$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7e4e4c8-325e-4c4d-8dfa-29db72c04b6e.roa File: a7e4e4c8-325e-4c4d-8dfa-29db72c04b6e.roa (raw, json) Hash identifier: W5yeW6cYeLiPUa94gtsLtmbgEanugfvdowSsFvo1jpI= Subject key identifier: 37:C4:16:68:77:68:63:7A:69:1C:EA:63:76:F0:B0:BF:86:8F:2C:24 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5289488A3A7DADC05178B704CCC8C22574C23328 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7e4e4c8-325e-4c4d-8dfa-29db72c04b6e.roa Signing time: Fri 08 Aug 2025 00:01:29 +0000 ROA not before: Fri 08 Aug 2025 00:01:29 +0000 ROA not after: Fri 12 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 210.89.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:89:48:8a:3a:7d:ad:c0:51:78:b7:04:cc:c8:c2:25:74:c2:33:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 8 00:01:29 2025 GMT Not After : Sep 12 23:59:59 2025 GMT Subject: serialNumber=61c72a3b3fc338f0a543ec959ee61aac97335b0c4bf5d7a835d4fa833f33d631, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:2d:52:cc:bf:5f:6b:cc:8f:21:7f:6b:bb:95: c6:d6:07:4c:e3:7a:2b:9a:97:da:01:14:06:1d:49: 19:a4:7b:6d:dd:6a:96:53:be:71:3c:39:a9:05:dd: f7:9f:e6:96:5b:2c:7c:19:3f:0c:db:5f:b6:a0:71: ad:f2:1a:bd:8d:8a:bf:e6:5c:b5:c8:6e:ba:aa:35: e6:47:c4:a9:2e:64:47:c0:cd:ec:6a:51:89:d6:b4: 7d:d9:3f:e1:d8:72:e7:f7:4b:20:e7:4f:b9:b2:76: b1:b2:fe:a1:69:44:3e:dc:b8:bf:57:a4:92:d3:41: fe:e9:98:d5:c0:0a:ad:c6:e2:36:99:3d:2f:5a:62: c4:b1:8f:40:c7:5e:7b:74:1b:4a:86:3b:c0:2c:ff: de:79:78:a7:81:23:ea:22:e0:dd:06:89:35:8d:b1: 2c:77:0b:9b:0d:0e:d2:a9:c0:3c:6a:a5:87:be:c8: 6b:58:85:23:c1:3d:38:49:ba:3a:91:51:a9:55:f6: a6:2b:1a:29:e8:51:06:15:f7:48:ed:36:85:cd:6c: fa:1d:18:a7:fe:16:a8:85:12:85:49:f2:fc:f1:a0: 4c:0d:e8:fb:77:40:13:fd:d8:b8:1d:35:8f:25:03: b2:1d:50:72:e7:fa:62:ee:d8:e2:60:3f:39:41:2f: 8f:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:C4:16:68:77:68:63:7A:69:1C:EA:63:76:F0:B0:BF:86:8F:2C:24 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7e4e4c8-325e-4c4d-8dfa-29db72c04b6e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.89.64.0/19 Signature Algorithm: sha256WithRSAEncryption ca:b5:f7:72:b3:6c:5a:e8:75:74:fa:15:3c:d8:ff:3b:da:d7: 6c:ef:72:64:fb:16:25:b3:12:d8:d5:3c:5f:78:8d:94:fa:55: af:ad:fd:fd:2e:bc:3f:af:ec:1c:95:d1:9a:3a:f7:56:7a:fb: b3:c2:17:32:25:3c:51:e5:5c:88:dd:dc:48:8e:81:7c:17:7d: b3:4e:09:d4:09:e1:da:9e:f5:0a:a3:a9:80:cd:f2:f8:44:0e: 2f:34:32:a1:6f:75:3e:34:23:b9:a9:a9:8c:89:ad:d1:0d:96: 6a:25:05:9c:f3:55:08:ab:4d:05:05:28:41:2a:a2:93:88:a8: c9:83:ae:ef:83:73:f9:4c:ed:57:fd:3d:3e:ff:b9:3b:d7:25: 55:12:2d:61:66:b2:c7:38:a7:65:b8:0f:e4:4b:18:c9:62:57: b7:fe:10:d0:f3:7e:dd:e0:a8:b7:43:78:35:2e:94:2f:16:3c: 35:ae:0a:1d:75:75:4f:2f:5a:b0:2f:c3:b3:a4:6a:e0:e9:2f: 59:e8:45:28:fd:00:38:e3:50:57:3b:33:8b:b0:92:60:f7:a3: 4c:92:de:80:cc:d7:65:3c:92:29:06:a0:41:f5:c3:83:22:42: b6:66:25:e2:4e:5c:3d:11:e0:2d:41:41:41:9e:d2:f9:1b:30: 63:a6:a8:04 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUolIijp9rcBReLcEzMjCJXTCMygwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA4MDAwMTI5WhcNMjUwOTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A2MWM3MmEzYjNmYzMzOGYwYTU0M2VjOTU5ZWU2MWFhYzk3 MzM1YjBjNGJmNWQ3YTgzNWQ0ZmE4MzNmMzNkNjMxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCOLVLMv19rzI8hf2u7lcbWB0zjeiual9oBFAYdSRmke23d apZTvnE8OakF3fef5pZbLHwZPwzbX7agca3yGr2Nir/mXLXIbrqqNeZHxKkuZEfA zexqUYnWtH3ZP+HYcuf3SyDnT7mydrGy/qFpRD7cuL9XpJLTQf7pmNXACq3G4jaZ PS9aYsSxj0DHXnt0G0qGO8As/955eKeBI+oi4N0GiTWNsSx3C5sNDtKpwDxqpYe+ yGtYhSPBPThJujqRUalV9qYrGinoUQYV90jtNoXNbPodGKf+FqiFEoVJ8vzxoEwN 6Pt3QBP92LgdNY8lA7IdUHLn+mLu2OJgPzlBL4/vAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUN8QWaHdoY3ppHOpjdvCwv4aPLCQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E3ZTRlNGM4LTMyNWUtNGM0ZC04ZGZhLTI5ZGI3MmMwNGI2ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXSWUAwDQYJKoZIhvcNAQELBQADggEBAMq193KzbFrodXT6FTzY/zva12zv cmT7FiWzEtjVPF94jZT6Va+t/f0uvD+v7ByV0Zo691Z6+7PCFzIlPFHlXIjd3EiO gXwXfbNOCdQJ4dqe9QqjqYDN8vhEDi80MqFvdT40I7mpqYyJrdENlmolBZzzVQir TQUFKEEqopOIqMmDru+Dc/lM7Vf9PT7/uTvXJVUSLWFmssc4p2W4D+RLGMliV7f+ ENDzft3gqLdDeDUulC8WPDWuCh11dU8vWrAvw7OkauDpL1noRSj9ADjjUFc7M4uw kmD3o0yS3oDM12U8kikGoEH1w4MiQrZmJeJOXD0R4C1BQUGe0vkbMGOmqAQ= -----END CERTIFICATE-----Generated at Sat Aug 23 10:19:20 2025 by rpki-client