AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUf6rmTlCpTTYaiJwmoIAFGzLzG/YwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNjYmM2Nzg3LWQzOTktNGRlZi05YTU2LWZiY2VmOTk5ZTU1NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwFI8jANBgkqhkiG9w0BAQsFAAOCAQEAb3VpmALZ6JskKyjonk2bGEW4lMau 1oa5U5iUciI9hlKMybDs8oPnLjHXMJeJ30go/MRS0oJujOONnVxwW+DJiG5Jtqli 9iLHxbZFQm6jJlesNoe6xKjQXkSNFwdAzaJQWdMrA36J5xNgun26jtwQfAK+sTO2 SrHdGG3/zJFqwPts99IhZeeY60bYUtnXBKTKdP5QqZKfHxdeM3UbwMaD0EYGt16T m161IHJs2/FJpqtVsnRx4puTnY4JuH7BZfKjGvYw7s8R6z2jN40bkolgG0aXeekq 6457Y2PvrS65DwSvqZTgYhTLv1GMWpiyG9T3Y/3vZEswPsboNOcY5/yHgQ== -----END CERTIFICATE-----Generated at Sat Aug 23 07:02:07 2025 by rpki-client