$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/119594d3-1a17-4118-856d-889f2bef824e.roa File: 119594d3-1a17-4118-856d-889f2bef824e.roa (raw, json) Hash identifier: oN1Zm1mTi1Rvc7xLXESQK+0GXMI9waM4Rlf7a7gpzb4= Subject key identifier: 62:4C:9B:AE:F2:5D:84:18:A3:6F:F0:8B:C4:11:B9:B1:F7:51:E7:53 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 59F3FA9725FDF9308CF5FA723160DB316A5BDEA9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/119594d3-1a17-4118-856d-889f2bef824e.roa Signing time: Sat 16 Aug 2025 00:31:11 +0000 ROA not before: Sat 16 Aug 2025 00:31:11 +0000 ROA not after: Sat 20 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 5.174.168.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:f3:fa:97:25:fd:f9:30:8c:f5:fa:72:31:60:db:31:6a:5b:de:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 16 00:31:11 2025 GMT Not After : Sep 20 23:59:59 2025 GMT Subject: serialNumber=f4ad77959c3a6533a9d65f59340e506859d517f4d41b5ce90c8045fbeff43310, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:5a:a8:d5:3f:d8:bc:f4:56:f9:39:37:07:21: 7b:54:08:bf:4d:63:fd:f3:24:89:01:2c:a9:ae:e2: ae:f7:f0:aa:23:47:c9:e0:99:e7:19:3a:2d:21:43: 19:da:84:f7:0e:96:08:bf:1c:3f:4a:28:b0:80:63: 9e:88:89:3b:56:52:c3:e9:ae:9e:2f:da:93:2b:16: ec:25:87:3e:2f:72:06:0f:ce:ec:53:ba:a3:8d:f9: ec:d6:81:06:14:a4:79:3e:9d:4d:e1:47:6f:b1:06: 4f:50:cf:0c:c7:74:b0:da:5c:0f:31:a9:17:27:5a: 14:95:5e:fd:70:41:7f:66:35:ee:0e:02:e6:1a:ba: 2e:99:6b:66:c4:2b:12:10:ee:52:a4:95:82:be:d2: 05:aa:f9:2f:74:17:77:44:63:02:13:88:08:c0:65: c7:2d:aa:53:e6:0c:34:85:83:71:2a:34:df:32:7a: f2:d4:4b:32:a0:79:f0:1d:b9:fc:12:f2:90:c2:46: 96:08:7d:d8:07:80:92:d0:d1:0d:24:c8:de:a7:7b: 71:86:e8:73:b6:d3:4d:35:21:b1:68:02:80:c8:0c: dc:d6:a5:f7:ff:f9:dd:43:13:a8:6c:12:c1:1b:31: 42:e4:dd:f3:ad:47:cc:23:ee:53:f8:c1:f7:f6:bb: 01:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:4C:9B:AE:F2:5D:84:18:A3:6F:F0:8B:C4:11:B9:B1:F7:51:E7:53 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/119594d3-1a17-4118-856d-889f2bef824e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.174.168.0/21 Signature Algorithm: sha256WithRSAEncryption c5:a4:f8:c9:55:50:e7:fa:ef:bc:6b:c6:41:e5:95:26:ee:f6: 11:4c:78:44:74:37:c8:fa:7f:27:07:5e:f0:e0:08:74:3a:a5: c9:f4:b6:55:19:63:1c:6c:23:e9:1c:c0:da:34:a1:20:84:a8: ad:12:02:e5:62:6d:e2:88:16:74:1a:2c:b8:3f:5d:61:8b:25: da:59:5d:7b:80:a4:a6:65:5b:e6:1d:66:ed:af:9b:c4:25:8f: f9:a2:aa:78:da:c8:8e:d6:00:a0:7b:67:fc:9b:10:2a:2e:ce: 55:b9:07:04:b6:cb:7c:0b:73:26:7c:e5:4e:90:4f:a1:f0:53: 4c:13:7b:3e:5e:03:8d:2d:9f:ac:6a:37:05:41:ac:0b:d2:fd: a7:ce:d2:46:98:35:d0:c0:4b:e9:40:01:e5:7b:5b:16:13:98: 82:45:ed:1d:ec:64:fe:1c:15:93:e2:02:4a:10:f5:7f:2b:77: b9:ee:ac:ed:10:d6:e5:ed:e2:5d:33:74:c7:6d:9c:eb:5a:80: f4:da:cc:e1:1a:4d:9a:cc:cf:c3:4c:4d:45:12:9f:55:17:c8: 47:dd:38:a7:53:52:29:ba:8f:c0:99:51:d9:d6:f9:87:47:ea: f1:95:e2:36:9e:82:53:0e:1b:62:ab:0b:cd:bd:22:dd:09:b9: 1f:26:dc:aa -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWfP6lyX9+TCM9fpyMWDbMWpb3qkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE2MDAzMTExWhcNMjUwOTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmNGFkNzc5NTljM2E2NTMzYTlkNjVmNTkzNDBlNTA2ODU5 ZDUxN2Y0ZDQxYjVjZTkwYzgwNDVmYmVmZjQzMzEwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6WqjVP9i89Fb5OTcHIXtUCL9NY/3zJIkBLKmu4q738Koj R8ngmecZOi0hQxnahPcOlgi/HD9KKLCAY56IiTtWUsPprp4v2pMrFuwlhz4vcgYP zuxTuqON+ezWgQYUpHk+nU3hR2+xBk9QzwzHdLDaXA8xqRcnWhSVXv1wQX9mNe4O AuYaui6Za2bEKxIQ7lKklYK+0gWq+S90F3dEYwITiAjAZcctqlPmDDSFg3EqNN8y evLUSzKgefAdufwS8pDCRpYIfdgHgJLQ0Q0kyN6ne3GG6HO20001IbFoAoDIDNzW pff/+d1DE6hsEsEbMULk3fOtR8wj7lP4wff2uwEpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUYkybrvJdhBijb/CLxBG5sfdR51MwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzExOTU5NGQzLTFhMTctNDExOC04NTZkLTg4OWYyYmVmODI0ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMFrqgwDQYJKoZIhvcNAQELBQADggEBAMWk+MlVUOf677xrxkHllSbu9hFM eER0N8j6fycHXvDgCHQ6pcn0tlUZYxxsI+kcwNo0oSCEqK0SAuVibeKIFnQaLLg/ XWGLJdpZXXuApKZlW+YdZu2vm8Qlj/miqnjayI7WAKB7Z/ybECouzlW5BwS2y3wL cyZ85U6QT6HwU0wTez5eA40tn6xqNwVBrAvS/afO0kaYNdDAS+lAAeV7WxYTmIJF 7R3sZP4cFZPiAkoQ9X8rd7nurO0Q1uXt4l0zdMdtnOtagPTazOEaTZrMz8NMTUUS n1UXyEfdOKdTUim6j8CZUdnW+YdH6vGV4jaeglMOG2KrC829It0JuR8m3Ko= -----END CERTIFICATE-----Generated at Sat Aug 23 08:22:09 2025 by rpki-client