$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/69829938-06a4-482d-9a69-118d0b32c04c.roa File: 69829938-06a4-482d-9a69-118d0b32c04c.roa (raw, json) Hash identifier: tOHKNcE+4M4fiyiHCM0Dn9WmAhTg702n9FmSaa2oUsc= Subject key identifier: 26:4B:7A:00:92:D2:FD:B7:AD:65:06:F8:FB:B1:DB:29:7F:0B:FF:0C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7B2583A3498BEE21E79C95FE1DD45C109FF2E588 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/69829938-06a4-482d-9a69-118d0b32c04c.roa Signing time: Fri 22 Aug 2025 00:41:03 +0000 ROA not before: Fri 22 Aug 2025 00:41:03 +0000 ROA not after: Fri 26 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.0.248.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:25:83:a3:49:8b:ee:21:e7:9c:95:fe:1d:d4:5c:10:9f:f2:e5:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 22 00:41:03 2025 GMT Not After : Sep 26 23:59:59 2025 GMT Subject: serialNumber=6a23386afc158873ebedddc3124c11c9cd8b90c0f1e15e937a1189840c9b43fd, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:b1:c5:9b:bc:02:f5:f2:9b:6f:3a:6f:3a:c8: ed:14:75:d3:1b:e3:cc:92:e5:5a:1a:d8:e2:2c:af: 54:81:ed:36:2f:55:09:aa:b5:42:91:47:79:d6:46: a1:10:3d:99:7d:cb:a0:6f:34:2a:72:12:81:0c:d2: 8f:44:96:b5:a6:fb:b6:0f:ac:43:89:49:cb:ec:e9: c8:a8:02:42:80:6b:3a:ea:96:b6:e9:21:6a:6c:33: 4f:db:ba:ad:8c:b4:6b:3e:03:9c:db:3b:6b:6c:a7: 8c:1a:1d:6b:8b:59:ee:38:07:b2:6a:76:b7:f9:51: f3:6f:e1:99:2b:19:c8:2c:f9:d4:b8:26:8e:14:6b: 00:23:30:d9:bc:57:2f:8f:3b:5c:c5:34:23:45:68: 5e:ca:ea:30:47:91:f8:af:12:ea:92:bd:f0:19:c1: 14:8c:27:bf:d5:40:de:de:8b:cc:21:f7:a1:b6:7e: 9e:bb:0a:ab:75:18:3b:1a:99:fa:9a:b6:76:c0:c5: 1a:f6:f6:04:7f:e6:b6:83:1d:c9:4b:91:fc:f1:eb: 9f:ea:2d:5f:ff:dd:f7:49:b8:5d:30:5a:af:63:0a: aa:f7:ba:35:5b:72:c5:1e:33:fd:c7:68:f3:9f:13: 73:fd:3d:ca:ea:fd:af:41:f6:ca:67:14:2f:8b:73: a3:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:4B:7A:00:92:D2:FD:B7:AD:65:06:F8:FB:B1:DB:29:7F:0B:FF:0C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/69829938-06a4-482d-9a69-118d0b32c04c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.0.248.0/21 Signature Algorithm: sha256WithRSAEncryption 64:44:8e:b9:3e:f1:4f:f5:92:bd:7e:62:5e:69:99:fb:8b:e2: 2c:ed:f7:88:b6:39:27:30:6e:98:f4:c0:14:c7:7d:20:15:60: 85:14:81:3b:43:5b:be:d0:27:23:d1:5b:34:07:84:71:40:1c: c8:57:7b:97:38:37:5c:8b:0c:28:96:00:d5:ee:70:9f:5b:94: 19:7d:0b:bc:35:03:41:e5:e8:45:a1:79:c6:f7:13:dd:67:32: 61:f2:e5:1a:ff:54:df:cf:84:72:98:48:c4:7a:4f:f2:b7:ba: bc:2b:65:a3:45:45:35:04:d6:bb:94:d6:c5:07:89:c9:ee:8b: b7:f0:d0:5f:bc:0c:00:6a:d4:7c:18:a4:2f:5f:00:e2:90:0b: ed:23:11:53:cc:e6:b0:41:f7:a2:69:be:28:13:45:92:b3:c4: 45:a0:c0:06:c2:1d:3b:db:6a:19:da:5f:bb:91:7b:7d:eb:e7: ff:78:af:50:35:2d:01:9e:5f:82:bc:56:a5:f3:1b:6e:f0:c4: 9a:0b:a7:d4:74:48:4c:db:ad:67:d9:70:7e:b0:15:2b:d1:f2: 7c:f9:f5:94:90:e0:54:54:cc:0f:95:36:d6:c1:f5:3b:90:66: 69:82:c5:e3:3d:cb:7b:65:15:d6:68:6d:aa:1b:1b:ee:3a:79: b1:38:68:eb -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUeyWDo0mL7iHnnJX+HdRcEJ/y5YgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODIyMDA0MTAzWhcNMjUwOTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A2YTIzMzg2YWZjMTU4ODczZWJlZGRkYzMxMjRjMTFjOWNk OGI5MGMwZjFlMTVlOTM3YTExODk4NDBjOWI0M2ZkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDSscWbvAL18ptvOm86yO0UddMb48yS5Voa2OIsr1SB7TYv VQmqtUKRR3nWRqEQPZl9y6BvNCpyEoEM0o9ElrWm+7YPrEOJScvs6cioAkKAazrq lrbpIWpsM0/buq2MtGs+A5zbO2tsp4waHWuLWe44B7Jqdrf5UfNv4ZkrGcgs+dS4 Jo4UawAjMNm8Vy+PO1zFNCNFaF7K6jBHkfivEuqSvfAZwRSMJ7/VQN7ei8wh96G2 fp67Cqt1GDsamfqatnbAxRr29gR/5raDHclLkfzx65/qLV//3fdJuF0wWq9jCqr3 ujVbcsUeM/3HaPOfE3P9Pcrq/a9B9spnFC+Lc6NHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUJkt6AJLS/betZQb4+7HbKX8L/wwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY5ODI5OTM4LTA2YTQtNDgyZC05YTY5LTExOGQwYjMyYzA0Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANFAPgwDQYJKoZIhvcNAQELBQADggEBAGREjrk+8U/1kr1+Yl5pmfuL4izt 94i2OScwbpj0wBTHfSAVYIUUgTtDW77QJyPRWzQHhHFAHMhXe5c4N1yLDCiWANXu cJ9blBl9C7w1A0Hl6EWhecb3E91nMmHy5Rr/VN/PhHKYSMR6T/K3urwrZaNFRTUE 1ruU1sUHicnui7fw0F+8DABq1HwYpC9fAOKQC+0jEVPM5rBB96JpvigTRZKzxEWg wAbCHTvbahnaX7uRe33r5/94r1A1LQGeX4K8VqXzG27wxJoLp9R0SEzbrWfZcH6w FSvR8nz59ZSQ4FRUzA+VNtbB9TuQZmmCxeM9y3tlFdZobaobG+46ebE4aOs= -----END CERTIFICATE-----Generated at Sat Aug 23 06:40:12 2025 by rpki-client