$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/27f7781f-dbc5-4c40-971f-5751e1ea35b1.roa File: 27f7781f-dbc5-4c40-971f-5751e1ea35b1.roa (raw, json) Hash identifier: s3VUAm2naHoMtHpDzbaIK2BKKSGzjT7nVp0BOGk0/UY= Subject key identifier: F8:CB:92:03:04:DF:DD:CE:A4:C3:87:E3:C1:89:E6:1F:2F:66:BA:79 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 04192613D1714806E60B8F8BAC6C669C9D304A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/27f7781f-dbc5-4c40-971f-5751e1ea35b1.roa Signing time: Sat 16 Aug 2025 00:40:58 +0000 ROA not before: Sat 16 Aug 2025 00:40:58 +0000 ROA not after: Sat 20 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 5.174.112.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:19:26:13:d1:71:48:06:e6:0b:8f:8b:ac:6c:66:9c:9d:30:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 16 00:40:58 2025 GMT Not After : Sep 20 23:59:59 2025 GMT Subject: serialNumber=505e1fa328598d19d5d619866535da1f0f42b31b23de7fd3f8303d6e4504a7e5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:a7:e4:cb:65:b8:82:d2:2a:ab:3b:1e:72:a5: 5d:81:64:de:38:46:4d:bf:e5:00:2d:78:b5:c5:43: c0:1b:26:46:b5:dc:22:2a:5b:3c:23:be:4e:80:19: 09:f4:08:29:2d:63:61:fd:1e:84:cb:11:be:ad:58: d8:f7:d5:36:65:e4:54:21:b6:9f:4f:a8:c0:d6:43: 87:0f:2e:ec:66:99:de:54:1f:e3:77:2b:31:9a:c9: 83:25:c1:02:e6:19:d0:cb:d3:87:eb:1e:87:a4:82: 64:75:5a:17:c1:2b:44:90:5e:24:d5:ef:07:1b:85: 97:a7:27:fc:4a:39:93:54:ee:ad:44:ad:89:c6:87: 99:7f:cf:12:08:66:c5:72:68:35:34:aa:86:6a:d0: a1:63:97:55:f2:c5:e9:d4:4e:41:6d:3e:02:5d:e8: fa:08:a9:d8:9d:b6:f5:90:db:c2:24:a5:1b:38:c3: 44:ec:dc:15:57:13:d0:4e:77:15:0e:b1:06:6a:76: 1d:90:fd:49:ad:bc:5c:1f:f1:46:60:55:8f:e1:f7: ed:54:78:17:5e:db:41:ef:e3:0f:98:c1:f5:c7:1a: 68:d2:d4:f1:51:f0:c3:25:ff:be:c1:f1:1a:47:95: 29:0a:b6:d4:6d:66:bb:c0:b2:88:0d:cf:e2:20:ce: 27:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:CB:92:03:04:DF:DD:CE:A4:C3:87:E3:C1:89:E6:1F:2F:66:BA:79 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/27f7781f-dbc5-4c40-971f-5751e1ea35b1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.174.112.0/20 Signature Algorithm: sha256WithRSAEncryption 3d:4e:99:fd:ca:b7:b2:e7:0b:8d:2f:2a:20:37:fe:bb:6b:8c: 8e:29:53:fb:e8:06:81:4b:a6:ee:1b:96:1a:46:88:7c:30:61: b7:5f:22:21:75:e9:58:27:34:a2:14:74:7d:9f:41:85:01:e3: 98:05:56:2e:89:ae:98:cb:3e:41:0c:c6:30:57:f8:4b:86:13: 12:1e:4d:c3:d5:c1:32:18:8b:b8:8f:d1:51:84:9a:5b:a1:ee: cd:86:0b:71:6a:bc:a0:72:eb:44:51:f0:84:de:dd:9f:5d:80: c5:d3:12:1f:57:a9:27:22:42:ea:4c:ae:18:7f:77:53:f6:d2: a5:d7:d5:6c:ad:84:66:b4:2f:9d:3d:f6:94:fa:fc:a3:23:4b: 97:04:d4:29:68:72:30:3d:30:05:8f:6d:b4:c3:6d:e4:71:f0: bc:93:27:5c:70:a2:6c:6b:7f:88:da:97:9a:30:22:38:76:86: 88:8c:99:af:b7:1e:bb:8a:ab:02:44:0c:dd:74:07:b2:81:7a: 49:05:59:99:bb:d7:5d:1e:ab:71:2a:34:15:ff:6e:43:71:cf: c4:f6:06:60:a1:29:92:95:86:9b:8a:fa:6b:e2:74:b5:28:98: c4:27:54:32:b2:8d:48:86:f0:b6:a9:58:ed:51:a7:b3:47:07: 48:53:f2:0b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITBBkmE9FxSAbmC4+LrGxmnJ0wSjANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNTA4MTYwMDQwNThaFw0yNTA5MjAyMzU5NTla MHoxSTBHBgNVBAUTQDUwNWUxZmEzMjg1OThkMTlkNWQ2MTk4NjY1MzVkYTFmMGY0 MmIzMWIyM2RlN2ZkM2Y4MzAzZDZlNDUwNGE3ZTUxLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAPan5MtluILSKqs7HnKlXYFk3jhGTb/lAC14tcVDwBsmRrXc IipbPCO+ToAZCfQIKS1jYf0ehMsRvq1Y2PfVNmXkVCG2n0+owNZDhw8u7GaZ3lQf 43crMZrJgyXBAuYZ0MvTh+seh6SCZHVaF8ErRJBeJNXvBxuFl6cn/Eo5k1TurUSt icaHmX/PEghmxXJoNTSqhmrQoWOXVfLF6dROQW0+Al3o+gip2J229ZDbwiSlGzjD ROzcFVcT0E53FQ6xBmp2HZD9Sa28XB/xRmBVj+H37VR4F17bQe/jD5jB9ccaaNLU 8VHwwyX/vsHxGkeVKQq21G1mu8CyiA3P4iDOJ5cCAwEAAaOCArEwggKtMB0GA1Ud DgQWBBT4y5IDBN/dzqTDh+PBieYfL2a6eTAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvMjdmNzc4MWYtZGJjNS00YzQwLTk3MWYtNTc1MWUxZWEzNWIxLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBAWucDANBgkqhkiG9w0BAQsFAAOCAQEAPU6Z/cq3sucLjS8qIDf+u2uMjilT ++gGgUum7huWGkaIfDBht18iIXXpWCc0ohR0fZ9BhQHjmAVWLomumMs+QQzGMFf4 S4YTEh5Nw9XBMhiLuI/RUYSaW6HuzYYLcWq8oHLrRFHwhN7dn12AxdMSH1epJyJC 6kyuGH93U/bSpdfVbK2EZrQvnT32lPr8oyNLlwTUKWhyMD0wBY9ttMNt5HHwvJMn XHCibGt/iNqXmjAiOHaGiIyZr7ceu4qrAkQM3XQHsoF6SQVZmbvXXR6rcSo0Ff9u Q3HPxPYGYKEpkpWGm4r6a+J0tSiYxCdUMrKNSIbwtqlY7VGns0cHSFPyCw== -----END CERTIFICATE-----Generated at Sat Aug 23 08:07:37 2025 by rpki-client