$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8d6a073e-457b-4a4f-9f39-59ba5c5efc92.roa File: 8d6a073e-457b-4a4f-9f39-59ba5c5efc92.roa (raw, json) Hash identifier: 8mEgpznqA57mZUZ1DQd9o2ItG5Om5CAGOi8Gf4UaihY= Subject key identifier: C6:AD:EA:6F:39:15:6B:60:39:BB:74:0F:19:97:83:2A:8F:7D:62:77 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 28CA376CB72AF40F189061413ECADA42BCC41509 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8d6a073e-457b-4a4f-9f39-59ba5c5efc92.roa Signing time: Tue 12 Aug 2025 00:01:45 +0000 ROA not before: Tue 12 Aug 2025 00:01:45 +0000 ROA not after: Tue 16 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 158.80.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:ca:37:6c:b7:2a:f4:0f:18:90:61:41:3e:ca:da:42:bc:c4:15:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 12 00:01:45 2025 GMT Not After : Sep 16 23:59:59 2025 GMT Subject: serialNumber=ca74891c47e1b9e24821f13784f4c4a6474793bc782eeda9f38cccfedcd8aa2a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:39:c8:cb:49:d5:6d:21:42:5c:43:e4:67:3c: d2:15:3e:c4:82:ae:08:fc:8b:bd:78:86:c1:46:87: 91:08:a2:a7:4e:1c:08:13:93:57:e7:15:a9:a9:68: dc:8c:1c:ec:28:33:70:bb:b3:ca:1d:e6:76:90:fa: 16:89:ff:11:35:e8:be:76:da:67:ee:7a:39:f9:c5: d9:0b:5e:20:dd:55:6b:1a:be:f7:f3:29:e8:35:81: af:48:3b:08:55:62:77:cb:82:6c:66:6b:76:e8:54: 99:9c:ef:85:14:1c:97:a2:c0:69:86:b2:5f:72:e4: 6f:96:80:4a:6b:20:b0:a6:a2:9d:fc:f4:7e:f9:93: df:66:b9:06:ae:9e:d1:1c:b2:7a:f9:54:8c:5a:38: e1:71:35:0a:24:f3:fd:51:79:18:91:25:34:7f:83: 23:33:a3:bf:3a:ad:77:7c:46:83:26:5e:f3:6d:ca: 87:da:2e:84:fc:71:6c:ba:91:2f:73:2c:ee:40:6e: e7:9a:24:6c:30:3a:8c:bc:4b:43:11:7d:09:00:5f: 9e:9b:47:43:13:9a:a7:84:f0:70:48:5c:7e:09:89: 94:fc:46:66:49:58:32:a9:27:05:d7:92:56:67:5c: 21:e3:bf:39:ae:06:cf:04:f2:37:47:8a:a1:03:80: ac:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:AD:EA:6F:39:15:6B:60:39:BB:74:0F:19:97:83:2A:8F:7D:62:77 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8d6a073e-457b-4a4f-9f39-59ba5c5efc92.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.80.0.0/17 Signature Algorithm: sha256WithRSAEncryption a5:00:87:76:c6:ad:21:1a:08:07:4b:ba:78:7e:1c:30:2c:f0: ca:cc:0c:93:e5:16:51:24:64:80:f5:33:dc:3e:4b:dc:b1:b0: 39:43:b0:4c:10:5d:73:21:c2:20:89:fc:e4:2d:8b:9b:de:c7: 64:70:7b:fb:1c:14:c6:38:e0:87:c9:9e:a3:6a:21:c4:83:d1: 53:17:1c:31:e8:f5:86:c6:31:8a:e6:7a:fe:8f:fd:9b:d8:2d: 85:d8:bf:c4:bb:5b:d9:6f:ac:8a:c2:a7:bc:a7:68:c1:d5:d7: 88:a0:de:cb:bf:ae:5c:88:52:c0:a9:ba:13:f2:7d:81:05:21: 77:8e:07:2f:e9:c4:91:6d:b1:70:3a:1a:21:32:7f:20:85:75: 0a:01:ef:f8:23:14:fb:7c:21:2a:28:85:7c:fb:0a:bb:42:c4: 0f:8f:91:f9:3d:b0:00:58:78:ea:8c:03:de:bd:05:07:34:97: 36:cb:60:06:c2:1a:f9:7a:2a:9e:79:e6:0d:52:e7:93:6d:af: 39:4b:e5:b8:23:8a:95:87:ea:c9:1d:6f:35:98:74:06:9e:b0: 44:75:61:5c:48:46:5f:2e:0c:b0:b6:f8:fe:22:6a:22:68:0f: 2c:9b:64:7b:dd:d0:68:58:21:95:36:b2:8b:da:be:42:0e:cf: f7:96:81:70 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKMo3bLcq9A8YkGFBPsraQrzEFQkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEyMDAwMTQ1WhcNMjUwOTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BjYTc0ODkxYzQ3ZTFiOWUyNDgyMWYxMzc4NGY0YzRhNjQ3 NDc5M2JjNzgyZWVkYTlmMzhjY2NmZWRjZDhhYTJhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+OcjLSdVtIUJcQ+RnPNIVPsSCrgj8i714hsFGh5EIoqdO HAgTk1fnFampaNyMHOwoM3C7s8od5naQ+haJ/xE16L522mfuejn5xdkLXiDdVWsa vvfzKeg1ga9IOwhVYnfLgmxma3boVJmc74UUHJeiwGmGsl9y5G+WgEprILCmop38 9H75k99muQauntEcsnr5VIxaOOFxNQok8/1ReRiRJTR/gyMzo786rXd8RoMmXvNt yofaLoT8cWy6kS9zLO5AbueaJGwwOoy8S0MRfQkAX56bR0MTmqeE8HBIXH4JiZT8 RmZJWDKpJwXXklZnXCHjvzmuBs8E8jdHiqEDgKzjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUxq3qbzkVa2A5u3QPGZeDKo99YncwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhkNmEwNzNlLTQ1N2ItNGE0Zi05ZjM5LTU5YmE1YzVlZmM5Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAeeUAAwDQYJKoZIhvcNAQELBQADggEBAKUAh3bGrSEaCAdLunh+HDAs8MrM DJPlFlEkZID1M9w+S9yxsDlDsEwQXXMhwiCJ/OQti5vex2Rwe/scFMY44IfJnqNq IcSD0VMXHDHo9YbGMYrmev6P/ZvYLYXYv8S7W9lvrIrCp7ynaMHV14ig3su/rlyI UsCpuhPyfYEFIXeOBy/pxJFtsXA6GiEyfyCFdQoB7/gjFPt8ISoohXz7CrtCxA+P kfk9sABYeOqMA969BQc0lzbLYAbCGvl6Kp555g1S55NtrzlL5bgjipWH6skdbzWY dAaesER1YVxIRl8uDLC2+P4iaiJoDyybZHvd0GhYIZU2sovavkIOz/eWgXA= -----END CERTIFICATE-----Generated at Sat Aug 23 08:20:26 2025 by rpki-client