$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d0aecca8-b5b2-4595-9f0a-580808d0a23c.roa File: d0aecca8-b5b2-4595-9f0a-580808d0a23c.roa (raw, json) Hash identifier: wb7EDWkOCRJSVEbZCtHZWZ8Qv7R+VATg6AUGMOyVmI0= Subject key identifier: 9F:85:70:62:EB:22:E7:04:A6:85:D6:2A:C3:66:AC:09:F9:32:70:9D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4C03399742287416790CE96B0348727B1FCA8D69 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d0aecca8-b5b2-4595-9f0a-580808d0a23c.roa Signing time: Sat 09 Aug 2025 00:00:40 +0000 ROA not before: Sat 09 Aug 2025 00:00:40 +0000 ROA not after: Sat 13 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 108.166.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:03:39:97:42:28:74:16:79:0c:e9:6b:03:48:72:7b:1f:ca:8d:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 9 00:00:40 2025 GMT Not After : Sep 13 23:59:59 2025 GMT Subject: serialNumber=33e4b9140e691d84ad154d2fa7a9311043d307d3bdb0657ec4cec42dc14e3a55, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:38:97:d3:35:0e:30:ec:cb:63:4d:81:c1:ef: 31:9b:b7:8f:bc:2a:44:21:4a:a3:9f:f0:b4:ab:2a: 0d:78:d9:03:0d:f1:85:03:52:6e:32:1b:ff:1f:d0: b9:24:f9:9b:b4:cf:c1:4c:82:5e:d6:b1:8c:45:e4: 59:e1:6c:22:2c:d7:cc:fd:02:e9:fa:84:13:06:6c: b7:1d:37:ed:90:89:1c:86:b1:8f:fa:a8:3d:cf:40: 5a:97:57:f6:fc:27:fe:68:e9:86:6d:e9:70:b6:36: 5c:74:0b:b1:9a:5b:3a:76:7a:77:1e:ef:95:b0:30: 78:5e:fe:4a:66:5d:05:7b:14:0a:a3:2a:35:f0:7e: c0:3b:d1:7c:dd:2b:87:4b:79:d3:01:21:9d:1b:c8: bc:49:99:59:21:f8:fd:60:7a:2d:3c:70:c5:45:2e: 7c:7f:bd:83:f1:61:36:8a:ed:29:5a:ec:fc:80:39: fb:2a:98:87:b7:34:56:b7:43:e2:d2:21:d1:5d:78: 98:8d:d8:6e:af:33:a2:6d:80:53:d2:8d:33:96:91: 55:4a:fd:b0:8d:54:91:67:3e:1b:ca:08:66:dc:68: 5e:6c:cd:da:13:b1:19:d4:bc:99:bc:fd:c4:98:33: 9e:e7:1d:bd:21:b8:7d:60:1b:62:23:9a:6c:6a:c9: cd:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:85:70:62:EB:22:E7:04:A6:85:D6:2A:C3:66:AC:09:F9:32:70:9D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d0aecca8-b5b2-4595-9f0a-580808d0a23c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 108.166.192.0/19 Signature Algorithm: sha256WithRSAEncryption 1e:43:f1:d5:ce:62:82:0e:f3:e5:39:0f:a0:4a:f2:d6:a1:17: 09:cf:a3:70:2d:85:21:e0:74:af:26:3e:5c:1d:91:b2:87:53: 9d:ba:83:97:98:89:66:e1:de:c2:7c:5b:b5:76:5a:59:ee:73: 23:4d:64:3d:ef:a0:1e:d7:39:f6:6f:a0:30:e8:1d:88:1f:6a: 35:76:69:62:53:b3:7d:30:2c:0a:4c:29:e7:21:3f:c0:26:bd: 12:16:f2:49:92:12:3e:d7:e6:83:da:51:0f:e1:18:18:a0:00: 08:a7:75:fc:e6:cf:ae:18:30:99:62:47:ac:0d:7a:b3:63:6d: f6:26:ce:55:4e:44:ad:0c:e3:37:e8:f5:35:f6:72:89:c5:f4: de:c5:48:be:dd:86:3e:df:85:a5:8e:21:7f:49:41:a9:c6:a8: f9:0e:ff:f4:56:06:81:51:7c:8e:93:aa:af:8d:89:b1:8b:6f: af:cb:c6:8c:45:a1:d7:7f:92:d7:8e:38:6e:7a:46:4b:57:5e: 1f:0a:82:79:98:36:d4:71:30:2a:09:4f:d9:4e:13:37:0c:5e: ca:93:e5:5c:d6:44:10:63:a4:a1:26:b5:bd:41:df:8e:7a:c1: 91:1c:63:f1:7d:c7:21:14:83:f2:f1:cd:0d:40:31:a2:b0:33: 85:dd:fc:64 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTAM5l0IodBZ5DOlrA0hyex/KjWkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA5MDAwMDQwWhcNMjUwOTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AzM2U0YjkxNDBlNjkxZDg0YWQxNTRkMmZhN2E5MzExMDQz ZDMwN2QzYmRiMDY1N2VjNGNlYzQyZGMxNGUzYTU1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQChOJfTNQ4w7MtjTYHB7zGbt4+8KkQhSqOf8LSrKg142QMN 8YUDUm4yG/8f0Lkk+Zu0z8FMgl7WsYxF5FnhbCIs18z9Aun6hBMGbLcdN+2QiRyG sY/6qD3PQFqXV/b8J/5o6YZt6XC2Nlx0C7GaWzp2ence75WwMHhe/kpmXQV7FAqj KjXwfsA70XzdK4dLedMBIZ0byLxJmVkh+P1gei08cMVFLnx/vYPxYTaK7Sla7PyA OfsqmIe3NFa3Q+LSIdFdeJiN2G6vM6JtgFPSjTOWkVVK/bCNVJFnPhvKCGbcaF5s zdoTsRnUvJm8/cSYM57nHb0huH1gG2Ijmmxqyc31AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUn4VwYusi5wSmhdYqw2asCfkycJ0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QwYWVjY2E4LWI1YjItNDU5NS05ZjBhLTU4MDgwOGQwYTIzYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVspsAwDQYJKoZIhvcNAQELBQADggEBAB5D8dXOYoIO8+U5D6BK8tahFwnP o3AthSHgdK8mPlwdkbKHU526g5eYiWbh3sJ8W7V2WlnucyNNZD3voB7XOfZvoDDo HYgfajV2aWJTs30wLApMKechP8AmvRIW8kmSEj7X5oPaUQ/hGBigAAindfzmz64Y MJliR6wNerNjbfYmzlVORK0M4zfo9TX2conF9N7FSL7dhj7fhaWOIX9JQanGqPkO //RWBoFRfI6Tqq+NibGLb6/LxoxFodd/kteOOG56RktXXh8KgnmYNtRxMCoJT9lO EzcMXsqT5VzWRBBjpKEmtb1B3456wZEcY/F9xyEUg/LxzQ1AMaKwM4Xd/GQ= -----END CERTIFICATE-----Generated at Sat Aug 23 06:56:34 2025 by rpki-client