$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2a3aefdd-2281-4c50-a86b-248569ce3189.roa File: 2a3aefdd-2281-4c50-a86b-248569ce3189.roa (raw, json) Hash identifier: VWTn+xWJR7Kcd4s184riPieBhohG/qtWVmXLfx5IG4Q= Subject key identifier: 77:9B:DC:88:C4:DB:9F:62:47:E6:1E:E7:DE:D3:74:79:FC:C0:42:34 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4DE94E13D753DE3D00D35679631FE88812410EA9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2a3aefdd-2281-4c50-a86b-248569ce3189.roa Signing time: Tue 12 Aug 2025 00:51:29 +0000 ROA not before: Tue 12 Aug 2025 00:51:29 +0000 ROA not after: Tue 16 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 72.150.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:e9:4e:13:d7:53:de:3d:00:d3:56:79:63:1f:e8:88:12:41:0e:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 12 00:51:29 2025 GMT Not After : Sep 16 23:59:59 2025 GMT Subject: serialNumber=0b604198b1e331dbe48546de20c18740d72f0e6e10e869d20ea714054e8bb154, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:38:bf:8e:f3:88:5b:fc:fe:c8:7e:63:38:d2: 6f:71:10:9a:99:58:98:7c:d7:fe:59:55:c1:41:19: f8:5a:97:2a:c2:1c:ce:96:68:1f:42:68:bd:b7:05: 31:6a:7f:0d:0e:92:d0:36:c4:31:34:44:d1:30:1d: 30:95:0a:d1:ee:de:18:af:cc:6c:b5:92:d4:eb:d2: 38:27:f7:b9:67:23:21:b2:e3:61:67:8f:ac:61:63: 60:6b:de:8b:fa:7e:a5:06:f3:99:51:78:91:1b:31: 0a:0b:3c:a3:4c:71:7a:eb:8c:2f:e5:af:f1:70:17: 0d:35:41:c0:c1:f4:a3:81:f8:a2:2c:9b:41:83:48: d7:c0:23:9f:31:f6:c3:8c:93:b7:2c:45:ed:dc:48: 3e:ff:05:13:d3:87:dd:ad:1c:4f:c4:7f:6c:5e:dc: b8:8a:c7:5f:f5:29:3c:b7:8a:33:98:9c:04:f5:4a: 3a:84:69:27:54:3c:07:45:fc:6b:d2:f7:f2:ac:a0: 54:e1:6b:f9:40:05:21:93:01:6c:2e:6f:f3:1e:a0: 91:36:03:fe:32:d0:49:6b:fb:51:0e:33:ce:8f:db: f1:42:c5:90:65:2e:18:15:d7:26:ff:85:49:f5:26: 56:d6:e1:65:f7:47:dd:75:8c:f7:5d:ad:7f:1a:62: 1f:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:9B:DC:88:C4:DB:9F:62:47:E6:1E:E7:DE:D3:74:79:FC:C0:42:34 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2a3aefdd-2281-4c50-a86b-248569ce3189.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 72.150.0.0/16 Signature Algorithm: sha256WithRSAEncryption b4:4e:2f:da:21:dd:cf:df:3d:7d:e8:1d:cb:42:36:87:32:79: 11:8b:3b:85:3e:3d:57:86:d3:6b:34:5f:7c:9b:3a:d5:ae:d7: bb:02:b0:b0:b0:b9:3d:5f:91:00:3c:f4:af:0a:7a:f7:64:80: 15:ac:0f:fd:bf:59:00:55:47:0e:68:3e:4b:81:e8:2e:f4:d9: 5b:4d:14:90:9f:1f:96:a2:ae:2a:04:32:34:20:14:00:57:f5: 86:ae:e2:b8:4c:ec:77:fe:26:76:81:ab:ec:2a:f6:5b:21:5c: cd:60:77:29:76:c7:97:c8:04:c7:84:f7:01:8f:8e:1d:07:ee: c5:5c:66:39:8b:34:80:49:a6:db:60:73:15:07:a3:cc:14:33: 4c:c8:8d:e5:08:cc:b5:f0:6d:90:da:05:cc:37:d9:26:8d:36: 6e:3b:a8:12:bb:00:b0:2f:b9:79:02:70:ee:6b:dc:cc:01:e9: e7:f7:21:13:94:87:4f:a2:6e:bc:75:fa:33:ae:3c:17:19:99: e5:1c:92:47:e9:0d:d0:3b:7d:59:a2:fd:1d:d8:e4:e5:57:bf: 9a:cc:54:f6:96:0a:dc:c6:24:de:2e:f2:5f:07:8c:2b:eb:b5: bb:bd:de:17:b8:4d:09:cc:e8:d2:68:7f:27:8d:5c:2d:e0:cf: c0:62:99:db -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUTelOE9dT3j0A01Z5Yx/oiBJBDqkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEyMDA1MTI5WhcNMjUwOTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0AwYjYwNDE5OGIxZTMzMWRiZTQ4NTQ2ZGUyMGMxODc0MGQ3 MmYwZTZlMTBlODY5ZDIwZWE3MTQwNTRlOGJiMTU0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6OL+O84hb/P7IfmM40m9xEJqZWJh81/5ZVcFBGfhalyrC HM6WaB9CaL23BTFqfw0OktA2xDE0RNEwHTCVCtHu3hivzGy1ktTr0jgn97lnIyGy 42Fnj6xhY2Br3ov6fqUG85lReJEbMQoLPKNMcXrrjC/lr/FwFw01QcDB9KOB+KIs m0GDSNfAI58x9sOMk7csRe3cSD7/BRPTh92tHE/Ef2xe3LiKx1/1KTy3ijOYnAT1 SjqEaSdUPAdF/GvS9/KsoFTha/lABSGTAWwub/MeoJE2A/4y0Elr+1EOM86P2/FC xZBlLhgV1yb/hUn1JlbW4WX3R911jPddrX8aYh/LAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUd5vciMTbn2JH5h7n3tN0efzAQjQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJhM2FlZmRkLTIyODEtNGM1MC1hODZiLTI0ODU2OWNlMzE4OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBIljANBgkqhkiG9w0BAQsFAAOCAQEAtE4v2iHdz989fegdy0I2hzJ5EYs7 hT49V4bTazRffJs61a7XuwKwsLC5PV+RADz0rwp692SAFawP/b9ZAFVHDmg+S4Ho LvTZW00UkJ8flqKuKgQyNCAUAFf1hq7iuEzsd/4mdoGr7Cr2WyFczWB3KXbHl8gE x4T3AY+OHQfuxVxmOYs0gEmm22BzFQejzBQzTMiN5QjMtfBtkNoFzDfZJo02bjuo ErsAsC+5eQJw7mvczAHp5/chE5SHT6JuvHX6M648FxmZ5RySR+kN0Dt9WaL9Hdjk 5Ve/msxU9pYK3MYk3i7yXweMK+u1u73eF7hNCczo0mh/J41cLeDPwGKZ2w== -----END CERTIFICATE-----Generated at Sat Aug 23 08:21:49 2025 by rpki-client