$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0dc2871e-4870-49a7-8242-56cfe0f652d5.roa File: 0dc2871e-4870-49a7-8242-56cfe0f652d5.roa (raw, json) Hash identifier: JIOMO3AXGXNnquARd3jZkiipu14qdwEv6DqOU3ZYpV4= Subject key identifier: 8E:62:F9:83:BC:EE:E9:6D:31:F4:B9:F1:11:55:4A:8E:34:62:B1:D7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6582C772A8FC51358D3A4274724930A369DF2820 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0dc2871e-4870-49a7-8242-56cfe0f652d5.roa Signing time: Wed 13 Aug 2025 00:21:07 +0000 ROA not before: Wed 13 Aug 2025 00:21:07 +0000 ROA not after: Wed 17 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 40.168.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:82:c7:72:a8:fc:51:35:8d:3a:42:74:72:49:30:a3:69:df:28:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 13 00:21:07 2025 GMT Not After : Sep 17 23:59:59 2025 GMT Subject: serialNumber=f15bb13a03576c2a9818619df00582d7939713fa3678fd9fef355bf1167276ca, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:fe:79:aa:8e:a7:ca:e9:c7:9e:75:fd:4f:16: b3:c1:cf:67:63:f4:b7:f6:5a:f8:9c:da:6a:84:20: 89:6d:91:95:f4:7b:65:c6:0e:14:b5:91:7a:a3:14: 3e:31:01:f0:ce:e5:be:48:6e:d9:04:bc:4d:2f:81: 0c:c1:5f:1f:a5:35:34:4e:34:eb:71:6b:65:5f:34: e5:e3:44:3c:ec:22:fb:d6:d0:6f:eb:8d:43:ea:21: 91:d8:35:de:bf:55:0f:eb:3d:18:76:b2:28:2e:71: 52:71:cf:0b:3e:b6:68:83:61:a4:0c:b3:70:34:9f: 36:75:f3:cc:82:46:d4:5b:c1:84:bd:7d:c9:d2:28: 64:e4:28:b9:b7:88:59:c9:e9:05:40:c3:e1:42:77: 3a:3f:9b:29:48:44:a1:fe:16:57:57:39:57:09:4f: 9c:e3:dd:32:16:bd:d3:19:02:42:ab:07:9b:ad:dc: 07:2f:ec:e5:8d:61:a1:21:ec:50:c3:53:e1:02:34: e2:30:78:ed:eb:5c:bc:5b:fd:43:4f:81:5f:bb:57: c2:5e:63:e9:4d:85:e2:2b:ea:69:ad:0d:be:57:2a: 48:83:12:68:63:30:c2:30:d8:8a:b9:64:09:6e:90: 55:a8:3b:85:dc:a7:ae:c3:87:2a:d3:16:06:7b:0c: 0d:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:62:F9:83:BC:EE:E9:6D:31:F4:B9:F1:11:55:4A:8E:34:62:B1:D7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0dc2871e-4870-49a7-8242-56cfe0f652d5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.168.0.0/16 Signature Algorithm: sha256WithRSAEncryption 35:60:7b:58:13:ac:ed:15:ff:af:a3:95:6e:23:d5:a9:20:47: a0:6f:9e:f8:00:ea:a1:ac:82:bc:d1:51:cc:0d:53:46:b8:4b: f0:71:8e:c8:ea:04:e0:b5:e3:3e:21:3a:dc:d2:2c:3a:62:8a: d6:bb:a0:49:21:e9:4b:74:8e:46:be:59:43:7b:99:ed:a6:72: 9b:76:26:38:c0:dd:1e:61:f5:0b:3f:69:a0:73:83:f2:f1:20: 65:02:db:ba:2a:ae:8d:2a:50:5f:97:b6:32:08:b3:be:c3:3e: e5:ae:b6:6e:25:b3:c4:cd:db:22:2e:ba:68:24:89:47:1e:33: 13:14:96:06:01:63:0b:8b:b4:74:37:9b:44:0e:ee:66:9b:ed: d4:32:9c:34:1b:dc:11:60:e1:19:35:ca:db:34:af:ba:63:9a: 40:c9:b6:34:56:82:ec:a0:cc:8c:7d:f4:1f:e1:35:d9:aa:59: 1b:78:de:26:e2:d3:39:3c:14:72:25:ca:08:4d:22:09:05:ac: 45:27:81:42:c7:d1:36:8d:93:ee:bc:46:4e:fa:91:72:b1:de: 55:64:a2:29:3f:af:11:1b:c6:79:98:b8:56:ce:e3:d7:ef:ca: fe:7d:0f:0b:4e:55:e9:46:41:d0:5e:58:b8:80:e6:a8:a3:83: 8d:4d:03:3a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUZYLHcqj8UTWNOkJ0ckkwo2nfKCAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEzMDAyMTA3WhcNMjUwOTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMTViYjEzYTAzNTc2YzJhOTgxODYxOWRmMDA1ODJkNzkz OTcxM2ZhMzY3OGZkOWZlZjM1NWJmMTE2NzI3NmNhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCw/nmqjqfK6ceedf1PFrPBz2dj9Lf2Wvic2mqEIIltkZX0 e2XGDhS1kXqjFD4xAfDO5b5IbtkEvE0vgQzBXx+lNTRONOtxa2VfNOXjRDzsIvvW 0G/rjUPqIZHYNd6/VQ/rPRh2sigucVJxzws+tmiDYaQMs3A0nzZ188yCRtRbwYS9 fcnSKGTkKLm3iFnJ6QVAw+FCdzo/mylIRKH+FldXOVcJT5zj3TIWvdMZAkKrB5ut 3Acv7OWNYaEh7FDDU+ECNOIweO3rXLxb/UNPgV+7V8JeY+lNheIr6mmtDb5XKkiD EmhjMMIw2Iq5ZAlukFWoO4Xcp67DhyrTFgZ7DA2zAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUjmL5g7zu6W0x9LnxEVVKjjRisdcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBkYzI4NzFlLTQ4NzAtNDlhNy04MjQyLTU2Y2ZlMGY2NTJkNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAoqDANBgkqhkiG9w0BAQsFAAOCAQEANWB7WBOs7RX/r6OVbiPVqSBHoG+e +ADqoayCvNFRzA1TRrhL8HGOyOoE4LXjPiE63NIsOmKK1rugSSHpS3SORr5ZQ3uZ 7aZym3YmOMDdHmH1Cz9poHOD8vEgZQLbuiqujSpQX5e2MgizvsM+5a62biWzxM3b Ii66aCSJRx4zExSWBgFjC4u0dDebRA7uZpvt1DKcNBvcEWDhGTXK2zSvumOaQMm2 NFaC7KDMjH30H+E12apZG3jeJuLTOTwUciXKCE0iCQWsRSeBQsfRNo2T7rxGTvqR crHeVWSiKT+vERvGeZi4Vs7j1+/K/n0PC05V6UZB0F5YuIDmqKODjU0DOg== -----END CERTIFICATE-----Generated at Sat Aug 23 10:24:15 2025 by rpki-client