$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/46a7936f-33e7-4e70-981a-f74a37d534fd.roa File: 46a7936f-33e7-4e70-981a-f74a37d534fd.roa (raw, json) Hash identifier: ZdWGBKb19Wl/oV4lJd2Sonho8P/E9DGbxIRevnHSn38= Subject key identifier: 03:95:1B:40:A9:59:C4:9D:40:24:63:D2:86:FB:3F:E3:CB:01:99:34 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 07013AE1FC791A40A9F6D20A1C007CBFA14D814A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/46a7936f-33e7-4e70-981a-f74a37d534fd.roa Signing time: Fri 08 Aug 2025 00:01:28 +0000 ROA not before: Fri 08 Aug 2025 00:01:28 +0000 ROA not after: Fri 12 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 206.125.40.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:01:3a:e1:fc:79:1a:40:a9:f6:d2:0a:1c:00:7c:bf:a1:4d:81:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 8 00:01:28 2025 GMT Not After : Sep 12 23:59:59 2025 GMT Subject: serialNumber=9260726423a52373c6c5e60d7659df1c91a6981ee6d379e072b77f761a86f3b9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:bf:ac:74:d7:3e:de:f5:1c:bf:b3:9b:13:9f: f0:1e:6a:2c:52:fd:4b:77:1c:6f:92:63:7c:9a:22: 98:8d:71:c5:0d:7a:93:3e:5e:00:cf:19:3a:98:a5: c9:4c:18:02:c3:6e:db:9d:69:c3:19:ef:bb:26:3a: 62:6d:b5:57:d3:77:5e:21:98:be:a7:e4:27:09:f3: 26:aa:47:55:8b:a0:b5:a4:1d:bb:5f:a0:ff:c6:a7: eb:06:3f:9c:9b:50:f9:39:bb:dd:97:c3:b2:82:74: 9e:59:62:ed:4a:13:5a:d7:c7:ca:74:d2:d4:50:a8: 6a:06:6c:ac:fb:76:41:08:d3:6c:03:f2:8f:09:95: fc:42:14:44:50:2d:81:be:e5:a2:c3:81:8e:30:fb: be:21:20:db:2e:f9:79:9c:53:89:8c:9f:a1:69:d7: 3d:6a:03:c6:34:4e:0b:6b:a6:b3:94:85:9c:ee:2f: 8b:b6:2f:f7:a4:32:7c:ef:0b:a5:a5:1d:a9:c4:c1: 5c:59:15:af:21:55:6e:6d:f3:22:be:b5:9a:18:83: 17:9a:04:0e:1e:12:f4:5c:f2:a0:4e:67:ea:be:19: e4:6e:a3:28:22:77:a6:21:ee:67:5d:26:cb:d6:33: 9a:94:b3:12:99:15:36:b0:d7:36:f5:3a:a4:c5:99: cc:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:95:1B:40:A9:59:C4:9D:40:24:63:D2:86:FB:3F:E3:CB:01:99:34 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/46a7936f-33e7-4e70-981a-f74a37d534fd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 206.125.40.0/21 Signature Algorithm: sha256WithRSAEncryption 24:6d:2b:49:5f:ab:ac:7d:af:71:32:1f:b0:38:db:00:8e:b2: 6b:eb:ce:94:a5:b6:db:34:31:ac:8c:35:ec:8b:e2:07:7d:11: f4:da:2e:f1:12:ea:4f:f4:ed:66:a8:89:e5:34:65:da:d2:bd: 1d:88:fd:a6:de:54:fe:fb:3c:ee:c0:ba:13:8b:fa:45:3a:f4: 68:ab:52:5a:3e:43:40:57:7b:7f:5e:7d:63:87:b7:68:41:f7: 08:cb:98:32:fe:4f:57:ba:60:55:2d:b1:ff:31:19:38:cf:c9: 5a:1a:f4:17:9d:1f:97:8c:7f:13:60:2e:85:80:8d:bc:cd:76: 92:58:e8:16:ae:05:68:f8:cb:f7:b6:bb:d2:66:f9:c8:03:33: 1a:bd:2e:e4:cf:e1:51:c6:5b:90:06:89:c6:32:31:05:d3:80: a4:5c:61:ef:bd:da:a8:d1:56:f5:ca:7f:af:71:58:36:2e:1f: 43:a8:de:4f:1f:7f:13:73:49:c6:53:c2:50:54:1f:6e:4f:aa: bf:c9:9f:47:2e:63:81:20:b9:da:96:a7:e8:65:d4:89:88:39: 2a:8e:11:11:52:02:b8:bc:6f:a4:19:4f:c5:a0:6d:a6:bb:48: dc:7b:97:4e:76:3d:e7:c4:83:3e:df:96:1c:9c:fd:c3:ff:e9: 35:bd:d4:8d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBwE64fx5GkCp9tIKHAB8v6FNgUowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA4MDAwMTI4WhcNMjUwOTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A5MjYwNzI2NDIzYTUyMzczYzZjNWU2MGQ3NjU5ZGYxYzkx YTY5ODFlZTZkMzc5ZTA3MmI3N2Y3NjFhODZmM2I5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpv6x01z7e9Ry/s5sTn/AeaixS/Ut3HG+SY3yaIpiNccUN epM+XgDPGTqYpclMGALDbtudacMZ77smOmJttVfTd14hmL6n5CcJ8yaqR1WLoLWk HbtfoP/Gp+sGP5ybUPk5u92Xw7KCdJ5ZYu1KE1rXx8p00tRQqGoGbKz7dkEI02wD 8o8JlfxCFERQLYG+5aLDgY4w+74hINsu+XmcU4mMn6Fp1z1qA8Y0TgtrprOUhZzu L4u2L/ekMnzvC6WlHanEwVxZFa8hVW5t8yK+tZoYgxeaBA4eEvRc8qBOZ+q+GeRu oygid6Yh7mddJsvWM5qUsxKZFTaw1zb1OqTFmczRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUA5UbQKlZxJ1AJGPShvs/48sBmTQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ2YTc5MzZmLTMzZTctNGU3MC05ODFhLWY3NGEzN2Q1MzRmZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPOfSgwDQYJKoZIhvcNAQELBQADggEBACRtK0lfq6x9r3EyH7A42wCOsmvr zpSltts0MayMNeyL4gd9EfTaLvES6k/07WaoieU0ZdrSvR2I/abeVP77PO7AuhOL +kU69GirUlo+Q0BXe39efWOHt2hB9wjLmDL+T1e6YFUtsf8xGTjPyVoa9BedH5eM fxNgLoWAjbzNdpJY6BauBWj4y/e2u9Jm+cgDMxq9LuTP4VHGW5AGicYyMQXTgKRc Ye+92qjRVvXKf69xWDYuH0Oo3k8ffxNzScZTwlBUH25Pqr/Jn0cuY4EgudqWp+hl 1ImIOSqOERFSAri8b6QZT8Wgbaa7SNx7l052PefEgz7flhyc/cP/6TW91I0= -----END CERTIFICATE-----Generated at Sat Aug 23 06:43:59 2025 by rpki-client