$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4a87e6de-abd8-4be0-a610-ec23b4c9818c.roa File: 4a87e6de-abd8-4be0-a610-ec23b4c9818c.roa (raw, json) Hash identifier: cqx9T2DZ80Yyyk0DNC+wh1OgS3UWhZLh/ZYwZm+pMLk= Subject key identifier: 70:51:C6:10:B4:F4:64:96:A3:7D:A2:E4:AD:5F:24:5C:A9:38:6F:2A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 52683D3967F3BFC9262BD1ADDB86A8F12F852B9C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4a87e6de-abd8-4be0-a610-ec23b4c9818c.roa Signing time: Sat 09 Aug 2025 00:00:49 +0000 ROA not before: Sat 09 Aug 2025 00:00:49 +0000 ROA not after: Sat 13 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 130.175.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:68:3d:39:67:f3:bf:c9:26:2b:d1:ad:db:86:a8:f1:2f:85:2b:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 9 00:00:49 2025 GMT Not After : Sep 13 23:59:59 2025 GMT Subject: serialNumber=802129d98f678391de4d889a7e4a1a066dd892562f549739f6fc8a9ad2912e19, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:00:22:00:58:d6:a2:1e:1c:02:f2:d6:95:6e: f3:2f:df:7b:a6:30:ec:95:e5:c4:46:6e:31:fe:e8: 64:a1:6f:8f:85:23:df:ec:31:f4:c3:16:33:36:f4: a1:34:0e:c1:57:90:61:7b:8f:12:9b:3a:e0:d7:05: da:55:72:db:45:c5:13:f5:ed:36:3c:ca:a9:1c:6c: 30:71:e8:d9:6d:61:27:f7:b2:1c:e8:00:7b:b1:ea: b2:19:f8:22:40:47:1d:18:b4:ba:9c:90:99:97:d8: a6:65:33:b0:63:a0:71:70:82:e5:09:0b:9c:9d:1b: f5:81:19:16:63:69:eb:9b:6e:1d:23:3e:49:be:6e: a3:1d:78:0f:4b:5a:e0:69:57:42:d0:3e:94:c2:80: cc:47:5c:dc:74:bc:11:61:b4:ce:9a:c5:f0:68:76: 07:a3:6a:0b:ab:61:49:97:35:04:5c:1a:88:f9:a9: 1e:18:5a:db:ba:6d:06:7f:f7:d9:ae:4f:15:38:7b: e4:42:b2:76:56:77:0b:42:17:e8:82:ba:34:66:af: 05:a1:cc:c8:81:0a:54:c9:04:10:40:51:a6:02:cc: 39:54:b9:2f:94:ea:27:60:4f:d4:7c:c1:69:a9:2b: 85:96:1c:8d:32:b3:90:4b:80:bb:46:d1:14:2f:0e: a5:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:51:C6:10:B4:F4:64:96:A3:7D:A2:E4:AD:5F:24:5C:A9:38:6F:2A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4a87e6de-abd8-4be0-a610-ec23b4c9818c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 130.175.0.0/16 Signature Algorithm: sha256WithRSAEncryption 2e:bf:2c:aa:12:7b:25:64:75:82:16:eb:7e:bf:c9:e6:31:b1: 8c:95:e1:6f:86:d2:89:34:a6:60:f0:1d:76:f3:d6:6d:e4:dc: fd:38:c5:dd:cf:bc:93:f4:f3:66:2c:82:21:2a:bd:38:91:5e: d2:11:07:6d:33:66:6b:22:5a:94:53:02:78:96:5e:65:fe:cd: 17:bf:bc:77:33:90:0b:b3:16:d9:fd:83:e1:48:fa:72:b1:a3: 3e:b9:d7:a7:73:0b:99:fd:1a:a2:10:13:79:08:20:38:76:3b: 15:0c:ac:f7:33:b3:27:85:37:ca:44:01:b0:22:4d:14:ac:25: be:5f:21:85:1c:2c:3e:16:5f:99:b5:b0:54:40:89:5b:db:40: 45:3e:6b:83:e3:62:67:a5:a3:91:38:31:12:14:19:b6:f7:6b: 92:ee:b2:fc:da:51:7a:35:5d:00:86:eb:22:ab:ee:91:95:1c: 81:86:0f:6a:f7:d7:74:fa:c5:ba:e9:a3:c7:dc:cc:0d:fe:21: 9c:c5:85:24:e4:e3:bd:00:7d:a6:99:c6:11:fd:cf:61:a5:c5: b7:46:45:d7:d5:ee:a2:57:53:ab:41:6c:ed:7d:0d:b3:f0:25: 1d:43:b4:4c:a2:91:78:ff:78:29:40:dd:cb:f0:08:69:8d:a8: af:e1:16:53 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUUmg9OWfzv8kmK9Gt24ao8S+FK5wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA5MDAwMDQ5WhcNMjUwOTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A4MDIxMjlkOThmNjc4MzkxZGU0ZDg4OWE3ZTRhMWEwNjZk ZDg5MjU2MmY1NDk3MzlmNmZjOGE5YWQyOTEyZTE5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDsACIAWNaiHhwC8taVbvMv33umMOyV5cRGbjH+6GShb4+F I9/sMfTDFjM29KE0DsFXkGF7jxKbOuDXBdpVcttFxRP17TY8yqkcbDBx6NltYSf3 shzoAHux6rIZ+CJARx0YtLqckJmX2KZlM7BjoHFwguUJC5ydG/WBGRZjaeubbh0j Pkm+bqMdeA9LWuBpV0LQPpTCgMxHXNx0vBFhtM6axfBodgejagurYUmXNQRcGoj5 qR4YWtu6bQZ/99muTxU4e+RCsnZWdwtCF+iCujRmrwWhzMiBClTJBBBAUaYCzDlU uS+U6idgT9R8wWmpK4WWHI0ys5BLgLtG0RQvDqU3AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUcFHGELT0ZJajfaLkrV8kXKk4byowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRhODdlNmRlLWFiZDgtNGJlMC1hNjEwLWVjMjNiNGM5ODE4Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCCrzANBgkqhkiG9w0BAQsFAAOCAQEALr8sqhJ7JWR1ghbrfr/J5jGxjJXh b4bSiTSmYPAddvPWbeTc/TjF3c+8k/TzZiyCISq9OJFe0hEHbTNmayJalFMCeJZe Zf7NF7+8dzOQC7MW2f2D4Uj6crGjPrnXp3MLmf0aohATeQggOHY7FQys9zOzJ4U3 ykQBsCJNFKwlvl8hhRwsPhZfmbWwVECJW9tART5rg+NiZ6WjkTgxEhQZtvdrku6y /NpRejVdAIbrIqvukZUcgYYPavfXdPrFuumjx9zMDf4hnMWFJOTjvQB9ppnGEf3P YaXFt0ZF19XuoldTq0Fs7X0Ns/AlHUO0TKKReP94KUDdy/AIaY2or+EWUw== -----END CERTIFICATE-----Generated at Sat Aug 23 06:38:44 2025 by rpki-client