$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5764c5f6-9fe6-46c5-b1a0-268cd76692f2.roa File: 5764c5f6-9fe6-46c5-b1a0-268cd76692f2.roa (raw, json) Hash identifier: hAHXUcPDh2W0qdP6grWWGtlIMQ3yVLyn2EYjMHrq5Oo= Subject key identifier: 46:D7:53:C2:D8:F3:1E:5A:A4:46:5C:32:93:E9:44:BA:69:49:E4:21 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7525AA7D1B3C2D48773568BE853FCF14C75D31CE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5764c5f6-9fe6-46c5-b1a0-268cd76692f2.roa Signing time: Fri 08 Aug 2025 00:00:31 +0000 ROA not before: Fri 08 Aug 2025 00:00:31 +0000 ROA not after: Fri 12 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 153.42.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:25:aa:7d:1b:3c:2d:48:77:35:68:be:85:3f:cf:14:c7:5d:31:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 8 00:00:31 2025 GMT Not After : Sep 12 23:59:59 2025 GMT Subject: serialNumber=835bac92e59b3ed0db061e5a9432b914a9d3ac9fde0ba0c2db48494b2a2e8653, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:59:35:51:0b:32:e8:64:64:16:ff:ab:c7:b4: d1:95:38:90:a7:69:5b:14:ef:d9:93:59:ff:83:75: 96:eb:ce:31:b1:66:d5:f5:8f:8d:e5:e8:a0:8c:0f: da:82:79:28:58:cc:07:52:cb:40:fb:43:49:79:2d: df:8f:9f:1b:29:17:9c:7c:b7:32:23:43:8f:9c:9b: d9:61:da:9f:19:52:82:ac:76:15:b3:a6:33:78:46: 0d:ca:36:dd:14:df:4c:77:32:49:9d:3f:b0:0a:ba: 88:16:c5:28:64:ce:74:15:7d:f1:53:04:52:6a:f0: bb:c5:ed:d4:3c:72:1b:fa:85:14:6f:ef:d4:59:0c: 1f:a0:1d:07:58:3d:09:e0:56:e9:70:13:c2:df:8c: 06:27:63:6d:fb:c9:e5:a2:ea:32:9a:f5:0d:42:fc: ae:ee:03:c1:75:0e:b2:71:e9:11:8d:c4:6f:15:0f: 5b:8b:a8:12:c5:f7:a3:43:9d:49:67:fc:6e:3d:36: 63:0b:45:02:81:88:14:ea:04:51:b5:a7:b3:30:5d: bd:6f:8e:d8:b9:76:dd:03:54:58:de:80:fa:ad:90: 1d:f2:76:b4:b7:d0:9a:cf:01:88:00:28:44:53:b8: 46:24:bc:f7:0b:51:d0:d2:9a:51:d8:66:96:67:ca: 45:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:D7:53:C2:D8:F3:1E:5A:A4:46:5C:32:93:E9:44:BA:69:49:E4:21 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5764c5f6-9fe6-46c5-b1a0-268cd76692f2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 153.42.0.0/16 Signature Algorithm: sha256WithRSAEncryption 6e:11:9f:43:f6:5d:22:fa:15:c5:c5:eb:58:c6:6f:a7:30:97: e9:67:08:6b:86:7d:28:cd:3c:1a:e7:83:f7:7c:f0:24:ad:31: 6f:69:47:bc:37:b0:53:19:f1:26:15:00:63:b8:23:0b:3a:f9: 10:9a:b8:85:a2:d7:e5:42:23:ba:81:1d:61:c7:9f:c8:de:6d: 23:7c:92:52:8c:43:47:5f:8a:3d:12:94:c6:72:6f:45:9e:ab: 06:5e:3c:6f:ac:b6:a7:2e:23:fa:da:12:b2:58:4f:78:fb:6b: 51:fd:01:9f:47:c2:b7:84:9b:11:fd:d0:8b:b3:da:47:07:6f: 5a:83:a8:c0:61:94:5e:ba:55:7d:46:e4:04:80:d5:d4:f8:31: b0:31:5f:c0:ad:84:83:91:53:4e:7e:ee:b6:5c:71:0b:8c:07: 0f:ea:62:05:5b:01:e9:7e:e1:ec:8c:24:95:31:3a:58:b0:74: 69:f9:0d:48:6a:e5:aa:96:77:6d:bd:56:80:33:37:f0:b3:38: fa:29:53:4b:43:11:17:3b:7f:78:6a:cc:1e:53:42:8a:9e:40: 30:c9:a4:c5:73:20:98:6a:db:0b:f1:ee:a9:4b:c4:3d:5b:aa: a6:1c:bd:95:a7:95:ca:df:87:0c:2b:65:12:4e:c7:dd:7d:51: 6a:b7:c8:06 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUdSWqfRs8LUh3NWi+hT/PFMddMc4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA4MDAwMDMxWhcNMjUwOTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A4MzViYWM5MmU1OWIzZWQwZGIwNjFlNWE5NDMyYjkxNGE5 ZDNhYzlmZGUwYmEwYzJkYjQ4NDk0YjJhMmU4NjUzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4WTVRCzLoZGQW/6vHtNGVOJCnaVsU79mTWf+DdZbrzjGx ZtX1j43l6KCMD9qCeShYzAdSy0D7Q0l5Ld+PnxspF5x8tzIjQ4+cm9lh2p8ZUoKs dhWzpjN4Rg3KNt0U30x3MkmdP7AKuogWxShkznQVffFTBFJq8LvF7dQ8chv6hRRv 79RZDB+gHQdYPQngVulwE8LfjAYnY237yeWi6jKa9Q1C/K7uA8F1DrJx6RGNxG8V D1uLqBLF96NDnUln/G49NmMLRQKBiBTqBFG1p7MwXb1vjti5dt0DVFjegPqtkB3y drS30JrPAYgAKERTuEYkvPcLUdDSmlHYZpZnykXFAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQURtdTwtjzHlqkRlwyk+lEumlJ5CEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU3NjRjNWY2LTlmZTYtNDZjNS1iMWEwLTI2OGNkNzY2OTJmMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCZKjANBgkqhkiG9w0BAQsFAAOCAQEAbhGfQ/ZdIvoVxcXrWMZvpzCX6WcI a4Z9KM08GueD93zwJK0xb2lHvDewUxnxJhUAY7gjCzr5EJq4haLX5UIjuoEdYcef yN5tI3ySUoxDR1+KPRKUxnJvRZ6rBl48b6y2py4j+toSslhPePtrUf0Bn0fCt4Sb Ef3Qi7PaRwdvWoOowGGUXrpVfUbkBIDV1PgxsDFfwK2Eg5FTTn7utlxxC4wHD+pi BVsB6X7h7IwklTE6WLB0afkNSGrlqpZ3bb1WgDM38LM4+ilTS0MRFzt/eGrMHlNC ip5AMMmkxXMgmGrbC/HuqUvEPVuqphy9laeVyt+HDCtlEk7H3X1RarfIBg== -----END CERTIFICATE-----Generated at Sat Aug 23 08:16:08 2025 by rpki-client