$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/752845bf-4fad-4178-abc3-345e36b80c44.roa File: 752845bf-4fad-4178-abc3-345e36b80c44.roa (raw, json) Hash identifier: vGC8f7Gfs08seYPuTMMVQ0+ge9gq4P4JYxqzch9MIAU= Subject key identifier: 87:CC:84:A1:DA:51:08:37:45:48:91:CE:96:50:45:AE:29:BC:24:3F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6465013A14DBEA072BE33AD6C608CEAE91FC4F23 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/752845bf-4fad-4178-abc3-345e36b80c44.roa Signing time: Fri 22 Aug 2025 00:41:40 +0000 ROA not before: Fri 22 Aug 2025 00:41:40 +0000 ROA not after: Fri 26 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.0.142.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:65:01:3a:14:db:ea:07:2b:e3:3a:d6:c6:08:ce:ae:91:fc:4f:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 22 00:41:40 2025 GMT Not After : Sep 26 23:59:59 2025 GMT Subject: serialNumber=081253b98d78df0c1cba181d4f0d79f914b476f651a1b424bd574e3fa488e89b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:a3:2d:2b:86:ea:37:ae:c2:ce:e4:1b:2a:d0: 89:0e:e4:05:9b:7d:70:c7:ee:1a:79:c8:98:04:2f: e1:34:de:4e:3f:97:76:4b:1a:5b:03:9f:fd:92:15: dd:70:68:f7:29:8d:d0:6d:d9:df:d4:b7:cd:b4:2f: a9:26:fa:fb:69:59:77:e1:38:b0:fe:1c:23:6f:9f: e8:25:59:1a:a7:68:88:4b:fa:32:a4:9f:1d:49:b4: af:57:d2:66:b9:e3:24:36:31:40:82:5e:20:22:1f: dc:95:a9:a3:a0:49:06:c7:f6:b3:f1:76:31:28:f1: 34:68:98:1a:bf:f1:76:b0:c8:15:4c:6c:98:bf:17: 12:93:67:42:d0:ca:4c:c4:07:44:dc:f0:3c:fd:e9: ca:72:51:a9:81:ca:57:11:04:81:65:af:24:f6:ad: dc:b2:82:6a:85:0c:49:48:e9:72:c1:a1:fd:c0:d2: 35:da:20:34:b0:3c:02:e9:28:c7:a3:94:4d:c1:1b: 5f:3c:7c:e2:60:ed:10:d2:3a:77:79:fc:91:4f:6d: a0:c1:7b:b2:53:28:38:93:93:28:df:9b:c8:b1:ae: 37:71:c9:6a:36:db:c9:b6:97:2e:c4:1f:c6:93:d3: 2e:61:a9:4c:78:9c:63:4a:1e:3c:61:c7:d5:ea:3c: 1d:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:CC:84:A1:DA:51:08:37:45:48:91:CE:96:50:45:AE:29:BC:24:3F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/752845bf-4fad-4178-abc3-345e36b80c44.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.0.142.0/23 Signature Algorithm: sha256WithRSAEncryption 90:bc:bd:94:c3:78:15:9c:f7:a0:27:9c:bd:a2:cc:47:e0:d3: 2d:d2:73:30:a4:ab:0c:e7:8c:5d:60:0f:03:31:93:3c:56:6a: 47:0d:21:f6:24:76:f9:63:9d:b2:4c:4c:71:78:9d:e4:2b:50: 20:17:e6:50:2f:7e:ff:b4:5b:81:8a:12:6c:be:4e:53:99:1b: b5:75:ca:8f:62:f8:2f:a7:4f:f3:10:5b:85:37:d9:05:79:77: d2:7f:95:a7:15:46:66:c1:d5:3d:8d:5c:c6:01:99:c9:ca:1b: c5:3b:9e:48:45:3e:50:b5:b6:6d:84:c5:d8:36:8b:e2:2e:30: 57:b5:2d:74:1d:fe:04:e2:8d:79:d2:db:05:89:8f:aa:62:74: 8a:dc:8e:51:4c:41:0b:dc:7d:2a:fb:54:87:72:81:e0:6c:e3: 0e:b0:d0:5e:e6:a6:ae:5d:da:c0:62:b9:9d:b1:ec:a6:12:5a: 15:f2:22:d0:90:a4:3d:32:4a:64:b5:e8:bc:50:23:92:b1:e0: ab:8b:06:7d:7d:68:8d:10:8d:4f:ac:67:6f:62:bd:37:4a:77: 73:bf:79:f9:6b:d8:74:e5:54:86:d6:db:84:d2:bd:b6:58:87: 56:13:58:8b:fa:00:be:5a:0a:ae:f7:9e:e2:aa:43:45:97:ce: ea:c7:c4:c7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZGUBOhTb6gcr4zrWxgjOrpH8TyMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODIyMDA0MTQwWhcNMjUwOTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AwODEyNTNiOThkNzhkZjBjMWNiYTE4MWQ0ZjBkNzlmOTE0 YjQ3NmY2NTFhMWI0MjRiZDU3NGUzZmE0ODhlODliMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDfoy0rhuo3rsLO5Bsq0IkO5AWbfXDH7hp5yJgEL+E03k4/ l3ZLGlsDn/2SFd1waPcpjdBt2d/Ut820L6km+vtpWXfhOLD+HCNvn+glWRqnaIhL +jKknx1JtK9X0ma54yQ2MUCCXiAiH9yVqaOgSQbH9rPxdjEo8TRomBq/8XawyBVM bJi/FxKTZ0LQykzEB0Tc8Dz96cpyUamBylcRBIFlryT2rdyygmqFDElI6XLBof3A 0jXaIDSwPALpKMejlE3BG188fOJg7RDSOnd5/JFPbaDBe7JTKDiTkyjfm8ixrjdx yWo228m2ly7EH8aT0y5hqUx4nGNKHjxhx9XqPB1DAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUh8yEodpRCDdFSJHOllBFrim8JD8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc1Mjg0NWJmLTRmYWQtNDE3OC1hYmMzLTM0NWUzNmI4MGM0NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFFAI4wDQYJKoZIhvcNAQELBQADggEBAJC8vZTDeBWc96AnnL2izEfg0y3S czCkqwznjF1gDwMxkzxWakcNIfYkdvljnbJMTHF4neQrUCAX5lAvfv+0W4GKEmy+ TlOZG7V1yo9i+C+nT/MQW4U32QV5d9J/lacVRmbB1T2NXMYBmcnKG8U7nkhFPlC1 tm2Exdg2i+IuMFe1LXQd/gTijXnS2wWJj6pidIrcjlFMQQvcfSr7VIdygeBs4w6w 0F7mpq5d2sBiuZ2x7KYSWhXyItCQpD0ySmS16LxQI5Kx4KuLBn19aI0QjU+sZ29i vTdKd3O/eflr2HTlVIbW24TSvbZYh1YTWIv6AL5aCq73nuKqQ0WXzurHxMc= -----END CERTIFICATE-----Generated at Sat Aug 23 09:09:29 2025 by rpki-client