$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/47451a7d-9c77-4016-a3e5-88cd310f0fdf.roa File: 47451a7d-9c77-4016-a3e5-88cd310f0fdf.roa (raw, json) Hash identifier: nkkU2cZN9Sye4jyr3EhbNmal07rr2STRcwPlxpcFI4o= Subject key identifier: 92:28:15:92:56:B9:3C:83:B5:31:40:5C:5B:72:0E:08:AD:24:BD:CF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2245BAF784CEF5B6635E0DEC27497D8D02805EE3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/47451a7d-9c77-4016-a3e5-88cd310f0fdf.roa Signing time: Mon 18 Aug 2025 15:30:23 +0000 ROA not before: Mon 18 Aug 2025 15:30:23 +0000 ROA not after: Mon 22 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 192.210.48.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:45:ba:f7:84:ce:f5:b6:63:5e:0d:ec:27:49:7d:8d:02:80:5e:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 18 15:30:23 2025 GMT Not After : Sep 22 23:59:59 2025 GMT Subject: serialNumber=dfc1575217a2b0ebd54f77e157c402eb7ee80976e6164c961ef1b1fc0254b4c0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:d1:1c:cb:60:f4:ca:99:23:f8:27:d1:82:53: f3:e9:16:5c:77:73:83:c5:99:13:bd:9b:73:ad:12: 75:bd:ae:91:1f:73:a9:c4:79:48:b4:5b:1b:07:e9: ae:73:4f:4b:97:44:99:dc:d7:eb:fb:a3:f7:e4:e1: fb:2c:00:b0:98:f3:6e:aa:4c:19:fb:ab:95:76:f8: c4:79:ba:84:ca:1d:69:fd:6d:8a:2d:53:1e:b0:7b: d0:fa:de:18:dd:25:5b:24:b2:c8:26:6c:4a:ea:b8: fa:20:97:e9:60:b5:d8:ca:15:49:a8:a8:0b:90:93: d7:2f:23:58:4d:0d:72:d9:30:c1:d4:7f:86:a8:ad: ea:c9:2f:04:57:d9:83:b4:85:2f:8d:11:7c:e6:e9: be:5a:9d:d0:e7:a6:90:fe:70:8a:3a:7a:c1:aa:c1: 1e:b8:80:1c:39:65:34:df:e9:1b:ef:8e:a0:2f:22: 52:f8:6e:03:db:56:27:f8:6b:7e:06:55:a8:dd:11: b1:bd:0c:cc:fe:d2:98:2f:c0:76:cd:c2:98:61:41: 41:e6:bc:f4:f4:75:7a:c3:f3:fb:9a:27:2e:aa:88: 31:4d:e6:f8:65:ff:cd:37:ff:12:44:18:f1:73:ca: 4b:ac:51:5d:c8:6b:07:67:b0:c1:99:ea:28:cb:8a: 7b:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:28:15:92:56:B9:3C:83:B5:31:40:5C:5B:72:0E:08:AD:24:BD:CF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/47451a7d-9c77-4016-a3e5-88cd310f0fdf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.210.48.0/20 Signature Algorithm: sha256WithRSAEncryption d0:36:0b:1a:54:2e:3e:a5:b9:b4:df:0e:4d:41:dc:c6:97:3d: eb:96:b2:0b:81:50:f5:7b:28:1c:80:19:67:3f:65:4c:7f:28: 6d:aa:b8:62:cd:b9:c7:04:f1:e8:6a:07:6a:54:fd:d1:d5:64: de:f6:fb:58:c0:27:d9:5c:88:66:38:78:7b:67:3e:80:f4:fc: cf:32:cd:18:32:80:d6:3c:5d:41:84:6f:8e:14:ed:72:f9:46: fc:f1:ca:2a:76:cc:58:bc:2f:5d:1a:0a:16:6d:8a:55:e0:42: be:22:fa:f1:8a:90:7a:e2:24:00:e6:ef:c9:c4:b7:e9:f6:e6: ae:88:2e:93:d0:78:12:d5:1e:54:24:26:3d:f4:9c:e6:2f:76: 9a:3a:ed:68:18:bb:4d:01:12:cf:37:3a:38:ea:9b:29:12:6c: 54:01:e1:32:7f:ab:23:60:3a:5e:0c:50:7b:d3:05:df:91:23: a7:cf:0c:ad:18:62:10:5f:c3:ec:13:15:1a:9f:7c:30:80:f9: e0:99:97:1f:b4:9f:ed:d9:db:cd:ae:6e:47:11:3b:ce:9a:24: 72:85:2d:76:e4:6f:d3:41:9c:5b:2d:dc:67:fb:f2:3a:8d:a7: 5c:5d:63:7a:6b:1f:62:03:4d:4e:5c:bc:1f:7b:d5:f3:3b:81: c4:79:d1:50 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIkW694TO9bZjXg3sJ0l9jQKAXuMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE4MTUzMDIzWhcNMjUwOTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BkZmMxNTc1MjE3YTJiMGViZDU0Zjc3ZTE1N2M0MDJlYjdl ZTgwOTc2ZTYxNjRjOTYxZWYxYjFmYzAyNTRiNGMwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCV0RzLYPTKmSP4J9GCU/PpFlx3c4PFmRO9m3OtEnW9rpEf c6nEeUi0WxsH6a5zT0uXRJnc1+v7o/fk4fssALCY826qTBn7q5V2+MR5uoTKHWn9 bYotUx6we9D63hjdJVskssgmbErquPogl+lgtdjKFUmoqAuQk9cvI1hNDXLZMMHU f4aorerJLwRX2YO0hS+NEXzm6b5andDnppD+cIo6esGqwR64gBw5ZTTf6RvvjqAv IlL4bgPbVif4a34GVajdEbG9DMz+0pgvwHbNwphhQUHmvPT0dXrD8/uaJy6qiDFN 5vhl/803/xJEGPFzykusUV3IawdnsMGZ6ijLinudAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUkigVkla5PIO1MUBcW3IOCK0kvc8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ3NDUxYTdkLTljNzctNDAxNi1hM2U1LTg4Y2QzMTBmMGZkZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATA0jAwDQYJKoZIhvcNAQELBQADggEBANA2CxpULj6lubTfDk1B3MaXPeuW sguBUPV7KByAGWc/ZUx/KG2quGLNuccE8ehqB2pU/dHVZN72+1jAJ9lciGY4eHtn PoD0/M8yzRgygNY8XUGEb44U7XL5Rvzxyip2zFi8L10aChZtilXgQr4i+vGKkHri JADm78nEt+n25q6ILpPQeBLVHlQkJj30nOYvdpo67WgYu00BEs83OjjqmykSbFQB 4TJ/qyNgOl4MUHvTBd+RI6fPDK0YYhBfw+wTFRqffDCA+eCZlx+0n+3Z282ubkcR O86aJHKFLXbkb9NBnFst3Gf78jqNp1xdY3prH2IDTU5cvB971fM7gcR50VA= -----END CERTIFICATE-----Generated at Sat Aug 23 08:16:46 2025 by rpki-client