$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/db0b227f-9958-4ebb-9f23-65cc24c5c799.roa File: db0b227f-9958-4ebb-9f23-65cc24c5c799.roa (raw, json) Hash identifier: l1ow5IL2QdrNIGUj3AOCR+lf+4E6mzLIDRcFL1xcN3M= Subject key identifier: 32:08:63:0A:8E:CF:0E:8D:59:82:E9:EF:AE:C0:9A:4C:9F:18:90:78 Certificate issuer: /CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Certificate serial: 46F765BB7525ABF29762AB2F3359358E5336D53C Authority key identifier: 7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/db0b227f-9958-4ebb-9f23-65cc24c5c799.roa Signing time: Wed 20 Aug 2025 00:20:16 +0000 ROA not before: Wed 20 Aug 2025 00:20:16 +0000 ROA not after: Wed 24 Sep 2025 23:59:59 +0000 asID: 62785 IP address blocks: 172.96.96.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Aug 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:f7:65:bb:75:25:ab:f2:97:62:ab:2f:33:59:35:8e:53:36:d5:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Validity Not Before: Aug 20 00:20:16 2025 GMT Not After : Sep 24 23:59:59 2025 GMT Subject: serialNumber=1589c36644432ed08ccc17ba98f97a80892acfae14201f34120a489119908a5b, CN=b0dbbb6a-5472-4b68-ae4d-401518603039 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:90:25:b3:cd:4b:24:12:8a:cc:27:09:70:09: 95:0e:0c:15:f5:6c:59:d2:ce:76:dc:a7:52:22:6a: 25:e1:85:6d:a0:e9:26:c9:46:f7:2c:47:b0:a6:52: f9:c6:6c:ea:c1:46:61:4f:c3:4b:37:eb:02:0c:59: 57:2e:d3:94:22:a9:80:d3:a3:d6:bd:4c:78:c3:26: 5f:9a:e8:7e:8d:9c:d9:b6:0d:bf:e4:e2:59:d3:e6: 8d:4a:55:7b:74:d2:ba:ac:e3:2b:88:eb:f7:4c:5a: 00:55:9a:70:5e:38:d0:63:8e:3a:9a:ec:f2:c3:72: 90:eb:ad:62:ed:0e:38:21:50:b7:eb:c6:27:72:72: 0b:38:bd:1e:57:0d:ce:24:98:39:d0:52:21:70:fe: e5:1f:ab:62:f8:e4:27:bd:59:40:08:a6:d1:cb:cc: f9:69:ff:e4:c3:1b:5b:d0:0b:8a:0e:56:d5:84:2f: 51:26:33:63:0b:9f:69:f6:07:d6:96:d0:65:a1:ec: fe:f2:a3:f0:89:0a:97:3c:46:b0:24:ef:14:6b:59: d2:5a:4d:44:a7:4f:b3:30:df:cc:bc:1e:7c:43:7e: 84:a6:2b:8d:1b:67:d9:e8:e0:e6:a2:2e:c7:94:d4: d2:47:ee:ba:1c:d1:ef:12:72:15:f0:b5:19:ed:58: 2c:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:08:63:0A:8E:CF:0E:8D:59:82:E9:EF:AE:C0:9A:4C:9F:18:90:78 X509v3 Authority Key Identifier: keyid:7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/db0b227f-9958-4ebb-9f23-65cc24c5c799.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 172.96.96.0/20 Signature Algorithm: sha256WithRSAEncryption 0b:dc:1f:62:84:f2:4f:43:42:f1:eb:0c:83:5a:91:d8:c7:5f: c6:15:98:59:77:54:d9:49:47:96:78:78:2d:53:0e:d3:dd:18: ed:11:73:3b:36:a2:bd:aa:08:68:c0:e0:86:b1:93:81:d9:58: 53:78:94:8a:a9:d1:6f:fd:86:bd:a5:0b:8a:da:43:ad:ff:73: f6:03:8a:44:95:28:f6:84:00:e3:6f:2c:d8:85:39:87:11:9b: 95:3a:aa:62:fb:45:4f:b5:0c:64:18:bd:6a:90:e0:65:03:41: a5:ed:6d:a5:b4:6b:be:4c:67:a2:3f:23:45:4b:37:7c:48:93: 7e:5f:93:db:8b:fd:83:dc:6f:11:c5:ac:6c:ca:c6:db:60:97: 29:3b:aa:90:96:a6:bb:dc:26:36:ac:31:6f:c8:2a:7a:da:46: 99:06:0c:e9:1a:c2:86:89:25:38:c1:35:53:35:40:fb:c5:be: 3c:30:76:f3:9c:8b:ae:3a:43:c0:9c:25:cb:54:e2:10:54:67: c1:f1:06:e7:43:77:7a:73:16:35:05:f7:e3:23:50:b8:92:cc: 0d:da:a9:d2:38:da:6c:ce:c5:ea:c7:ff:d1:49:c0:32:e6:1b: 62:61:92:dc:1a:ab:d9:64:22:b2:6f:41:ee:11:56:72:6b:a0: ed:b6:0b:41 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURvdlu3Ulq/KXYqsvM1k1jlM21TwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMGVlNDU4M2Q4NGQ5YjRmMDgyNGNiODBiYThmYzEyNDBi NDc5NGI1MTUwNzFlOTc1MWQwHhcNMjUwODIwMDAyMDE2WhcNMjUwOTI0MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNTg5YzM2NjQ0NDMyZWQwOGNjYzE3YmE5OGY5N2E4MDg5 MmFjZmFlMTQyMDFmMzQxMjBhNDg5MTE5OTA4YTViMS0wKwYDVQQDEyRiMGRiYmI2 YS01NDcyLTRiNjgtYWU0ZC00MDE1MTg2MDMwMzkwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIkCWzzUskEorMJwlwCZUODBX1bFnSznbcp1IiaiXhhW2g 6SbJRvcsR7CmUvnGbOrBRmFPw0s36wIMWVcu05QiqYDTo9a9THjDJl+a6H6NnNm2 Db/k4lnT5o1KVXt00rqs4yuI6/dMWgBVmnBeONBjjjqa7PLDcpDrrWLtDjghULfr xidycgs4vR5XDc4kmDnQUiFw/uUfq2L45Ce9WUAIptHLzPlp/+TDG1vQC4oOVtWE L1EmM2MLn2n2B9aW0GWh7P7yo/CJCpc8RrAk7xRrWdJaTUSnT7Mw38y8HnxDfoSm K40bZ9no4OaiLseU1NJH7roc0e8SchXwtRntWCxJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUMghjCo7PDo1ZgunvrsCaTJ8YkHgwHwYDVR0jBBgwFoAUfYRHxJeKC0xz m+v2kuJMdd0/vK4wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS9iNGU0ZmVjNS0z NTEwLTQwMTctOTBlZi04MzkxNDEyZWNkNmMvMGVlNDU4M2Q4NGQ5YjRmMDgyNGNi ODBiYThmYzEyNDBiNDc5NGI1MTUwNzFlOTc1MWQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZGZkN2Y2ZDMtZTZlOS00OTg3LTlhZTctZDA1 MmM1MzUzODk4L2RiMGIyMjdmLTk5NTgtNGViYi05ZjIzLTY1Y2MyNGM1Yzc5OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2RmZDdmNmQzLWU2ZTktNDk4Ny05YWU3 LWQwNTJjNTM1Mzg5OC8yYlR3Z2t5NEM2ajhFa0MwZVV0UlVISHBkUjAuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBASsYGAwDQYJKoZIhvcNAQELBQADggEBAAvcH2KE8k9DQvHrDINakdjHX8YV mFl3VNlJR5Z4eC1TDtPdGO0Rczs2or2qCGjA4Iaxk4HZWFN4lIqp0W/9hr2lC4ra Q63/c/YDikSVKPaEAONvLNiFOYcRm5U6qmL7RU+1DGQYvWqQ4GUDQaXtbaW0a75M Z6I/I0VLN3xIk35fk9uL/YPcbxHFrGzKxttglyk7qpCWprvcJjasMW/IKnraRpkG DOkawoaJJTjBNVM1QPvFvjwwdvOci646Q8CcJctU4hBUZ8HxBudDd3pzFjUF9+Mj ULiSzA3aqdI42mzOxerH/9FJwDLmG2Jhktwaq9lkIrJvQe4RVnJroO22C0E= -----END CERTIFICATE-----Generated at Sat Aug 23 16:08:48 2025 by rpki-client