$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/52248f94-30ea-4ecd-abe4-da5a8409a81b.roa File: 52248f94-30ea-4ecd-abe4-da5a8409a81b.roa (raw, json) Hash identifier: BHGssTXUxq4b34MOyoRtKihfVvaraeRYJ++PnboRanw= Subject key identifier: F6:51:63:87:22:85:AF:CD:38:B8:64:57:7D:0F:DB:F4:E5:31:38:43 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4C0CAAEBBA11AE55274E49D9DDF8B3F01A15B219 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/52248f94-30ea-4ecd-abe4-da5a8409a81b.roa Signing time: Fri 22 Aug 2025 00:41:41 +0000 ROA not before: Fri 22 Aug 2025 00:41:41 +0000 ROA not after: Fri 26 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.0.146.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:0c:aa:eb:ba:11:ae:55:27:4e:49:d9:dd:f8:b3:f0:1a:15:b2:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 22 00:41:41 2025 GMT Not After : Sep 26 23:59:59 2025 GMT Subject: serialNumber=f029e392faec5c87edaf86e7291ba9bca9b3f947edd69925f5b27ebec1b6b5a3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:2d:e4:b6:8e:81:87:a2:9d:8c:86:3b:0c:9d: f6:69:d9:41:36:c0:80:48:b3:64:1e:f1:23:1d:78: 99:a5:67:82:25:2b:be:0c:b7:29:45:01:85:af:01: 48:9b:6d:ea:49:c2:fb:da:b4:7e:b2:b2:30:f2:13: 49:c8:2b:29:f9:06:f5:cd:a5:6f:44:86:7c:42:cf: 66:1c:9c:27:0d:2d:3e:8f:df:47:c5:e9:27:0e:03: b7:75:68:f0:6b:97:66:ff:c8:d9:11:58:73:1d:2c: 07:3e:40:9c:72:c4:5a:6f:c4:d5:e3:51:ec:c6:0f: ac:5c:7b:c9:3d:d8:23:2d:98:d5:c7:16:53:f7:75: b0:ad:af:e4:a0:ce:8a:5d:e4:13:d7:fb:51:55:51: dd:40:43:ee:4d:73:a2:37:02:83:5a:21:be:8b:92: 9e:e0:08:9b:c8:ae:5e:16:9a:51:e4:f0:41:46:37: fb:b6:84:4e:18:76:30:b8:54:66:ab:f3:d3:51:d4: 2a:18:40:a6:35:2c:d4:5f:8b:49:cc:bc:22:6a:5c: af:0b:3a:1b:1c:6d:01:ba:38:40:a2:f5:dc:15:d4: bc:9b:ff:6b:e2:25:9c:77:21:6f:9a:67:0c:29:20: a0:a9:4a:b6:e8:10:f4:bf:cf:57:ae:46:d1:2a:bd: 0d:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:51:63:87:22:85:AF:CD:38:B8:64:57:7D:0F:DB:F4:E5:31:38:43 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/52248f94-30ea-4ecd-abe4-da5a8409a81b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.0.146.0/23 Signature Algorithm: sha256WithRSAEncryption 26:6c:b5:0b:a2:e2:be:fd:cf:78:df:ae:08:9e:a9:88:99:70: 14:17:48:dc:00:43:58:37:fc:57:09:08:9d:1f:fc:23:27:5c: 4e:0f:81:46:d1:8c:3e:93:aa:9d:ef:74:7c:38:44:c2:66:fe: 4e:5a:ae:23:78:9f:72:16:e7:7c:38:59:10:91:fb:2a:9c:05: 6b:38:6e:d6:2a:93:21:a5:8f:98:77:f2:20:1f:11:13:f0:bf: 1e:c9:45:5c:55:aa:de:59:aa:7a:92:4f:76:d7:3a:be:2b:22: ae:ad:2d:6a:ee:1d:22:38:55:3b:b0:48:a9:cd:ba:a9:ef:2e: da:cb:91:5a:07:43:d8:6d:ca:3c:f2:f8:83:59:d5:ad:57:da: 47:01:2b:8a:02:28:c2:e5:ac:cf:c9:9f:bb:9f:2d:54:80:43: 18:2f:4b:5b:34:ef:ed:12:74:ba:16:32:b9:c8:c4:4a:a0:a7: 9b:d5:51:96:61:7c:51:3e:d4:44:ed:8e:6b:65:c8:5b:40:c5: 71:1d:5a:9c:5b:ad:71:f8:c1:07:70:de:7b:cf:75:7d:44:40: 9d:29:87:33:7e:d3:f8:58:b6:43:18:68:6f:cf:8d:02:e8:73: 75:7d:d8:9e:47:1f:ed:0b:4e:ca:3b:69:69:82:0b:b1:81:ca: 13:91:7a:3a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTAyq67oRrlUnTknZ3fiz8BoVshkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODIyMDA0MTQxWhcNMjUwOTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMDI5ZTM5MmZhZWM1Yzg3ZWRhZjg2ZTcyOTFiYTliY2E5 YjNmOTQ3ZWRkNjk5MjVmNWIyN2ViZWMxYjZiNWEzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDkLeS2joGHop2MhjsMnfZp2UE2wIBIs2Qe8SMdeJmlZ4Il K74MtylFAYWvAUibbepJwvvatH6ysjDyE0nIKyn5BvXNpW9EhnxCz2YcnCcNLT6P 30fF6ScOA7d1aPBrl2b/yNkRWHMdLAc+QJxyxFpvxNXjUezGD6xce8k92CMtmNXH FlP3dbCtr+Sgzopd5BPX+1FVUd1AQ+5Nc6I3AoNaIb6Lkp7gCJvIrl4WmlHk8EFG N/u2hE4YdjC4VGar89NR1CoYQKY1LNRfi0nMvCJqXK8LOhscbQG6OECi9dwV1Lyb /2viJZx3IW+aZwwpIKCpSrboEPS/z1euRtEqvQ23AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU9lFjhyKFr804uGRXfQ/b9OUxOEMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUyMjQ4Zjk0LTMwZWEtNGVjZC1hYmU0LWRhNWE4NDA5YTgxYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFFAJIwDQYJKoZIhvcNAQELBQADggEBACZstQui4r79z3jfrgieqYiZcBQX SNwAQ1g3/FcJCJ0f/CMnXE4PgUbRjD6Tqp3vdHw4RMJm/k5ariN4n3IW53w4WRCR +yqcBWs4btYqkyGlj5h38iAfERPwvx7JRVxVqt5ZqnqST3bXOr4rIq6tLWruHSI4 VTuwSKnNuqnvLtrLkVoHQ9htyjzy+INZ1a1X2kcBK4oCKMLlrM/Jn7ufLVSAQxgv S1s07+0SdLoWMrnIxEqgp5vVUZZhfFE+1ETtjmtlyFtAxXEdWpxbrXH4wQdw3nvP dX1EQJ0phzN+0/hYtkMYaG/PjQLoc3V92J5HH+0LTso7aWmCC7GByhORejo= -----END CERTIFICATE-----Generated at Sat Aug 23 11:10:30 2025 by rpki-client