$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/557ead45-b1a7-4106-be3c-6b610ae5759c.roa File: 557ead45-b1a7-4106-be3c-6b610ae5759c.roa (raw, json) Hash identifier: pF3PP+F5Cuu3TbWuYvHxwC1PiaqEPoHpjXOX4UgxESY= Subject key identifier: 50:2F:D0:84:64:03:8C:1E:0D:D5:41:35:45:78:93:F3:5B:39:1B:AB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2C29B92577C15638592C9E2476532316AD064271 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/557ead45-b1a7-4106-be3c-6b610ae5759c.roa Signing time: Fri 08 Aug 2025 00:20:36 +0000 ROA not before: Fri 08 Aug 2025 00:20:36 +0000 ROA not after: Fri 12 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 98.131.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:29:b9:25:77:c1:56:38:59:2c:9e:24:76:53:23:16:ad:06:42:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 8 00:20:36 2025 GMT Not After : Sep 12 23:59:59 2025 GMT Subject: serialNumber=87f8caad1b64062ea14c8c9246e24b8554fa7b02b2cda7a7ee6aa38c1156b1e3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:83:c1:0b:64:83:a9:d1:31:74:1f:b4:d2:ff: 63:3b:30:f8:2c:ce:b8:4d:7c:f3:e5:1a:60:70:78: 0b:25:42:b5:77:49:0d:5b:a9:f2:77:25:5e:9f:a6: 72:33:b9:f6:84:ee:bf:48:d9:09:c0:57:84:45:14: f3:76:30:81:a2:3a:0d:10:32:f0:56:e7:a3:e4:c9: 3a:1f:62:db:88:14:5f:02:00:96:34:49:5e:fe:7a: 81:80:ae:65:36:d9:81:44:43:6d:8a:02:65:1c:5f: 41:3d:54:e9:23:8c:77:46:2c:34:38:51:e3:3f:fe: a4:94:8e:4c:c4:0d:67:ab:3e:16:f4:3f:8d:e6:09: 20:1d:6f:5e:02:61:ee:98:77:85:f4:28:d1:c8:15: be:85:5c:df:18:d6:5f:2f:9d:2c:a9:e1:de:39:64: 12:6a:c8:23:ed:ae:cd:4a:bc:e8:b1:a3:ff:13:59: e2:0b:46:25:ee:ba:e9:39:8b:ff:1b:26:72:73:e5: 2a:7f:2b:0b:bd:be:7f:38:81:91:bc:eb:ce:3e:5f: e5:2b:22:44:e2:5b:b7:1c:f2:89:30:a4:66:63:f3: 8b:0b:33:a1:3b:84:24:89:7a:de:5a:42:2a:df:4a: 5e:e3:50:f8:1c:dc:d8:91:7d:0b:80:b3:9c:21:7d: 39:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:2F:D0:84:64:03:8C:1E:0D:D5:41:35:45:78:93:F3:5B:39:1B:AB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/557ead45-b1a7-4106-be3c-6b610ae5759c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 98.131.0.0/16 Signature Algorithm: sha256WithRSAEncryption 33:81:c4:54:35:ea:cc:8d:e7:cc:1c:e5:59:05:c2:e5:b6:bc: fe:bf:46:ca:09:a1:0b:9d:1d:aa:66:93:eb:de:f9:a2:59:86: a2:7c:c5:2c:39:ed:3e:02:e3:85:9a:f4:a8:36:9e:f6:56:25: e5:16:5e:64:22:33:8a:1c:7f:9e:4c:81:b3:9a:e6:e6:19:2f: 88:24:8f:8c:5b:5d:3b:40:16:95:92:c2:7c:aa:7a:29:87:4b: 84:bf:e5:54:29:11:8b:fd:0e:66:2a:7b:32:15:e1:e9:ad:e7: 63:4a:d3:0c:54:d6:a0:36:42:e1:88:bd:dc:df:6c:c3:90:7d: 90:be:fa:9f:59:66:90:c3:4c:a2:4a:c4:db:54:47:bf:3d:99: 7d:80:de:57:b4:03:ec:c5:7a:1e:0d:6c:02:ac:9e:77:08:89: e8:02:94:a5:56:b5:db:06:ef:6e:ca:5f:2f:f8:ce:c2:d1:72: 9d:0b:b9:7d:c9:72:11:c2:f7:30:34:3e:32:b3:a9:58:08:43: a2:fe:c0:57:14:fe:a6:7d:89:30:c5:5b:e3:1f:8d:87:48:5c: a1:fc:2b:5d:1c:c1:b3:3c:8d:7c:49:63:7f:45:a6:ff:4d:eb: 47:2b:fe:85:7a:4a:59:bb:2c:e8:22:fa:92:f9:c8:99:eb:46: 67:6f:9c:46 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIULCm5JXfBVjhZLJ4kdlMjFq0GQnEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA4MDAyMDM2WhcNMjUwOTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A4N2Y4Y2FhZDFiNjQwNjJlYTE0YzhjOTI0NmUyNGI4NTU0 ZmE3YjAyYjJjZGE3YTdlZTZhYTM4YzExNTZiMWUzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMg8ELZIOp0TF0H7TS/2M7MPgszrhNfPPlGmBweAslQrV3 SQ1bqfJ3JV6fpnIzufaE7r9I2QnAV4RFFPN2MIGiOg0QMvBW56PkyTofYtuIFF8C AJY0SV7+eoGArmU22YFEQ22KAmUcX0E9VOkjjHdGLDQ4UeM//qSUjkzEDWerPhb0 P43mCSAdb14CYe6Yd4X0KNHIFb6FXN8Y1l8vnSyp4d45ZBJqyCPtrs1KvOixo/8T WeILRiXuuuk5i/8bJnJz5Sp/Kwu9vn84gZG8684+X+UrIkTiW7cc8okwpGZj84sL M6E7hCSJet5aQirfSl7jUPgc3NiRfQuAs5whfTnvAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUUC/QhGQDjB4N1UE1RXiT81s5G6swHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU1N2VhZDQ1LWIxYTctNDEwNi1iZTNjLTZiNjEwYWU1NzU5Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBigzANBgkqhkiG9w0BAQsFAAOCAQEAM4HEVDXqzI3nzBzlWQXC5ba8/r9G ygmhC50dqmaT6975olmGonzFLDntPgLjhZr0qDae9lYl5RZeZCIzihx/nkyBs5rm 5hkviCSPjFtdO0AWlZLCfKp6KYdLhL/lVCkRi/0OZip7MhXh6a3nY0rTDFTWoDZC 4Yi93N9sw5B9kL76n1lmkMNMokrE21RHvz2ZfYDeV7QD7MV6Hg1sAqyedwiJ6AKU pVa12wbvbspfL/jOwtFynQu5fclyEcL3MDQ+MrOpWAhDov7AVxT+pn2JMMVb4x+N h0hcofwrXRzBszyNfEljf0Wm/03rRyv+hXpKWbss6CL6kvnImetGZ2+cRg== -----END CERTIFICATE-----Generated at Sat Aug 23 09:01:11 2025 by rpki-client