$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0e4d14a5-ea9d-4174-9b05-39e291c5617a.roa File: 0e4d14a5-ea9d-4174-9b05-39e291c5617a.roa (raw, json) Hash identifier: kjn9/uzfhlLPF6Pd4uO5LTpJzPJF5dCXDS4xLWq+B4o= Subject key identifier: 21:1D:C1:F9:41:31:1C:75:D2:1E:2F:99:17:DE:DD:1E:DD:00:E0:43 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7EFEBE4F5CF9F40446B11FE7B351F0F1E45DD584 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0e4d14a5-ea9d-4174-9b05-39e291c5617a.roa Signing time: Tue 12 Aug 2025 00:11:49 +0000 ROA not before: Tue 12 Aug 2025 00:11:49 +0000 ROA not after: Tue 16 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.113.224.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:fe:be:4f:5c:f9:f4:04:46:b1:1f:e7:b3:51:f0:f1:e4:5d:d5:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 12 00:11:49 2025 GMT Not After : Sep 16 23:59:59 2025 GMT Subject: serialNumber=7aa836cd9bffb4bc59c7053a1c90ee736b26f28b1d593a5934cfed423e9df4ab, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:2a:bf:5a:75:aa:8b:89:ad:fb:41:24:8f:20: e8:9e:a8:28:c6:f0:6e:d1:44:b2:bf:ba:e9:6f:8f: 0d:9a:5d:35:62:df:0d:82:db:03:6f:27:cc:07:19: 04:d3:d3:8d:0a:61:24:15:b6:cc:9a:de:43:ba:da: 41:be:32:c9:e7:ad:be:e9:e5:7b:12:a5:0b:9b:19: e5:96:94:af:d4:97:8e:14:cd:d6:ce:30:89:56:0a: 49:27:5c:01:16:56:25:a2:fc:06:75:b6:2b:3f:41: 03:a8:37:7b:a3:b5:87:15:4f:ed:98:54:d9:62:2b: 61:56:d0:fc:7e:d1:1f:4c:0b:f3:a2:ca:23:42:00: 2b:f2:77:43:29:ae:3a:6f:40:3e:96:7b:17:27:a4: 39:a0:bb:af:64:75:3b:53:95:4c:f5:42:95:16:ab: aa:a0:1e:f9:45:95:21:01:f2:d0:b4:fe:76:c1:43: 78:7b:88:0f:00:5f:d9:06:6c:7b:e0:0f:72:65:51: 02:f6:50:c5:eb:da:99:07:1e:37:84:23:8c:af:95: b7:96:c9:61:d4:6c:7b:77:29:fb:a5:7d:99:3a:a0: 39:91:cc:87:d3:db:80:b9:e0:53:0a:11:9e:45:9d: fc:b5:b5:08:ca:55:bd:05:8a:d3:a9:57:72:ec:22: 3b:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:1D:C1:F9:41:31:1C:75:D2:1E:2F:99:17:DE:DD:1E:DD:00:E0:43 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0e4d14a5-ea9d-4174-9b05-39e291c5617a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.113.224.0/19 Signature Algorithm: sha256WithRSAEncryption 58:18:10:5d:83:2f:f2:d5:33:d1:76:e3:e0:0d:35:70:72:8f: f8:c9:6d:5e:8e:bf:c8:50:77:e1:4f:0a:a8:fa:17:60:e4:62: 65:6d:56:0a:42:1a:09:bc:00:e3:10:8c:91:71:cf:d4:bd:26: 10:73:2c:bd:ca:c0:3f:9e:b1:7a:2f:19:5f:5f:33:f8:8c:04: f4:b2:3f:a9:f3:2f:f9:0e:70:ff:1c:6f:66:fb:91:f9:45:87: d1:43:3a:30:48:2a:0c:de:7e:6e:16:cd:8a:12:e6:b6:05:ba: dd:55:c0:bc:fe:e0:9d:6d:68:c0:c7:23:fc:61:e5:cf:f4:7b: 10:19:2f:f8:6b:c0:98:01:e5:82:dc:ed:96:c2:03:d8:35:b0: e5:69:55:24:14:44:ca:19:bc:9a:ee:3d:a6:26:6a:3d:4e:63: 8c:97:ce:c6:ba:d3:5b:89:1c:25:9c:f8:4e:77:ca:50:fc:d7: c6:20:85:33:a8:9c:03:56:d0:85:5c:14:28:70:67:6f:ed:68: cd:5f:6a:80:f3:11:a4:7b:3a:e5:9f:d8:f0:ce:d4:49:6f:9e: 45:02:ee:b7:71:75:3b:63:39:a3:1a:5e:71:3c:b3:1a:5a:96: ed:18:16:fe:cd:0e:ef:1e:70:55:4f:7c:60:8d:15:30:a8:0a: ce:4e:35:a2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfv6+T1z59ARGsR/ns1Hw8eRd1YQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEyMDAxMTQ5WhcNMjUwOTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A3YWE4MzZjZDliZmZiNGJjNTljNzA1M2ExYzkwZWU3MzZi MjZmMjhiMWQ1OTNhNTkzNGNmZWQ0MjNlOWRmNGFiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDmKr9adaqLia37QSSPIOieqCjG8G7RRLK/uulvjw2aXTVi 3w2C2wNvJ8wHGQTT040KYSQVtsya3kO62kG+Msnnrb7p5XsSpQubGeWWlK/Ul44U zdbOMIlWCkknXAEWViWi/AZ1tis/QQOoN3ujtYcVT+2YVNliK2FW0Px+0R9MC/Oi yiNCACvyd0MprjpvQD6WexcnpDmgu69kdTtTlUz1QpUWq6qgHvlFlSEB8tC0/nbB Q3h7iA8AX9kGbHvgD3JlUQL2UMXr2pkHHjeEI4yvlbeWyWHUbHt3KfulfZk6oDmR zIfT24C54FMKEZ5Fnfy1tQjKVb0FitOpV3LsIjupAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUIR3B+UExHHXSHi+ZF97dHt0A4EMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBlNGQxNGE1LWVhOWQtNDE3NC05YjA1LTM5ZTI5MWM1NjE3YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXYceAwDQYJKoZIhvcNAQELBQADggEBAFgYEF2DL/LVM9F24+ANNXByj/jJ bV6Ov8hQd+FPCqj6F2DkYmVtVgpCGgm8AOMQjJFxz9S9JhBzLL3KwD+esXovGV9f M/iMBPSyP6nzL/kOcP8cb2b7kflFh9FDOjBIKgzefm4WzYoS5rYFut1VwLz+4J1t aMDHI/xh5c/0exAZL/hrwJgB5YLc7ZbCA9g1sOVpVSQURMoZvJruPaYmaj1OY4yX zsa601uJHCWc+E53ylD818YghTOonANW0IVcFChwZ2/taM1faoDzEaR7OuWf2PDO 1ElvnkUC7rdxdTtjOaMaXnE8sxpalu0YFv7NDu8ecFVPfGCNFTCoCs5ONaI= -----END CERTIFICATE-----Generated at Sat Aug 23 08:18:03 2025 by rpki-client