$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a9d0356d-ebd3-4994-9756-b2199398d95a.roa File: a9d0356d-ebd3-4994-9756-b2199398d95a.roa (raw, json) Hash identifier: 1fxdRyk4wGXobbJOT4/HlDIswGkRyiU1HYRULrM6UuQ= Subject key identifier: 29:96:55:5B:AE:B5:19:97:92:D5:F1:C4:B3:5A:A1:AC:78:B9:E6:1F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5D25AA1286DF888E7265E9343BBC7108E09C515F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a9d0356d-ebd3-4994-9756-b2199398d95a.roa Signing time: Fri 22 Aug 2025 00:31:59 +0000 ROA not before: Fri 22 Aug 2025 00:31:59 +0000 ROA not after: Fri 26 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.198.66.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:25:aa:12:86:df:88:8e:72:65:e9:34:3b:bc:71:08:e0:9c:51:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 22 00:31:59 2025 GMT Not After : Sep 26 23:59:59 2025 GMT Subject: serialNumber=9bcc3c884793d349918f921fe1b151ad40515f246c4f81481bcbf5780381c31e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:5e:70:4e:c1:54:d5:d4:38:60:3f:5a:dd:d4: 90:7b:9e:0b:77:9a:5e:9f:90:ae:16:4d:0a:20:d5: b0:9c:81:58:0c:13:a4:8e:49:46:bf:e8:ff:07:f6: 04:1a:1f:18:af:d3:97:59:47:f6:8f:02:91:25:b7: 16:a2:6a:9d:e9:57:61:eb:bc:ed:63:be:cf:c0:24: ed:a9:dc:41:4f:d9:1c:89:c0:1d:f5:63:99:af:c7: 55:6f:51:5a:85:17:27:9d:4d:04:0b:df:8f:1f:2a: 21:3e:37:e1:01:f1:da:f2:95:b7:c2:58:e2:b9:83: b8:9e:57:29:3d:2e:38:d7:07:b5:91:4c:39:c7:9f: 6d:83:60:40:01:f1:5a:17:0f:30:2b:72:8f:c8:92: a0:95:1d:0d:d5:d9:b4:c1:d4:63:89:8a:80:28:54: 3a:a8:c0:ca:70:5c:e9:4b:3a:f1:a4:a3:48:1e:a0: ae:52:ac:7e:94:75:1d:2f:00:a3:8c:bc:f2:e3:fc: 89:4f:3a:b8:92:c2:5a:98:40:fc:4d:1a:f3:37:79: 11:5f:42:79:6c:8d:36:61:f6:6b:b4:94:a6:d6:8d: 52:9a:15:58:f7:ff:d5:a5:55:95:70:ca:fa:e1:d7: 0a:c1:ee:c4:dc:9f:25:0a:a5:d4:87:de:2e:bc:3e: e2:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:96:55:5B:AE:B5:19:97:92:D5:F1:C4:B3:5A:A1:AC:78:B9:E6:1F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a9d0356d-ebd3-4994-9756-b2199398d95a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.198.66.0/24 Signature Algorithm: sha256WithRSAEncryption 24:2d:ff:54:e2:33:d5:c0:49:62:d5:e0:68:21:91:56:20:aa: 23:a3:e6:5c:e7:89:0b:00:27:c9:6a:30:81:87:73:b3:d3:6f: c6:b1:b0:15:72:60:1a:ee:6c:9f:82:3f:5c:bc:c4:2e:28:f2: 56:fe:be:37:0d:35:7a:53:57:2c:ef:97:59:ad:06:29:64:f0: 58:e0:cc:33:84:5b:c6:80:eb:dd:88:01:ad:76:51:17:02:1f: d0:0c:c8:07:c0:18:59:80:bc:b1:bf:77:51:72:0c:68:55:dd: 1d:b0:f7:f1:2b:51:64:3a:ee:96:02:26:0d:3c:1e:59:22:9f: 53:80:f1:0e:b1:b3:05:86:52:42:34:2a:fc:34:6b:fc:d5:56: 85:69:f2:7a:b6:0e:a5:78:07:47:c8:42:67:1b:72:11:63:b1: e9:9e:62:f4:51:ec:01:65:f8:2c:bf:53:84:c5:94:1a:80:46: 43:78:ca:22:e4:04:6d:b0:ad:53:72:38:86:c2:87:cf:4b:a2: f6:38:47:24:f5:de:b6:0d:f0:32:fb:19:95:32:c0:af:26:85: df:dc:6a:db:19:56:0a:02:6f:99:5b:a8:f0:9c:4e:f0:1e:d0: fb:98:52:13:32:2d:80:f9:58:1d:c6:6d:c4:c5:25:d6:b4:02: 59:83:79:cc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXSWqEobfiI5yZek0O7xxCOCcUV8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODIyMDAzMTU5WhcNMjUwOTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A5YmNjM2M4ODQ3OTNkMzQ5OTE4ZjkyMWZlMWIxNTFhZDQw NTE1ZjI0NmM0ZjgxNDgxYmNiZjU3ODAzODFjMzFlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjXnBOwVTV1DhgP1rd1JB7ngt3ml6fkK4WTQog1bCcgVgM E6SOSUa/6P8H9gQaHxiv05dZR/aPApEltxaiap3pV2HrvO1jvs/AJO2p3EFP2RyJ wB31Y5mvx1VvUVqFFyedTQQL348fKiE+N+EB8drylbfCWOK5g7ieVyk9LjjXB7WR TDnHn22DYEAB8VoXDzArco/IkqCVHQ3V2bTB1GOJioAoVDqowMpwXOlLOvGko0ge oK5SrH6UdR0vAKOMvPLj/IlPOriSwlqYQPxNGvM3eRFfQnlsjTZh9mu0lKbWjVKa FVj3/9WlVZVwyvrh1wrB7sTcnyUKpdSH3i68PuLtAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUKZZVW661GZeS1fHEs1qhrHi55h8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E5ZDAzNTZkLWViZDMtNDk5NC05NzU2LWIyMTk5Mzk4ZDk1YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADYxkIwDQYJKoZIhvcNAQELBQADggEBACQt/1TiM9XASWLV4GghkVYgqiOj 5lzniQsAJ8lqMIGHc7PTb8axsBVyYBrubJ+CP1y8xC4o8lb+vjcNNXpTVyzvl1mt Bilk8FjgzDOEW8aA692IAa12URcCH9AMyAfAGFmAvLG/d1FyDGhV3R2w9/ErUWQ6 7pYCJg08Hlkin1OA8Q6xswWGUkI0Kvw0a/zVVoVp8nq2DqV4B0fIQmcbchFjseme YvRR7AFl+Cy/U4TFlBqARkN4yiLkBG2wrVNyOIbCh89LovY4RyT13rYN8DL7GZUy wK8mhd/catsZVgoCb5lbqPCcTvAe0PuYUhMyLYD5WB3GbcTFJda0AlmDecw= -----END CERTIFICATE-----Generated at Sat Aug 23 07:00:09 2025 by rpki-client