$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f4745733-2600-4627-8fbe-3ab8ab0b9769.roa File: f4745733-2600-4627-8fbe-3ab8ab0b9769.roa (raw, json) Hash identifier: 7otG+QKS/Of3va+KszG9S+NYEiFN0Qx6GYHQxtvxdbk= Subject key identifier: 04:E9:8A:FF:89:44:6D:B6:E1:A2:D2:69:23:6D:AD:71:E9:76:B8:22 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 07621AF0B3886B6AE50F82014BBAC3E170941345 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f4745733-2600-4627-8fbe-3ab8ab0b9769.roa Signing time: Mon 18 Aug 2025 15:51:42 +0000 ROA not before: Mon 18 Aug 2025 15:51:42 +0000 ROA not after: Mon 22 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 50.17.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:62:1a:f0:b3:88:6b:6a:e5:0f:82:01:4b:ba:c3:e1:70:94:13:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 18 15:51:42 2025 GMT Not After : Sep 22 23:59:59 2025 GMT Subject: serialNumber=ca1c60716de15337948bbc7be516855120dd08f5f7085eed78b7cf25a4643ea0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:a3:df:9b:b7:b8:59:2b:a2:aa:51:9d:4d:fe: 63:7c:cb:20:e9:c4:47:15:6d:ae:4b:01:02:b8:24: ca:9a:fd:65:b2:f8:c6:72:01:fa:01:00:a3:f4:9d: c0:e3:ac:4a:51:b9:65:90:62:43:40:b7:4f:e3:04: 7f:cc:cc:1a:29:f7:60:67:f6:ac:55:78:6f:f8:c7: 12:5c:62:56:d5:c6:c7:28:48:d0:1f:33:6e:eb:e5: 8f:0c:70:11:f8:35:db:60:b5:39:64:b5:6c:c0:16: 2b:c9:5e:32:0f:27:7b:b8:85:09:78:4b:21:a0:1e: 41:c9:15:df:5f:bc:1e:a5:61:23:ab:0a:9b:60:34: 0f:54:09:dd:b2:e3:90:b3:3f:d4:a4:03:62:00:72: 97:a8:fe:88:17:d3:fd:9e:83:39:e9:c3:b3:0c:97: 40:72:38:b3:1e:29:12:53:89:90:d1:76:bf:1e:29: 31:67:1d:96:bd:9c:74:29:8a:2c:ff:fc:6e:ed:1d: 61:25:46:fe:3c:92:a3:bf:04:fd:00:07:4c:1c:46: 02:39:ff:bd:0b:4d:cd:87:4a:5b:6a:86:2a:c6:e9: 7e:b7:30:2a:7d:69:04:06:30:44:cb:25:c4:ea:fb: 6b:2c:92:96:6b:d5:d7:d9:5b:73:d7:09:21:ba:58: cd:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:E9:8A:FF:89:44:6D:B6:E1:A2:D2:69:23:6D:AD:71:E9:76:B8:22 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f4745733-2600-4627-8fbe-3ab8ab0b9769.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.17.0.0/16 Signature Algorithm: sha256WithRSAEncryption 5a:58:c0:f3:7d:3e:45:2d:07:ce:e8:c4:08:1d:8a:3b:12:97: ce:d4:f5:bb:9b:49:2e:6a:0e:d0:b4:4f:6e:42:4d:55:49:70: ae:da:39:b4:53:4c:0b:ec:48:df:49:99:8b:71:4e:33:b0:bd: 2d:9d:f3:17:0f:86:1b:23:80:74:b8:85:7f:fa:57:fc:c9:24: cb:23:86:65:da:8c:f8:e1:10:49:c8:b7:56:fc:a0:15:c9:68: 71:07:b2:d2:1b:7b:ac:cc:b7:40:84:d9:9b:af:41:e3:9d:e5: 41:6e:4b:8b:a5:05:e5:b0:02:d2:fe:31:a5:d5:0c:d0:9b:80: 9a:74:57:aa:ed:b5:f1:84:bd:c8:68:64:ff:03:d5:5b:63:30: 3c:9c:96:72:d0:64:1b:39:08:49:74:73:e0:00:09:24:e6:d0: cb:21:cb:2a:5d:2e:e3:97:88:57:e4:63:49:49:67:75:d7:60: 02:1f:7b:68:8c:ad:aa:f3:70:c5:74:87:40:ef:af:57:36:6d: d3:52:e6:ed:64:9f:30:89:f1:2c:4d:9c:42:e3:e8:75:f8:6f: 27:87:d4:33:41:f4:6d:ab:bd:84:8f:19:4f:52:e2:b5:4c:d2: a6:dd:b5:7b:98:8b:16:38:46:6f:9e:9b:5b:44:ae:8f:2f:11: d0:6f:81:39 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUB2Ia8LOIa2rlD4IBS7rD4XCUE0UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE4MTU1MTQyWhcNMjUwOTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BjYTFjNjA3MTZkZTE1MzM3OTQ4YmJjN2JlNTE2ODU1MTIw ZGQwOGY1ZjcwODVlZWQ3OGI3Y2YyNWE0NjQzZWEwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHo9+bt7hZK6KqUZ1N/mN8yyDpxEcVba5LAQK4JMqa/WWy +MZyAfoBAKP0ncDjrEpRuWWQYkNAt0/jBH/MzBop92Bn9qxVeG/4xxJcYlbVxsco SNAfM27r5Y8McBH4NdtgtTlktWzAFivJXjIPJ3u4hQl4SyGgHkHJFd9fvB6lYSOr CptgNA9UCd2y45CzP9SkA2IAcpeo/ogX0/2egznpw7MMl0ByOLMeKRJTiZDRdr8e KTFnHZa9nHQpiiz//G7tHWElRv48kqO/BP0AB0wcRgI5/70LTc2HSltqhirG6X63 MCp9aQQGMETLJcTq+2sskpZr1dfZW3PXCSG6WM37AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUBOmK/4lEbbbhotJpI22tcel2uCIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Y0NzQ1NzMzLTI2MDAtNDYyNy04ZmJlLTNhYjhhYjBiOTc2OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAyETANBgkqhkiG9w0BAQsFAAOCAQEAWljA830+RS0HzujECB2KOxKXztT1 u5tJLmoO0LRPbkJNVUlwrto5tFNMC+xI30mZi3FOM7C9LZ3zFw+GGyOAdLiFf/pX /MkkyyOGZdqM+OEQSci3VvygFclocQey0ht7rMy3QITZm69B453lQW5Li6UF5bAC 0v4xpdUM0JuAmnRXqu218YS9yGhk/wPVW2MwPJyWctBkGzkISXRz4AAJJObQyyHL Kl0u45eIV+RjSUlndddgAh97aIytqvNwxXSHQO+vVzZt01Lm7WSfMInxLE2cQuPo dfhvJ4fUM0H0bau9hI8ZT1LitUzSpt21e5iLFjhGb56bW0Sujy8R0G+BOQ== -----END CERTIFICATE-----Generated at Sat Aug 23 06:54:21 2025 by rpki-client