$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7a166f1-f6b0-46bb-9a51-7cd66b150b0b.roa File: a7a166f1-f6b0-46bb-9a51-7cd66b150b0b.roa (raw, json) Hash identifier: HW82FhsRTV9WQyR0visCZKwhJGGoknyQhvWMNQWWUCk= Subject key identifier: 9C:8C:92:9C:78:08:21:C4:39:9D:87:EF:83:27:2C:4A:47:38:34:97 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1FED65EE5F98B20670AD1493FFBB3D6FBFB0049C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7a166f1-f6b0-46bb-9a51-7cd66b150b0b.roa Signing time: Fri 01 Aug 2025 15:11:00 +0000 ROA not before: Fri 01 Aug 2025 15:11:00 +0000 ROA not after: Fri 05 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 169.155.88.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:ed:65:ee:5f:98:b2:06:70:ad:14:93:ff:bb:3d:6f:bf:b0:04:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 1 15:11:00 2025 GMT Not After : Sep 5 23:59:59 2025 GMT Subject: serialNumber=ddfa60dfe1103be2b5af74dd972865e3f8b2cebbad0f1294d10df2690644b6b6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:aa:c7:72:4f:7e:ed:55:55:ad:4c:40:ef:4b: e1:79:08:2c:06:55:fa:41:9f:d0:24:dc:c8:3a:24: 4d:86:80:0f:8c:c3:ce:48:8f:9a:12:5b:5b:2b:d2: 26:f0:4f:99:9d:39:cd:9c:ca:ef:ae:4e:c6:99:f2: 7e:9f:eb:87:37:be:a5:67:5c:03:e1:6d:73:9a:d3: 9f:86:ff:20:f7:72:88:b6:71:35:f6:07:f7:96:a0: 10:e8:02:b3:53:e8:99:43:4e:99:9a:5b:a1:e8:bc: d8:6c:c1:e7:0f:fc:94:b5:93:85:21:24:db:f9:b5: ca:b6:5b:e4:7f:54:82:31:71:7f:e2:54:63:7f:62: 18:82:04:89:8e:17:e9:ba:37:75:25:df:c1:c4:98: 1f:66:34:a8:8d:8c:3d:0d:82:95:d8:6a:d2:12:f1: 9e:24:f8:a1:02:6c:bf:dc:6f:5b:6e:b5:92:14:f9: 12:cd:90:d1:97:e1:be:ff:66:73:9b:37:a8:7e:12: 56:d5:2f:02:ca:8f:4b:d4:87:0e:14:76:0a:31:c0: 15:f3:a6:2b:8a:54:f9:3f:83:28:57:c2:ff:49:2e: b6:e9:d9:8f:95:be:b6:3f:c1:8b:80:a0:98:1c:44: 6c:9b:1f:c0:d6:2f:1a:29:ff:01:87:ef:bf:80:88: e0:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:8C:92:9C:78:08:21:C4:39:9D:87:EF:83:27:2C:4A:47:38:34:97 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7a166f1-f6b0-46bb-9a51-7cd66b150b0b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 169.155.88.0/21 Signature Algorithm: sha256WithRSAEncryption 09:14:25:2a:68:df:47:75:1a:6e:b4:2d:50:e0:1a:38:18:61: 40:49:38:c2:63:4a:75:e5:7e:34:f5:c6:d4:3e:96:27:77:38: e4:29:2a:74:f5:60:a7:bd:90:e2:f5:c7:b8:f0:8d:a6:0b:c2: bb:0f:12:c9:6c:0c:d1:13:2a:99:ce:af:24:e3:99:22:ec:a6: c9:90:4c:7d:0d:7c:44:a0:06:a3:ca:90:c4:6d:c3:dc:be:30: 7f:80:0e:3c:43:48:8b:0d:f6:cd:04:1a:bf:e1:ea:bd:50:23: fd:c7:aa:0d:5c:2a:6f:31:0d:ef:69:78:f5:a1:49:a0:aa:dc: 54:e6:36:3b:ab:7d:4d:8a:26:67:fa:62:78:b5:c1:7f:32:f8: b2:fe:2c:ca:e1:72:34:9e:68:78:e2:7b:aa:ea:e2:98:b2:32: de:1a:90:11:15:5e:df:52:fd:c9:03:15:3e:c7:42:b3:73:f0: f8:c4:ae:4b:d2:45:a7:db:18:f2:86:bb:a9:ba:c8:94:48:40: 14:b4:12:68:57:8b:61:c9:e6:b8:84:33:90:ea:9d:83:fd:6c: 9e:3d:c3:6d:23:b4:bf:d2:39:4e:da:d8:cb:97:4a:e4:f1:34: ad:bb:75:dd:86:f1:d1:02:7a:45:9c:02:e8:5a:de:28:2e:ab: f0:7e:00:04 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUH+1l7l+YsgZwrRST/7s9b7+wBJwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAxMTUxMTAwWhcNMjUwOTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BkZGZhNjBkZmUxMTAzYmUyYjVhZjc0ZGQ5NzI4NjVlM2Y4 YjJjZWJiYWQwZjEyOTRkMTBkZjI2OTA2NDRiNmI2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmqsdyT37tVVWtTEDvS+F5CCwGVfpBn9Ak3Mg6JE2GgA+M w85Ij5oSW1sr0ibwT5mdOc2cyu+uTsaZ8n6f64c3vqVnXAPhbXOa05+G/yD3coi2 cTX2B/eWoBDoArNT6JlDTpmaW6HovNhswecP/JS1k4UhJNv5tcq2W+R/VIIxcX/i VGN/YhiCBImOF+m6N3Ul38HEmB9mNKiNjD0NgpXYatIS8Z4k+KECbL/cb1tutZIU +RLNkNGX4b7/ZnObN6h+ElbVLwLKj0vUhw4UdgoxwBXzpiuKVPk/gyhXwv9JLrbp 2Y+VvrY/wYuAoJgcRGybH8DWLxop/wGH77+AiOBFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUnIySnHgIIcQ5nYfvgycsSkc4NJcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E3YTE2NmYxLWY2YjAtNDZiYi05YTUxLTdjZDY2YjE1MGIwYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAOpm1gwDQYJKoZIhvcNAQELBQADggEBAAkUJSpo30d1Gm60LVDgGjgYYUBJ OMJjSnXlfjT1xtQ+lid3OOQpKnT1YKe9kOL1x7jwjaYLwrsPEslsDNETKpnOryTj mSLspsmQTH0NfESgBqPKkMRtw9y+MH+ADjxDSIsN9s0EGr/h6r1QI/3Hqg1cKm8x De9pePWhSaCq3FTmNjurfU2KJmf6Yni1wX8y+LL+LMrhcjSeaHjie6rq4piyMt4a kBEVXt9S/ckDFT7HQrNz8PjErkvSRafbGPKGu6m6yJRIQBS0EmhXi2HJ5riEM5Dq nYP9bJ49w20jtL/SOU7a2MuXSuTxNK27dd2G8dECekWcAuha3iguq/B+AAQ= -----END CERTIFICATE-----Generated at Sat Aug 23 12:31:34 2025 by rpki-client