$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d5be2472-af1a-4957-889f-91229016b0c9.roa File: d5be2472-af1a-4957-889f-91229016b0c9.roa (raw, json) Hash identifier: V4sZV7Li+VSA7Yol1eaAv0Y5FWwHq/VesE1+M7OLqoM= Subject key identifier: 2A:E2:FC:60:6A:4D:63:FA:0D:0A:0B:5B:B2:60:C9:BF:83:A5:37:78 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 221F514B83EE74EFC8BFCA4D711F82EC9B8E44FA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d5be2472-af1a-4957-889f-91229016b0c9.roa Signing time: Fri 15 Aug 2025 00:31:09 +0000 ROA not before: Fri 15 Aug 2025 00:31:09 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 129.223.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:1f:51:4b:83:ee:74:ef:c8:bf:ca:4d:71:1f:82:ec:9b:8e:44:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 15 00:31:09 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=ce7c8ffb143dd99fb7438af69e71c27f509d5324091eca054cd969861a206332, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:52:55:66:9d:d3:c5:9a:7d:f4:0a:95:fd:ec: bb:d8:2c:1d:c7:52:1e:35:64:49:f5:f1:c3:e4:2c: bc:39:32:c1:7b:07:2e:11:ca:65:59:e8:16:a4:f8: 5e:49:fa:31:e5:e0:aa:27:3b:1f:14:f6:51:00:b6: 56:2a:a3:d3:7a:0d:a9:5b:8f:2e:20:0d:eb:b4:73: 3d:e2:2e:47:a9:fa:85:c0:29:d3:c6:78:aa:b0:bc: 0a:4a:5f:15:9f:22:ba:8e:53:f9:e1:20:ec:f4:18: 7b:e4:8e:cd:99:bc:de:fd:96:58:22:e1:f5:66:7d: 97:43:46:d8:6c:33:46:4e:0b:02:9d:e3:8c:93:3e: 46:19:b7:38:89:33:bb:5b:df:fb:4f:2a:02:fd:5c: d4:bd:14:40:28:93:4f:fc:4c:fc:8a:7f:56:42:2d: 96:9e:53:15:2c:84:1a:c8:20:83:7d:2b:82:f1:71: c4:0b:01:eb:99:a8:fd:58:47:c8:64:70:34:1a:ab: df:5b:99:b7:fa:79:b8:00:dd:81:f0:20:c5:83:2b: 03:b1:5f:7c:02:5b:88:2a:ea:1f:18:ee:26:94:f5: 4b:bd:34:1b:48:21:68:bf:b4:85:b3:14:95:71:39: d3:40:be:43:33:05:ba:71:44:a7:33:2f:c6:7a:3d: 9c:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:E2:FC:60:6A:4D:63:FA:0D:0A:0B:5B:B2:60:C9:BF:83:A5:37:78 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d5be2472-af1a-4957-889f-91229016b0c9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 129.223.0.0/16 Signature Algorithm: sha256WithRSAEncryption 19:2d:74:f0:fa:0a:36:0f:1c:a0:f1:c1:fb:66:7f:6c:d9:ed: 31:5b:da:9e:8b:c5:4f:98:94:d4:f9:65:49:89:51:4f:eb:03: ec:71:52:70:79:be:7a:82:64:d1:11:3c:bc:0c:78:59:e6:2a: d5:61:e4:2c:85:cd:0b:ee:ce:07:c5:60:a0:f4:3e:ca:ec:0a: 7c:4f:28:71:e0:7f:1e:60:8f:78:cc:76:20:88:52:7d:7f:e7: f6:20:23:cd:5f:d7:26:b2:ed:a4:4a:f8:52:9c:6a:2a:c2:c3: a3:1e:1e:ed:11:e8:7f:d1:76:e3:e7:dd:d5:08:ae:11:30:d7: 14:38:7a:1f:5c:f8:0f:81:7f:28:08:e6:90:0b:2b:59:bb:04: d0:f7:8d:1a:41:b7:95:1f:67:c5:40:df:f2:6c:54:86:01:bd: 1f:ef:9d:b5:8c:ec:85:49:5c:15:38:0e:e5:da:d7:7c:0f:c4: 4b:07:48:f2:7f:a8:f3:e5:3d:03:03:98:ad:eb:bc:72:7d:7d: 47:5c:8e:01:fd:42:17:e8:c7:4d:bb:50:06:e1:48:1f:d1:1e: a5:c7:74:4c:ec:ea:8b:36:54:30:90:b2:c8:d9:bf:b8:f7:cf: 60:d0:af:d1:ce:19:cc:44:a4:15:9e:b2:fa:57:a9:13:59:69: 67:eb:bb:d9 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUIh9RS4PudO/Iv8pNcR+C7JuORPowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE1MDAzMTA5WhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZTdjOGZmYjE0M2RkOTlmYjc0MzhhZjY5ZTcxYzI3ZjUw OWQ1MzI0MDkxZWNhMDU0Y2Q5Njk4NjFhMjA2MzMyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+UlVmndPFmn30CpX97LvYLB3HUh41ZEn18cPkLLw5MsF7 By4RymVZ6Bak+F5J+jHl4KonOx8U9lEAtlYqo9N6Dalbjy4gDeu0cz3iLkep+oXA KdPGeKqwvApKXxWfIrqOU/nhIOz0GHvkjs2ZvN79llgi4fVmfZdDRthsM0ZOCwKd 44yTPkYZtziJM7tb3/tPKgL9XNS9FEAok0/8TPyKf1ZCLZaeUxUshBrIIIN9K4Lx ccQLAeuZqP1YR8hkcDQaq99bmbf6ebgA3YHwIMWDKwOxX3wCW4gq6h8Y7iaU9Uu9 NBtIIWi/tIWzFJVxOdNAvkMzBbpxRKczL8Z6PZwdAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUKuL8YGpNY/oNCgtbsmDJv4OlN3gwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q1YmUyNDcyLWFmMWEtNDk1Ny04ODlmLTkxMjI5MDE2YjBjOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCB3zANBgkqhkiG9w0BAQsFAAOCAQEAGS108PoKNg8coPHB+2Z/bNntMVva novFT5iU1PllSYlRT+sD7HFScHm+eoJk0RE8vAx4WeYq1WHkLIXNC+7OB8VgoPQ+ yuwKfE8oceB/HmCPeMx2IIhSfX/n9iAjzV/XJrLtpEr4UpxqKsLDox4e7RHof9F2 4+fd1QiuETDXFDh6H1z4D4F/KAjmkAsrWbsE0PeNGkG3lR9nxUDf8mxUhgG9H++d tYzshUlcFTgO5drXfA/ESwdI8n+o8+U9AwOYreu8cn19R1yOAf1CF+jHTbtQBuFI H9Eepcd0TOzqizZUMJCyyNm/uPfPYNCv0c4ZzESkFZ6y+lepE1lpZ+u72Q== -----END CERTIFICATE-----Generated at Sat Aug 23 12:31:42 2025 by rpki-client