$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b72f4616-5ee0-476d-82ee-4c547532502d.roa File: b72f4616-5ee0-476d-82ee-4c547532502d.roa (raw, json) Hash identifier: nw0xCbjXnan9KfO6dU9h9KqHH68QRpxBpjI0fjIgieY= Subject key identifier: E4:38:49:AA:98:95:BC:CA:54:9C:32:F3:F2:CC:A0:8C:3A:B1:77:23 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0897A92648909DCF45C2D58DEA5A179821C01751 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b72f4616-5ee0-476d-82ee-4c547532502d.roa Signing time: Wed 13 Aug 2025 00:00:34 +0000 ROA not before: Wed 13 Aug 2025 00:00:34 +0000 ROA not after: Wed 17 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 157.135.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:97:a9:26:48:90:9d:cf:45:c2:d5:8d:ea:5a:17:98:21:c0:17:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 13 00:00:34 2025 GMT Not After : Sep 17 23:59:59 2025 GMT Subject: serialNumber=e4eb0a5b0a8ce702fd469045d54dd1d6ef532b20583871fb88b77651216edcd1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d5:c6:51:56:62:68:7b:a0:74:20:14:52:d4: de:62:04:91:b9:53:69:92:e4:e7:f0:83:0c:3b:57: 3a:e2:30:ac:04:b4:3b:e9:3a:fd:b9:b7:4f:28:ab: cf:9a:95:d2:23:03:cc:e2:ae:79:96:3a:5c:05:9b: 44:1b:3a:44:90:e9:32:40:16:e6:18:b2:a9:28:99: 85:ae:f8:a2:20:e3:bf:e7:fa:3a:a3:6e:ee:53:65: 40:4f:c1:e4:76:55:2c:5f:e1:b7:11:6d:9b:29:3b: c2:e0:f9:aa:f5:4b:2f:50:0a:a3:95:12:1e:42:c3: 9c:fa:be:fa:a5:3b:b3:37:18:2b:98:2b:a1:08:88: 5f:00:fa:0c:1e:d9:04:bd:81:16:83:21:7c:0d:e0: 50:a0:a7:b9:c4:d7:2e:0f:0b:7a:9c:64:71:e0:94: 1f:f5:c6:57:c7:47:67:26:ec:15:e7:a3:dd:70:5b: b1:f1:b0:63:32:24:c6:2c:64:78:7a:8c:1c:f3:b7: 06:dd:d8:33:e5:2a:2b:fe:7c:21:f7:f0:de:e1:76: 23:1a:c3:fe:b7:7c:06:09:40:2f:8d:10:cc:c2:95: e9:3f:d0:54:ee:22:72:7d:0e:d9:e2:ff:8f:46:10: c2:73:6f:b6:76:79:48:1c:8d:9e:c6:00:52:3a:ae: 71:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:38:49:AA:98:95:BC:CA:54:9C:32:F3:F2:CC:A0:8C:3A:B1:77:23 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b72f4616-5ee0-476d-82ee-4c547532502d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.135.0.0/16 Signature Algorithm: sha256WithRSAEncryption 79:2d:39:02:16:54:a9:3d:b2:65:22:1b:9c:be:c1:7f:b7:3f: bf:3f:a2:00:a4:17:b8:5a:05:74:19:dc:bb:5f:63:fb:b5:d4: fa:ff:86:36:a5:4c:80:c7:b4:e0:0d:e1:a1:e6:86:2a:a6:6e: 37:60:4f:6c:3a:73:01:31:94:cd:80:44:c0:28:f0:d6:8b:3c: 23:21:01:39:4b:65:a6:0f:a5:17:53:e2:d7:07:79:55:d4:ff: c6:18:43:4e:b3:4f:42:f4:d2:90:cb:d2:26:1a:4b:31:34:3c: 94:72:c9:aa:e9:81:1f:b6:2a:fa:d3:f8:68:ae:24:16:00:d3: 95:44:b3:4f:df:55:26:18:34:1a:ad:82:3d:04:8a:d3:48:e7: 51:66:ec:7e:2b:7d:86:f2:9d:3a:c4:b3:43:c8:77:76:84:eb: 3f:aa:b6:05:d3:29:f2:60:c7:42:1e:15:2d:7f:de:7e:93:b7: aa:e3:b8:ea:43:8e:79:a9:1c:82:8b:e9:df:69:74:94:fc:e4: cc:81:db:20:91:00:bb:d8:b1:ef:c5:76:65:8b:6e:5b:0c:81: 44:b5:45:dd:70:21:e1:2b:9f:8e:05:9a:bc:00:11:d2:49:d1: 17:f9:14:df:23:ef:2c:c9:28:78:5c:f6:38:2f:6b:4b:4e:ec: 9b:91:dc:df -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUCJepJkiQnc9FwtWN6loXmCHAF1EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEzMDAwMDM0WhcNMjUwOTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNGViMGE1YjBhOGNlNzAyZmQ0NjkwNDVkNTRkZDFkNmVm NTMyYjIwNTgzODcxZmI4OGI3NzY1MTIxNmVkY2QxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDG1cZRVmJoe6B0IBRS1N5iBJG5U2mS5Ofwgww7VzriMKwE tDvpOv25t08oq8+aldIjA8zirnmWOlwFm0QbOkSQ6TJAFuYYsqkomYWu+KIg47/n +jqjbu5TZUBPweR2VSxf4bcRbZspO8Lg+ar1Sy9QCqOVEh5Cw5z6vvqlO7M3GCuY K6EIiF8A+gwe2QS9gRaDIXwN4FCgp7nE1y4PC3qcZHHglB/1xlfHR2cm7BXno91w W7HxsGMyJMYsZHh6jBzztwbd2DPlKiv+fCH38N7hdiMaw/63fAYJQC+NEMzClek/ 0FTuInJ9Dtni/49GEMJzb7Z2eUgcjZ7GAFI6rnHbAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU5DhJqpiVvMpUnDLz8sygjDqxdyMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I3MmY0NjE2LTVlZTAtNDc2ZC04MmVlLTRjNTQ3NTMyNTAyZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCdhzANBgkqhkiG9w0BAQsFAAOCAQEAeS05AhZUqT2yZSIbnL7Bf7c/vz+i AKQXuFoFdBncu19j+7XU+v+GNqVMgMe04A3hoeaGKqZuN2BPbDpzATGUzYBEwCjw 1os8IyEBOUtlpg+lF1Pi1wd5VdT/xhhDTrNPQvTSkMvSJhpLMTQ8lHLJqumBH7Yq +tP4aK4kFgDTlUSzT99VJhg0Gq2CPQSK00jnUWbsfit9hvKdOsSzQ8h3doTrP6q2 BdMp8mDHQh4VLX/efpO3quO46kOOeakcgovp32l0lPzkzIHbIJEAu9ix78V2ZYtu WwyBRLVF3XAh4SufjgWavAAR0knRF/kU3yPvLMkoeFz2OC9rS07sm5Hc3w== -----END CERTIFICATE-----Generated at Sat Aug 23 09:01:01 2025 by rpki-client