$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/202fa196-7fc4-42d7-9eda-ead645c20087.roa File: 202fa196-7fc4-42d7-9eda-ead645c20087.roa (raw, json) Hash identifier: WN+dGtHTIPXSMBF1zjAa/4s/9rcSHk5PhMfuQBGYt0c= Subject key identifier: F5:A2:70:B1:DE:32:90:52:12:9B:63:C1:AC:FB:E5:81:45:3E:52:F1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6969882C52D308855D70A495B743EFD3138DCF41 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/202fa196-7fc4-42d7-9eda-ead645c20087.roa Signing time: Tue 12 Aug 2025 00:50:50 +0000 ROA not before: Tue 12 Aug 2025 00:50:50 +0000 ROA not after: Tue 16 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.160.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:69:88:2c:52:d3:08:85:5d:70:a4:95:b7:43:ef:d3:13:8d:cf:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 12 00:50:50 2025 GMT Not After : Sep 16 23:59:59 2025 GMT Subject: serialNumber=ba5e9f639af86de9579955635c969e84768d0fac0fcfcb36a4cc055e2f66a929, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:ba:5e:ea:3b:83:42:d5:53:f7:f7:01:54:7b: 41:1f:67:66:65:c3:ec:26:63:52:cb:22:80:fc:9b: f6:c9:c7:d6:4f:4e:0a:d5:01:ce:1c:1c:7a:cb:4c: a1:d7:10:15:3a:13:5f:13:f5:e6:5c:97:d9:1d:53: 19:e6:ea:3f:33:d1:ed:a1:33:ab:91:ad:f0:bf:6d: 33:36:29:c1:f7:d3:a9:c0:4b:a6:92:d9:2b:e2:ac: 5f:a5:5e:d7:86:63:83:96:1e:8e:53:e8:d8:25:fb: 7e:c6:c0:1d:9d:5b:13:74:8f:8d:6d:ab:6c:3c:fa: 9c:45:5f:0f:d8:f2:e7:a6:71:fd:a5:c3:8a:92:2c: cc:12:29:73:46:15:14:fa:fe:dd:17:65:1e:58:10: 91:0f:e8:f6:4b:72:8a:33:4e:51:32:14:a3:eb:45: a9:59:77:e7:67:55:80:23:54:84:70:9b:47:02:70: 50:ee:d9:ca:9d:ef:d9:61:22:dd:1e:0e:4c:2d:c8: 95:f0:24:c8:97:e2:02:1c:0a:74:8f:be:f1:4c:0c: 4b:2c:2a:0d:e6:c4:bf:a9:94:c8:8e:e9:08:38:d1: 3a:c1:69:97:c1:13:12:be:6e:97:da:5f:84:71:5c: 9d:58:6d:c1:3b:4c:55:73:7e:bc:64:bd:40:d7:b5: a6:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:A2:70:B1:DE:32:90:52:12:9B:63:C1:AC:FB:E5:81:45:3E:52:F1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/202fa196-7fc4-42d7-9eda-ead645c20087.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.160.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:fc:2e:cd:74:03:10:30:c1:57:9a:5d:ba:5e:09:9d:f4:9a: cb:b1:62:84:3e:6b:c0:81:cc:88:37:1a:5c:da:47:cd:2c:30: 7a:52:84:c6:21:4e:dc:d4:c5:43:e0:9f:98:dd:7e:82:11:7e: bc:a1:de:f4:3b:39:7f:a9:67:8c:04:52:17:a7:9a:b2:25:b4: de:6b:d9:bf:68:60:9d:19:3d:0b:79:e4:89:3b:86:07:4b:c0: a7:48:1e:f8:fd:c7:1c:b5:df:07:c1:b9:47:41:14:16:ef:eb: cb:2f:19:77:b7:8b:e4:55:93:d3:ae:16:51:c7:a1:9e:b6:c3: cb:a8:3f:e6:20:58:39:aa:34:ff:35:1f:3f:27:d5:00:c4:9e: da:32:e7:02:a2:f9:0b:d5:14:cf:fb:58:26:9e:6a:fc:b0:75: a7:9e:46:a0:80:a2:2b:a0:f8:d4:b9:ba:c2:08:6a:ad:1a:f3: 83:f6:6c:8a:8b:6a:d5:a8:20:4f:39:49:54:61:39:aa:52:71: 95:17:50:5f:bc:bc:02:83:3a:be:78:61:18:91:6c:66:f1:b3: a5:33:21:61:d2:32:9f:a2:ba:8d:b5:09:1d:d9:05:bb:15:67: a2:6b:4c:d4:1c:51:3c:bd:07:7b:fb:80:e0:64:ca:e7:18:6a: a1:fa:b3:58 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaWmILFLTCIVdcKSVt0Pv0xONz0EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEyMDA1MDUwWhcNMjUwOTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BiYTVlOWY2MzlhZjg2ZGU5NTc5OTU1NjM1Yzk2OWU4NDc2 OGQwZmFjMGZjZmNiMzZhNGNjMDU1ZTJmNjZhOTI5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCiul7qO4NC1VP39wFUe0EfZ2Zlw+wmY1LLIoD8m/bJx9ZP TgrVAc4cHHrLTKHXEBU6E18T9eZcl9kdUxnm6j8z0e2hM6uRrfC/bTM2KcH306nA S6aS2SvirF+lXteGY4OWHo5T6Ngl+37GwB2dWxN0j41tq2w8+pxFXw/Y8uemcf2l w4qSLMwSKXNGFRT6/t0XZR5YEJEP6PZLcoozTlEyFKPrRalZd+dnVYAjVIRwm0cC cFDu2cqd79lhIt0eDkwtyJXwJMiX4gIcCnSPvvFMDEssKg3mxL+plMiO6Qg40TrB aZfBExK+bpfaX4RxXJ1YbcE7TFVzfrxkvUDXtaZRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU9aJwsd4ykFISm2PBrPvlgUU+UvEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIwMmZhMTk2LTdmYzQtNDJkNy05ZWRhLWVhZDY0NWMyMDA4Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM36AwDQYJKoZIhvcNAQELBQADggEBAG78Ls10AxAwwVeaXbpeCZ30msux YoQ+a8CBzIg3GlzaR80sMHpShMYhTtzUxUPgn5jdfoIRfryh3vQ7OX+pZ4wEUhen mrIltN5r2b9oYJ0ZPQt55Ik7hgdLwKdIHvj9xxy13wfBuUdBFBbv68svGXe3i+RV k9OuFlHHoZ62w8uoP+YgWDmqNP81Hz8n1QDEntoy5wKi+QvVFM/7WCaeavywdaee RqCAoiug+NS5usIIaq0a84P2bIqLatWoIE85SVRhOapScZUXUF+8vAKDOr54YRiR bGbxs6UzIWHSMp+iuo21CR3ZBbsVZ6JrTNQcUTy9B3v7gOBkyucYaqH6s1g= -----END CERTIFICATE-----Generated at Sat Aug 23 13:58:56 2025 by rpki-client