$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/8bae045f-365b-43cf-99fc-12cbcbce5f67.roa File: 8bae045f-365b-43cf-99fc-12cbcbce5f67.roa (raw, json) Hash identifier: MAz7ueK6KNkEbBZ7kN7pJ4jbP51YAwJEIRmNSRO/8Bk= Subject key identifier: B4:E9:CB:7D:7E:DB:16:3E:FF:51:4D:1C:05:E2:80:01:06:8A:1D:F7 Certificate issuer: /CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Certificate serial: 2C7CB70EFB1A967E62F798DD01B425E37A135FE1 Authority key identifier: 7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/8bae045f-365b-43cf-99fc-12cbcbce5f67.roa Signing time: Fri 10 Oct 2025 00:21:06 +0000 ROA not before: Fri 10 Oct 2025 00:21:06 +0000 ROA not after: Fri 14 Nov 2025 23:59:59 +0000 asID: 62785 IP address blocks: 172.96.104.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:7c:b7:0e:fb:1a:96:7e:62:f7:98:dd:01:b4:25:e3:7a:13:5f:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Validity Not Before: Oct 10 00:21:06 2025 GMT Not After : Nov 14 23:59:59 2025 GMT Subject: serialNumber=47d5d5e3aa7a82d602e262ee5ba48fd2ac09c688da1ea4ab83014c83dc4d5677, CN=b0dbbb6a-5472-4b68-ae4d-401518603039 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:d5:a7:f8:c4:d4:bd:c2:44:56:61:81:01:dd: 7f:15:2a:af:d7:fb:48:5c:9e:c1:09:aa:ac:08:f2: 7e:76:1f:cf:51:36:75:6b:1a:f6:1e:be:87:28:e7: 22:c8:92:cb:4c:bf:31:5f:9b:a5:e2:38:7d:0b:d9: 17:8c:5f:53:47:82:bd:26:3b:e2:dc:be:12:65:f3: a8:36:47:7d:da:e7:6a:05:04:6b:4a:0a:51:cd:7c: 2e:3c:1c:12:57:5f:e9:63:fd:d6:c7:87:24:92:e9: ea:e4:8e:a7:e3:54:9e:c0:88:80:da:25:69:d1:29: d8:61:1b:69:1e:90:ca:a6:31:0c:54:75:5d:6b:72: 17:5e:2e:39:23:a9:42:68:93:9f:f4:18:56:b2:7a: 3d:57:a3:56:4d:fa:c6:28:aa:f2:b4:2a:89:8f:d0: db:f4:d7:28:88:83:5d:21:0c:05:5f:12:59:68:5e: 3e:db:5e:8d:b6:fb:22:5e:ad:08:4c:2b:7e:81:0b: b6:0f:b5:42:1c:13:27:47:fc:dd:59:ba:86:4c:b8: d7:47:fe:7e:74:6b:89:e0:0a:b8:c7:14:56:93:48: 9f:cf:73:f4:75:87:a3:9c:62:66:d8:8f:0a:e3:6c: c7:4c:03:4c:48:f0:19:ed:a8:a1:d6:ce:d1:c1:5b: 7f:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:E9:CB:7D:7E:DB:16:3E:FF:51:4D:1C:05:E2:80:01:06:8A:1D:F7 X509v3 Authority Key Identifier: keyid:7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/8bae045f-365b-43cf-99fc-12cbcbce5f67.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 172.96.104.0/21 Signature Algorithm: sha256WithRSAEncryption 71:80:94:5e:25:a5:76:ae:2e:28:f4:49:08:47:a9:97:c7:d3: e9:75:86:80:5e:b8:6f:f0:40:65:76:a8:8a:47:e8:61:09:70: c9:b7:df:32:8d:3f:58:b7:dc:5b:0d:e7:f2:49:0c:1d:9f:96: 04:34:ed:13:26:ef:38:20:0c:1a:0a:04:6e:0c:60:60:be:ac: 16:6f:3c:0d:22:8d:f5:42:21:02:73:c3:91:70:5a:4a:91:17: 17:80:30:d7:29:6d:64:f2:42:f7:83:b4:0f:96:0b:2c:b3:b6: 15:1f:48:8c:5e:a4:08:e6:6e:c9:a7:19:be:c1:97:5f:35:29: 08:44:15:69:58:8f:a8:0b:59:55:42:41:f4:7e:8d:ce:fa:81: d4:8f:22:9f:fd:b6:13:57:f2:6e:32:cd:41:7d:99:b3:b5:5f: 5c:8e:e1:e7:b9:50:61:70:07:da:76:0e:50:91:e7:84:90:47: 90:cf:45:a6:8f:3c:50:84:a6:29:42:16:56:ef:58:0d:e6:e7: 2f:f4:67:b3:20:93:c6:a0:08:39:71:08:e4:35:ac:9c:81:9e: 45:0b:07:a5:5c:3a:0d:18:83:39:3d:9d:f8:7c:85:9c:dc:d4: 34:d0:39:92:c1:da:c7:ce:f2:24:6d:2c:c2:1e:ee:10:7a:00: a5:44:13:56 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULHy3Dvsaln5i95jdAbQl43oTX+EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMGVlNDU4M2Q4NGQ5YjRmMDgyNGNiODBiYThmYzEyNDBi NDc5NGI1MTUwNzFlOTc1MWQwHhcNMjUxMDEwMDAyMTA2WhcNMjUxMTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0N2Q1ZDVlM2FhN2E4MmQ2MDJlMjYyZWU1YmE0OGZkMmFj MDljNjg4ZGExZWE0YWI4MzAxNGM4M2RjNGQ1Njc3MS0wKwYDVQQDEyRiMGRiYmI2 YS01NDcyLTRiNjgtYWU0ZC00MDE1MTg2MDMwMzkwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCn1af4xNS9wkRWYYEB3X8VKq/X+0hcnsEJqqwI8n52H89R NnVrGvYevoco5yLIkstMvzFfm6XiOH0L2ReMX1NHgr0mO+LcvhJl86g2R33a52oF BGtKClHNfC48HBJXX+lj/dbHhySS6erkjqfjVJ7AiIDaJWnRKdhhG2kekMqmMQxU dV1rchdeLjkjqUJok5/0GFayej1Xo1ZN+sYoqvK0KomP0Nv01yiIg10hDAVfEllo Xj7bXo22+yJerQhMK36BC7YPtUIcEydH/N1ZuoZMuNdH/n50a4ngCrjHFFaTSJ/P c/R1h6OcYmbYjwrjbMdMA0xI8BntqKHWztHBW3+9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUtOnLfX7bFj7/UU0cBeKAAQaKHfcwHwYDVR0jBBgwFoAUfYRHxJeKC0xz m+v2kuJMdd0/vK4wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS9iNGU0ZmVjNS0z NTEwLTQwMTctOTBlZi04MzkxNDEyZWNkNmMvMGVlNDU4M2Q4NGQ5YjRmMDgyNGNi ODBiYThmYzEyNDBiNDc5NGI1MTUwNzFlOTc1MWQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZGZkN2Y2ZDMtZTZlOS00OTg3LTlhZTctZDA1 MmM1MzUzODk4LzhiYWUwNDVmLTM2NWItNDNjZi05OWZjLTEyY2JjYmNlNWY2Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2RmZDdmNmQzLWU2ZTktNDk4Ny05YWU3 LWQwNTJjNTM1Mzg5OC8yYlR3Z2t5NEM2ajhFa0MwZVV0UlVISHBkUjAuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAOsYGgwDQYJKoZIhvcNAQELBQADggEBAHGAlF4lpXauLij0SQhHqZfH0+l1 hoBeuG/wQGV2qIpH6GEJcMm33zKNP1i33FsN5/JJDB2flgQ07RMm7zggDBoKBG4M YGC+rBZvPA0ijfVCIQJzw5FwWkqRFxeAMNcpbWTyQveDtA+WCyyzthUfSIxepAjm bsmnGb7Bl181KQhEFWlYj6gLWVVCQfR+jc76gdSPIp/9thNX8m4yzUF9mbO1X1yO 4ee5UGFwB9p2DlCR54SQR5DPRaaPPFCEpilCFlbvWA3m5y/0Z7Mgk8agCDlxCOQ1 rJyBnkULB6VcOg0Ygzk9nfh8hZzc1DTQOZLB2sfO8iRtLMIe7hB6AKVEE1Y= -----END CERTIFICATE-----Generated at Mon Oct 20 12:02:33 2025 by rpki-client