$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c945adeb-498d-4dd9-a0d9-070f5757c8f3.roa File: c945adeb-498d-4dd9-a0d9-070f5757c8f3.roa (raw, json) Hash identifier: hgoVVQqDBnQgEZJIsdCwfL+zEJcpl8EjLVkNPxHPvGc= Subject key identifier: 40:E9:19:36:89:61:17:EE:13:68:E5:66:88:E5:9D:C9:62:9B:F4:64 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6161F5240911B949C785E210AD200327D8F5580A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c945adeb-498d-4dd9-a0d9-070f5757c8f3.roa Signing time: Mon 11 Aug 2025 15:00:31 +0000 ROA not before: Mon 11 Aug 2025 15:00:31 +0000 ROA not after: Mon 15 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 130.21.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:61:f5:24:09:11:b9:49:c7:85:e2:10:ad:20:03:27:d8:f5:58:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 11 15:00:31 2025 GMT Not After : Sep 15 23:59:59 2025 GMT Subject: serialNumber=8e3ed327df463dee69a3da79ed607d6fe452a2bf43e4a8b8102cd0488c2dd748, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:c8:99:02:0d:b2:59:c8:c4:95:d2:2b:4a:49: 93:ba:d9:4a:f9:24:ab:21:e9:d1:44:3f:d4:e0:b2: bf:60:20:04:e9:6d:7d:2d:27:53:3f:00:a0:a9:31: d6:4b:ba:8c:ab:97:35:ab:3f:3f:62:be:b2:a5:f7: 6a:fd:e4:2d:fa:79:7b:9f:7f:e0:0b:92:ef:a1:ea: 16:52:27:67:65:8c:c2:5c:da:6f:c6:ef:65:41:22: 86:6d:1f:aa:01:19:9f:b7:b2:d7:f2:76:9a:53:28: 85:fd:b9:9f:b8:24:f1:9d:c7:3c:3d:ae:01:ed:a0: 8e:d2:3a:20:40:69:4d:c8:c5:7d:81:4f:9a:ac:84: 1c:76:34:e4:bb:32:39:04:5d:ca:40:7d:14:d6:dd: 57:ff:49:6e:e6:e1:8d:2e:59:d5:27:45:57:a6:07: 9b:bd:56:30:71:b8:b9:d7:ac:f2:7e:de:62:ae:ce: 02:ac:17:50:24:51:28:ae:e9:0a:8a:87:11:13:4c: 87:c8:89:09:8c:54:41:8f:9c:2c:9b:a0:e2:f7:f7: 03:5c:2e:b1:13:6f:5a:8b:36:93:97:ec:83:75:b1: 5f:3c:78:79:e8:a7:63:d9:75:14:66:7c:39:a6:f6: 2f:61:7f:e0:27:f6:cc:5e:ac:ff:7b:68:c4:b3:a1: 93:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:E9:19:36:89:61:17:EE:13:68:E5:66:88:E5:9D:C9:62:9B:F4:64 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c945adeb-498d-4dd9-a0d9-070f5757c8f3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 130.21.0.0/16 Signature Algorithm: sha256WithRSAEncryption b1:9c:30:dd:cf:cf:99:96:d3:b5:98:90:0c:0e:2b:43:61:0a: 8f:13:37:46:71:76:85:c3:1c:87:0c:6a:0c:52:6e:7b:fe:21: 2b:d6:a2:d4:91:c8:44:48:e4:a9:ae:1b:c6:36:42:6f:17:6e: b6:76:97:8e:ff:61:bf:e8:ac:83:d9:b4:38:9d:21:6b:e7:b4: a1:b5:24:6b:82:b5:e1:60:fb:de:55:e0:44:60:82:56:0d:b0: 0f:b7:e8:b1:30:4b:5b:fb:d9:33:f2:aa:6a:b6:c7:84:8a:ee: 09:e2:e0:bd:ee:7e:0b:39:c5:e9:27:73:fc:09:fc:87:a6:43: f1:fb:e1:0c:89:67:f5:10:12:8b:d9:61:d8:fd:30:1f:36:4e: 0a:ac:fa:50:78:15:84:e4:bd:f9:41:0c:fb:51:93:4d:b3:44: 1d:08:17:70:5e:ff:15:9c:10:0a:72:17:20:e9:5b:4a:78:59: 9e:4e:53:bb:dc:a4:f4:2d:b4:b8:6d:80:16:6e:a4:17:84:6e: 6e:b0:ea:a9:db:57:2c:19:67:a2:66:33:b9:02:0d:b8:9b:59: f8:bc:53:0d:dc:d8:d4:f2:18:8d:60:5f:19:df:e2:8c:96:a6: 0e:93:ae:57:86:c4:e4:04:20:8f:b6:46:54:d9:19:e5:be:64: 05:e4:60:f6 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUYWH1JAkRuUnHheIQrSADJ9j1WAowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODExMTUwMDMxWhcNMjUwOTE1MjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZTNlZDMyN2RmNDYzZGVlNjlhM2RhNzllZDYwN2Q2ZmU0 NTJhMmJmNDNlNGE4YjgxMDJjZDA0ODhjMmRkNzQ4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClyJkCDbJZyMSV0itKSZO62Ur5JKsh6dFEP9Tgsr9gIATp bX0tJ1M/AKCpMdZLuoyrlzWrPz9ivrKl92r95C36eXuff+ALku+h6hZSJ2dljMJc 2m/G72VBIoZtH6oBGZ+3stfydppTKIX9uZ+4JPGdxzw9rgHtoI7SOiBAaU3IxX2B T5qshBx2NOS7MjkEXcpAfRTW3Vf/SW7m4Y0uWdUnRVemB5u9VjBxuLnXrPJ+3mKu zgKsF1AkUSiu6QqKhxETTIfIiQmMVEGPnCyboOL39wNcLrETb1qLNpOX7IN1sV88 eHnop2PZdRRmfDmm9i9hf+An9sxerP97aMSzoZMbAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUQOkZNolhF+4TaOVmiOWdyWKb9GQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M5NDVhZGViLTQ5OGQtNGRkOS1hMGQ5LTA3MGY1NzU3YzhmMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCCFTANBgkqhkiG9w0BAQsFAAOCAQEAsZww3c/PmZbTtZiQDA4rQ2EKjxM3 RnF2hcMchwxqDFJue/4hK9ai1JHIREjkqa4bxjZCbxdutnaXjv9hv+isg9m0OJ0h a+e0obUka4K14WD73lXgRGCCVg2wD7fosTBLW/vZM/KqarbHhIruCeLgve5+CznF 6Sdz/An8h6ZD8fvhDIln9RASi9lh2P0wHzZOCqz6UHgVhOS9+UEM+1GTTbNEHQgX cF7/FZwQCnIXIOlbSnhZnk5Tu9yk9C20uG2AFm6kF4RubrDqqdtXLBlnomYzuQIN uJtZ+LxTDdzY1PIYjWBfGd/ijJamDpOuV4bE5AQgj7ZGVNkZ5b5kBeRg9g== -----END CERTIFICATE-----Generated at Sat Aug 23 12:24:57 2025 by rpki-client