$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/05d4d2f7-1a78-4934-8b97-d3baee111a75.roa File: 05d4d2f7-1a78-4934-8b97-d3baee111a75.roa (raw, json) Hash identifier: d2wDqVInj9524qoe/G8zaFCzkbZFTI9wP1h5g+pMe+A= Subject key identifier: 16:82:32:C1:6B:EE:34:39:F6:0B:8F:C3:1D:80:EF:87:27:07:AE:7D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1C5A3029609F673B49B94E8E75954097B78E1FB6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/05d4d2f7-1a78-4934-8b97-d3baee111a75.roa Signing time: Mon 01 Sep 2025 15:20:18 +0000 ROA not before: Mon 01 Sep 2025 15:20:18 +0000 ROA not after: Mon 06 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 202.5.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:5a:30:29:60:9f:67:3b:49:b9:4e:8e:75:95:40:97:b7:8e:1f:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 1 15:20:18 2025 GMT Not After : Oct 6 23:59:59 2025 GMT Subject: serialNumber=e7bf71cd672cb5d8cd5df871da8ecd991eb162fd11549a0d686cb2aa29c7bab4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:17:cb:cb:30:39:70:39:ac:98:5d:7e:1c:d1: 30:8b:56:78:e6:d4:5b:36:9b:e5:06:4d:94:5e:23: 7b:17:1e:7f:95:f5:4c:1e:63:d3:de:63:a5:76:5e: 34:59:d5:44:92:2d:1e:2b:b6:bf:d7:4e:08:da:da: b3:a2:a1:9e:9a:23:93:c6:77:86:41:91:b1:af:c3: c3:b6:80:a4:23:60:a1:a7:92:1b:56:76:94:c3:e7: e6:24:c3:df:63:e0:47:b1:c5:7a:09:5a:af:93:9f: b1:4c:db:70:d2:f1:96:d0:e0:18:f9:ca:74:6b:09: 26:b5:98:f8:81:e2:15:cd:d3:44:7a:27:38:5d:65: 0d:57:2f:bf:c0:ce:71:ad:66:ac:f1:87:69:7c:42: 27:5c:0d:2d:3b:6d:31:7d:63:72:00:11:73:2c:6b: f6:3f:56:23:90:2b:88:3d:88:7c:73:59:62:24:04: 0f:aa:94:ae:8c:a3:e3:a3:eb:04:02:39:02:43:bf: b1:f9:8e:3b:b5:9a:46:37:b5:38:de:c3:f6:06:c5: 18:b6:bd:88:bf:0d:2f:b4:84:16:86:4b:40:91:51: b3:20:6f:07:2f:ed:3a:9f:0b:8a:49:93:ef:78:ee: 45:5c:30:81:8d:69:87:86:68:5b:a1:e1:b1:be:aa: 3a:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:82:32:C1:6B:EE:34:39:F6:0B:8F:C3:1D:80:EF:87:27:07:AE:7D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/05d4d2f7-1a78-4934-8b97-d3baee111a75.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.5.165.0/24 Signature Algorithm: sha256WithRSAEncryption 81:00:42:65:36:a1:a5:5c:8d:01:78:8f:a1:b4:77:5b:fd:68: 7b:18:7b:74:0e:a1:e8:7f:da:05:54:7c:a3:ba:78:6a:c9:47: a5:36:41:77:3e:48:6f:dc:cf:0e:1f:f5:0b:70:d9:17:7f:96: 40:e9:95:64:75:c3:71:ab:98:86:e8:bf:93:2c:a6:10:6d:5f: b2:a8:7f:14:91:ba:73:65:93:1f:3f:a6:2d:13:0e:50:f1:ff: df:5f:b1:77:bf:74:dc:b3:35:7c:d0:0a:27:34:1a:6c:9e:02: e3:ce:c9:f9:63:1a:02:9f:6a:dd:e4:b4:85:01:71:e1:45:6d: ae:02:94:20:f6:9f:a0:de:b7:77:40:6d:a3:c1:6d:b8:46:b9: e7:63:de:5d:74:20:6f:25:dc:0b:4f:30:c3:93:c8:b5:0b:5e: ed:f7:bc:54:5f:a6:d7:c3:37:60:63:00:b5:c5:ab:ac:cf:56: 4a:68:14:f7:1b:77:f2:5d:c9:3d:09:09:c3:d3:16:9f:af:95: 07:2b:1c:4c:f6:84:cc:1f:39:4f:76:4c:9c:ed:77:3e:15:e2: 80:79:a1:18:cf:00:76:7a:fb:02:5b:44:3c:5d:ba:95:30:6e: a3:f6:f6:33:98:d3:c6:76:8b:b9:9e:75:88:52:d7:54:8c:ef: 2e:45:cd:e6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHFowKWCfZztJuU6OdZVAl7eOH7YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTAxMTUyMDE4WhcNMjUxMDA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BlN2JmNzFjZDY3MmNiNWQ4Y2Q1ZGY4NzFkYThlY2Q5OTFl YjE2MmZkMTE1NDlhMGQ2ODZjYjJhYTI5YzdiYWI0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDOF8vLMDlwOayYXX4c0TCLVnjm1Fs2m+UGTZReI3sXHn+V 9UweY9PeY6V2XjRZ1USSLR4rtr/XTgja2rOioZ6aI5PGd4ZBkbGvw8O2gKQjYKGn khtWdpTD5+Ykw99j4EexxXoJWq+Tn7FM23DS8ZbQ4Bj5ynRrCSa1mPiB4hXN00R6 JzhdZQ1XL7/AznGtZqzxh2l8QidcDS07bTF9Y3IAEXMsa/Y/ViOQK4g9iHxzWWIk BA+qlK6Mo+Oj6wQCOQJDv7H5jju1mkY3tTjew/YGxRi2vYi/DS+0hBaGS0CRUbMg bwcv7TqfC4pJk+947kVcMIGNaYeGaFuh4bG+qjqBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUFoIywWvuNDn2C4/DHYDvhycHrn0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA1ZDRkMmY3LTFhNzgtNDkzNC04Yjk3LWQzYmFlZTExMWE3NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADKBaUwDQYJKoZIhvcNAQELBQADggEBAIEAQmU2oaVcjQF4j6G0d1v9aHsY e3QOoeh/2gVUfKO6eGrJR6U2QXc+SG/czw4f9Qtw2Rd/lkDplWR1w3GrmIbov5Ms phBtX7KofxSRunNlkx8/pi0TDlDx/99fsXe/dNyzNXzQCic0GmyeAuPOyfljGgKf at3ktIUBceFFba4ClCD2n6Det3dAbaPBbbhGuedj3l10IG8l3AtPMMOTyLULXu33 vFRfptfDN2BjALXFq6zPVkpoFPcbd/JdyT0JCcPTFp+vlQcrHEz2hMwfOU92TJzt dz4V4oB5oRjPAHZ6+wJbRDxdupUwbqP29jOY08Z2i7medYhS11SM7y5FzeY= -----END CERTIFICATE-----Generated at Sat Sep 6 14:12:07 2025 by rpki-client