$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6eeda78f-8b49-4200-b55a-88078b060f3c.roa File: 6eeda78f-8b49-4200-b55a-88078b060f3c.roa (raw, json) Hash identifier: Y4EaBFGHoM/Vr2oRcFh5xvAz2oAfPZ9bekv+RoQcEC0= Subject key identifier: F7:60:EC:1D:C1:3F:57:E6:B7:51:F5:85:7B:D0:65:7D:B0:F6:E3:82 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 32210D230EA12FC503B3B4204D064E81F3C51430 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6eeda78f-8b49-4200-b55a-88078b060f3c.roa Signing time: Wed 13 Aug 2025 00:01:52 +0000 ROA not before: Wed 13 Aug 2025 00:01:52 +0000 ROA not after: Wed 17 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 164.168.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:21:0d:23:0e:a1:2f:c5:03:b3:b4:20:4d:06:4e:81:f3:c5:14:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 13 00:01:52 2025 GMT Not After : Sep 17 23:59:59 2025 GMT Subject: serialNumber=20cfd66546d4db6897e1e62cee9f746a183128de9f69730ab1d9bae998f65e10, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:0f:75:bf:e1:3d:37:14:58:96:08:21:89:23: a8:50:8d:73:43:db:11:b2:aa:db:5c:fc:1c:5c:c8: cb:bf:1a:bb:8d:cf:f8:6f:2c:d6:46:91:99:b1:ec: 1e:bc:eb:0f:f3:d5:32:a1:ca:dc:4e:40:2e:b7:5c: 81:8f:29:9a:0e:06:47:77:5b:65:bb:e6:60:06:a4: 89:a2:e5:5e:f7:8d:de:f0:7d:a3:18:2e:6e:19:e5: 80:99:77:ac:23:19:3f:b5:f9:2e:be:cb:56:d3:17: 0b:c3:97:70:72:bb:21:f6:ba:37:dc:7f:5b:d4:ea: b1:e0:5a:5c:08:a6:12:b4:97:ba:7b:d5:ea:40:76: 95:57:df:37:61:52:7a:36:ab:cb:83:99:d6:c4:d8: 11:f5:e6:51:0a:da:de:ff:ed:98:f0:6f:58:17:56: 37:5c:c7:48:6a:94:e9:70:a1:a2:a5:59:e4:e1:2e: 9c:07:87:e1:1a:b6:da:e9:f2:68:c4:1a:1d:a8:27: 25:34:04:a2:20:70:de:55:92:0a:7f:f6:61:0d:5c: c6:ed:f0:a9:9d:c1:4a:68:85:5d:73:49:72:6b:0f: 43:6b:d9:b1:ff:6c:db:1d:3b:02:34:4e:87:72:c3: 90:74:fb:02:42:69:b7:cb:dc:2d:18:77:d2:96:0c: 0b:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:60:EC:1D:C1:3F:57:E6:B7:51:F5:85:7B:D0:65:7D:B0:F6:E3:82 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6eeda78f-8b49-4200-b55a-88078b060f3c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 164.168.0.0/16 Signature Algorithm: sha256WithRSAEncryption 88:85:08:1f:f8:60:74:c8:84:9b:fd:90:a5:37:80:8f:9f:63: f7:32:3f:cd:a8:8e:3f:53:cf:a5:af:5c:50:c9:8e:68:49:78: d9:9c:88:29:fc:eb:60:f0:60:a0:ac:3d:48:a7:bb:33:c8:e9: ae:d0:17:fc:66:1b:89:79:1a:cf:de:91:3a:1e:69:ab:33:86: bb:a3:a3:21:c6:70:a5:6f:89:a4:2b:86:5a:4b:46:ba:7b:a8: 27:93:f5:f6:e7:cc:25:39:75:9c:db:71:a8:53:7d:71:0b:55: 85:17:37:92:15:6d:8d:56:a7:ba:fd:2a:0e:c6:99:52:be:ae: 82:48:89:69:de:95:f5:b6:8f:0d:70:00:e0:60:88:cd:9c:25: d1:6a:9d:51:3d:cd:f8:9b:27:b5:4f:c0:77:59:fa:4a:97:a7: fe:36:f6:d1:1e:d6:be:17:04:36:86:a0:6d:73:c2:e4:79:0b: ed:9f:88:ad:32:e6:78:ae:f4:4f:47:3b:bb:f9:39:e8:c2:4e: a2:f8:66:3a:02:3a:57:ca:13:03:06:97:0f:b0:d3:a1:66:9d: ad:44:17:6e:52:50:08:ee:23:16:f6:f6:ad:30:41:7c:5b:33: 4e:73:c6:c9:6d:70:3b:da:26:b0:f2:d4:0b:aa:8b:a9:91:df: 3c:af:08:ed -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUMiENIw6hL8UDs7QgTQZOgfPFFDAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEzMDAwMTUyWhcNMjUwOTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMGNmZDY2NTQ2ZDRkYjY4OTdlMWU2MmNlZTlmNzQ2YTE4 MzEyOGRlOWY2OTczMGFiMWQ5YmFlOTk4ZjY1ZTEwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6D3W/4T03FFiWCCGJI6hQjXND2xGyqttc/BxcyMu/GruN z/hvLNZGkZmx7B686w/z1TKhytxOQC63XIGPKZoOBkd3W2W75mAGpImi5V73jd7w faMYLm4Z5YCZd6wjGT+1+S6+y1bTFwvDl3ByuyH2ujfcf1vU6rHgWlwIphK0l7p7 1epAdpVX3zdhUno2q8uDmdbE2BH15lEK2t7/7Zjwb1gXVjdcx0hqlOlwoaKlWeTh LpwHh+Eattrp8mjEGh2oJyU0BKIgcN5Vkgp/9mENXMbt8KmdwUpohV1zSXJrD0Nr 2bH/bNsdOwI0Todyw5B0+wJCabfL3C0Yd9KWDAtLAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU92DsHcE/V+a3UfWFe9BlfbD244IwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZlZWRhNzhmLThiNDktNDIwMC1iNTVhLTg4MDc4YjA2MGYzYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCkqDANBgkqhkiG9w0BAQsFAAOCAQEAiIUIH/hgdMiEm/2QpTeAj59j9zI/ zaiOP1PPpa9cUMmOaEl42ZyIKfzrYPBgoKw9SKe7M8jprtAX/GYbiXkaz96ROh5p qzOGu6OjIcZwpW+JpCuGWktGunuoJ5P19ufMJTl1nNtxqFN9cQtVhRc3khVtjVan uv0qDsaZUr6ugkiJad6V9baPDXAA4GCIzZwl0WqdUT3N+JsntU/Ad1n6Spen/jb2 0R7WvhcENoagbXPC5HkL7Z+IrTLmeK70T0c7u/k56MJOovhmOgI6V8oTAwaXD7DT oWadrUQXblJQCO4jFvb2rTBBfFszTnPGyW1wO9omsPLUC6qLqZHfPK8I7Q== -----END CERTIFICATE-----Generated at Sat Aug 23 06:52:56 2025 by rpki-client