$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b291d7d3-1582-4d15-9362-848d2950798a.roa File: b291d7d3-1582-4d15-9362-848d2950798a.roa (raw, json) Hash identifier: +dg6XSyKXPJDUiu+i8Fr9pSyBafNSmWdRZ2Ryt/KVEw= Subject key identifier: DE:FC:35:8D:19:E8:98:33:07:EF:31:0A:5D:2D:A8:90:3F:18:BF:25 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 36A0AAAEF2BDD305B418701D7FC03BE646C07CE8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b291d7d3-1582-4d15-9362-848d2950798a.roa Signing time: Mon 11 Aug 2025 15:20:20 +0000 ROA not before: Mon 11 Aug 2025 15:20:20 +0000 ROA not after: Mon 15 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 198.148.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:a0:aa:ae:f2:bd:d3:05:b4:18:70:1d:7f:c0:3b:e6:46:c0:7c:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 11 15:20:20 2025 GMT Not After : Sep 15 23:59:59 2025 GMT Subject: serialNumber=8576997419a0684840efc4930b5dff6172cb9a39ccea4a56a27fc2c9b7efc158, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:77:c3:af:f5:23:05:b1:98:1e:f2:40:b6:79: 8c:2c:e5:fe:06:c6:1b:59:43:96:48:7d:98:28:0c: dd:5b:f6:b6:56:8d:0b:3c:fd:16:ac:a4:38:b4:2e: 3e:a5:6a:40:b5:19:09:eb:fd:0f:87:fd:cf:af:a2: fe:ac:ff:1b:75:c2:a0:25:2d:51:f6:92:b5:36:95: a7:af:9b:18:5a:2a:d9:10:bd:4c:0e:15:0f:4e:94: 41:1c:2d:26:96:6d:24:9c:ac:37:7e:c4:70:12:34: e7:53:77:c0:b3:fb:fa:6f:94:7c:ec:72:3e:ca:64: cc:5a:1b:ba:1c:b8:d2:a3:59:9d:30:c3:41:02:4d: 69:b1:89:3a:e9:24:8b:5f:ce:10:fc:ab:d8:1a:eb: fb:87:5d:52:02:c9:29:e2:47:4b:22:e0:88:7e:d5: 05:a3:98:b3:60:e9:68:df:ad:f4:56:9c:3f:3b:5f: 34:6b:6e:c2:ec:7d:e2:f3:a1:7b:73:0f:43:75:d8: cd:d6:a0:ff:f6:31:47:a6:6f:95:83:0e:93:64:32: 2f:e4:15:0f:2c:f7:b9:9a:98:6b:3b:44:37:fe:95: d0:a0:99:34:1e:8c:34:26:76:73:98:37:67:cb:35: 1a:77:47:f0:a8:64:b1:46:27:a4:2c:0a:7e:fc:8e: 6c:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:FC:35:8D:19:E8:98:33:07:EF:31:0A:5D:2D:A8:90:3F:18:BF:25 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b291d7d3-1582-4d15-9362-848d2950798a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.148.96.0/19 Signature Algorithm: sha256WithRSAEncryption aa:f9:96:39:4f:5b:ab:7e:c3:4e:1d:fd:64:fa:fc:8a:81:8a: be:b3:2a:10:3f:6e:99:4c:95:28:4b:8d:d2:a1:32:f1:e2:8d: ad:57:13:6c:3d:93:ea:c0:9f:fa:8c:a0:a2:be:6e:9a:a7:b4: 09:da:29:83:e1:c7:7e:36:98:91:8a:fd:43:ca:c3:a7:06:ab: c3:cd:1c:83:ae:e8:fa:7d:d9:a9:27:c6:cc:20:1b:fd:4e:26: 8c:40:df:08:de:d5:4a:bb:31:26:a3:57:4b:8f:41:a7:63:81: 44:51:90:69:61:2e:93:b0:e7:1f:79:d5:0f:02:5d:c5:8d:c1: c7:f4:c7:c4:89:34:c7:7c:13:45:2b:3e:3f:38:fe:6c:3e:74: f4:ce:d5:20:62:43:98:26:40:a3:59:bd:8d:9f:d1:b0:8c:f5: 03:2b:3e:d1:8e:02:c1:f8:b9:3b:af:9d:b8:82:89:96:3e:30: a4:42:0a:aa:b6:1e:07:6a:f7:09:73:ff:b3:cc:1d:1f:d9:6c: 34:9c:41:d0:d6:28:c1:6b:38:6c:d9:e3:69:da:21:51:a8:02: 2b:94:f9:ca:24:5d:9f:c9:8c:7d:14:d0:4f:67:2a:ab:8d:1a: b7:2c:9c:ee:ec:0a:50:34:c0:b5:04:13:89:5d:19:61:16:d2: 2f:5f:98:05 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNqCqrvK90wW0GHAdf8A75kbAfOgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODExMTUyMDIwWhcNMjUwOTE1MjM1OTU5 WjB6MUkwRwYDVQQFE0A4NTc2OTk3NDE5YTA2ODQ4NDBlZmM0OTMwYjVkZmY2MTcy Y2I5YTM5Y2NlYTRhNTZhMjdmYzJjOWI3ZWZjMTU4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDqd8Ov9SMFsZge8kC2eYws5f4GxhtZQ5ZIfZgoDN1b9rZW jQs8/RaspDi0Lj6lakC1GQnr/Q+H/c+vov6s/xt1wqAlLVH2krU2laevmxhaKtkQ vUwOFQ9OlEEcLSaWbSScrDd+xHASNOdTd8Cz+/pvlHzscj7KZMxaG7ocuNKjWZ0w w0ECTWmxiTrpJItfzhD8q9ga6/uHXVICySniR0si4Ih+1QWjmLNg6WjfrfRWnD87 XzRrbsLsfeLzoXtzD0N12M3WoP/2MUemb5WDDpNkMi/kFQ8s97mamGs7RDf+ldCg mTQejDQmdnOYN2fLNRp3R/CoZLFGJ6QsCn78jmxRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU3vw1jRnomDMH7zEKXS2okD8YvyUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IyOTFkN2QzLTE1ODItNGQxNS05MzYyLTg0OGQyOTUwNzk4YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXGlGAwDQYJKoZIhvcNAQELBQADggEBAKr5ljlPW6t+w04d/WT6/IqBir6z KhA/bplMlShLjdKhMvHija1XE2w9k+rAn/qMoKK+bpqntAnaKYPhx342mJGK/UPK w6cGq8PNHIOu6Pp92aknxswgG/1OJoxA3wje1Uq7MSajV0uPQadjgURRkGlhLpOw 5x951Q8CXcWNwcf0x8SJNMd8E0UrPj84/mw+dPTO1SBiQ5gmQKNZvY2f0bCM9QMr PtGOAsH4uTuvnbiCiZY+MKRCCqq2Hgdq9wlz/7PMHR/ZbDScQdDWKMFrOGzZ42na IVGoAiuU+cokXZ/JjH0U0E9nKquNGrcsnO7sClA0wLUEE4ldGWEW0i9fmAU= -----END CERTIFICATE-----Generated at Sat Aug 23 08:22:06 2025 by rpki-client