$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a649a23c-1e8e-45ad-bd04-c8fa20a62c33.roa File: a649a23c-1e8e-45ad-bd04-c8fa20a62c33.roa (raw, json) Hash identifier: ji8eIwoQRxTw6NYIlhKnccx9nPK8Si3yzaggIH/jGtU= Subject key identifier: 8B:72:96:8F:67:C0:64:E5:CE:22:3B:42:24:5F:C7:F8:2A:91:C9:5E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 47478B3999755736FAE0CC93655EBC58A6FE31A6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a649a23c-1e8e-45ad-bd04-c8fa20a62c33.roa Signing time: Mon 18 Aug 2025 15:10:16 +0000 ROA not before: Mon 18 Aug 2025 15:10:16 +0000 ROA not after: Mon 22 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 149.98.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:47:8b:39:99:75:57:36:fa:e0:cc:93:65:5e:bc:58:a6:fe:31:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 18 15:10:16 2025 GMT Not After : Sep 22 23:59:59 2025 GMT Subject: serialNumber=3c14fff405839dcba568efe79306490fc896148fdb69f7c5e357d8b5f2dc984b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:5e:16:f1:89:11:f3:c7:c8:4f:f5:71:ff:5a: b4:56:a0:e2:75:46:9c:e3:13:b9:f3:ab:b8:fd:8e: a8:7c:41:e4:fb:db:79:4c:20:b5:99:b3:84:b3:56: 1a:fc:d1:af:50:8e:aa:6a:c4:ef:50:bb:27:ab:60: 93:f6:58:56:0e:a9:c5:22:7b:ec:19:0b:85:e5:38: d2:27:df:92:bd:97:59:b6:d7:06:9a:e5:e0:16:9f: a2:9a:4c:8b:4f:06:af:16:4e:e5:81:4e:aa:3d:6f: b4:7b:e8:4a:7c:d7:a0:2e:04:0a:61:b6:58:87:0c: 50:94:86:29:c2:79:6a:b1:f1:8b:20:f6:e6:09:58: fd:cd:c3:fb:6b:01:1b:e6:3f:37:f8:e5:47:f5:67: 13:34:52:ad:45:a3:18:c6:df:1f:50:41:7d:ef:04: 1e:02:2c:6e:b6:8a:ae:65:8c:88:a0:15:3d:30:c7: f2:16:0d:a9:2f:45:08:f7:6f:5a:ce:4d:e9:87:e6: 3e:73:a9:ed:c0:4a:06:93:6b:8c:a6:d6:29:86:37: ef:d5:50:bb:16:b6:83:cb:a4:d3:ef:a4:b3:6a:52: 2c:77:54:3c:3c:a0:bc:70:6d:74:9f:93:29:e3:24: ba:f7:25:98:ea:f4:16:a9:27:7d:b9:a1:ed:73:6a: 78:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:72:96:8F:67:C0:64:E5:CE:22:3B:42:24:5F:C7:F8:2A:91:C9:5E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a649a23c-1e8e-45ad-bd04-c8fa20a62c33.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 149.98.0.0/16 Signature Algorithm: sha256WithRSAEncryption 15:ac:72:a2:d3:2b:07:ff:41:94:2e:f4:77:57:79:27:0c:01: fe:cc:e0:a5:78:45:45:b0:58:38:9a:b9:1e:72:ae:5b:0c:cc: b5:a7:26:58:d6:11:15:74:9e:fb:55:13:4a:70:7b:8e:6f:4b: 54:b3:5b:52:81:b1:b5:de:09:6f:a1:66:79:af:13:53:92:03: 5c:ef:2c:d6:3f:6c:b4:f0:5c:c0:a9:b4:ed:4c:fb:06:5a:85: 72:79:b2:7b:c1:5c:30:a6:48:ec:5e:12:e6:11:64:14:de:c1: 4c:d3:f3:1d:74:22:62:98:91:61:78:9d:87:c1:ad:52:cd:3b: 4e:31:f5:f0:39:b0:87:53:84:b8:2e:eb:e7:e7:59:90:39:4f: 58:79:1f:09:bd:d8:4c:88:31:5d:46:6c:fd:84:e8:70:dd:6d: 53:c1:26:7d:66:55:c5:82:02:17:ea:1f:16:df:94:39:36:3b: 3d:3a:54:e5:9f:13:d6:77:1f:12:7e:61:5c:e6:3e:23:6f:4d: 33:57:3b:5e:75:81:55:01:64:cf:7f:44:a5:9e:d9:c4:bf:62: d6:1a:12:3e:12:b2:50:ff:20:8f:ee:16:44:ae:cc:84:9d:05: db:3f:3a:b8:0d:bb:33:0d:67:ea:5b:8f:fb:fd:e5:ec:e2:ce: 2d:38:ef:f4 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUR0eLOZl1Vzb64MyTZV68WKb+MaYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE4MTUxMDE2WhcNMjUwOTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0AzYzE0ZmZmNDA1ODM5ZGNiYTU2OGVmZTc5MzA2NDkwZmM4 OTYxNDhmZGI2OWY3YzVlMzU3ZDhiNWYyZGM5ODRiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCTXhbxiRHzx8hP9XH/WrRWoOJ1RpzjE7nzq7j9jqh8QeT7 23lMILWZs4SzVhr80a9QjqpqxO9QuyerYJP2WFYOqcUie+wZC4XlONIn35K9l1m2 1waa5eAWn6KaTItPBq8WTuWBTqo9b7R76Ep816AuBAphtliHDFCUhinCeWqx8Ysg 9uYJWP3Nw/trARvmPzf45Uf1ZxM0Uq1FoxjG3x9QQX3vBB4CLG62iq5ljIigFT0w x/IWDakvRQj3b1rOTemH5j5zqe3ASgaTa4ym1imGN+/VULsWtoPLpNPvpLNqUix3 VDw8oLxwbXSfkynjJLr3JZjq9BapJ325oe1zangbAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUi3KWj2fAZOXOIjtCJF/H+CqRyV4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E2NDlhMjNjLTFlOGUtNDVhZC1iZDA0LWM4ZmEyMGE2MmMzMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCVYjANBgkqhkiG9w0BAQsFAAOCAQEAFaxyotMrB/9BlC70d1d5JwwB/szg pXhFRbBYOJq5HnKuWwzMtacmWNYRFXSe+1UTSnB7jm9LVLNbUoGxtd4Jb6Fmea8T U5IDXO8s1j9stPBcwKm07Uz7BlqFcnmye8FcMKZI7F4S5hFkFN7BTNPzHXQiYpiR YXidh8GtUs07TjH18Dmwh1OEuC7r5+dZkDlPWHkfCb3YTIgxXUZs/YTocN1tU8Em fWZVxYICF+ofFt+UOTY7PTpU5Z8T1ncfEn5hXOY+I29NM1c7XnWBVQFkz39EpZ7Z xL9i1hoSPhKyUP8gj+4WRK7MhJ0F2z86uA27Mw1n6luP+/3l7OLOLTjv9A== -----END CERTIFICATE-----Generated at Sat Aug 23 10:08:56 2025 by rpki-client