$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c8766e16-a2c3-4078-aa9e-504e17a360f9.roa File: c8766e16-a2c3-4078-aa9e-504e17a360f9.roa (raw, json) Hash identifier: Tfe/vwSJiMF+tZ+8Nd3qEX0qJ5G0yVfqdA679Na2L8s= Subject key identifier: E6:F5:5A:52:89:00:29:14:DE:A6:A0:2B:17:13:83:4F:D1:CB:16:AA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0705F7B9E20941066876C29E7AD2643AD292D7E1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c8766e16-a2c3-4078-aa9e-504e17a360f9.roa Signing time: Mon 04 Aug 2025 15:22:04 +0000 ROA not before: Mon 04 Aug 2025 15:22:04 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 161.178.0.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:05:f7:b9:e2:09:41:06:68:76:c2:9e:7a:d2:64:3a:d2:92:d7:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 15:22:04 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=407d27ebb2fe6c7ce36e3e900ccf42a1418cc4d225dc1dbf5e3d4341a8e20e02, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:07:a7:ed:87:54:2e:74:a7:1e:5e:6c:57:41: ce:30:2c:d0:b8:28:d4:d0:64:17:e1:9e:3d:9b:74: 29:29:01:58:c1:db:a6:4e:54:27:83:43:4e:d7:1f: 66:ef:35:0a:c4:d4:bd:f9:56:cd:46:17:db:d3:7b: be:1e:38:9d:2d:b3:41:5f:c6:53:4b:be:0e:cd:a8: bc:76:77:97:52:e5:4c:ac:c2:ec:3f:5e:7b:ab:ae: 09:69:fb:af:be:95:7b:eb:5b:5c:54:f9:3d:5e:74: 93:0b:6b:5e:3c:6c:50:d8:7f:4d:52:50:d4:bb:39: 0f:03:24:8a:1e:45:8d:d9:19:bd:9c:54:04:f2:9b: 5d:5a:a9:69:cd:17:5f:96:94:55:20:09:33:c3:5f: 4f:80:88:0f:8a:35:54:7c:a2:3d:ca:a9:29:88:2b: d3:ca:12:29:4b:db:3d:50:f3:ba:78:49:60:ed:5e: ea:76:63:18:fe:bd:d4:46:85:b7:b8:f3:34:ef:52: 8f:83:7a:cc:06:2a:13:a1:9d:6d:3c:68:8e:30:b8: b2:14:54:83:07:e4:82:f8:37:24:9a:76:60:e4:8a: 57:96:69:13:d9:1e:3d:f5:11:35:33:e7:af:73:66: 01:9d:48:61:da:ce:29:ad:58:ac:07:0b:3f:5e:a0: 3e:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:F5:5A:52:89:00:29:14:DE:A6:A0:2B:17:13:83:4F:D1:CB:16:AA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c8766e16-a2c3-4078-aa9e-504e17a360f9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 161.178.0.0/18 Signature Algorithm: sha256WithRSAEncryption d0:be:0b:05:e3:90:fe:97:c0:a3:e2:20:b0:b2:c7:88:cb:1f: 0f:1b:1b:ee:7a:2b:d5:87:f7:e6:46:a0:0c:58:72:fe:64:e3: 72:97:0b:bb:74:5b:0d:6c:75:66:d4:e2:3f:48:be:f6:26:a3: 42:2a:82:9f:6d:bb:98:93:92:0e:33:db:a8:3b:71:8f:f6:8b: 6c:6f:13:32:ba:c3:09:4e:3f:87:48:e0:d2:1a:05:31:a8:ce: 93:b5:8a:a4:ec:f6:2c:33:0b:ae:38:a8:52:a4:92:ac:57:ec: 31:a8:60:29:41:3e:7d:91:58:b3:6e:53:4f:67:95:17:65:3e: 66:3a:08:c6:ca:86:56:6d:ab:23:03:f4:9f:dc:64:88:6d:6c: 30:4f:66:aa:01:3c:de:14:06:79:db:5f:5e:88:eb:fc:c3:97: 21:8b:e5:3c:22:f3:c5:ab:79:59:e4:c9:81:05:01:8b:a8:c7: 60:ea:e2:1b:85:6d:db:7f:b7:03:d2:2a:41:73:4a:20:2c:d6: 7b:d4:86:98:4e:ce:b5:ba:b6:0f:80:be:ee:22:71:32:a2:f2: 55:da:ba:ed:81:3c:a9:76:56:29:6e:27:d2:a0:90:45:90:f7: 7f:21:ba:5c:03:76:3e:8c:a0:6e:fc:ce:c3:40:1c:88:43:f6: 2e:4a:03:76 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBwX3ueIJQQZodsKeetJkOtKS1+EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA0MTUyMjA0WhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MDdkMjdlYmIyZmU2YzdjZTM2ZTNlOTAwY2NmNDJhMTQx OGNjNGQyMjVkYzFkYmY1ZTNkNDM0MWE4ZTIwZTAyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDWB6fth1QudKceXmxXQc4wLNC4KNTQZBfhnj2bdCkpAVjB 26ZOVCeDQ07XH2bvNQrE1L35Vs1GF9vTe74eOJ0ts0FfxlNLvg7NqLx2d5dS5Uys wuw/Xnurrglp+6++lXvrW1xU+T1edJMLa148bFDYf01SUNS7OQ8DJIoeRY3ZGb2c VATym11aqWnNF1+WlFUgCTPDX0+AiA+KNVR8oj3KqSmIK9PKEilL2z1Q87p4SWDt Xup2Yxj+vdRGhbe48zTvUo+DeswGKhOhnW08aI4wuLIUVIMH5IL4NySadmDkileW aRPZHj31ETUz569zZgGdSGHazimtWKwHCz9eoD43AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU5vVaUokAKRTepqArFxODT9HLFqowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M4NzY2ZTE2LWEyYzMtNDA3OC1hYTllLTUwNGUxN2EzNjBmOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAahsgAwDQYJKoZIhvcNAQELBQADggEBANC+CwXjkP6XwKPiILCyx4jLHw8b G+56K9WH9+ZGoAxYcv5k43KXC7t0Ww1sdWbU4j9IvvYmo0Iqgp9tu5iTkg4z26g7 cY/2i2xvEzK6wwlOP4dI4NIaBTGozpO1iqTs9iwzC644qFKkkqxX7DGoYClBPn2R WLNuU09nlRdlPmY6CMbKhlZtqyMD9J/cZIhtbDBPZqoBPN4UBnnbX16I6/zDlyGL 5Twi88WreVnkyYEFAYuox2Dq4huFbdt/twPSKkFzSiAs1nvUhphOzrW6tg+Avu4i cTKi8lXauu2BPKl2ViluJ9KgkEWQ938hulwDdj6MoG78zsNAHIhD9i5KA3Y= -----END CERTIFICATE-----Generated at Sat Aug 23 06:37:17 2025 by rpki-client