$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1461e263-3943-4fb6-92b2-79e0871e6a7a.roa File: 1461e263-3943-4fb6-92b2-79e0871e6a7a.roa (raw, json) Hash identifier: wkfojwa9f8CVznWgE6P0VekQ/ODGoDShnzSskjeY2ZM= Subject key identifier: 7A:52:52:A2:E6:EA:BC:02:71:F6:78:38:F2:BD:88:08:39:F5:2D:80 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5249E18B45C9AAF9884F1BDED14A4F7711465B2A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1461e263-3943-4fb6-92b2-79e0871e6a7a.roa Signing time: Mon 18 Aug 2025 15:20:29 +0000 ROA not before: Mon 18 Aug 2025 15:20:29 +0000 ROA not after: Mon 22 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 184.72.88.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:49:e1:8b:45:c9:aa:f9:88:4f:1b:de:d1:4a:4f:77:11:46:5b:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 18 15:20:29 2025 GMT Not After : Sep 22 23:59:59 2025 GMT Subject: serialNumber=8c8c11ee2bcb2cc3e9ecf125cb5639f74d6c32c228b9129294d467a3f5aa5454, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:81:ff:36:83:17:03:63:39:61:7f:1f:00:c7: 33:fe:f8:ac:ac:12:42:3a:b6:72:e2:3d:ca:85:bd: ba:5e:ca:e2:be:ed:cf:1b:b1:a0:8b:af:24:24:44: 03:fc:2b:c5:a4:7c:8a:09:cd:1a:1e:2a:9e:d2:dd: 0d:05:c5:63:03:15:95:ee:60:3a:dc:c7:d7:8d:7b: 1b:90:c6:4e:29:8f:9c:1e:95:55:05:8b:e4:44:1c: e7:4d:3e:ee:50:90:68:18:5c:a0:63:68:4f:8c:43: b0:1a:35:96:95:03:a8:85:8c:0d:3f:78:d1:db:4c: d5:b6:48:b8:5a:e4:54:10:cb:19:ce:20:30:d9:da: e2:08:a2:f5:8e:00:1d:d7:f2:af:2f:44:df:37:67: 68:7e:e4:7d:1e:ec:d1:a7:f0:6d:83:91:4a:77:0b: 2a:5e:eb:2e:62:d0:a5:80:98:aa:46:41:e0:44:48: 11:78:85:f4:29:07:7d:80:9f:69:9f:8f:d0:24:1b: 26:95:de:62:c9:a5:92:84:32:9a:5e:cb:df:d5:5b: cc:db:cd:eb:56:8e:7c:70:f0:51:a3:6b:da:ca:15: 44:4c:15:c3:2d:7e:2c:70:c3:7a:b8:eb:12:8c:9c: 65:d6:36:a8:94:70:d3:9e:e9:5c:56:db:01:1d:27: 87:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:52:52:A2:E6:EA:BC:02:71:F6:78:38:F2:BD:88:08:39:F5:2D:80 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1461e263-3943-4fb6-92b2-79e0871e6a7a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 184.72.88.0/22 Signature Algorithm: sha256WithRSAEncryption 31:a7:04:ba:b7:1e:f4:f3:3b:c1:6e:26:5b:b5:d3:3c:cc:6a: 60:df:3c:f6:4d:91:ed:08:73:94:58:21:13:16:35:de:eb:f4: a7:ca:f2:ac:63:a0:4c:e0:c8:06:e1:2e:eb:e7:c6:35:89:1f: ab:8d:a0:68:fa:da:7f:5e:94:73:bb:6b:a3:2d:26:3a:38:93: 2f:43:b6:17:aa:b3:63:6d:fc:4c:be:ea:82:e5:51:9c:84:a8: 38:6b:d3:b7:9f:b5:1b:51:e5:14:e1:ad:3d:6b:a1:0e:2d:a4: 2b:de:15:e5:2a:cb:53:6f:31:c0:3c:f0:9f:ed:ca:f3:13:77: 38:87:33:1f:52:c7:61:6f:3e:6d:24:49:2f:80:46:b1:cd:3d: a4:be:74:e6:8c:e1:42:bd:f2:f6:12:ba:04:dd:61:05:f7:fa: e1:c2:c9:35:2c:f7:81:a1:4e:c1:7e:42:73:53:d2:d8:d4:f6: dd:8c:da:20:ff:d3:eb:a3:bc:49:95:82:70:d3:76:3b:49:56: a9:d7:c3:fe:87:0d:43:60:31:96:e9:83:44:ac:6e:4d:03:8c: 2a:75:40:57:6b:ba:14:98:0c:8a:66:c4:3a:15:4f:3d:5f:03: 7a:fc:50:01:55:48:cf:56:e4:79:c9:41:10:b7:53:55:a4:1d: 9e:17:b1:24 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUknhi0XJqvmITxve0UpPdxFGWyowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE4MTUyMDI5WhcNMjUwOTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A4YzhjMTFlZTJiY2IyY2MzZTllY2YxMjVjYjU2MzlmNzRk NmMzMmMyMjhiOTEyOTI5NGQ0NjdhM2Y1YWE1NDU0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdgf82gxcDYzlhfx8AxzP++KysEkI6tnLiPcqFvbpeyuK+ 7c8bsaCLryQkRAP8K8WkfIoJzRoeKp7S3Q0FxWMDFZXuYDrcx9eNexuQxk4pj5we lVUFi+REHOdNPu5QkGgYXKBjaE+MQ7AaNZaVA6iFjA0/eNHbTNW2SLha5FQQyxnO IDDZ2uIIovWOAB3X8q8vRN83Z2h+5H0e7NGn8G2DkUp3Cype6y5i0KWAmKpGQeBE SBF4hfQpB32An2mfj9AkGyaV3mLJpZKEMppey9/VW8zbzetWjnxw8FGja9rKFURM FcMtfixww3q46xKMnGXWNqiUcNOe6VxW2wEdJ4cFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUelJSoubqvAJx9ng48r2ICDn1LYAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE0NjFlMjYzLTM5NDMtNGZiNi05MmIyLTc5ZTA4NzFlNmE3YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAK4SFgwDQYJKoZIhvcNAQELBQADggEBADGnBLq3HvTzO8FuJlu10zzMamDf PPZNke0Ic5RYIRMWNd7r9KfK8qxjoEzgyAbhLuvnxjWJH6uNoGj62n9elHO7a6Mt Jjo4ky9Dtheqs2Nt/Ey+6oLlUZyEqDhr07eftRtR5RThrT1roQ4tpCveFeUqy1Nv McA88J/tyvMTdziHMx9Sx2FvPm0kSS+ARrHNPaS+dOaM4UK98vYSugTdYQX3+uHC yTUs94GhTsF+QnNT0tjU9t2M2iD/0+ujvEmVgnDTdjtJVqnXw/6HDUNgMZbpg0Ss bk0DjCp1QFdruhSYDIpmxDoVTz1fA3r8UAFVSM9W5HnJQRC3U1WkHZ4XsSQ= -----END CERTIFICATE-----Generated at Sat Aug 23 06:54:39 2025 by rpki-client