$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0d5db1ef-788a-43c1-a576-eebf7d6c7b32.roa File: 0d5db1ef-788a-43c1-a576-eebf7d6c7b32.roa (raw, json) Hash identifier: ZMdL/wAacribWPs7icFMUQd14o+YrHtLA5H+tHCEvCQ= Subject key identifier: 12:04:58:83:15:F4:B5:BB:B6:84:2D:46:85:AB:12:EB:CB:F5:90:F9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3720838F2F8068E41EED8EFA733EE7C9F5023E70 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0d5db1ef-788a-43c1-a576-eebf7d6c7b32.roa Signing time: Sat 16 Aug 2025 00:41:03 +0000 ROA not before: Sat 16 Aug 2025 00:41:03 +0000 ROA not after: Sat 20 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 5.174.128.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:20:83:8f:2f:80:68:e4:1e:ed:8e:fa:73:3e:e7:c9:f5:02:3e:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 16 00:41:03 2025 GMT Not After : Sep 20 23:59:59 2025 GMT Subject: serialNumber=25c5de6f412031168a87bc52a955a59cd22038708306a6959aa6e7e4387bc3b4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:a2:5c:f3:f8:55:56:78:98:ba:78:f7:95:c4: f9:dc:b2:44:d9:44:d8:1c:7c:80:e7:0b:82:56:a4: 11:9a:a6:dc:f8:be:da:09:72:8e:5d:d3:20:72:d1: 41:33:62:f3:4a:3d:a2:9a:76:ce:4c:89:55:cb:95: d2:d9:85:8a:d6:a7:16:8e:99:db:89:d1:de:ee:af: 74:23:cb:6c:5a:0c:38:cf:0a:74:8b:08:91:5e:0b: a4:b0:73:bd:61:09:45:2a:23:5b:b3:5f:e2:cb:d9: a1:a3:36:27:47:67:80:de:ba:be:43:5a:07:33:a0: f0:eb:49:a6:36:72:a5:e4:0d:2a:62:e7:30:24:5a: a0:7b:9f:1b:d6:dd:68:9f:7d:ad:b5:23:85:36:d4: b6:52:6b:a9:3f:7e:f7:ec:f1:0d:c4:90:51:37:40: 86:e0:02:42:17:0b:41:88:4f:f9:f5:c1:2f:e5:24: 1f:51:83:0d:1a:cd:ec:7a:21:b6:c7:f1:36:58:c6: 4c:c3:af:f9:3f:07:85:a4:6b:66:a4:80:fe:17:b0: e4:48:18:05:98:2c:ed:f2:39:f4:b8:ce:e3:08:83: d5:9c:3e:38:5a:a7:c7:5c:d6:b0:e4:d1:73:9f:90: a9:4a:3c:a1:6c:e7:76:63:9e:0b:4f:ba:ab:27:b6: b7:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:04:58:83:15:F4:B5:BB:B6:84:2D:46:85:AB:12:EB:CB:F5:90:F9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0d5db1ef-788a-43c1-a576-eebf7d6c7b32.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.174.128.0/20 Signature Algorithm: sha256WithRSAEncryption 72:db:28:89:52:5e:c2:19:70:6a:a3:6c:fa:17:9e:cb:95:ba: 5d:42:46:c6:9a:32:bf:0c:68:55:e4:ed:3f:91:21:17:3a:7a: 93:1e:a0:ef:49:6e:17:7e:91:ca:da:50:bb:c9:b9:b0:06:fa: 5b:51:30:0f:88:2d:4f:e3:d7:36:0f:e2:cf:f5:ac:07:06:f8: 46:64:ad:df:be:f0:17:08:55:9d:6d:5e:39:7e:46:ee:0e:be: 7c:72:80:40:06:4c:9b:e5:75:fa:3d:ec:5e:5e:38:fa:ca:76: 32:2d:37:f2:f7:73:3e:b5:65:c8:db:c9:97:59:cc:3d:e5:5c: cc:37:a9:86:45:56:86:6b:22:79:3b:f6:22:a4:03:e4:b8:e0: 24:76:37:7e:99:e8:a4:d5:0a:e1:32:f9:77:df:17:08:6f:f3: ea:eb:78:69:fc:ba:88:b2:2c:3a:3b:30:f9:c5:a0:06:88:0d: 7b:61:70:fd:6c:6c:62:1f:91:bf:37:5f:a8:e0:45:b2:bc:20: fa:79:4b:25:81:55:15:05:79:e8:65:e9:a3:bf:30:69:a1:a8: cc:b6:55:10:23:ef:dc:25:cd:52:e1:f3:2e:13:2a:8f:6b:d2: d5:cc:42:21:10:ed:97:06:01:35:f3:b0:c9:00:29:3d:8f:9f: 07:b9:c3:5d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNyCDjy+AaOQe7Y76cz7nyfUCPnAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE2MDA0MTAzWhcNMjUwOTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyNWM1ZGU2ZjQxMjAzMTE2OGE4N2JjNTJhOTU1YTU5Y2Qy MjAzODcwODMwNmE2OTU5YWE2ZTdlNDM4N2JjM2I0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDVolzz+FVWeJi6ePeVxPncskTZRNgcfIDnC4JWpBGaptz4 vtoJco5d0yBy0UEzYvNKPaKads5MiVXLldLZhYrWpxaOmduJ0d7ur3Qjy2xaDDjP CnSLCJFeC6Swc71hCUUqI1uzX+LL2aGjNidHZ4Deur5DWgczoPDrSaY2cqXkDSpi 5zAkWqB7nxvW3Wiffa21I4U21LZSa6k/fvfs8Q3EkFE3QIbgAkIXC0GIT/n1wS/l JB9Rgw0azex6IbbH8TZYxkzDr/k/B4Wka2akgP4XsORIGAWYLO3yOfS4zuMIg9Wc Pjhap8dc1rDk0XOfkKlKPKFs53ZjngtPuqsntrfzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUEgRYgxX0tbu2hC1GhasS68v1kPkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBkNWRiMWVmLTc4OGEtNDNjMS1hNTc2LWVlYmY3ZDZjN2IzMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQFroAwDQYJKoZIhvcNAQELBQADggEBAHLbKIlSXsIZcGqjbPoXnsuVul1C RsaaMr8MaFXk7T+RIRc6epMeoO9Jbhd+kcraULvJubAG+ltRMA+ILU/j1zYP4s/1 rAcG+EZkrd++8BcIVZ1tXjl+Ru4OvnxygEAGTJvldfo97F5eOPrKdjItN/L3cz61 ZcjbyZdZzD3lXMw3qYZFVoZrInk79iKkA+S44CR2N36Z6KTVCuEy+XffFwhv8+rr eGn8uoiyLDo7MPnFoAaIDXthcP1sbGIfkb83X6jgRbK8IPp5SyWBVRUFeehl6aO/ MGmhqMy2VRAj79wlzVLh8y4TKo9r0tXMQiEQ7ZcGATXzsMkAKT2Pnwe5w10= -----END CERTIFICATE-----Generated at Sat Aug 23 10:16:48 2025 by rpki-client