$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2d163000-da92-4a82-87fe-0bc2263033d1.roa File: 2d163000-da92-4a82-87fe-0bc2263033d1.roa (raw, json) Hash identifier: Vim42eQtPzLstfrA4EC4T7FEq/gT2nivHl64kyD63lQ= Subject key identifier: AB:EE:F3:05:0C:72:01:B4:A8:DE:04:05:B3:B4:A0:67:5D:DB:EC:65 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 54807758483C58C6966F2F4C53C6F5AA4D11D2F9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2d163000-da92-4a82-87fe-0bc2263033d1.roa Signing time: Wed 20 Aug 2025 00:10:31 +0000 ROA not before: Wed 20 Aug 2025 00:10:31 +0000 ROA not after: Wed 24 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 78.12.64.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:80:77:58:48:3c:58:c6:96:6f:2f:4c:53:c6:f5:aa:4d:11:d2:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 20 00:10:31 2025 GMT Not After : Sep 24 23:59:59 2025 GMT Subject: serialNumber=4a9e5496b35bfd0c11aa13197fa9bab8c3da6626f41d2df77966701104ef04a7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:b5:41:6a:dc:a7:df:f6:75:02:47:67:20:fb: 11:64:bd:2a:be:df:f6:ef:cc:ae:c8:02:cd:a7:c5: 2d:ea:2a:ff:06:86:f3:90:37:62:4a:4b:89:41:99: 0b:5d:4c:5f:56:1e:11:54:b1:b4:ed:17:5d:4e:0b: ba:5b:3b:5f:3c:4e:87:1c:ce:9f:fe:2a:8b:b7:e1: c7:18:17:60:6f:df:5e:d3:90:68:83:67:82:28:44: 49:ad:aa:5e:6c:69:7d:7a:fc:f9:76:8b:6a:7a:ca: 6a:5b:cc:c1:bd:e4:44:f7:32:7a:3c:e7:51:60:ea: b0:fc:41:77:6b:40:c3:31:a2:db:8b:53:42:00:d9: 07:bb:3f:43:6b:dd:02:be:95:67:53:34:40:53:ac: d8:65:56:b8:0d:2c:9d:20:23:9c:7b:9a:c3:88:12: 29:c0:16:0f:6a:42:bf:ee:ff:8f:7f:6f:ee:40:c8: 63:7b:3c:e1:b3:d3:4b:10:7a:cd:e2:08:82:23:7b: ff:b9:80:77:d5:5a:32:53:95:17:9b:c8:0a:8e:0a: 38:f8:11:cb:a1:bf:d7:f7:f6:00:6d:2a:55:44:f6: f1:d8:d9:25:46:72:1b:05:a3:66:08:5c:1b:73:16: 1f:32:c2:74:1b:c0:57:8b:df:b9:f6:48:a6:06:85: 58:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:EE:F3:05:0C:72:01:B4:A8:DE:04:05:B3:B4:A0:67:5D:DB:EC:65 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2d163000-da92-4a82-87fe-0bc2263033d1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 78.12.64.0/23 Signature Algorithm: sha256WithRSAEncryption 13:98:70:5a:0a:6e:68:cd:37:a6:a5:1b:1f:82:aa:d7:93:dd: 83:84:c2:ba:ce:cd:de:be:ce:8e:97:f8:b5:74:8f:66:72:d6: 8e:c5:e5:9e:32:6e:c6:51:40:66:b9:72:29:f6:69:5f:cb:c9: 1b:7c:5b:a7:a0:13:d1:74:62:0c:4d:1e:4c:cf:c9:d9:bd:40: 9a:8d:21:b8:46:9d:9a:ad:80:2b:54:8c:48:79:18:ba:69:29: c9:24:f9:8c:57:76:04:20:6c:51:b8:f7:f3:db:1b:d7:4a:0b: 66:16:34:6d:48:ce:84:fd:67:9b:e9:cb:7d:22:d8:ab:4b:06: aa:88:bb:cc:1e:90:30:c5:8c:ba:00:5c:1d:b2:fc:fc:1e:4a: cf:8c:82:0f:70:be:a4:16:ca:64:57:fc:1b:3d:03:55:9a:20: 55:0b:1e:2d:af:4f:63:48:3d:ff:1d:19:0c:f2:b9:ce:90:55: 55:0b:ca:a5:ad:4a:3a:0a:a6:4f:43:1a:6c:d3:97:11:99:c7: fd:8b:71:ae:6f:b1:f3:ef:80:25:fe:f5:71:29:d2:48:70:7b: 64:c5:0f:fb:6f:0c:0c:ba:a5:e7:b3:7e:7e:26:34:c8:bb:40: 64:4a:0d:80:5a:a4:0d:cd:ff:bc:97:0b:02:63:68:2c:7d:b9: d7:94:b8:2a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVIB3WEg8WMaWby9MU8b1qk0R0vkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODIwMDAxMDMxWhcNMjUwOTI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0YTllNTQ5NmIzNWJmZDBjMTFhYTEzMTk3ZmE5YmFiOGMz ZGE2NjI2ZjQxZDJkZjc3OTY2NzAxMTA0ZWYwNGE3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8tUFq3Kff9nUCR2cg+xFkvSq+3/bvzK7IAs2nxS3qKv8G hvOQN2JKS4lBmQtdTF9WHhFUsbTtF11OC7pbO188Tocczp/+Kou34ccYF2Bv317T kGiDZ4IoREmtql5saX16/Pl2i2p6ympbzMG95ET3Mno851Fg6rD8QXdrQMMxotuL U0IA2Qe7P0Nr3QK+lWdTNEBTrNhlVrgNLJ0gI5x7msOIEinAFg9qQr/u/49/b+5A yGN7POGz00sQes3iCIIje/+5gHfVWjJTlRebyAqOCjj4Ecuhv9f39gBtKlVE9vHY 2SVGchsFo2YIXBtzFh8ywnQbwFeL37n2SKYGhVjzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUq+7zBQxyAbSo3gQFs7SgZ13b7GUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJkMTYzMDAwLWRhOTItNGE4Mi04N2ZlLTBiYzIyNjMwMzNkMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFODEAwDQYJKoZIhvcNAQELBQADggEBABOYcFoKbmjNN6alGx+CqteT3YOE wrrOzd6+zo6X+LV0j2Zy1o7F5Z4ybsZRQGa5cin2aV/LyRt8W6egE9F0YgxNHkzP ydm9QJqNIbhGnZqtgCtUjEh5GLppKckk+YxXdgQgbFG49/PbG9dKC2YWNG1IzoT9 Z5vpy30i2KtLBqqIu8wekDDFjLoAXB2y/PweSs+Mgg9wvqQWymRX/Bs9A1WaIFUL Hi2vT2NIPf8dGQzyuc6QVVULyqWtSjoKpk9DGmzTlxGZx/2Lca5vsfPvgCX+9XEp 0khwe2TFD/tvDAy6peezfn4mNMi7QGRKDYBapA3N/7yXCwJjaCx9udeUuCo= -----END CERTIFICATE-----Generated at Sat Aug 23 08:31:12 2025 by rpki-client