$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b2262b90-44fa-401f-842c-4ae44ec786a4.roa File: b2262b90-44fa-401f-842c-4ae44ec786a4.roa (raw, json) Hash identifier: TcI5Rs8E65j7/IkprAgoBfMb6F0TRjA/sI8lf0ibC0M= Subject key identifier: 41:89:E3:9A:AD:CF:1E:18:D8:90:92:33:5D:13:C0:BD:A8:49:46:FB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1E1E536A8F39751EAD6A4A14821DFD9802A64CFF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b2262b90-44fa-401f-842c-4ae44ec786a4.roa Signing time: Mon 18 Aug 2025 15:21:48 +0000 ROA not before: Mon 18 Aug 2025 15:21:48 +0000 ROA not after: Mon 22 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 184.73.144.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:1e:53:6a:8f:39:75:1e:ad:6a:4a:14:82:1d:fd:98:02:a6:4c:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 18 15:21:48 2025 GMT Not After : Sep 22 23:59:59 2025 GMT Subject: serialNumber=37245830f8fe35f7d95ea486fb6e290f9b8888bdc2029309fed9b99aad260b4c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:d4:8c:42:18:5d:4d:db:3a:c3:96:b9:4d:96: 41:0d:a5:19:30:db:b3:0b:29:56:bc:24:4b:68:07: d7:51:2c:81:27:cf:bb:3b:c1:fd:8b:a9:ca:a1:c7: af:50:40:43:ef:d7:57:05:dd:53:8b:7f:78:27:c1: 2e:23:5c:88:01:e8:ad:51:da:99:88:9f:27:b8:d7: 1f:e7:72:e5:a5:55:99:35:6f:b5:19:18:40:01:cd: 01:c5:6d:94:cf:b0:a5:cd:cf:c7:c5:04:d1:10:77: 37:d5:c9:0f:07:72:52:1e:7e:ff:3b:27:a1:b1:de: da:f9:d9:fd:60:a9:f5:79:c5:25:dd:a8:c2:b0:26: 68:f6:f1:4c:c5:9f:25:9f:5e:73:42:99:22:79:fa: e5:92:c0:64:9e:4c:e4:49:15:fb:73:ce:fb:ee:26: 3c:a4:ad:f1:35:06:cc:a1:42:9f:0e:be:35:7d:4c: 81:43:b4:58:b6:e5:68:1a:78:a2:53:1c:a5:64:c3: b7:e0:b7:34:79:c6:8f:f6:ea:e3:06:1d:0d:d3:df: 55:a0:d1:06:dc:55:e0:f2:1b:06:4c:62:2d:67:48: 08:72:93:65:6f:01:cf:22:78:95:84:e4:26:ed:d7: 29:13:ea:38:9d:f2:39:ca:65:e5:e1:2e:7c:9f:23: 96:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:89:E3:9A:AD:CF:1E:18:D8:90:92:33:5D:13:C0:BD:A8:49:46:FB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b2262b90-44fa-401f-842c-4ae44ec786a4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 184.73.144.0/21 Signature Algorithm: sha256WithRSAEncryption 09:6d:2c:1f:fc:77:e7:b3:37:11:a2:c5:81:30:d8:ce:99:67: f7:0c:8d:61:33:3b:b4:9c:2e:ea:49:69:2b:c5:8d:9b:63:9d: ef:8a:a1:b7:36:b8:53:49:5e:92:30:10:12:31:a3:08:45:85: 60:77:21:45:ed:4d:e7:66:f8:b2:c0:5e:f5:87:80:e9:0e:0b: 38:22:f9:13:8d:31:e2:20:be:4d:bc:1c:9e:29:a7:df:e5:a6: 6d:12:c1:bb:43:a0:72:e8:cb:84:41:f3:33:d8:4d:1e:e8:68: 18:18:d1:12:3c:c0:64:9f:c0:2a:d0:1c:fa:02:b2:a8:4b:db: e5:03:68:a4:ff:3e:16:41:ea:6f:ca:db:1b:c3:83:e2:c4:73: 5a:9f:8f:4d:48:8b:b8:28:4f:a5:cf:ce:c2:bc:1a:98:0a:63: db:ed:fc:9d:33:31:f5:51:98:18:27:a4:6a:23:38:ac:aa:4d: 9f:7e:58:08:b8:a9:f1:30:7c:a8:e6:6e:31:cb:b7:2d:ce:40: 06:c6:4e:a8:13:14:7f:99:08:ba:4b:4f:f9:bf:d6:8a:22:79: 52:ab:39:08:bb:ec:7d:cd:df:3d:63:61:4e:ee:21:97:e5:84: 2d:bd:15:a8:c8:50:c7:69:e0:04:7b:d9:94:46:a1:4b:85:2c: 4e:23:19:f5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHh5Tao85dR6takoUgh39mAKmTP8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE4MTUyMTQ4WhcNMjUwOTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0AzNzI0NTgzMGY4ZmUzNWY3ZDk1ZWE0ODZmYjZlMjkwZjli ODg4OGJkYzIwMjkzMDlmZWQ5Yjk5YWFkMjYwYjRjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDB1IxCGF1N2zrDlrlNlkENpRkw27MLKVa8JEtoB9dRLIEn z7s7wf2Lqcqhx69QQEPv11cF3VOLf3gnwS4jXIgB6K1R2pmInye41x/ncuWlVZk1 b7UZGEABzQHFbZTPsKXNz8fFBNEQdzfVyQ8HclIefv87J6Gx3tr52f1gqfV5xSXd qMKwJmj28UzFnyWfXnNCmSJ5+uWSwGSeTORJFftzzvvuJjykrfE1BsyhQp8OvjV9 TIFDtFi25WgaeKJTHKVkw7fgtzR5xo/26uMGHQ3T31Wg0QbcVeDyGwZMYi1nSAhy k2VvAc8ieJWE5Cbt1ykT6jid8jnKZeXhLnyfI5a1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQYnjmq3PHhjYkJIzXRPAvahJRvswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IyMjYyYjkwLTQ0ZmEtNDAxZi04NDJjLTRhZTQ0ZWM3ODZhNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAO4SZAwDQYJKoZIhvcNAQELBQADggEBAAltLB/8d+ezNxGixYEw2M6ZZ/cM jWEzO7ScLupJaSvFjZtjne+Kobc2uFNJXpIwEBIxowhFhWB3IUXtTedm+LLAXvWH gOkOCzgi+RONMeIgvk28HJ4pp9/lpm0SwbtDoHLoy4RB8zPYTR7oaBgY0RI8wGSf wCrQHPoCsqhL2+UDaKT/PhZB6m/K2xvDg+LEc1qfj01Ii7goT6XPzsK8GpgKY9vt /J0zMfVRmBgnpGojOKyqTZ9+WAi4qfEwfKjmbjHLty3OQAbGTqgTFH+ZCLpLT/m/ 1ooieVKrOQi77H3N3z1jYU7uIZflhC29FajIUMdp4AR72ZRGoUuFLE4jGfU= -----END CERTIFICATE-----Generated at Sat Aug 23 10:22:28 2025 by rpki-client