$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c0333a01-883a-4206-8a42-529cf8c78da8.roa File: c0333a01-883a-4206-8a42-529cf8c78da8.roa (raw, json) Hash identifier: sQz+bJ4QXSBPNmtcDI16hnHzE9dyGDJdFX94Brcor94= Subject key identifier: 9B:AC:23:2B:FC:71:C7:0C:64:5C:50:8F:CA:97:18:D7:B1:4F:F7:FE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 47A1073872AE2040C27946D3D08D85AB1139146C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c0333a01-883a-4206-8a42-529cf8c78da8.roa Signing time: Sat 16 Aug 2025 00:11:39 +0000 ROA not before: Sat 16 Aug 2025 00:11:39 +0000 ROA not after: Sat 20 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.103.0.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:a1:07:38:72:ae:20:40:c2:79:46:d3:d0:8d:85:ab:11:39:14:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 16 00:11:39 2025 GMT Not After : Sep 20 23:59:59 2025 GMT Subject: serialNumber=b8ed15a92c7aa890d107b92203bfc66bb4312121334dce43ea89f700804122c3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:93:63:d2:39:29:f0:5f:40:b9:c0:9c:43:4c: b9:06:02:72:51:f0:1a:2c:7b:6b:60:41:51:97:08: 63:e2:9a:97:75:6f:5e:e8:8b:2b:4f:37:0a:95:5f: 2f:f7:24:73:fe:47:aa:59:4f:2f:4a:fe:55:37:06: b3:be:1e:aa:82:13:20:00:82:b9:f3:fa:85:01:90: 9c:78:79:94:0d:6f:fd:62:68:17:74:0b:dc:d7:c1: d8:56:02:67:53:6d:7e:b3:26:f8:0b:8b:60:5b:04: 6f:ef:df:a4:7a:b3:42:c3:c5:15:5b:12:6e:ea:b0: 08:09:c8:55:de:2a:3b:8d:ab:33:e3:8f:09:ce:51: f2:42:a2:53:c9:a1:b6:9f:15:d0:a3:cd:a3:e6:08: 5f:79:b1:94:8c:24:c3:d2:2c:f9:0a:ec:b5:47:d4: aa:9b:10:37:e0:fe:8c:34:3a:4b:1b:2f:da:cc:40: 3f:52:3a:4a:bf:ee:77:41:16:d5:65:f8:6b:63:da: 5b:cf:de:fc:fe:87:61:4c:51:d9:0d:5e:0e:1c:21: f5:9e:e0:f8:48:c1:91:4c:1a:09:23:0a:2b:64:b2: b3:3a:99:96:78:6b:2e:45:69:07:c2:d9:6f:ef:0a: 83:ba:1c:80:9e:ca:f9:18:93:5d:c0:35:1a:24:28: 78:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:AC:23:2B:FC:71:C7:0C:64:5C:50:8F:CA:97:18:D7:B1:4F:F7:FE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c0333a01-883a-4206-8a42-529cf8c78da8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.103.0.0/20 Signature Algorithm: sha256WithRSAEncryption 91:1d:e9:2f:7c:14:c3:45:48:31:83:75:e6:5b:42:c6:33:45: 91:24:b3:56:ff:ab:84:bf:d9:c0:b9:54:de:37:5a:17:80:f1: aa:30:13:97:56:fe:19:28:12:a8:13:5c:40:93:c0:c5:3f:bf: dd:98:80:e0:26:02:05:40:c8:e6:e8:24:b8:81:67:d8:6a:80: 14:16:10:5e:f3:37:c7:08:17:74:53:bb:55:18:12:10:41:25: 2c:f2:50:7b:82:83:32:89:2b:51:92:71:33:66:15:15:43:c0: 91:50:b0:c5:2e:38:a0:c2:56:35:f8:0c:4f:f2:c7:d6:03:d8: bc:95:bf:a7:88:ac:5e:d8:f6:68:7f:98:86:8b:f2:a6:7c:08: ca:49:aa:db:bd:40:c1:87:93:68:73:98:e3:a9:ff:2a:7b:68: 9c:7c:a5:fd:85:97:57:f4:c1:66:a2:a7:1a:8e:42:4e:80:8b: 86:1f:09:ad:1b:b0:f2:5e:06:2d:09:74:f9:e7:8a:7b:61:5a: 77:7f:a1:19:d1:e6:eb:2e:91:b5:39:12:d6:6b:18:93:e4:88: 2b:1b:86:fb:d9:6f:28:5a:d3:b9:80:4b:f3:3e:56:c3:c7:d4: fa:c5:2d:78:f6:78:61:47:7c:20:e2:93:99:8e:b2:2d:ad:52: db:de:aa:bf -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUR6EHOHKuIEDCeUbT0I2FqxE5FGwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE2MDAxMTM5WhcNMjUwOTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiOGVkMTVhOTJjN2FhODkwZDEwN2I5MjIwM2JmYzY2YmI0 MzEyMTIxMzM0ZGNlNDNlYTg5ZjcwMDgwNDEyMmMzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClk2PSOSnwX0C5wJxDTLkGAnJR8Bose2tgQVGXCGPimpd1 b17oiytPNwqVXy/3JHP+R6pZTy9K/lU3BrO+HqqCEyAAgrnz+oUBkJx4eZQNb/1i aBd0C9zXwdhWAmdTbX6zJvgLi2BbBG/v36R6s0LDxRVbEm7qsAgJyFXeKjuNqzPj jwnOUfJColPJobafFdCjzaPmCF95sZSMJMPSLPkK7LVH1KqbEDfg/ow0OksbL9rM QD9SOkq/7ndBFtVl+Gtj2lvP3vz+h2FMUdkNXg4cIfWe4PhIwZFMGgkjCitksrM6 mZZ4ay5FaQfC2W/vCoO6HICeyvkYk13ANRokKHg1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUm6wjK/xxxwxkXFCPypcY17FP9/4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MwMzMzYTAxLTg4M2EtNDIwNi04YTQyLTUyOWNmOGM3OGRhOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQPZwAwDQYJKoZIhvcNAQELBQADggEBAJEd6S98FMNFSDGDdeZbQsYzRZEk s1b/q4S/2cC5VN43WheA8aowE5dW/hkoEqgTXECTwMU/v92YgOAmAgVAyOboJLiB Z9hqgBQWEF7zN8cIF3RTu1UYEhBBJSzyUHuCgzKJK1GScTNmFRVDwJFQsMUuOKDC VjX4DE/yx9YD2LyVv6eIrF7Y9mh/mIaL8qZ8CMpJqtu9QMGHk2hzmOOp/yp7aJx8 pf2Fl1f0wWaipxqOQk6Ai4YfCa0bsPJeBi0JdPnninthWnd/oRnR5usukbU5EtZr GJPkiCsbhvvZbyha07mAS/M+VsPH1PrFLXj2eGFHfCDik5mOsi2tUtveqr8= -----END CERTIFICATE-----Generated at Sat Aug 23 06:56:06 2025 by rpki-client