$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f4b6e861-de0c-468e-95aa-1bf03a8e3400.roa File: f4b6e861-de0c-468e-95aa-1bf03a8e3400.roa (raw, json) Hash identifier: DpUZ7HSjwSyjdoWNQWrKeHqQmjfsSku1dE5PUtu6XhY= Subject key identifier: C2:4C:08:A6:41:C6:0F:A6:1D:5C:5E:E0:0D:D5:98:9D:F2:18:F0:AB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0981C73549571D96E477CA4A9F1601F864F4FD62 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f4b6e861-de0c-468e-95aa-1bf03a8e3400.roa Signing time: Mon 18 Aug 2025 15:21:56 +0000 ROA not before: Mon 18 Aug 2025 15:21:56 +0000 ROA not after: Mon 22 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 184.72.216.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:81:c7:35:49:57:1d:96:e4:77:ca:4a:9f:16:01:f8:64:f4:fd:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 18 15:21:56 2025 GMT Not After : Sep 22 23:59:59 2025 GMT Subject: serialNumber=af6546cd7b335315fb929cac9d57d09570d8ef82e4b649d2a196fb552b211c85, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ac:ba:4f:f8:67:8c:ed:56:7a:b6:ad:9e:cc: 7e:fd:26:a5:70:f8:33:88:a1:1c:5a:f7:9b:b3:ec: 51:4e:fd:4f:48:b6:95:32:e9:84:50:31:9b:34:26: 55:35:0e:d3:d8:3a:bd:fc:32:bf:7d:ea:03:41:01: ae:7b:61:a2:29:ee:59:57:25:3e:da:8c:43:32:35: 58:45:18:a4:89:12:b1:05:b7:c5:14:ac:e7:1a:f5: 4e:c0:ac:ce:3b:41:d2:f3:23:0a:d1:73:bb:35:ee: de:75:cb:90:7c:0e:69:24:17:3f:3b:d1:37:ef:c7: 08:0d:2e:1b:6e:52:82:b4:cf:12:7b:26:3d:40:a6: 5b:e6:71:a1:4b:ca:20:1b:06:3a:a9:8e:26:d3:a7: 1d:66:9c:c9:3a:f6:91:d4:95:44:3e:5d:fd:90:fd: c6:11:74:1b:d9:cc:81:7a:af:06:38:b4:6b:14:6b: 27:44:fe:ee:01:e9:59:43:bf:08:97:69:f3:f7:8c: 72:66:4d:e3:ed:9d:bd:a1:0e:c4:16:b7:c3:d4:38: 33:21:1e:6d:05:8c:ae:0b:ec:48:f0:42:85:6b:90: 1f:a4:85:a6:cb:f1:af:bb:5f:bc:b4:e2:49:7a:c8: cf:26:7e:ca:9a:a1:f8:2f:49:da:f7:c5:fb:b0:5f: d5:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:4C:08:A6:41:C6:0F:A6:1D:5C:5E:E0:0D:D5:98:9D:F2:18:F0:AB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f4b6e861-de0c-468e-95aa-1bf03a8e3400.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 184.72.216.0/21 Signature Algorithm: sha256WithRSAEncryption 55:cc:41:35:9c:c2:14:67:5c:2c:22:ce:59:d9:75:e9:bd:9a: 58:5d:38:76:4e:58:5d:e1:f7:11:6b:d1:6a:89:0d:ee:f2:04: fc:4e:89:16:76:5e:28:70:d4:b4:10:29:47:0a:62:81:3f:7f: d7:9c:69:13:c5:0e:27:2f:e4:47:85:cd:1e:8f:28:7d:88:3d: 7e:b5:d0:64:24:63:27:fe:6d:89:83:e4:65:82:a7:a9:cc:6e: 00:ae:67:44:f3:7a:1d:62:93:1c:7d:91:da:1d:f2:0b:8b:09: b2:7f:7a:87:e2:9a:22:af:3c:6d:6d:ac:51:0e:e3:15:9f:43: 59:92:6a:20:99:05:f3:1f:07:a7:cb:c0:3b:89:8e:55:e9:06: d9:8f:3b:d4:9f:d4:f0:65:68:04:b1:ab:14:d5:cc:63:f4:a6: c3:aa:58:ae:de:73:21:a5:fd:ab:0f:1d:ac:b8:07:7a:a8:f0: e2:3e:ee:5e:8d:ed:69:96:5c:04:ff:24:c4:71:d0:be:5a:6d: 4e:bd:40:1e:60:b1:90:34:c5:c7:a5:2e:a6:d7:d0:eb:1f:8e: 32:72:bd:24:70:57:7d:66:8b:bf:5e:cd:2b:25:6d:50:aa:94: 84:25:36:2d:b8:73:53:ab:b9:8c:60:40:51:ce:e6:37:9e:02: d4:d9:79:11 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCYHHNUlXHZbkd8pKnxYB+GT0/WIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE4MTUyMTU2WhcNMjUwOTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BhZjY1NDZjZDdiMzM1MzE1ZmI5MjljYWM5ZDU3ZDA5NTcw ZDhlZjgyZTRiNjQ5ZDJhMTk2ZmI1NTJiMjExYzg1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzrLpP+GeM7VZ6tq2ezH79JqVw+DOIoRxa95uz7FFO/U9I tpUy6YRQMZs0JlU1DtPYOr38Mr996gNBAa57YaIp7llXJT7ajEMyNVhFGKSJErEF t8UUrOca9U7ArM47QdLzIwrRc7s17t51y5B8DmkkFz870TfvxwgNLhtuUoK0zxJ7 Jj1AplvmcaFLyiAbBjqpjibTpx1mnMk69pHUlUQ+Xf2Q/cYRdBvZzIF6rwY4tGsU aydE/u4B6VlDvwiXafP3jHJmTePtnb2hDsQWt8PUODMhHm0FjK4L7EjwQoVrkB+k habL8a+7X7y04kl6yM8mfsqaofgvSdr3xfuwX9WFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUwkwIpkHGD6YdXF7gDdWYnfIY8KswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Y0YjZlODYxLWRlMGMtNDY4ZS05NWFhLTFiZjAzYThlMzQwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAO4SNgwDQYJKoZIhvcNAQELBQADggEBAFXMQTWcwhRnXCwizlnZdem9mlhd OHZOWF3h9xFr0WqJDe7yBPxOiRZ2Xihw1LQQKUcKYoE/f9ecaRPFDicv5EeFzR6P KH2IPX610GQkYyf+bYmD5GWCp6nMbgCuZ0Tzeh1ikxx9kdod8guLCbJ/eofimiKv PG1trFEO4xWfQ1mSaiCZBfMfB6fLwDuJjlXpBtmPO9Sf1PBlaASxqxTVzGP0psOq WK7ecyGl/asPHay4B3qo8OI+7l6N7WmWXAT/JMRx0L5abU69QB5gsZA0xcelLqbX 0OsfjjJyvSRwV31mi79ezSslbVCqlIQlNi24c1OruYxgQFHO5jeeAtTZeRE= -----END CERTIFICATE-----Generated at Sat Aug 23 14:12:40 2025 by rpki-client