$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6b9099d3-0730-40ba-bfda-3f00718bdd29.roa File: 6b9099d3-0730-40ba-bfda-3f00718bdd29.roa (raw, json) Hash identifier: wdOQV0swFZFJgT0m1mexywil75OM3X5LzJ5nEWANT60= Subject key identifier: 6D:AF:CC:3D:36:C6:06:EF:15:0D:33:83:34:35:2A:FB:7F:22:13:43 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 3BBA036D4E5E9C5C43F5B0D0020F533977B0897E Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6b9099d3-0730-40ba-bfda-3f00718bdd29.roa Signing time: Sat 26 Jul 2025 00:50:31 +0000 ROA not before: Sat 26 Jul 2025 00:50:31 +0000 ROA not after: Sat 30 Aug 2025 23:59:59 +0000 asID: 8987 IP address blocks: 52.46.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:ba:03:6d:4e:5e:9c:5c:43:f5:b0:d0:02:0f:53:39:77:b0:89:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jul 26 00:50:31 2025 GMT Not After : Aug 30 23:59:59 2025 GMT Subject: serialNumber=434ebf386bc8a31ec49ce72519fbbb050da72bf516e08c59ff9c4bc8c2c425fd, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:63:b4:97:41:df:5f:0a:91:51:9d:41:1a:9d: 35:3a:fa:57:ae:a9:d9:94:38:dd:c4:85:04:54:99: 13:49:20:56:b5:f8:62:2d:69:e2:6b:e4:0c:06:2d: 86:bf:7a:75:f0:d8:40:72:9e:16:1a:b3:c7:9b:37: 18:af:ef:ab:1f:c7:c5:c9:68:8b:0e:52:93:81:c0: 4a:50:4d:52:c5:f4:5c:a0:6b:3a:68:76:2b:aa:54: 95:87:69:28:87:c1:62:8f:0b:64:8c:47:cf:fb:99: 30:d5:7d:58:55:3f:b6:d0:85:ff:22:18:81:91:23: 72:b0:24:06:41:d3:fc:a7:e7:6a:7a:b7:9a:0b:08: f6:55:0a:d5:fc:30:d9:d2:4d:87:a0:4a:4b:1d:c4: 91:45:5f:6d:74:21:6a:3d:39:ef:37:9b:d8:41:46: 58:6a:04:ed:c2:89:e8:f5:16:99:4b:94:16:38:09: e0:b2:72:47:8d:23:d9:f9:13:3e:3e:b7:a3:89:1e: 04:7b:8d:f0:92:3e:ec:b4:6a:74:67:48:41:24:8e: b7:cd:5b:9b:ed:a0:26:f9:fa:6b:7c:eb:3d:d3:1f: 2d:4f:c0:68:25:96:cd:85:bc:c8:d1:e2:73:6a:3f: 98:63:9c:f1:b2:45:5f:23:46:7b:e3:e9:30:85:28: 20:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:AF:CC:3D:36:C6:06:EF:15:0D:33:83:34:35:2A:FB:7F:22:13:43 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6b9099d3-0730-40ba-bfda-3f00718bdd29.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.46.96.0/19 Signature Algorithm: sha256WithRSAEncryption 84:87:ed:c3:32:4b:7f:1f:21:39:51:ae:e9:05:35:b5:4a:76: 84:e4:b6:02:7a:bc:5c:c5:2e:0b:d6:4a:a5:19:57:3f:fd:1b: c7:4e:7b:08:f1:a4:76:6d:26:81:24:6b:53:03:70:12:03:2c: ee:13:ca:04:66:35:64:6b:cd:72:22:cb:46:01:f9:35:e7:44: 26:be:81:8f:c7:bc:b4:62:22:2b:2d:a2:8c:25:dc:ec:26:67: 5a:c9:09:28:f3:7e:39:d9:f3:08:7a:6f:7d:9d:18:31:98:9a: 5b:0a:11:da:09:bc:53:09:2e:8c:e9:e9:29:e1:c0:ff:11:d0: ce:58:f2:0c:23:43:a5:f8:d7:6b:c2:51:7d:58:81:f2:cb:60: 7e:59:be:82:07:91:17:d4:d6:2e:fa:d8:cb:5f:66:17:4a:1e: c0:38:05:13:9b:ec:78:1a:36:9a:c0:0a:56:27:17:83:f6:3a: 18:f3:60:ab:e8:b2:87:e8:a2:42:82:83:c8:cf:09:c8:55:e5: 83:89:81:40:5b:85:72:ff:05:fc:0a:92:14:a5:8c:bd:c2:c6: 20:26:ee:6f:80:56:83:f2:1e:78:82:f3:ac:7b:90:8f:a1:c6: a8:24:1d:7f:c8:fc:78:74:26:c0:59:3f:67:6b:8a:0b:e8:3d: 6c:ab:f9:7c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUO7oDbU5enFxD9bDQAg9TOXewiX4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNzI2MDA1MDMxWhcNMjUwODMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A0MzRlYmYzODZiYzhhMzFlYzQ5Y2U3MjUxOWZiYmIwNTBk YTcyYmY1MTZlMDhjNTlmZjljNGJjOGMyYzQyNWZkMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDiY7SXQd9fCpFRnUEanTU6+leuqdmUON3EhQRUmRNJIFa1 +GItaeJr5AwGLYa/enXw2EBynhYas8ebNxiv76sfx8XJaIsOUpOBwEpQTVLF9Fyg azpodiuqVJWHaSiHwWKPC2SMR8/7mTDVfVhVP7bQhf8iGIGRI3KwJAZB0/yn52p6 t5oLCPZVCtX8MNnSTYegSksdxJFFX210IWo9Oe83m9hBRlhqBO3Ciej1FplLlBY4 CeCyckeNI9n5Ez4+t6OJHgR7jfCSPuy0anRnSEEkjrfNW5vtoCb5+mt86z3THy1P wGglls2FvMjR4nNqP5hjnPGyRV8jRnvj6TCFKCA/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUba/MPTbGBu8VDTODNDUq+38iE0MwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzZiOTA5OWQzLTA3MzAtNDBiYS1iZmRhLTNmMDA3MThiZGQyOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAU0LmAwDQYJKoZIhvcNAQELBQADggEBAISH7cMyS38fITlRrukFNbVKdoTk tgJ6vFzFLgvWSqUZVz/9G8dOewjxpHZtJoEka1MDcBIDLO4TygRmNWRrzXIiy0YB +TXnRCa+gY/HvLRiIistoowl3OwmZ1rJCSjzfjnZ8wh6b32dGDGYmlsKEdoJvFMJ Lozp6SnhwP8R0M5Y8gwjQ6X412vCUX1YgfLLYH5ZvoIHkRfU1i762MtfZhdKHsA4 BROb7HgaNprAClYnF4P2OhjzYKvosofookKCg8jPCchV5YOJgUBbhXL/BfwKkhSl jL3CxiAm7m+AVoPyHniC86x7kI+hxqgkHX/I/Hh0JsBZP2drigvoPWyr+Xw= -----END CERTIFICATE-----Generated at Mon Aug 4 14:07:29 2025 by rpki-client