$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/08765d1b-0666-44f8-ba33-732d7e392300.roa File: 08765d1b-0666-44f8-ba33-732d7e392300.roa (raw, json) Hash identifier: lHnz2BhwK0ehtQOvsP6AnEW/kwNAEYrUXrjpdyv64o0= Subject key identifier: CE:73:EB:C9:FE:10:82:20:84:8C:E5:C8:60:9F:2B:E6:DB:55:C4:2C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0FF31CC4A6C08BB70D2FB4D2495D1D2B858D5505 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/08765d1b-0666-44f8-ba33-732d7e392300.roa Signing time: Mon 18 Aug 2025 15:21:57 +0000 ROA not before: Mon 18 Aug 2025 15:21:57 +0000 ROA not after: Mon 22 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 184.73.128.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:f3:1c:c4:a6:c0:8b:b7:0d:2f:b4:d2:49:5d:1d:2b:85:8d:55:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 18 15:21:57 2025 GMT Not After : Sep 22 23:59:59 2025 GMT Subject: serialNumber=cba8435f0986639065e247d8f8f38065ff413f89f19e73c52e8b98f0519651d1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:03:ef:51:6f:9c:a6:1a:98:34:f5:a9:7a:0f: 5c:74:e7:14:93:b0:60:de:98:5d:b5:77:08:79:58: 90:73:a9:6e:85:6d:55:36:c4:f3:ed:82:25:8f:9a: 26:06:ea:ae:8d:ba:8f:84:bc:fd:21:dd:be:56:03: 5e:d2:b3:bb:52:3b:c4:53:a8:e1:67:8a:1d:e0:5a: 5a:82:50:7c:c6:cb:f6:0b:48:b4:66:f8:83:dc:7c: 91:5f:b2:e0:59:e6:55:e1:cc:6b:e6:68:47:2a:21: bc:7c:0f:26:99:78:15:02:95:ac:7b:98:a2:22:74: 14:c2:cc:ce:6d:22:e6:31:ed:4b:12:32:2e:33:28: ba:29:d6:d4:63:d1:bd:5d:6c:27:66:c3:54:02:c5: 46:5c:d3:db:5f:6a:d9:8c:b3:77:92:29:2a:86:b3: 6d:9c:5c:a2:3d:e1:52:aa:6f:98:55:01:33:87:5d: 46:68:fb:a5:a6:af:37:81:da:53:75:a7:e0:04:f4: 8c:06:4b:f6:55:39:3a:ac:40:e8:b3:df:fe:9c:a9: 19:41:f2:7a:6e:cf:c1:11:ba:e2:f5:41:7e:d4:fe: 8b:0d:0d:0f:91:0b:f5:a7:49:3f:68:c4:81:02:0b: 33:a5:35:f8:fb:aa:46:20:dd:2d:9c:95:79:f6:1d: 99:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:73:EB:C9:FE:10:82:20:84:8C:E5:C8:60:9F:2B:E6:DB:55:C4:2C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/08765d1b-0666-44f8-ba33-732d7e392300.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 184.73.128.0/20 Signature Algorithm: sha256WithRSAEncryption 58:d0:05:97:44:d0:79:23:ca:96:f2:b4:1e:4b:7f:48:b8:ad: ed:1c:30:8b:21:d8:0c:ae:4b:78:d0:1e:91:a2:9e:3e:0b:bb: a4:51:03:34:66:cc:4b:93:89:77:71:8b:aa:5f:24:ea:fc:86: 7d:0e:b6:0f:05:42:74:75:06:b3:f0:09:3f:17:8e:e5:d1:56: d9:54:12:db:e3:da:a8:ba:91:33:c1:81:75:55:e9:93:2e:f9: 68:1c:e5:54:6a:8c:f1:d1:47:dc:60:50:d9:02:dd:88:92:17: 22:88:dd:55:4f:cd:fa:7f:9c:94:8a:24:34:61:e6:a5:b9:18: 45:10:9a:f6:a6:df:64:bf:34:88:b3:16:f1:40:33:ed:be:ef: a5:ea:28:25:71:1c:dd:a2:b4:73:fc:b6:ef:03:8b:ac:15:5a: 1e:30:df:85:24:66:37:d1:08:38:59:71:3d:0f:48:e0:b6:fb: f0:c9:5d:a0:94:5c:c2:b7:28:c6:23:b8:b9:9a:3a:da:d6:fd: dc:b0:7b:e9:f3:96:8a:39:d2:ea:3e:4b:f7:c1:55:f4:06:e6: 4e:5b:83:5f:0e:a5:73:b3:73:e3:05:55:b7:70:18:c7:8a:35: 8c:0b:d4:be:11:8f:c7:43:81:d0:b1:0f:72:2b:de:62:e5:15: 7d:54:92:9c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUD/McxKbAi7cNL7TSSV0dK4WNVQUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE4MTUyMTU3WhcNMjUwOTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BjYmE4NDM1ZjA5ODY2MzkwNjVlMjQ3ZDhmOGYzODA2NWZm NDEzZjg5ZjE5ZTczYzUyZThiOThmMDUxOTY1MWQxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDA+9Rb5ymGpg09al6D1x05xSTsGDemF21dwh5WJBzqW6F bVU2xPPtgiWPmiYG6q6Nuo+EvP0h3b5WA17Ss7tSO8RTqOFnih3gWlqCUHzGy/YL SLRm+IPcfJFfsuBZ5lXhzGvmaEcqIbx8DyaZeBUClax7mKIidBTCzM5tIuYx7UsS Mi4zKLop1tRj0b1dbCdmw1QCxUZc09tfatmMs3eSKSqGs22cXKI94VKqb5hVATOH XUZo+6WmrzeB2lN1p+AE9IwGS/ZVOTqsQOiz3/6cqRlB8npuz8ERuuL1QX7U/osN DQ+RC/WnST9oxIECCzOlNfj7qkYg3S2clXn2HZnBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUznPryf4QgiCEjOXIYJ8r5ttVxCwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA4NzY1ZDFiLTA2NjYtNDRmOC1iYTMzLTczMmQ3ZTM5MjMwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAS4SYAwDQYJKoZIhvcNAQELBQADggEBAFjQBZdE0HkjypbytB5Lf0i4re0c MIsh2AyuS3jQHpGinj4Lu6RRAzRmzEuTiXdxi6pfJOr8hn0Otg8FQnR1BrPwCT8X juXRVtlUEtvj2qi6kTPBgXVV6ZMu+Wgc5VRqjPHRR9xgUNkC3YiSFyKI3VVPzfp/ nJSKJDRh5qW5GEUQmvam32S/NIizFvFAM+2+76XqKCVxHN2itHP8tu8Di6wVWh4w 34UkZjfRCDhZcT0PSOC2+/DJXaCUXMK3KMYjuLmaOtrW/dywe+nzloo50uo+S/fB VfQG5k5bg18OpXOzc+MFVbdwGMeKNYwL1L4Rj8dDgdCxD3Ir3mLlFX1Ukpw= -----END CERTIFICATE-----Generated at Sat Aug 23 06:55:08 2025 by rpki-client