$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/729ab11e-9cbe-4674-8c5d-07685ac2683b.roa File: 729ab11e-9cbe-4674-8c5d-07685ac2683b.roa (raw, json) Hash identifier: 4jrFNqYBu4W22HFa0CZIAZRRe+qWNl3YuKM3zMdNbXQ= Subject key identifier: 67:C3:79:EC:7D:61:08:C4:33:3E:B6:AA:24:FC:9F:26:5F:D2:EC:81 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2552D37A00517605D8333719D93F4E8D71C76E96 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/729ab11e-9cbe-4674-8c5d-07685ac2683b.roa Signing time: Wed 13 Aug 2025 00:41:40 +0000 ROA not before: Wed 13 Aug 2025 00:41:40 +0000 ROA not after: Wed 17 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 96.0.84.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:52:d3:7a:00:51:76:05:d8:33:37:19:d9:3f:4e:8d:71:c7:6e:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 13 00:41:40 2025 GMT Not After : Sep 17 23:59:59 2025 GMT Subject: serialNumber=ab21a978ae5467c0d2a0a965b44ea9b9805b3aef89c642c44d6c9b303771cc4d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:48:ea:19:8f:1d:88:35:ae:94:a8:6a:f8:87: 06:c5:2c:f7:bd:09:7c:da:b3:82:dd:c4:e7:65:a4: 13:98:21:36:c3:46:e2:63:29:08:9f:72:c2:51:1e: 83:b4:4f:77:07:19:03:16:0d:df:84:75:bf:3f:ad: 51:db:e1:cd:1a:f5:80:25:05:46:45:61:53:f8:a3: 86:c3:74:13:13:61:fa:79:4d:f4:74:22:1e:c5:fd: 2f:98:3f:cf:8d:8d:74:1c:18:52:d9:f0:30:95:30: 9d:70:83:27:0c:f5:e3:00:48:ab:e2:cb:7b:f7:43: ec:63:8b:0c:0b:54:8f:ca:b3:3d:f4:8c:8a:15:c2: 79:f7:f7:26:6d:31:34:d5:9f:cd:69:a1:74:47:c3: 91:c3:d6:99:a6:65:11:b7:68:f9:bd:d3:af:99:b0: 5c:7b:8f:ec:b5:47:fe:52:aa:77:a5:03:d6:b4:a0: b9:6f:63:07:86:be:c6:82:0a:d7:0f:ce:f2:29:e9: 31:60:19:d9:6c:87:94:33:f1:35:f7:61:69:b5:5c: 28:07:f8:6e:7e:99:26:08:9b:07:b7:1a:83:4a:ca: 97:8e:21:da:f7:59:31:3d:24:12:63:41:8d:aa:f5: f8:b1:d9:7e:68:36:c9:39:8b:fd:bc:be:f8:2e:ae: 87:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:C3:79:EC:7D:61:08:C4:33:3E:B6:AA:24:FC:9F:26:5F:D2:EC:81 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/729ab11e-9cbe-4674-8c5d-07685ac2683b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.0.84.0/22 Signature Algorithm: sha256WithRSAEncryption 81:7c:d3:c3:4f:04:58:5d:a9:f1:a3:29:b8:14:12:75:a6:c0: 71:66:1d:ba:05:d3:ae:46:df:ea:17:f5:5f:21:b6:3c:cc:72: 4e:6f:36:62:77:27:68:48:1c:59:61:37:07:d1:42:78:e5:ba: 21:83:c8:55:d4:25:a0:65:8e:b7:d5:20:98:d3:bc:80:b6:8d: 49:d1:34:ed:96:3d:76:db:22:a4:17:5f:bf:8b:f8:4a:ca:24: 52:b2:47:d5:e6:1d:26:a9:49:d9:8d:6f:16:fd:70:9b:fc:d8: fd:92:f5:ed:26:a8:fd:fb:66:5c:0e:7e:f4:12:5d:b3:6a:65: 27:f6:9c:b8:a7:0d:60:60:2a:95:e2:3c:a8:15:0a:ea:c9:4e: 81:11:99:37:2c:68:60:97:b8:1a:d6:c5:94:15:a8:ad:3b:32: e6:d2:aa:04:f5:9e:c2:eb:31:c7:7c:9d:55:fc:c6:7b:58:74: 4f:80:fc:f4:09:52:e5:c4:41:a1:c5:e5:c6:60:3e:dc:62:b8: cb:2d:18:f4:7b:65:d0:89:98:ca:25:32:0c:5c:cf:15:a7:12: da:c2:3f:e4:5a:0e:70:0f:12:36:f0:ea:8b:84:b1:9e:6d:c3: 8b:8b:a7:58:41:12:86:9b:d5:2c:3f:49:51:1c:8d:74:3c:12: aa:ed:08:69 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJVLTegBRdgXYMzcZ2T9OjXHHbpYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEzMDA0MTQwWhcNMjUwOTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYjIxYTk3OGFlNTQ2N2MwZDJhMGE5NjViNDRlYTliOTgw NWIzYWVmODljNjQyYzQ0ZDZjOWIzMDM3NzFjYzRkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnSOoZjx2INa6UqGr4hwbFLPe9CXzas4LdxOdlpBOYITbD RuJjKQifcsJRHoO0T3cHGQMWDd+Edb8/rVHb4c0a9YAlBUZFYVP4o4bDdBMTYfp5 TfR0Ih7F/S+YP8+NjXQcGFLZ8DCVMJ1wgycM9eMASKviy3v3Q+xjiwwLVI/Ksz30 jIoVwnn39yZtMTTVn81poXRHw5HD1pmmZRG3aPm906+ZsFx7j+y1R/5SqnelA9a0 oLlvYweGvsaCCtcPzvIp6TFgGdlsh5Qz8TX3YWm1XCgH+G5+mSYImwe3GoNKypeO Idr3WTE9JBJjQY2q9fix2X5oNsk5i/28vvguroeZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUZ8N57H1hCMQzPraqJPyfJl/S7IEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzcyOWFiMTFlLTljYmUtNDY3NC04YzVkLTA3Njg1YWMyNjgzYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJgAFQwDQYJKoZIhvcNAQELBQADggEBAIF808NPBFhdqfGjKbgUEnWmwHFm HboF065G3+oX9V8htjzMck5vNmJ3J2hIHFlhNwfRQnjluiGDyFXUJaBljrfVIJjT vIC2jUnRNO2WPXbbIqQXX7+L+ErKJFKyR9XmHSapSdmNbxb9cJv82P2S9e0mqP37 ZlwOfvQSXbNqZSf2nLinDWBgKpXiPKgVCurJToERmTcsaGCXuBrWxZQVqK07MubS qgT1nsLrMcd8nVX8xntYdE+A/PQJUuXEQaHF5cZgPtxiuMstGPR7ZdCJmMolMgxc zxWnEtrCP+RaDnAPEjbw6ouEsZ5tw4uLp1hBEoab1Sw/SVEcjXQ8EqrtCGk= -----END CERTIFICATE-----Generated at Sat Aug 23 09:10:57 2025 by rpki-client