$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/8bae045f-365b-43cf-99fc-12cbcbce5f67.roa File: 8bae045f-365b-43cf-99fc-12cbcbce5f67.roa (raw, json) Hash identifier: sUArdsgPPJqn4JnemNMlukpM4JV+dQesnYxTN0EZKUw= Subject key identifier: ED:93:74:DA:7F:AA:1A:98:69:78:0F:34:38:6F:E6:F4:9E:46:60:EE Certificate issuer: /CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Certificate serial: 15C1F3BFBF5398F4E7D3A59314B71D3BE1CF541C Authority key identifier: 7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/8bae045f-365b-43cf-99fc-12cbcbce5f67.roa Signing time: Wed 20 Aug 2025 00:20:14 +0000 ROA not before: Wed 20 Aug 2025 00:20:14 +0000 ROA not after: Wed 24 Sep 2025 23:59:59 +0000 asID: 62785 IP address blocks: 172.96.104.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Aug 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:c1:f3:bf:bf:53:98:f4:e7:d3:a5:93:14:b7:1d:3b:e1:cf:54:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Validity Not Before: Aug 20 00:20:14 2025 GMT Not After : Sep 24 23:59:59 2025 GMT Subject: serialNumber=1b0c50e6201408e661bae7b44fab59dbfcdde65da46c99329014ad8150c8bc63, CN=b0dbbb6a-5472-4b68-ae4d-401518603039 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:89:49:b4:7f:ba:fb:24:37:12:8a:e0:69:55: 8b:5f:fb:bd:87:cf:a0:9a:2e:3a:c9:0d:27:b8:be: db:aa:8b:58:a0:fc:42:47:b2:da:78:4b:7d:9a:f2: 1f:1b:3a:e7:aa:60:83:c8:c4:f3:3c:56:5f:1d:51: c5:50:b3:67:b4:50:75:cf:54:23:27:fb:56:75:60: ad:48:09:89:03:46:0e:06:f7:74:25:28:d9:d4:80: b9:e3:ea:dc:f3:b0:5b:49:1d:c5:85:9f:24:bb:ab: 1a:8a:b4:3c:78:a7:22:ec:92:ef:7b:48:fe:bc:08: 29:cb:07:f4:9e:88:d7:84:87:ee:cd:7b:87:41:55: 23:bc:1f:0f:25:cd:ca:22:2e:0a:c0:f1:36:a1:c0: 66:6d:89:f7:55:79:db:cb:95:ff:3d:02:1d:b2:3b: 4e:ec:5f:45:ad:eb:55:2b:ab:67:3c:3d:f0:1e:23: 0a:a9:b0:b6:f7:91:57:d5:ff:03:f7:20:83:f3:1c: 78:0e:81:92:39:c3:b8:ab:3b:b0:f5:97:c5:c8:c6: 48:8b:04:21:04:60:cc:37:40:51:49:8a:85:11:04: 69:c8:bd:10:f8:88:31:e6:31:61:4e:73:82:f8:4a: 71:ba:8a:1d:5e:a9:47:29:7c:98:f0:02:72:17:f3: f7:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:93:74:DA:7F:AA:1A:98:69:78:0F:34:38:6F:E6:F4:9E:46:60:EE X509v3 Authority Key Identifier: keyid:7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/8bae045f-365b-43cf-99fc-12cbcbce5f67.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 172.96.104.0/21 Signature Algorithm: sha256WithRSAEncryption 83:ee:1e:6b:a4:c6:a2:89:08:cb:f1:32:4a:63:72:00:8a:6c: fc:1b:71:4b:3f:c5:41:86:28:d9:02:61:0b:a8:cc:a5:a4:7a: c7:95:5c:a4:fa:35:42:b2:bf:cf:92:ed:34:ba:14:df:e2:8b: d9:7c:6e:0e:c6:4f:36:99:34:09:56:86:40:33:ce:c9:9a:56: df:ca:a2:7e:1f:9b:d0:3f:ba:71:bf:3f:26:f7:d8:e7:4a:09: 88:9b:11:67:db:c2:5c:69:a1:54:d2:d4:10:7e:cc:e6:fb:d5: a1:f7:f0:c7:39:47:95:7f:76:7d:83:2d:51:de:09:46:2a:76: 44:57:22:66:6a:ca:13:d0:b0:37:29:08:4b:ed:ae:14:78:9a: 92:96:fa:22:dc:e4:d5:38:5f:6f:83:e6:bc:9f:b1:40:ef:93: 48:92:d1:56:7b:f1:ca:18:11:2d:3d:d5:e0:d7:7e:3b:76:77: c0:58:14:f7:05:92:c3:a9:2b:85:cd:5d:34:4f:96:c5:58:bc: 76:1c:57:77:b9:86:e2:79:13:fb:c0:01:c4:7c:27:c1:56:b1: 2f:42:8a:35:0b:96:74:df:fb:4b:af:72:9c:47:23:d5:ee:63: 65:d6:bb:99:e4:df:2b:02:b7:65:a7:11:d8:35:47:73:99:d6: d9:ab:df:14 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFcHzv79TmPTn06WTFLcdO+HPVBwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMGVlNDU4M2Q4NGQ5YjRmMDgyNGNiODBiYThmYzEyNDBi NDc5NGI1MTUwNzFlOTc1MWQwHhcNMjUwODIwMDAyMDE0WhcNMjUwOTI0MjM1OTU5 WjB6MUkwRwYDVQQFE0AxYjBjNTBlNjIwMTQwOGU2NjFiYWU3YjQ0ZmFiNTlkYmZj ZGRlNjVkYTQ2Yzk5MzI5MDE0YWQ4MTUwYzhiYzYzMS0wKwYDVQQDEyRiMGRiYmI2 YS01NDcyLTRiNjgtYWU0ZC00MDE1MTg2MDMwMzkwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCeiUm0f7r7JDcSiuBpVYtf+72Hz6CaLjrJDSe4vtuqi1ig /EJHstp4S32a8h8bOueqYIPIxPM8Vl8dUcVQs2e0UHXPVCMn+1Z1YK1ICYkDRg4G 93QlKNnUgLnj6tzzsFtJHcWFnyS7qxqKtDx4pyLsku97SP68CCnLB/SeiNeEh+7N e4dBVSO8Hw8lzcoiLgrA8TahwGZtifdVedvLlf89Ah2yO07sX0Wt61Urq2c8PfAe IwqpsLb3kVfV/wP3IIPzHHgOgZI5w7irO7D1l8XIxkiLBCEEYMw3QFFJioURBGnI vRD4iDHmMWFOc4L4SnG6ih1eqUcpfJjwAnIX8/eZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU7ZN02n+qGphpeA80OG/m9J5GYO4wHwYDVR0jBBgwFoAUfYRHxJeKC0xz m+v2kuJMdd0/vK4wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS9iNGU0ZmVjNS0z NTEwLTQwMTctOTBlZi04MzkxNDEyZWNkNmMvMGVlNDU4M2Q4NGQ5YjRmMDgyNGNi ODBiYThmYzEyNDBiNDc5NGI1MTUwNzFlOTc1MWQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZGZkN2Y2ZDMtZTZlOS00OTg3LTlhZTctZDA1 MmM1MzUzODk4LzhiYWUwNDVmLTM2NWItNDNjZi05OWZjLTEyY2JjYmNlNWY2Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2RmZDdmNmQzLWU2ZTktNDk4Ny05YWU3 LWQwNTJjNTM1Mzg5OC8yYlR3Z2t5NEM2ajhFa0MwZVV0UlVISHBkUjAuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAOsYGgwDQYJKoZIhvcNAQELBQADggEBAIPuHmukxqKJCMvxMkpjcgCKbPwb cUs/xUGGKNkCYQuozKWkeseVXKT6NUKyv8+S7TS6FN/ii9l8bg7GTzaZNAlWhkAz zsmaVt/Kon4fm9A/unG/Pyb32OdKCYibEWfbwlxpoVTS1BB+zOb71aH38Mc5R5V/ dn2DLVHeCUYqdkRXImZqyhPQsDcpCEvtrhR4mpKW+iLc5NU4X2+D5ryfsUDvk0iS 0VZ78coYES091eDXfjt2d8BYFPcFksOpK4XNXTRPlsVYvHYcV3e5huJ5E/vAAcR8 J8FWsS9CijULlnTf+0uvcpxHI9XuY2XWu5nk3ysCt2WnEdg1R3OZ1tmr3xQ= -----END CERTIFICATE-----Generated at Sat Aug 23 16:06:50 2025 by rpki-client