$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d87c2975-c322-4a99-8af6-32b0d3aa8fe8.roa File: d87c2975-c322-4a99-8af6-32b0d3aa8fe8.roa (raw, json) Hash identifier: njnJjaHXG7rwiL3f6s0p1u1NsOYJoFBaC5cmFM9FxfA= Subject key identifier: DE:53:F9:85:D6:A2:04:26:C1:11:F3:70:8D:B8:C9:F1:76:A2:75:0B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4DD0C60B5525ACF14381C6605BEE473D89E748EF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d87c2975-c322-4a99-8af6-32b0d3aa8fe8.roa Signing time: Mon 11 Aug 2025 15:20:14 +0000 ROA not before: Mon 11 Aug 2025 15:20:14 +0000 ROA not after: Mon 15 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 192.43.176.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:d0:c6:0b:55:25:ac:f1:43:81:c6:60:5b:ee:47:3d:89:e7:48:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 11 15:20:14 2025 GMT Not After : Sep 15 23:59:59 2025 GMT Subject: serialNumber=656ad6892399d8d02e5354915df340b8b3509aec04cc4fbe854c20d01e99e4c1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:3d:31:9c:0b:5f:af:22:fa:e5:57:ae:23:41: 5b:87:e1:6e:49:39:d4:75:37:d0:bf:d7:9c:17:2d: 8b:90:1b:dc:6a:ff:ba:98:bd:70:fd:59:1a:ea:bd: ba:04:05:45:13:4f:9b:d8:35:29:7a:82:11:8d:bb: e9:14:7c:8e:b5:80:9a:64:fb:43:08:fc:9e:f3:28: 4e:cf:e1:0e:5f:0c:1a:c4:da:f8:5b:b0:cc:f6:3c: e7:e9:9a:c9:d4:8c:8c:2f:e4:63:c3:af:f8:79:2a: 8e:bc:65:15:cf:cb:35:47:3c:8b:41:73:ca:d4:27: 36:b8:13:ef:21:28:89:1b:53:47:63:00:1f:37:30: fb:2c:4c:29:c8:83:ed:46:60:65:1b:bd:14:8d:38: c1:6a:5d:96:cb:30:5b:94:28:56:3d:2f:ca:39:0d: 4e:4f:0b:90:7a:43:a6:9f:59:4b:3f:46:2c:26:ff: 6c:c8:bf:eb:05:cf:2b:40:7a:19:e6:80:a2:79:d3: ad:eb:dc:cc:4d:2d:09:be:9c:7c:df:23:1b:9c:43: c9:93:dc:8a:83:22:c9:76:92:82:bd:64:92:b4:41: 98:21:8e:9f:ac:24:c8:16:b3:3d:bd:61:06:a6:15: 9a:65:a4:6e:53:62:f1:39:40:37:b8:6e:32:29:d0: bb:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:53:F9:85:D6:A2:04:26:C1:11:F3:70:8D:B8:C9:F1:76:A2:75:0B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d87c2975-c322-4a99-8af6-32b0d3aa8fe8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.43.176.0/21 Signature Algorithm: sha256WithRSAEncryption 26:cd:a4:92:b6:38:82:d7:b4:f6:1c:b8:59:21:a9:82:fb:b0: 58:c0:f9:4d:fe:ac:21:6f:13:35:cc:cd:5b:ff:5d:d5:bc:1c: e1:2f:4b:97:b9:6a:bf:71:31:00:6d:42:23:48:42:23:34:de: 82:ba:04:ae:83:fc:63:fe:95:fa:7d:e6:31:71:5f:d1:d4:bf: c7:bc:77:62:89:e0:75:b9:d0:32:d7:4d:29:db:81:37:c7:98: 93:61:09:d3:3a:83:c7:e7:9a:6d:cb:7e:fb:2d:7e:33:48:e6: 3a:e5:da:c6:e7:19:a3:0d:ca:c6:6a:27:5f:0f:d1:32:86:88: 4e:ff:45:4d:db:33:6f:36:b9:aa:f6:80:5f:77:3f:b2:6f:02: 7b:13:39:a8:ac:56:59:52:c7:0d:d4:a0:99:32:82:d0:e0:09: b1:88:b2:b9:9d:7c:3a:42:c6:d9:d0:56:3f:ab:ec:96:1a:06: 69:a9:66:a8:c3:a7:36:b0:d1:b9:97:47:7d:c8:98:53:92:d6: 26:ab:cb:0a:83:90:1c:a5:40:19:aa:40:89:c7:0b:09:2d:80: c8:ac:b1:05:14:2d:4f:7f:75:69:9b:9f:0e:e1:f3:e8:2b:26: 6f:04:a0:55:d1:5f:48:db:3b:31:e2:2d:d1:65:10:b1:ea:bc: 75:5f:da:bc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTdDGC1UlrPFDgcZgW+5HPYnnSO8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODExMTUyMDE0WhcNMjUwOTE1MjM1OTU5 WjB6MUkwRwYDVQQFE0A2NTZhZDY4OTIzOTlkOGQwMmU1MzU0OTE1ZGYzNDBiOGIz NTA5YWVjMDRjYzRmYmU4NTRjMjBkMDFlOTllNGMxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4PTGcC1+vIvrlV64jQVuH4W5JOdR1N9C/15wXLYuQG9xq /7qYvXD9WRrqvboEBUUTT5vYNSl6ghGNu+kUfI61gJpk+0MI/J7zKE7P4Q5fDBrE 2vhbsMz2POfpmsnUjIwv5GPDr/h5Ko68ZRXPyzVHPItBc8rUJza4E+8hKIkbU0dj AB83MPssTCnIg+1GYGUbvRSNOMFqXZbLMFuUKFY9L8o5DU5PC5B6Q6afWUs/Riwm /2zIv+sFzytAehnmgKJ5063r3MxNLQm+nHzfIxucQ8mT3IqDIsl2koK9ZJK0QZgh jp+sJMgWsz29YQamFZplpG5TYvE5QDe4bjIp0Lu/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU3lP5hdaiBCbBEfNwjbjJ8XaidQswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q4N2MyOTc1LWMzMjItNGE5OS04YWY2LTMyYjBkM2FhOGZlOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPAK7AwDQYJKoZIhvcNAQELBQADggEBACbNpJK2OILXtPYcuFkhqYL7sFjA +U3+rCFvEzXMzVv/XdW8HOEvS5e5ar9xMQBtQiNIQiM03oK6BK6D/GP+lfp95jFx X9HUv8e8d2KJ4HW50DLXTSnbgTfHmJNhCdM6g8fnmm3LfvstfjNI5jrl2sbnGaMN ysZqJ18P0TKGiE7/RU3bM282uar2gF93P7JvAnsTOaisVllSxw3UoJkygtDgCbGI srmdfDpCxtnQVj+r7JYaBmmpZqjDpzaw0bmXR33ImFOS1iarywqDkBylQBmqQInH CwktgMissQUULU9/dWmbnw7h8+grJm8EoFXRX0jbOzHiLdFlELHqvHVf2rw= -----END CERTIFICATE-----Generated at Sat Aug 23 13:31:11 2025 by rpki-client