$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8b42cb5f-7b5f-4b99-a5c4-d40f3ee3356a.roa File: 8b42cb5f-7b5f-4b99-a5c4-d40f3ee3356a.roa (raw, json) Hash identifier: lxQnq/CGt+/6m2UpUl7TGNxZg1Qq+dRPHfdbOfETm48= Subject key identifier: 88:D1:AF:09:68:FA:32:03:64:DA:FA:42:D2:94:3F:B0:33:74:A9:57 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 58A5306F3755FF19F477B6BC613E4061DA64FC16 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8b42cb5f-7b5f-4b99-a5c4-d40f3ee3356a.roa Signing time: Tue 12 Aug 2025 00:30:20 +0000 ROA not before: Tue 12 Aug 2025 00:30:20 +0000 ROA not after: Tue 16 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.22.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:a5:30:6f:37:55:ff:19:f4:77:b6:bc:61:3e:40:61:da:64:fc:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 12 00:30:20 2025 GMT Not After : Sep 16 23:59:59 2025 GMT Subject: serialNumber=c93234f7bf46c674f38316ddfdf3cc92e0eefac68979a4d80a8cc4f39a755843, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:26:67:d8:75:98:9d:2e:74:ef:b5:9d:8c:36: 4a:64:13:98:d7:c4:9d:a7:7e:cb:cd:af:77:a4:88: cd:17:22:cf:c8:03:6b:d3:c2:c8:81:f6:43:6d:b1: c3:c8:79:c3:01:3b:0d:72:45:bc:37:e4:e5:a2:13: a8:28:79:33:f6:3c:33:03:45:05:66:ea:37:58:c5: 6a:c9:ac:12:0b:64:ce:4e:a2:cf:35:cd:d7:4a:ae: d6:be:70:7a:b6:71:8a:48:af:37:fb:80:34:10:63: 93:5d:64:3d:cf:db:4e:15:3d:d4:7a:58:47:ae:80: 67:fb:32:ad:90:f0:21:93:3a:8d:df:d0:ec:5c:c6: 00:82:53:09:e8:92:28:12:f9:b7:12:f4:bb:39:29: e1:07:52:b7:36:51:11:4f:38:0d:73:86:2f:b8:ca: 87:d2:38:ed:9e:54:98:c8:48:36:b0:51:3f:b9:36: 86:81:fd:e0:32:2f:fe:a3:b1:7d:55:cf:97:d8:af: 1a:d2:8b:16:5a:a5:7e:24:2d:6d:f6:f6:92:c3:40: 85:d8:79:a6:8e:ce:b6:9a:a0:fc:18:36:c7:21:22: 37:8d:51:d5:9b:5f:56:93:72:28:1d:29:71:d6:27: 92:18:ea:23:d7:a3:95:a0:dd:cf:63:2b:44:4c:2d: a4:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:D1:AF:09:68:FA:32:03:64:DA:FA:42:D2:94:3F:B0:33:74:A9:57 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8b42cb5f-7b5f-4b99-a5c4-d40f3ee3356a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.22.0.0/16 Signature Algorithm: sha256WithRSAEncryption 40:5e:8b:ee:8c:e9:0b:75:ac:5b:65:04:24:ef:34:87:ee:24: 08:91:9c:a7:76:a9:b4:87:72:ae:ec:c8:a3:16:8e:37:10:91: 5a:98:55:19:6e:5f:1d:a3:25:30:a5:c1:c6:54:20:95:75:63: 31:a6:e1:f8:89:2d:b1:5c:bb:d6:2b:d9:8d:0b:6e:2a:ef:f6: 71:6c:23:41:e5:d8:83:87:27:a3:b0:1a:92:45:31:6f:13:47: 19:66:12:17:8f:5b:af:26:d8:82:09:9f:10:61:5f:9b:78:b2: cc:c8:e2:0c:79:3c:de:41:43:88:05:6f:80:1c:f5:58:05:bb: 7c:e0:08:1a:5a:4b:f2:a2:71:30:e3:4f:a6:91:df:ae:39:de: f7:bc:bd:a7:48:42:5e:b2:c8:4d:3c:33:8b:db:0b:79:1f:ec: 0a:fa:c2:7c:ee:d3:98:0f:ca:a2:27:7c:20:ba:86:fa:e8:20: ba:2b:33:02:b8:65:5d:2d:58:8e:1b:1d:9c:bd:8e:ea:4d:7d: 2d:53:bd:4b:bb:17:87:c1:6b:e9:14:90:4c:b0:e6:95:e4:3c: dc:66:4f:ed:57:7c:23:7f:e8:18:33:30:a2:de:13:28:97:85: 9f:89:e4:bd:ca:9d:19:6f:6a:ef:2f:21:83:8c:27:a6:3d:42: 2c:96:3e:a3 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUWKUwbzdV/xn0d7a8YT5AYdpk/BYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEyMDAzMDIwWhcNMjUwOTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BjOTMyMzRmN2JmNDZjNjc0ZjM4MzE2ZGRmZGYzY2M5MmUw ZWVmYWM2ODk3OWE0ZDgwYThjYzRmMzlhNzU1ODQzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDXJmfYdZidLnTvtZ2MNkpkE5jXxJ2nfsvNr3ekiM0XIs/I A2vTwsiB9kNtscPIecMBOw1yRbw35OWiE6goeTP2PDMDRQVm6jdYxWrJrBILZM5O os81zddKrta+cHq2cYpIrzf7gDQQY5NdZD3P204VPdR6WEeugGf7Mq2Q8CGTOo3f 0OxcxgCCUwnokigS+bcS9Ls5KeEHUrc2URFPOA1zhi+4yofSOO2eVJjISDawUT+5 NoaB/eAyL/6jsX1Vz5fYrxrSixZapX4kLW329pLDQIXYeaaOzraaoPwYNschIjeN UdWbX1aTcigdKXHWJ5IY6iPXo5Wg3c9jK0RMLaT3AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUiNGvCWj6MgNk2vpC0pQ/sDN0qVcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhiNDJjYjVmLTdiNWYtNGI5OS1hNWM0LWQ0MGYzZWUzMzU2YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2FjANBgkqhkiG9w0BAQsFAAOCAQEAQF6L7ozpC3WsW2UEJO80h+4kCJGc p3aptIdyruzIoxaONxCRWphVGW5fHaMlMKXBxlQglXVjMabh+IktsVy71ivZjQtu Ku/2cWwjQeXYg4cno7AakkUxbxNHGWYSF49brybYggmfEGFfm3iyzMjiDHk83kFD iAVvgBz1WAW7fOAIGlpL8qJxMONPppHfrjne97y9p0hCXrLITTwzi9sLeR/sCvrC fO7TmA/Koid8ILqG+ugguiszArhlXS1YjhsdnL2O6k19LVO9S7sXh8Fr6RSQTLDm leQ83GZP7Vd8I3/oGDMwot4TKJeFn4nkvcqdGW9q7y8hg4wnpj1CLJY+ow== -----END CERTIFICATE-----Generated at Sat Aug 23 08:10:47 2025 by rpki-client