$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/05c4765b-4799-4565-ad48-4904ecc48754.roa File: 05c4765b-4799-4565-ad48-4904ecc48754.roa (raw, json) Hash identifier: 7sU4iVibRS5hmqGL9aNW0Esub5rGV2BHw4XzfWsb8L4= Subject key identifier: C9:20:38:D6:D8:47:AD:3C:0A:5A:29:90:33:BB:8E:58:8A:C9:7A:B6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 41F840775C9DF00E167387ACC56C71D009F449 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/05c4765b-4799-4565-ad48-4904ecc48754.roa Signing time: Fri 22 Aug 2025 00:31:24 +0000 ROA not before: Fri 22 Aug 2025 00:31:24 +0000 ROA not after: Fri 26 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.87.216.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:f8:40:77:5c:9d:f0:0e:16:73:87:ac:c5:6c:71:d0:09:f4:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 22 00:31:24 2025 GMT Not After : Sep 26 23:59:59 2025 GMT Subject: serialNumber=2b267c274821323aa8ff9af4556bee1b071241b00fd90758446b94433771cc5f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:50:a4:3d:c5:9e:36:cd:82:9a:e6:b8:be:f3: 26:9e:e5:91:f7:2f:cf:06:7a:39:17:49:41:0a:96: 10:88:5b:3d:f2:82:f3:f1:41:dc:83:ac:c8:82:df: e8:66:6c:2a:5b:62:46:f7:26:6f:2f:50:0b:41:7e: bf:04:d6:24:a0:0d:a6:15:bf:74:7c:91:19:20:39: c0:24:dd:02:db:fc:0b:92:e2:2f:ed:8c:75:29:0f: 1b:0b:e5:6c:fb:4d:7c:74:0c:0f:6e:84:9d:61:47: d0:d4:a5:16:16:a0:cf:8c:a9:d8:ff:d8:c1:8e:c6: ff:a7:6f:e4:d1:ba:a1:f4:65:06:a9:1c:d6:24:92: 0c:33:de:7c:09:90:5f:4a:66:18:63:ff:d5:a8:0c: 98:6c:f5:ea:d5:d5:90:66:82:e2:02:e2:86:46:29: 72:23:c0:ed:28:c4:ac:72:ce:cb:0c:c7:32:da:15: 6a:db:bb:5e:67:de:33:c0:95:f6:77:ec:f4:f2:59: 29:36:48:16:43:63:0d:ce:79:c4:f9:bc:76:a1:f3: b3:de:11:a4:9f:b1:55:f0:bb:95:ac:dc:46:fd:e2: 38:da:0e:cc:24:3c:b2:b8:7e:a6:02:d7:34:23:62: 15:3c:88:cf:60:0b:b3:41:cb:2d:d8:f0:f1:4f:65: d4:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:20:38:D6:D8:47:AD:3C:0A:5A:29:90:33:BB:8E:58:8A:C9:7A:B6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/05c4765b-4799-4565-ad48-4904ecc48754.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.87.216.0/22 Signature Algorithm: sha256WithRSAEncryption 73:ab:cb:83:47:be:0a:ac:f1:3c:dc:b5:16:41:ce:af:50:4c: c9:9b:3e:83:52:73:f3:9f:36:5d:53:95:4f:4d:17:3e:5e:0a: c2:42:5d:b5:26:76:7f:ea:77:3d:5a:7f:59:b0:bd:49:6f:52: e8:5d:5d:35:20:10:72:21:84:bb:2c:2c:52:20:38:45:6d:65: b8:e2:65:08:5c:ca:47:76:5f:de:9c:b1:fe:55:2c:21:1d:67: c5:8e:80:a6:8e:78:5b:9b:9c:c2:eb:50:17:18:0f:91:0e:9a: 02:34:91:16:9d:c2:c8:22:a2:81:01:6a:bc:1e:c1:fd:38:ec: 61:ce:28:bd:bf:4b:78:58:d1:e7:bf:e2:b1:ae:bd:80:c9:3c: c8:86:9d:2f:7b:4b:e0:56:c3:38:9b:39:a2:c4:fa:93:77:b3: d2:bf:ea:e0:da:d7:d3:1e:41:88:2f:fb:6f:6e:6b:15:be:b4: ea:bd:68:98:01:3a:59:9f:b3:40:18:b7:d7:ed:dc:85:5f:3c: f5:8a:4b:ba:df:bb:54:58:9e:80:73:77:09:70:9e:9a:5f:65: 76:c7:a4:c5:d7:d2:2c:bd:0a:b9:e0:4b:bd:e0:a5:d8:8d:d7: 0e:f1:b1:ad:b6:e7:bd:5c:02:37:8d:f4:3c:17:a5:6d:f1:2c: 89:76:9e:e3 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITQfhAd1yd8A4Wc4esxWxx0An0STANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNTA4MjIwMDMxMjRaFw0yNTA5MjYyMzU5NTla MHoxSTBHBgNVBAUTQDJiMjY3YzI3NDgyMTMyM2FhOGZmOWFmNDU1NmJlZTFiMDcx MjQxYjAwZmQ5MDc1ODQ0NmI5NDQzMzc3MWNjNWYxLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAOFQpD3FnjbNgprmuL7zJp7lkfcvzwZ6ORdJQQqWEIhbPfKC 8/FB3IOsyILf6GZsKltiRvcmby9QC0F+vwTWJKANphW/dHyRGSA5wCTdAtv8C5Li L+2MdSkPGwvlbPtNfHQMD26EnWFH0NSlFhagz4yp2P/YwY7G/6dv5NG6ofRlBqkc 1iSSDDPefAmQX0pmGGP/1agMmGz16tXVkGaC4gLihkYpciPA7SjErHLOywzHMtoV atu7XmfeM8CV9nfs9PJZKTZIFkNjDc55xPm8dqHzs94RpJ+xVfC7lazcRv3iONoO zCQ8srh+pgLXNCNiFTyIz2ALs0HLLdjw8U9l1GECAwEAAaOCArEwggKtMB0GA1Ud DgQWBBTJIDjW2EetPApaKZAzu45Yisl6tjAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvMDVjNDc2NWItNDc5OS00NTY1LWFkNDgtNDkwNGVjYzQ4NzU0LnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAthX2DANBgkqhkiG9w0BAQsFAAOCAQEAc6vLg0e+CqzxPNy1FkHOr1BMyZs+ g1Jz8582XVOVT00XPl4KwkJdtSZ2f+p3PVp/WbC9SW9S6F1dNSAQciGEuywsUiA4 RW1luOJlCFzKR3Zf3pyx/lUsIR1nxY6Apo54W5ucwutQFxgPkQ6aAjSRFp3CyCKi gQFqvB7B/TjsYc4ovb9LeFjR57/isa69gMk8yIadL3tL4FbDOJs5osT6k3ez0r/q 4NrX0x5BiC/7b25rFb606r1omAE6WZ+zQBi31+3chV889YpLut+7VFiegHN3CXCe ml9ldsekxdfSLL0KueBLveCl2I3XDvGxrbbnvVwCN430PBelbfEsiXae4w== -----END CERTIFICATE-----Generated at Sat Aug 23 07:01:33 2025 by rpki-client