$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/68a24b5b-7350-4b9e-9e54-e1da8bc9177e.roa File: 68a24b5b-7350-4b9e-9e54-e1da8bc9177e.roa (raw, json) Hash identifier: 0PyU7CCZGVyO8eqKbCvp+q5Qn5NTyFbk9VUkp0hMz30= Subject key identifier: B5:AF:61:71:28:E3:65:0C:72:EF:36:D5:81:53:A0:C4:0D:D7:ED:A2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5A045B1E1C5DFE147F672985A41C9F1AE408D831 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/68a24b5b-7350-4b9e-9e54-e1da8bc9177e.roa Signing time: Wed 13 Aug 2025 00:41:42 +0000 ROA not before: Wed 13 Aug 2025 00:41:42 +0000 ROA not after: Wed 17 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 96.0.152.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:04:5b:1e:1c:5d:fe:14:7f:67:29:85:a4:1c:9f:1a:e4:08:d8:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 13 00:41:42 2025 GMT Not After : Sep 17 23:59:59 2025 GMT Subject: serialNumber=180e82ac385296b4b9088d77e4efbb4e2748d254b08fb45ba86e6de0181b899a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:7e:57:64:3e:0e:38:cf:46:25:f8:84:d6:81: 3b:56:10:7d:15:68:0c:08:84:19:d7:57:c7:3a:09: c3:f4:7b:a4:93:85:03:9b:d2:25:28:4a:db:99:3a: 5e:50:18:a1:33:ce:c9:61:5a:10:ab:78:a9:43:f2: 36:9a:57:90:aa:20:66:04:ff:d0:bd:25:64:2a:18: c3:80:47:8d:98:e5:07:13:c5:b4:74:1a:eb:f6:8c: eb:5f:63:05:ab:86:77:84:94:c1:15:e1:08:1e:bb: 62:8e:2f:4f:a9:64:20:d8:42:e7:8e:ec:36:b4:6c: 2d:01:de:32:c0:20:19:ea:09:ab:de:41:e0:6d:36: e4:a1:b7:c7:96:a0:73:c6:f9:8c:0e:f7:25:31:59: 42:b4:f3:86:29:e0:08:95:31:ea:cd:8a:9f:dd:87: 53:d2:af:a8:09:48:76:39:11:12:cc:26:6e:20:c5: e9:d3:af:eb:c1:76:85:1f:2b:6d:77:fd:51:f0:9c: f0:bf:fd:fd:3a:64:d9:9a:6c:9a:c7:9f:f4:8d:8d: 3d:f4:66:0b:b4:c8:ad:02:12:81:5d:47:88:15:38: 6b:6a:66:40:82:e4:30:60:96:2c:13:b9:52:94:b3: bf:32:e3:5a:ce:f0:51:dc:84:5d:f7:23:8a:7a:9b: 53:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:AF:61:71:28:E3:65:0C:72:EF:36:D5:81:53:A0:C4:0D:D7:ED:A2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/68a24b5b-7350-4b9e-9e54-e1da8bc9177e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.0.152.0/21 Signature Algorithm: sha256WithRSAEncryption 89:82:a4:f3:0c:ef:ec:de:4b:a9:7d:35:d1:c3:2c:3a:97:00: 5a:d3:f4:57:13:69:e5:e6:ab:35:56:21:b9:51:81:3c:db:80: 2d:3f:a2:2f:e2:82:12:80:ed:a6:68:05:89:94:6d:99:3d:8d: f5:32:43:5c:6a:17:db:b1:59:f8:ac:67:65:5f:7a:7c:00:bd: bc:69:cc:60:11:cb:76:e1:68:be:80:44:24:d6:bd:12:5f:8f: 68:05:d3:fd:13:40:43:00:5b:46:65:a6:da:b4:6f:48:e0:32: 70:52:33:63:94:b3:ba:f2:a0:69:3a:be:05:8e:71:37:b6:ef: 5d:47:5a:f1:3e:3a:58:d1:c3:7c:1a:dc:ed:c2:10:ec:c4:c3: ab:ea:fc:6b:52:4a:ff:18:d3:96:36:49:35:db:f8:1e:e2:85: ee:99:41:04:7d:af:fb:1d:51:78:47:c9:c1:50:42:12:87:38: 3e:14:47:4a:27:47:59:ad:2d:e9:43:08:47:fe:6e:01:95:d6: c9:80:52:c1:71:4b:c9:75:73:0e:f2:6b:7f:e4:ea:61:e8:a8: 6e:7f:23:7a:dd:ce:94:02:eb:65:b8:2b:2d:f6:a8:3c:aa:c6: 1f:7a:d2:5e:3d:9e:9d:ec:77:7e:4b:3e:52:ac:ea:8a:38:44: 34:67:e9:b9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWgRbHhxd/hR/ZymFpByfGuQI2DEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEzMDA0MTQyWhcNMjUwOTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxODBlODJhYzM4NTI5NmI0YjkwODhkNzdlNGVmYmI0ZTI3 NDhkMjU0YjA4ZmI0NWJhODZlNmRlMDE4MWI4OTlhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJfldkPg44z0Yl+ITWgTtWEH0VaAwIhBnXV8c6CcP0e6ST hQOb0iUoStuZOl5QGKEzzslhWhCreKlD8jaaV5CqIGYE/9C9JWQqGMOAR42Y5QcT xbR0Guv2jOtfYwWrhneElMEV4Qgeu2KOL0+pZCDYQueO7Da0bC0B3jLAIBnqCave QeBtNuSht8eWoHPG+YwO9yUxWUK084Yp4AiVMerNip/dh1PSr6gJSHY5ERLMJm4g xenTr+vBdoUfK213/VHwnPC//f06ZNmabJrHn/SNjT30Zgu0yK0CEoFdR4gVOGtq ZkCC5DBgliwTuVKUs78y41rO8FHchF33I4p6m1OnAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUta9hcSjjZQxy7zbVgVOgxA3X7aIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY4YTI0YjViLTczNTAtNGI5ZS05ZTU0LWUxZGE4YmM5MTc3ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANgAJgwDQYJKoZIhvcNAQELBQADggEBAImCpPMM7+zeS6l9NdHDLDqXAFrT 9FcTaeXmqzVWIblRgTzbgC0/oi/ighKA7aZoBYmUbZk9jfUyQ1xqF9uxWfisZ2Vf enwAvbxpzGARy3bhaL6ARCTWvRJfj2gF0/0TQEMAW0Zlptq0b0jgMnBSM2OUs7ry oGk6vgWOcTe2711HWvE+OljRw3wa3O3CEOzEw6vq/GtSSv8Y05Y2STXb+B7ihe6Z QQR9r/sdUXhHycFQQhKHOD4UR0onR1mtLelDCEf+bgGV1smAUsFxS8l1cw7ya3/k 6mHoqG5/I3rdzpQC62W4Ky32qDyqxh960l49np3sd35LPlKs6oo4RDRn6bk= -----END CERTIFICATE-----Generated at Sat Aug 23 10:30:19 2025 by rpki-client