$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9c5b22d0-c570-479a-9176-1b8ae33317b3.roa File: 9c5b22d0-c570-479a-9176-1b8ae33317b3.roa (raw, json) Hash identifier: RksoFHOUY/0h/uHEGZLcD1Wb/q54B7XFxTmRl2Bm/8c= Subject key identifier: 01:BA:B2:70:C2:38:84:D1:E5:91:20:CB:41:94:A1:72:FC:B9:FB:AB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6D04A279A6FF1BF0E1D3B428FB9C522615D21998 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9c5b22d0-c570-479a-9176-1b8ae33317b3.roa Signing time: Fri 11 Jul 2025 00:50:32 +0000 ROA not before: Fri 11 Jul 2025 00:50:32 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 98.130.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 22 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:04:a2:79:a6:ff:1b:f0:e1:d3:b4:28:fb:9c:52:26:15:d2:19:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 11 00:50:32 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=205accb67bc11dabb996b678bb2d3ad36953c8c722002175b432137f2940fcf2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:32:d1:95:d2:d5:96:73:06:2a:36:6d:72:84: e7:84:90:a3:5a:d0:c2:23:d2:dc:56:53:1e:14:71: 09:a1:b0:8a:db:0c:8e:c0:c5:f4:04:7a:e8:2d:a9: 0c:bf:5c:09:7f:31:94:e4:eb:3e:fc:33:3a:fe:a0: 00:a2:61:bd:ab:4c:2b:bb:f5:95:11:97:54:88:d2: 28:b0:de:21:32:b0:ac:1d:e3:7b:60:b5:de:7c:fc: 02:dc:dc:ad:ae:68:2b:69:8b:74:3e:27:52:d1:08: cb:f8:e9:43:82:ef:09:37:d2:14:02:3d:3b:2e:48: 00:b5:fb:72:f5:ae:eb:33:e9:64:0c:27:46:4f:9c: 15:f5:27:eb:8f:89:17:ea:89:f7:a3:c6:f1:47:e2: bb:80:85:13:77:53:4b:28:4c:59:14:00:3c:1f:44: 9f:7e:c8:58:32:85:fc:b5:b6:14:2c:e2:62:c2:48: 2c:9c:b9:62:e3:6d:b3:a1:6c:eb:ab:01:75:02:47: 3a:73:5f:8e:4c:15:3f:ef:8c:e6:a7:66:9a:f3:ab: 00:61:14:a5:61:67:fc:e9:bf:0e:f1:2e:d7:0d:98: 11:ff:50:d3:06:80:1e:ee:a6:cc:09:37:29:8e:47: f1:9e:1e:25:fe:0c:af:a6:36:05:c9:46:7f:ba:32: 8d:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:BA:B2:70:C2:38:84:D1:E5:91:20:CB:41:94:A1:72:FC:B9:FB:AB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9c5b22d0-c570-479a-9176-1b8ae33317b3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 98.130.0.0/16 Signature Algorithm: sha256WithRSAEncryption 28:a1:71:80:6e:d1:47:60:1a:7c:7c:01:91:5c:ff:e4:fd:34: 1a:54:16:76:2d:d9:c1:4c:cd:42:e3:0d:f8:4c:c9:35:c5:0a: 37:77:5a:76:e6:10:91:12:1e:3a:f5:1b:86:dd:87:7a:ba:25: 7a:5d:28:93:d7:87:22:7d:62:c0:31:c7:68:c4:c9:1f:8b:7e: 1c:65:16:c9:a9:79:7c:1a:68:9f:21:a1:4b:43:5e:4a:bb:70: 12:3a:0d:49:78:04:4a:f5:99:40:a1:2f:f7:44:8f:5c:26:2a: b8:d9:59:60:80:d8:ef:7b:2e:61:53:4b:15:eb:79:97:13:5a: 31:b4:be:e4:a4:33:24:14:33:51:b1:9b:4d:d6:b2:37:34:db: 52:49:8c:88:0a:01:d9:b7:07:80:b2:d1:a3:4c:11:3f:fd:f6: a4:5c:10:cf:d2:4e:37:c2:a4:d3:61:6a:ed:81:88:91:4a:ee: 77:23:3d:48:85:9e:c2:3e:3d:2f:19:8e:e3:9e:55:8a:5f:80: 51:b4:be:62:30:dc:d3:1b:32:fa:0d:1f:28:6b:b0:7e:1a:4e: d2:a5:80:73:5f:02:aa:3b:44:4c:9b:08:96:62:67:ba:88:fa: 3a:fc:87:b4:c2:9c:ec:ec:69:b5:7e:c9:52:d9:06:89:1f:98: 82:a1:3a:da -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUbQSieab/G/Dh07Qo+5xSJhXSGZgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzExMDA1MDMyWhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMDVhY2NiNjdiYzExZGFiYjk5NmI2NzhiYjJkM2FkMzY5 NTNjOGM3MjIwMDIxNzViNDMyMTM3ZjI5NDBmY2YyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtMtGV0tWWcwYqNm1yhOeEkKNa0MIj0txWUx4UcQmhsIrb DI7AxfQEeugtqQy/XAl/MZTk6z78Mzr+oACiYb2rTCu79ZURl1SI0iiw3iEysKwd 43tgtd58/ALc3K2uaCtpi3Q+J1LRCMv46UOC7wk30hQCPTsuSAC1+3L1rusz6WQM J0ZPnBX1J+uPiRfqifejxvFH4ruAhRN3U0soTFkUADwfRJ9+yFgyhfy1thQs4mLC SCycuWLjbbOhbOurAXUCRzpzX45MFT/vjOanZprzqwBhFKVhZ/zpvw7xLtcNmBH/ UNMGgB7upswJNymOR/GeHiX+DK+mNgXJRn+6Mo0jAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUAbqycMI4hNHlkSDLQZShcvy5+6swHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzljNWIyMmQwLWM1NzAtNDc5YS05MTc2LTFiOGFlMzMzMTdiMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBigjANBgkqhkiG9w0BAQsFAAOCAQEAKKFxgG7RR2AafHwBkVz/5P00GlQW di3ZwUzNQuMN+EzJNcUKN3daduYQkRIeOvUbht2Herolel0ok9eHIn1iwDHHaMTJ H4t+HGUWyal5fBponyGhS0NeSrtwEjoNSXgESvWZQKEv90SPXCYquNlZYIDY73su YVNLFet5lxNaMbS+5KQzJBQzUbGbTdayNzTbUkmMiAoB2bcHgLLRo0wRP/32pFwQ z9JON8Kk02Fq7YGIkUrudyM9SIWewj49LxmO455Vil+AUbS+YjDc0xsy+g0fKGuw fhpO0qWAc18CqjtETJsIlmJnuoj6OvyHtMKc7OxptX7JUtkGiR+YgqE62g== -----END CERTIFICATE-----Generated at Mon Jul 21 13:11:56 2025 by rpki-client