$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4447d57f-1c32-47e8-9850-ca8c559cea4b.roa File: 4447d57f-1c32-47e8-9850-ca8c559cea4b.roa (raw, json) Hash identifier: b0bbk/gzat7eLeLNmsejz+lLK1hABCytOloUA/97cmI= Subject key identifier: DB:98:6C:AD:41:56:F8:F6:F5:7A:0A:00:FD:8D:A6:1F:D0:A0:C1:E8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 70DD94522F0D8E90F01674EDB304CE3C5B685ACE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4447d57f-1c32-47e8-9850-ca8c559cea4b.roa Signing time: Sat 09 Aug 2025 00:00:41 +0000 ROA not before: Sat 09 Aug 2025 00:00:41 +0000 ROA not after: Sat 13 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 128.11.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:dd:94:52:2f:0d:8e:90:f0:16:74:ed:b3:04:ce:3c:5b:68:5a:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 9 00:00:41 2025 GMT Not After : Sep 13 23:59:59 2025 GMT Subject: serialNumber=a82adffef6a1c3f746f85623ad0d0e9772a11121397c34d6dfed13774a9af0c5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:25:44:95:4d:e9:87:e8:69:2b:22:1a:fc:f0: 3a:ed:5b:0d:89:60:b4:f5:15:40:1c:d3:10:fb:1b: 40:47:1a:3e:29:5b:d2:ca:7c:cf:a9:0e:ca:4d:58: 81:8a:5a:fa:53:ad:a4:53:0a:a2:e7:06:a0:51:ee: cf:31:44:7f:55:58:35:63:e4:4e:d7:e3:01:23:ee: 5f:a7:f3:97:3b:97:42:a1:38:82:87:11:b9:77:7a: 2a:76:9d:0b:47:4d:c7:a8:62:eb:6a:f4:72:2b:74: 5e:58:e2:63:51:dd:db:32:8e:4f:cf:49:d2:f2:44: 8f:5b:11:e9:42:59:81:b5:ee:03:55:6f:1e:6b:53: 99:5e:fd:4f:5a:a6:23:d0:1e:42:96:0e:79:58:bf: d5:b8:3e:10:96:3e:ba:a6:6b:c0:98:32:4e:29:d2: c1:b6:19:ef:20:42:e0:56:d5:ad:6b:5f:53:1c:f5: 1e:10:b6:b6:cb:cb:68:84:17:b5:07:c3:f2:d5:4e: 14:2a:a2:a6:33:c1:56:55:d7:0b:9b:4a:01:5d:a9: ba:ca:74:51:20:76:ea:12:05:fe:d7:f4:dc:24:ee: 1c:5c:3c:3e:97:f2:62:d9:7f:ba:1c:f3:72:c6:58: 8b:4f:b6:02:43:d2:d2:ae:43:9a:f2:87:13:13:9b: 0e:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:98:6C:AD:41:56:F8:F6:F5:7A:0A:00:FD:8D:A6:1F:D0:A0:C1:E8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4447d57f-1c32-47e8-9850-ca8c559cea4b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 128.11.0.0/16 Signature Algorithm: sha256WithRSAEncryption 9d:2f:fe:47:91:5a:53:96:5c:b4:89:00:44:e3:0a:05:a3:9d: 14:ad:7b:26:e6:4a:eb:fe:a8:89:8e:0c:7c:32:12:6b:b1:c0: 98:05:87:34:b0:06:c6:ee:0b:3f:c1:2b:86:9a:53:80:fc:a2: ef:3f:9f:73:bc:91:0b:4a:9b:12:70:88:25:e0:4d:d0:2b:a4: 81:96:ad:e9:86:00:66:8c:9d:58:4e:e7:77:5e:26:05:a4:cd: 28:e1:c3:17:c5:35:d1:a7:94:14:04:c4:2a:c6:f6:ee:c7:f1: 2f:2a:a6:7a:e0:49:75:dd:7a:eb:0b:17:96:2c:bb:e8:92:b6: c3:e8:a8:b6:86:89:27:95:b9:f0:13:40:e9:1e:61:15:f7:b6: 30:54:83:19:c1:f9:b1:92:92:d8:79:6f:9c:1d:f4:06:9d:9c: 97:91:e3:43:f1:65:f3:9b:75:55:86:57:99:56:a0:17:3f:f0: 5e:09:de:a6:e4:72:7f:1d:d6:bb:e3:58:25:4d:c4:d0:7b:4e: 98:62:c3:01:98:98:c2:3b:9e:b7:45:2d:99:dd:72:ca:41:d3: 10:09:ab:5d:6e:d4:ee:c5:b5:93:5e:2d:83:69:c9:9d:6b:39: e7:fb:a8:e8:3f:c0:2a:84:22:a6:78:ad:ec:d9:0e:ab:f4:52: 7a:0b:90:19 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUcN2UUi8NjpDwFnTtswTOPFtoWs4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA5MDAwMDQxWhcNMjUwOTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BhODJhZGZmZWY2YTFjM2Y3NDZmODU2MjNhZDBkMGU5Nzcy YTExMTIxMzk3YzM0ZDZkZmVkMTM3NzRhOWFmMGM1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCQJUSVTemH6GkrIhr88DrtWw2JYLT1FUAc0xD7G0BHGj4p W9LKfM+pDspNWIGKWvpTraRTCqLnBqBR7s8xRH9VWDVj5E7X4wEj7l+n85c7l0Kh OIKHEbl3eip2nQtHTceoYutq9HIrdF5Y4mNR3dsyjk/PSdLyRI9bEelCWYG17gNV bx5rU5le/U9apiPQHkKWDnlYv9W4PhCWPrqma8CYMk4p0sG2Ge8gQuBW1a1rX1Mc 9R4QtrbLy2iEF7UHw/LVThQqoqYzwVZV1wubSgFdqbrKdFEgduoSBf7X9Nwk7hxc PD6X8mLZf7oc83LGWItPtgJD0tKuQ5ryhxMTmw4ZAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU25hsrUFW+Pb1egoA/Y2mH9CgwegwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ0NDdkNTdmLTFjMzItNDdlOC05ODUwLWNhOGM1NTljZWE0Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCACzANBgkqhkiG9w0BAQsFAAOCAQEAnS/+R5FaU5ZctIkAROMKBaOdFK17 JuZK6/6oiY4MfDISa7HAmAWHNLAGxu4LP8ErhppTgPyi7z+fc7yRC0qbEnCIJeBN 0CukgZat6YYAZoydWE7nd14mBaTNKOHDF8U10aeUFATEKsb27sfxLyqmeuBJdd16 6wsXliy76JK2w+iotoaJJ5W58BNA6R5hFfe2MFSDGcH5sZKS2HlvnB30Bp2cl5Hj Q/Fl85t1VYZXmVagFz/wXgnepuRyfx3Wu+NYJU3E0HtOmGLDAZiYwjuet0Utmd1y ykHTEAmrXW7U7sW1k14tg2nJnWs55/uo6D/AKoQipnit7NkOq/RSeguQGQ== -----END CERTIFICATE-----Generated at Sat Aug 23 08:17:37 2025 by rpki-client