$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f3125e31-ed97-4e31-89e9-d4af00e5b32d.roa File: f3125e31-ed97-4e31-89e9-d4af00e5b32d.roa (raw, json) Hash identifier: /nsNwhVKaynO6GXQ9TeS5eBaH0Jr/1trpjd8fkxh4dE= Subject key identifier: C2:09:3E:F4:9D:F8:BB:99:B6:B1:53:8A:3C:75:7D:30:8E:60:CF:7F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0EF5076CDCE2D3168EF1AC1351088151F2B1D1DE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f3125e31-ed97-4e31-89e9-d4af00e5b32d.roa Signing time: Fri 08 Aug 2025 00:12:29 +0000 ROA not before: Fri 08 Aug 2025 00:12:29 +0000 ROA not after: Fri 12 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 40.180.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:f5:07:6c:dc:e2:d3:16:8e:f1:ac:13:51:08:81:51:f2:b1:d1:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 8 00:12:29 2025 GMT Not After : Sep 12 23:59:59 2025 GMT Subject: serialNumber=adef7b1a178018b4ca123b0a626e9b78a61868ab382d693099a24ffd8bc50dca, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:d2:30:e2:20:5f:50:53:89:ce:f3:cd:25:0f: 40:3b:53:94:b3:1e:32:07:35:2a:8c:43:9a:71:cf: e3:e2:04:1b:13:45:96:74:bf:12:ce:ab:69:2f:79: c8:d9:23:14:ad:5b:9c:61:fd:fc:47:83:be:ae:5a: e6:c9:ef:a7:90:3d:2f:33:af:1a:6e:df:1f:0b:8c: 1a:16:e1:11:e5:91:91:7f:6f:5e:e4:d9:1c:56:73: f0:ce:1e:7a:f7:d9:68:02:2b:08:46:43:a7:05:27: 71:40:ac:04:48:e0:99:65:6d:eb:0d:a7:41:ea:7a: a8:ff:1c:b6:4d:22:4b:3b:45:dd:eb:94:8c:17:54: 10:ad:fb:9f:45:a8:44:a5:e8:99:84:88:32:4f:7d: 40:24:f9:11:b1:8c:b9:8e:75:d4:97:24:08:df:d3: a9:d4:de:bc:81:a3:ea:93:e6:ac:1d:de:65:fe:4b: b7:80:15:8f:55:47:ba:66:2d:ea:59:7c:cb:30:98: 37:a5:8b:94:13:18:f7:aa:a1:09:a1:6e:ff:15:1e: bd:37:05:12:82:af:be:ec:35:c7:a3:c1:9f:d3:a2: eb:b3:26:2b:9d:f7:91:19:f6:2c:a9:9a:f1:b2:8f: 53:e4:04:2a:8c:90:27:3c:03:4b:15:b0:98:b5:92: e4:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:09:3E:F4:9D:F8:BB:99:B6:B1:53:8A:3C:75:7D:30:8E:60:CF:7F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f3125e31-ed97-4e31-89e9-d4af00e5b32d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.180.0.0/15 Signature Algorithm: sha256WithRSAEncryption 3d:db:c5:be:8e:39:50:93:75:0e:fd:ab:36:f3:58:ef:09:92: 12:01:11:7d:70:25:1c:68:cc:28:f6:92:0d:7f:cf:1c:ef:41: 02:e5:57:7b:f2:a3:b3:05:f7:93:f8:15:96:95:31:7e:cf:ad: b9:96:fc:42:a8:d3:b9:4e:9d:fb:8f:cd:e4:22:cf:66:90:32: 12:a7:b5:30:17:2d:57:c5:0c:c2:d3:ce:b2:a8:45:39:16:31: 57:47:c7:4f:f5:27:9c:53:23:bd:06:28:39:2e:f1:2e:24:c5: 13:19:27:f4:00:7f:5f:59:f4:72:fb:74:cf:31:88:ff:bb:be: 8e:ed:45:4d:bc:d7:af:31:e9:6d:80:62:ab:22:bf:99:5f:bd: 00:62:e0:3b:f0:c4:a3:60:41:7e:da:bb:a0:f4:9f:4a:32:88: bd:cb:69:fe:fb:4f:d9:df:aa:bd:68:d0:af:81:1b:04:58:75: fb:a9:37:00:46:ad:ca:5f:32:f5:9b:47:c5:e5:04:0b:2b:0d: 2d:f9:74:f7:98:ff:e5:b1:8c:ba:c1:d9:a4:f5:88:8e:38:8b: 38:1f:15:d4:b0:f2:ed:9b:9a:e7:e7:c0:4d:3c:d9:d7:76:c6: de:d8:b7:04:5a:bf:48:b6:11:1b:e2:b0:27:f8:b9:48:9c:c5: ad:1b:b7:a3 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUDvUHbNzi0xaO8awTUQiBUfKx0d4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA4MDAxMjI5WhcNMjUwOTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0BhZGVmN2IxYTE3ODAxOGI0Y2ExMjNiMGE2MjZlOWI3OGE2 MTg2OGFiMzgyZDY5MzA5OWEyNGZmZDhiYzUwZGNhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDa0jDiIF9QU4nO880lD0A7U5SzHjIHNSqMQ5pxz+PiBBsT RZZ0vxLOq2kvecjZIxStW5xh/fxHg76uWubJ76eQPS8zrxpu3x8LjBoW4RHlkZF/ b17k2RxWc/DOHnr32WgCKwhGQ6cFJ3FArARI4JllbesNp0Hqeqj/HLZNIks7Rd3r lIwXVBCt+59FqESl6JmEiDJPfUAk+RGxjLmOddSXJAjf06nU3ryBo+qT5qwd3mX+ S7eAFY9VR7pmLepZfMswmDeli5QTGPeqoQmhbv8VHr03BRKCr77sNcejwZ/Touuz Jiud95EZ9iypmvGyj1PkBCqMkCc8A0sVsJi1kuR5AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUwgk+9J34u5m2sVOKPHV9MI5gz38wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YzMTI1ZTMxLWVkOTctNGUzMS04OWU5LWQ0YWYwMGU1YjMyZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEotDANBgkqhkiG9w0BAQsFAAOCAQEAPdvFvo45UJN1Dv2rNvNY7wmSEgER fXAlHGjMKPaSDX/PHO9BAuVXe/KjswX3k/gVlpUxfs+tuZb8QqjTuU6d+4/N5CLP ZpAyEqe1MBctV8UMwtPOsqhFORYxV0fHT/UnnFMjvQYoOS7xLiTFExkn9AB/X1n0 cvt0zzGI/7u+ju1FTbzXrzHpbYBiqyK/mV+9AGLgO/DEo2BBftq7oPSfSjKIvctp /vtP2d+qvWjQr4EbBFh1+6k3AEatyl8y9ZtHxeUECysNLfl095j/5bGMusHZpPWI jjiLOB8V1LDy7Zua5+fATTzZ13bG3ti3BFq/SLYRG+KwJ/i5SJzFrRu3ow== -----END CERTIFICATE-----Generated at Fri Aug 8 20:46:47 2025 by rpki-client