$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d6b24275-0a40-4f1f-b043-0d914be98547.roa File: d6b24275-0a40-4f1f-b043-0d914be98547.roa (raw, json) Hash identifier: jnQVicyWspZmndSHBOcdm1qfG3U6YK9b+iU29Oggw4g= Subject key identifier: 0A:F1:9C:14:1B:95:33:F8:8C:A5:FC:EC:6D:38:95:5A:B7:A5:C4:AC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 146A69C5C3183F7C384E6883D849586B2AAD5A1B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d6b24275-0a40-4f1f-b043-0d914be98547.roa Signing time: Mon 11 Aug 2025 15:21:40 +0000 ROA not before: Mon 11 Aug 2025 15:21:40 +0000 ROA not after: Mon 15 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 160.221.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:6a:69:c5:c3:18:3f:7c:38:4e:68:83:d8:49:58:6b:2a:ad:5a:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 11 15:21:40 2025 GMT Not After : Sep 15 23:59:59 2025 GMT Subject: serialNumber=f67d49d5440b37a5aa8f9f0dca3eb049f959215244b2acb97896d73ed8a16295, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:df:ad:21:75:e9:3e:c7:ff:88:62:f7:9f:e4: 13:2a:cb:14:fa:e3:14:33:50:9e:de:63:e9:15:21: 30:2f:c9:62:58:ad:b8:c7:f8:46:b1:69:19:a1:fd: 40:02:a2:0e:06:8c:6b:38:83:ac:46:e1:75:92:83: fa:5a:cf:e4:b9:ca:52:9a:ca:db:b7:0d:c6:cc:6c: 87:4d:10:44:7b:c0:a6:17:39:f8:3e:61:ff:3a:bf: 6e:78:7b:76:6d:0e:e2:04:51:96:3f:3a:48:a5:1c: 4a:a6:36:5a:64:e1:ce:a6:7b:31:3a:25:2f:a9:cf: 75:51:61:be:fb:4f:8e:35:8e:a3:ea:77:01:91:35: 05:b6:9a:b1:f2:45:12:22:88:1f:26:91:44:42:9d: 95:dd:b5:8d:d3:97:99:ef:29:a4:30:9a:3b:57:11: 0d:47:9d:61:e8:c5:e0:bc:e3:ee:f0:59:2c:b0:1e: 70:e8:29:43:1d:0a:42:8b:67:cd:d9:fe:1a:ca:ce: 46:31:55:03:b3:83:e1:9f:a7:09:e6:2e:85:eb:5d: 63:f0:99:79:7e:87:31:68:c7:ba:1e:54:08:68:76: 73:28:76:1b:7a:22:f6:bf:9c:01:d7:b4:d3:c6:ec: 33:2a:fe:34:ad:e2:74:03:33:68:7c:da:83:08:bf: b1:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:F1:9C:14:1B:95:33:F8:8C:A5:FC:EC:6D:38:95:5A:B7:A5:C4:AC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d6b24275-0a40-4f1f-b043-0d914be98547.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.221.0.0/16 Signature Algorithm: sha256WithRSAEncryption b4:30:33:e9:a8:72:01:a7:3b:39:d9:89:66:c7:05:16:3a:ee: e1:5a:b3:95:05:46:15:61:e9:98:27:ec:96:ed:81:2a:ce:d0: 7c:13:ac:30:0b:14:b4:7f:2a:6a:cf:71:b6:20:a6:36:ad:e6: 17:6c:b0:73:ca:43:0a:54:f1:e6:8c:16:13:f8:4f:94:1d:eb: 30:f1:e3:08:c0:07:26:24:c6:b2:4f:72:86:c2:d3:65:19:32: 21:68:fa:6d:2a:36:ff:b4:48:87:dc:d3:c3:1e:66:24:5f:9d: 7a:b1:af:5c:3a:d8:00:c2:2d:5b:eb:e8:02:cb:8d:57:26:b2: 78:69:26:fc:90:c1:af:99:e6:93:87:70:e6:20:d8:39:3f:11: 23:f5:80:a0:f3:a2:b4:d9:aa:b5:2b:fa:a7:b8:58:09:fa:14: 25:7a:6e:50:d2:f7:79:10:e4:82:29:9b:08:54:63:e8:27:63: a6:73:57:d6:45:2b:17:b2:a2:31:ec:e8:20:2f:93:85:48:86: b4:12:ab:68:6d:aa:8e:72:5d:82:30:18:66:34:a0:23:47:65: b4:78:fe:77:74:ef:8c:02:32:a9:43:b3:cf:ac:f0:6f:03:cf: ca:23:01:94:55:bf:e9:ba:3f:c7:06:c2:c6:7c:86:7a:c6:f8: d6:07:a0:5a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUFGppxcMYP3w4TmiD2ElYayqtWhswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODExMTUyMTQwWhcNMjUwOTE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNjdkNDlkNTQ0MGIzN2E1YWE4ZjlmMGRjYTNlYjA0OWY5 NTkyMTUyNDRiMmFjYjk3ODk2ZDczZWQ4YTE2Mjk1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCv360hdek+x/+IYvef5BMqyxT64xQzUJ7eY+kVITAvyWJY rbjH+EaxaRmh/UACog4GjGs4g6xG4XWSg/paz+S5ylKaytu3DcbMbIdNEER7wKYX Ofg+Yf86v254e3ZtDuIEUZY/OkilHEqmNlpk4c6mezE6JS+pz3VRYb77T441jqPq dwGRNQW2mrHyRRIiiB8mkURCnZXdtY3Tl5nvKaQwmjtXEQ1HnWHoxeC84+7wWSyw HnDoKUMdCkKLZ83Z/hrKzkYxVQOzg+GfpwnmLoXrXWPwmXl+hzFox7oeVAhodnMo dht6Iva/nAHXtNPG7DMq/jSt4nQDM2h82oMIv7FxAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUCvGcFBuVM/iMpfzsbTiVWrelxKwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q2YjI0Mjc1LTBhNDAtNGYxZi1iMDQzLTBkOTE0YmU5ODU0Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCg3TANBgkqhkiG9w0BAQsFAAOCAQEAtDAz6ahyAac7OdmJZscFFjru4Vqz lQVGFWHpmCfslu2BKs7QfBOsMAsUtH8qas9xtiCmNq3mF2ywc8pDClTx5owWE/hP lB3rMPHjCMAHJiTGsk9yhsLTZRkyIWj6bSo2/7RIh9zTwx5mJF+derGvXDrYAMIt W+voAsuNVyayeGkm/JDBr5nmk4dw5iDYOT8RI/WAoPOitNmqtSv6p7hYCfoUJXpu UNL3eRDkgimbCFRj6CdjpnNX1kUrF7KiMezoIC+ThUiGtBKraG2qjnJdgjAYZjSg I0dltHj+d3TvjAIyqUOzz6zwbwPPyiMBlFW/6bo/xwbCxnyGesb41gegWg== -----END CERTIFICATE-----Generated at Sat Aug 23 09:09:59 2025 by rpki-client