$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d0cb9a01-4d9c-439b-9afc-ee6f4809aaa3.roa File: d0cb9a01-4d9c-439b-9afc-ee6f4809aaa3.roa (raw, json) Hash identifier: ixBqj9AbFLCyeIh3MuAaQViIGP8uqP2936nonbdG+ys= Subject key identifier: D4:36:6D:D7:C9:73:86:C7:05:D2:24:83:3A:C1:1C:72:3D:46:3D:9F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1123D7343A183AE934DBFF38A0E827D13318FA61 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d0cb9a01-4d9c-439b-9afc-ee6f4809aaa3.roa Signing time: Sat 16 Aug 2025 00:41:02 +0000 ROA not before: Sat 16 Aug 2025 00:41:02 +0000 ROA not after: Sat 20 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 5.174.96.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:23:d7:34:3a:18:3a:e9:34:db:ff:38:a0:e8:27:d1:33:18:fa:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 16 00:41:02 2025 GMT Not After : Sep 20 23:59:59 2025 GMT Subject: serialNumber=30bb74b2201b7b428224ac19144083f6fa07ee010afb67860bed23bc0bff3740, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:63:28:69:cc:7c:9a:dd:7d:3c:01:d0:b2:c6: 03:05:da:27:b6:01:38:1c:b9:6e:61:7c:1f:c0:7c: 4c:74:39:8c:16:cc:88:58:ec:5b:80:28:81:61:14: 02:22:3b:91:c2:d6:05:62:04:e3:04:28:9f:3d:7d: fa:5a:aa:4b:da:fb:2a:81:58:4f:a0:c8:f2:24:59: ba:c9:6a:cf:ca:2e:24:5e:76:97:20:b2:92:f4:39: 04:6b:e6:23:72:b3:82:6f:02:37:fa:b1:9a:15:aa: 58:33:cc:98:78:c9:1c:24:d2:c7:5e:38:df:97:8b: 78:00:cb:e6:7b:99:13:fa:3a:27:82:d6:2d:4b:dc: 0c:5c:d0:fe:36:0c:25:98:a9:f8:0c:80:74:60:e9: 00:4a:ca:0b:f5:9d:b6:a0:a3:7d:d9:cc:29:72:af: 12:78:cd:cf:26:07:b4:52:b1:c0:48:88:63:af:87: e2:fa:74:ae:68:2b:9c:d0:ca:97:48:34:f9:ea:a8: 07:d4:8a:80:2d:a1:fa:0c:49:9f:41:c7:27:05:37: b0:0f:5c:5d:9c:b4:a0:a0:5f:2e:1b:42:ef:ff:aa: ab:f9:18:93:75:6b:e9:7f:37:b3:02:97:3d:6d:72: 6f:52:b8:71:de:b3:04:db:02:43:9f:80:27:21:05: b5:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:36:6D:D7:C9:73:86:C7:05:D2:24:83:3A:C1:1C:72:3D:46:3D:9F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d0cb9a01-4d9c-439b-9afc-ee6f4809aaa3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.174.96.0/20 Signature Algorithm: sha256WithRSAEncryption 5f:2d:ea:1f:2c:51:50:f5:ca:7a:9f:ff:99:a7:bf:5d:7c:41: 58:28:d5:23:1c:7c:25:1f:4e:3f:68:7a:e9:30:8c:01:c3:16: 01:92:90:e0:ec:cf:16:04:58:16:f2:f0:7a:5b:b1:d9:9b:5c: 3f:a8:41:1c:76:f8:bc:2d:0b:55:f6:42:93:87:e8:f3:53:cd: 50:64:47:91:86:c4:72:d0:82:05:2b:1b:1e:17:0d:32:ff:a3: 15:de:a6:a4:06:53:4a:ce:be:76:01:f0:ab:19:ae:25:f3:14: 2c:88:0b:2d:bd:95:8e:96:c7:d1:ee:c4:4c:a2:fe:3a:7a:51: a2:c9:38:b3:c3:03:71:4b:42:90:8b:e8:3e:2e:bc:99:93:6f: bb:1c:ea:47:6e:cd:dd:f2:e4:06:84:7c:1a:83:c7:99:ac:fa: 6b:36:bc:56:93:28:ed:b0:2f:a1:28:b2:5d:3d:e7:b1:2d:42: 71:2a:b9:6e:84:ec:ae:29:dc:8f:a6:01:9e:e6:ef:87:c4:35: 34:81:da:61:7e:74:ca:18:c9:56:86:e4:57:be:98:55:12:9f: b3:95:05:dd:1f:4b:7f:c6:71:10:3d:3f:b9:94:8c:36:c3:ea: 83:1b:22:cd:5d:f5:f1:8b:e2:4f:c4:99:4b:c5:8c:15:5f:e3: 76:61:ca:5f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUESPXNDoYOuk02/84oOgn0TMY+mEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE2MDA0MTAyWhcNMjUwOTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzMGJiNzRiMjIwMWI3YjQyODIyNGFjMTkxNDQwODNmNmZh MDdlZTAxMGFmYjY3ODYwYmVkMjNiYzBiZmYzNzQwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGYyhpzHya3X08AdCyxgMF2ie2ATgcuW5hfB/AfEx0OYwW zIhY7FuAKIFhFAIiO5HC1gViBOMEKJ89ffpaqkva+yqBWE+gyPIkWbrJas/KLiRe dpcgspL0OQRr5iNys4JvAjf6sZoVqlgzzJh4yRwk0sdeON+Xi3gAy+Z7mRP6OieC 1i1L3Axc0P42DCWYqfgMgHRg6QBKygv1nbago33ZzClyrxJ4zc8mB7RSscBIiGOv h+L6dK5oK5zQypdINPnqqAfUioAtofoMSZ9BxycFN7APXF2ctKCgXy4bQu//qqv5 GJN1a+l/N7MClz1tcm9SuHHeswTbAkOfgCchBbW1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU1DZt18lzhscF0iSDOsEccj1GPZ8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QwY2I5YTAxLTRkOWMtNDM5Yi05YWZjLWVlNmY0ODA5YWFhMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQFrmAwDQYJKoZIhvcNAQELBQADggEBAF8t6h8sUVD1ynqf/5mnv118QVgo 1SMcfCUfTj9oeukwjAHDFgGSkODszxYEWBby8HpbsdmbXD+oQRx2+LwtC1X2QpOH 6PNTzVBkR5GGxHLQggUrGx4XDTL/oxXepqQGU0rOvnYB8KsZriXzFCyICy29lY6W x9HuxEyi/jp6UaLJOLPDA3FLQpCL6D4uvJmTb7sc6kduzd3y5AaEfBqDx5ms+ms2 vFaTKO2wL6Eosl0957EtQnEquW6E7K4p3I+mAZ7m74fENTSB2mF+dMoYyVaG5Fe+ mFUSn7OVBd0fS3/GcRA9P7mUjDbD6oMbIs1d9fGL4k/EmUvFjBVf43Zhyl8= -----END CERTIFICATE-----Generated at Sat Aug 23 08:09:01 2025 by rpki-client