$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dae0253e-b4d8-4623-b4ce-9451a6087b11.roa File: dae0253e-b4d8-4623-b4ce-9451a6087b11.roa (raw, json) Hash identifier: 8PkTycdJ3/jH3F6fPmo3KxfDzD6y+kIDmcAijtTzujs= Subject key identifier: 59:03:A1:00:D5:B6:7C:10:4D:D2:29:AB:61:A9:F0:98:F7:53:F6:9E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7EB01AE8213C17D65011E968FE16F4A8734C7EC2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dae0253e-b4d8-4623-b4ce-9451a6087b11.roa Signing time: Fri 22 Aug 2025 00:31:57 +0000 ROA not before: Fri 22 Aug 2025 00:31:57 +0000 ROA not after: Fri 26 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.157.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:b0:1a:e8:21:3c:17:d6:50:11:e9:68:fe:16:f4:a8:73:4c:7e:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 22 00:31:57 2025 GMT Not After : Sep 26 23:59:59 2025 GMT Subject: serialNumber=027f0f0e68ffe2692dca1666f48bb721aeacb94b71a6155b87ac504375ca5002, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:8a:fe:ec:53:89:4c:48:f4:39:87:ac:5c:ca: c9:a9:b2:d8:b7:1c:5f:4d:0f:eb:94:3c:94:b3:f9: 40:85:6b:91:fb:5f:38:70:d4:58:57:1a:2f:45:29: 94:26:82:6c:ed:c9:0c:90:61:c5:eb:e3:49:89:08: 55:49:f0:45:a2:71:ce:7e:9e:0a:b4:2d:09:7b:83: 01:b8:79:9d:ae:8f:f8:6f:1f:ff:d8:53:1e:d5:e2: 7b:af:e9:6e:40:c1:71:86:57:38:cc:bf:e6:e1:50: 9f:77:68:1e:53:3a:6b:e5:5b:24:1d:d7:b0:dc:84: cc:63:c0:fc:4d:30:c7:c0:73:5b:18:10:55:d4:56: fe:69:81:d4:68:6d:c1:c3:0c:78:0c:65:d6:bd:4d: 15:27:77:15:4f:25:c2:23:b8:bf:38:ea:ee:01:b7: 26:49:9e:e3:05:a3:1c:a6:1f:50:15:21:31:58:be: 9d:24:d1:03:3c:bd:f7:3e:32:71:74:3a:aa:be:9d: 70:9a:e8:5b:ce:af:f0:14:1c:43:a5:f6:1b:67:6f: 0d:63:02:45:ae:0a:7a:21:03:53:b7:8f:96:be:55: 68:fb:88:cd:3f:0f:c1:33:0a:1a:44:e7:01:75:90: 55:b3:3e:e6:c0:7b:89:9a:97:f8:a9:41:62:89:0c: c9:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:03:A1:00:D5:B6:7C:10:4D:D2:29:AB:61:A9:F0:98:F7:53:F6:9E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dae0253e-b4d8-4623-b4ce-9451a6087b11.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.157.4.0/22 Signature Algorithm: sha256WithRSAEncryption a7:c6:58:6b:c6:3d:76:83:ce:19:d1:df:5a:08:95:6c:27:5b: 45:97:d6:a2:f7:83:45:a3:63:89:34:5d:d8:ee:93:a6:65:10: 85:7d:17:0c:c9:6f:d2:d3:c9:b2:83:17:82:52:cb:27:ca:57: df:78:c4:cf:9f:dd:9a:07:76:50:a5:fb:b5:74:32:df:ed:97: 03:ef:a0:ff:9b:04:0d:51:00:7e:47:bd:5d:a8:0e:6a:c0:23: 62:78:95:b9:40:73:c5:5d:00:4f:20:c0:82:e9:e1:37:87:e4: bd:0d:01:2c:a6:7b:e5:b8:bf:15:66:51:bc:c4:f0:0f:43:d4: 9e:ea:83:c3:68:6c:c3:da:fe:d4:97:79:00:8d:5d:29:dd:87: dd:f0:dc:f7:0c:75:ad:15:d1:ba:f8:b4:3f:9a:9d:fc:f0:4f: 7b:67:2a:97:38:eb:80:e8:9c:89:37:01:40:27:19:aa:af:62: 9f:42:94:78:6e:f7:69:eb:14:63:d4:12:7b:96:12:38:92:0b: 22:7f:ab:f8:fd:24:88:7d:43:b0:b1:bf:c8:82:59:4f:74:cd: fd:37:7c:e8:5c:d9:f2:7c:59:1f:a5:f5:d8:0c:82:fb:e4:7c: 36:82:4c:4a:d3:85:d3:e0:7c:19:5e:d2:f7:9a:18:1e:d2:ca: 58:ac:4b:d9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfrAa6CE8F9ZQEelo/hb0qHNMfsIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODIyMDAzMTU3WhcNMjUwOTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMjdmMGYwZTY4ZmZlMjY5MmRjYTE2NjZmNDhiYjcyMWFl YWNiOTRiNzFhNjE1NWI4N2FjNTA0Mzc1Y2E1MDAyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDeiv7sU4lMSPQ5h6xcysmpsti3HF9ND+uUPJSz+UCFa5H7 Xzhw1FhXGi9FKZQmgmztyQyQYcXr40mJCFVJ8EWicc5+ngq0LQl7gwG4eZ2uj/hv H//YUx7V4nuv6W5AwXGGVzjMv+bhUJ93aB5TOmvlWyQd17DchMxjwPxNMMfAc1sY EFXUVv5pgdRobcHDDHgMZda9TRUndxVPJcIjuL846u4BtyZJnuMFoxymH1AVITFY vp0k0QM8vfc+MnF0Oqq+nXCa6FvOr/AUHEOl9htnbw1jAkWuCnohA1O3j5a+VWj7 iM0/D8EzChpE5wF1kFWzPubAe4mal/ipQWKJDMm3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUWQOhANW2fBBN0imrYanwmPdT9p4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RhZTAyNTNlLWI0ZDgtNDYyMy1iNGNlLTk0NTFhNjA4N2IxMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALYnQQwDQYJKoZIhvcNAQELBQADggEBAKfGWGvGPXaDzhnR31oIlWwnW0WX 1qL3g0WjY4k0Xdjuk6ZlEIV9FwzJb9LTybKDF4JSyyfKV994xM+f3ZoHdlCl+7V0 Mt/tlwPvoP+bBA1RAH5HvV2oDmrAI2J4lblAc8VdAE8gwILp4TeH5L0NASyme+W4 vxVmUbzE8A9D1J7qg8NobMPa/tSXeQCNXSndh93w3PcMda0V0br4tD+anfzwT3tn Kpc464DonIk3AUAnGaqvYp9ClHhu92nrFGPUEnuWEjiSCyJ/q/j9JIh9Q7Cxv8iC WU90zf03fOhc2fJ8WR+l9dgMgvvkfDaCTErThdPgfBle0veaGB7SylisS9k= -----END CERTIFICATE-----Generated at Sat Aug 23 08:23:10 2025 by rpki-client