$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4c1bc95a-5d0c-487e-bf1d-56809964528a.roa File: 4c1bc95a-5d0c-487e-bf1d-56809964528a.roa (raw, json) Hash identifier: 2cjPgp8p0vks8LnBXP2qQYEyZHevqm+FbTRSfOLpe1w= Subject key identifier: 5E:B4:5A:35:6B:F1:B0:E4:65:19:32:3B:98:63:C6:BA:9F:2A:BD:EC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4443537F13FF5B15782FE5EE58797C93F16532A9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4c1bc95a-5d0c-487e-bf1d-56809964528a.roa Signing time: Mon 18 Aug 2025 15:21:47 +0000 ROA not before: Mon 18 Aug 2025 15:21:47 +0000 ROA not after: Mon 22 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 184.73.144.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:43:53:7f:13:ff:5b:15:78:2f:e5:ee:58:79:7c:93:f1:65:32:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 18 15:21:47 2025 GMT Not After : Sep 22 23:59:59 2025 GMT Subject: serialNumber=f624fb9a04921d72764a3dcc2ce1d1e53b80b560cb218e8c9364f414335cb3f2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:95:ae:f9:10:8c:b8:f1:e5:70:41:9c:cb:44: 9f:bb:41:a3:3f:fb:7b:51:e4:0d:00:84:2e:ff:ff: fb:ff:a5:f0:8c:16:8d:51:c8:f3:33:e6:4e:b8:2d: ab:f5:da:f7:16:35:0b:aa:2f:74:01:99:80:cd:c0: 62:6e:cc:c7:35:19:42:9e:2d:1c:09:2f:f3:a3:f0: 20:92:5f:84:ee:55:5e:c5:69:86:f7:bf:a1:3f:2a: f8:bc:bb:79:2d:6f:92:07:2c:38:51:97:19:87:c8: 1a:e2:bd:97:86:55:9f:7c:4e:91:03:0f:12:9d:60: 35:42:7a:fe:48:b4:3f:02:be:fa:61:95:4e:ca:43: c6:b6:69:63:23:a9:14:87:b5:98:8e:ea:26:a5:b5: 1e:1d:d8:ee:02:a7:aa:73:bc:52:ca:84:51:b9:3b: 87:fc:63:ef:59:ff:2c:5b:ee:d5:c4:dd:24:77:0a: cf:07:64:36:25:ab:42:2d:5c:ea:41:48:69:43:90: 10:5c:7e:0c:67:2c:5d:79:7e:b6:83:c7:90:e2:35: 85:77:cc:cb:26:d7:8c:0e:fd:15:37:48:fc:7b:d7: 4b:91:4c:3f:19:58:0f:7b:c9:da:38:4a:dc:2d:78: 4e:4f:a7:da:a0:53:41:67:17:fa:e4:d8:86:da:f0: 30:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:B4:5A:35:6B:F1:B0:E4:65:19:32:3B:98:63:C6:BA:9F:2A:BD:EC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4c1bc95a-5d0c-487e-bf1d-56809964528a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 184.73.144.0/21 Signature Algorithm: sha256WithRSAEncryption a4:f8:e2:54:19:9b:97:c3:14:4c:ec:42:29:43:50:f7:06:e0: 72:7f:be:14:1a:b7:81:00:5a:02:b8:96:10:aa:3d:cc:53:28: 81:61:16:b3:2c:71:b2:05:6a:83:ef:ee:ad:74:f4:06:d8:31: 81:49:03:b8:32:40:4e:62:cf:b2:3c:77:be:77:02:d6:7b:61: 43:c1:79:93:38:84:1b:bb:a2:b4:87:9d:8b:4b:f3:4f:9c:8a: 1a:2a:97:c5:b4:d2:b4:57:6f:2e:f6:fd:2d:ea:75:2f:48:82: 0c:67:cb:46:70:5c:cf:4d:4e:48:26:19:78:73:50:b7:c7:a5: a6:b4:4a:3c:88:08:a2:b1:00:cf:c7:2a:7b:b5:04:9f:fa:32: f3:23:24:06:9c:a7:17:5a:f6:ee:52:94:a2:e5:af:1a:a4:11: d6:8c:3b:0e:be:9b:38:da:73:10:f2:22:3a:00:07:df:86:d8: b7:69:c3:da:c6:ac:6e:77:4a:44:7a:60:9f:fb:7f:ea:bc:a4: 1b:9b:75:60:e5:85:26:61:7a:cb:d2:13:b7:be:63:83:10:85: 7c:e3:33:97:7e:86:43:e6:06:7d:17:51:f9:a5:50:0c:2d:b3: fb:03:0f:e5:68:cf:8d:cc:dc:28:e7:94:82:32:0f:f1:fd:3f: d5:c2:13:70 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURENTfxP/WxV4L+XuWHl8k/FlMqkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE4MTUyMTQ3WhcNMjUwOTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BmNjI0ZmI5YTA0OTIxZDcyNzY0YTNkY2MyY2UxZDFlNTNi ODBiNTYwY2IyMThlOGM5MzY0ZjQxNDMzNWNiM2YyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRla75EIy48eVwQZzLRJ+7QaM/+3tR5A0AhC7///v/pfCM Fo1RyPMz5k64Lav12vcWNQuqL3QBmYDNwGJuzMc1GUKeLRwJL/Oj8CCSX4TuVV7F aYb3v6E/Kvi8u3ktb5IHLDhRlxmHyBrivZeGVZ98TpEDDxKdYDVCev5ItD8Cvvph lU7KQ8a2aWMjqRSHtZiO6ialtR4d2O4Cp6pzvFLKhFG5O4f8Y+9Z/yxb7tXE3SR3 Cs8HZDYlq0ItXOpBSGlDkBBcfgxnLF15fraDx5DiNYV3zMsm14wO/RU3SPx710uR TD8ZWA97ydo4StwteE5Pp9qgU0FnF/rk2Iba8DCdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUXrRaNWvxsORlGTI7mGPGup8qvewwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRjMWJjOTVhLTVkMGMtNDg3ZS1iZjFkLTU2ODA5OTY0NTI4YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAO4SZAwDQYJKoZIhvcNAQELBQADggEBAKT44lQZm5fDFEzsQilDUPcG4HJ/ vhQat4EAWgK4lhCqPcxTKIFhFrMscbIFaoPv7q109AbYMYFJA7gyQE5iz7I8d753 AtZ7YUPBeZM4hBu7orSHnYtL80+cihoql8W00rRXby72/S3qdS9Iggxny0ZwXM9N TkgmGXhzULfHpaa0SjyICKKxAM/HKnu1BJ/6MvMjJAacpxda9u5SlKLlrxqkEdaM Ow6+mzjacxDyIjoAB9+G2Ldpw9rGrG53SkR6YJ/7f+q8pBubdWDlhSZhesvSE7e+ Y4MQhXzjM5d+hkPmBn0XUfmlUAwts/sDD+Voz43M3CjnlIIyD/H9P9XCE3A= -----END CERTIFICATE-----Generated at Sat Aug 23 06:53:47 2025 by rpki-client