$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8b498707-3ebd-45a5-b072-5696977433b4.roa File: 8b498707-3ebd-45a5-b072-5696977433b4.roa (raw, json) Hash identifier: Gp0TSq1hGTM2agx+pnIF7uJ7Y/kx+4QYw7rVq5TzVBU= Subject key identifier: 61:4E:D7:55:3E:ED:9B:F0:EC:2A:0E:C9:EF:82:C2:A3:F8:B1:13:1D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4DC9AB747C042F76418D9F06940C1AE9A4C56630 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8b498707-3ebd-45a5-b072-5696977433b4.roa Signing time: Mon 18 Aug 2025 15:10:25 +0000 ROA not before: Mon 18 Aug 2025 15:10:25 +0000 ROA not after: Mon 22 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 157.243.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:c9:ab:74:7c:04:2f:76:41:8d:9f:06:94:0c:1a:e9:a4:c5:66:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 18 15:10:25 2025 GMT Not After : Sep 22 23:59:59 2025 GMT Subject: serialNumber=cc915b5da59df31f0b032dbb9ebe0ae011daaf268fb83311bc3e5f3419c349ef, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:39:a6:d4:98:23:3d:ba:94:32:a5:4a:9c:f3: d4:5e:42:10:8a:11:6a:0c:fb:39:e4:37:f2:94:6d: 52:4b:b1:b4:8c:0b:57:a9:f7:88:01:0b:22:e0:8d: 1d:1d:ac:56:6c:73:31:61:b5:27:6b:99:01:ca:cc: 1c:d5:05:08:9c:ed:0f:f7:03:d8:0c:e9:ba:0a:ed: cd:ca:84:08:06:50:08:61:c5:5d:4c:5a:4c:86:51: 17:fc:9c:68:4a:d9:41:c5:5b:6b:aa:77:19:0a:33: de:9d:11:a8:55:de:b6:08:d9:1a:e1:83:13:8d:ed: 7b:c0:b3:e0:bb:f4:3f:be:d9:ea:8e:35:7a:c5:6e: 91:e2:33:04:2f:7b:a8:0a:7d:7c:7d:d5:a3:f9:65: 8c:c9:09:02:57:5b:8f:f1:0e:99:9b:d3:c1:44:ae: f5:60:19:cf:b7:88:aa:a5:e1:78:39:0c:b5:0b:d9: 93:81:09:56:6c:74:13:b1:f9:9c:89:be:42:81:88: 7e:55:22:30:8a:3a:ef:96:53:b7:2b:d1:99:8c:fb: c8:d7:78:83:dc:4d:f2:ae:0e:bd:90:f8:11:18:3d: 15:ef:ab:b6:ee:77:4c:52:06:52:49:a7:7b:b3:bb: 6d:71:90:d0:be:56:a6:a9:fc:d6:01:5d:8f:e3:2e: 5a:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:4E:D7:55:3E:ED:9B:F0:EC:2A:0E:C9:EF:82:C2:A3:F8:B1:13:1D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8b498707-3ebd-45a5-b072-5696977433b4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.243.0.0/16 Signature Algorithm: sha256WithRSAEncryption ad:5a:c1:bd:98:53:b3:95:ec:a7:70:22:68:41:21:c2:57:65: 24:15:9f:9b:7a:73:80:31:7d:be:a9:47:c3:20:38:37:c1:31: 8a:04:97:9c:4d:47:b8:38:f0:44:95:e4:74:fc:af:22:23:06: db:ca:71:b5:f7:b2:6b:79:07:f5:21:fa:45:1b:7f:f3:d7:e5: 0e:33:b9:4d:96:70:bc:58:b2:26:0d:5a:2f:31:c0:06:ae:d6: 9d:cf:3f:79:60:56:b7:1c:1e:9c:10:c3:26:71:2d:4a:5f:1b: 79:fb:e5:04:d4:1f:b4:0b:a6:cd:18:ee:18:10:54:20:d4:99: 5b:f9:68:97:22:28:cb:c8:0b:09:35:25:b6:c4:48:31:91:21: 5b:cc:d3:fa:0b:10:39:ed:93:6f:43:ad:2c:23:1f:8f:1f:6a: 4f:e5:4e:7f:90:c1:7c:44:93:02:a4:6f:ae:39:24:ed:25:82: 0c:a8:32:b0:cc:a4:e6:77:db:2e:d4:c1:41:15:1a:0a:1c:81: 28:13:39:b4:db:e2:dd:9c:fb:2f:8d:87:20:af:d2:04:28:28: 19:53:44:6c:15:db:e4:b2:7b:a0:b8:60:05:d3:10:39:7f:4c: 62:6b:8b:28:1e:99:33:e8:43:6d:3c:56:60:4d:0a:a2:2a:12: 33:8c:44:f7 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUTcmrdHwEL3ZBjZ8GlAwa6aTFZjAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE4MTUxMDI1WhcNMjUwOTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BjYzkxNWI1ZGE1OWRmMzFmMGIwMzJkYmI5ZWJlMGFlMDEx ZGFhZjI2OGZiODMzMTFiYzNlNWYzNDE5YzM0OWVmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDgOabUmCM9upQypUqc89ReQhCKEWoM+znkN/KUbVJLsbSM C1ep94gBCyLgjR0drFZsczFhtSdrmQHKzBzVBQic7Q/3A9gM6boK7c3KhAgGUAhh xV1MWkyGURf8nGhK2UHFW2uqdxkKM96dEahV3rYI2RrhgxON7XvAs+C79D++2eqO NXrFbpHiMwQve6gKfXx91aP5ZYzJCQJXW4/xDpmb08FErvVgGc+3iKql4Xg5DLUL 2ZOBCVZsdBOx+ZyJvkKBiH5VIjCKOu+WU7cr0ZmM+8jXeIPcTfKuDr2Q+BEYPRXv q7bud0xSBlJJp3uzu21xkNC+Vqap/NYBXY/jLlovAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUYU7XVT7tm/DsKg7J74LCo/ixEx0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhiNDk4NzA3LTNlYmQtNDVhNS1iMDcyLTU2OTY5Nzc0MzNiNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCd8zANBgkqhkiG9w0BAQsFAAOCAQEArVrBvZhTs5Xsp3AiaEEhwldlJBWf m3pzgDF9vqlHwyA4N8ExigSXnE1HuDjwRJXkdPyvIiMG28pxtfeya3kH9SH6RRt/ 89flDjO5TZZwvFiyJg1aLzHABq7Wnc8/eWBWtxwenBDDJnEtSl8befvlBNQftAum zRjuGBBUINSZW/lolyIoy8gLCTUltsRIMZEhW8zT+gsQOe2Tb0OtLCMfjx9qT+VO f5DBfESTAqRvrjkk7SWCDKgysMyk5nfbLtTBQRUaChyBKBM5tNvi3Zz7L42HIK/S BCgoGVNEbBXb5LJ7oLhgBdMQOX9MYmuLKB6ZM+hDbTxWYE0KoioSM4xE9w== -----END CERTIFICATE-----Generated at Sat Aug 23 09:11:22 2025 by rpki-client