$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/07008d8d-f039-461c-be80-d42cb304abe4.roa File: 07008d8d-f039-461c-be80-d42cb304abe4.roa (raw, json) Hash identifier: 50GUcX/O43wO2tgWRhUXURJWITb7Uq1/M8S0FxmLHOg= Subject key identifier: 4F:9E:99:98:50:8F:BA:9C:16:7B:98:63:AA:EC:6D:2F:01:C6:1A:0C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 48BC07EC7DB51A1531061E321EA86EC1B2249C15 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/07008d8d-f039-461c-be80-d42cb304abe4.roa Signing time: Tue 12 Aug 2025 00:30:19 +0000 ROA not before: Tue 12 Aug 2025 00:30:19 +0000 ROA not after: Tue 16 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.20.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:bc:07:ec:7d:b5:1a:15:31:06:1e:32:1e:a8:6e:c1:b2:24:9c:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 12 00:30:19 2025 GMT Not After : Sep 16 23:59:59 2025 GMT Subject: serialNumber=512292fac9f684aafc2824a0f109e70afd2f2caa807a65a67c6522032cc3f33e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:02:ba:7d:25:3d:71:0b:1a:28:05:f2:d4:11: b4:38:d1:f8:e9:ec:2e:c8:f8:c9:12:92:0b:2f:e6: 43:59:52:8e:48:c1:90:34:0f:d5:84:0b:11:e8:64: 8a:db:f7:71:9b:11:a3:01:fc:9f:d7:92:fb:8d:4a: eb:49:64:73:57:b4:f9:8c:ee:f4:09:32:9a:f8:e4: d6:50:ee:93:15:b4:c5:4d:16:16:33:3f:c6:c0:6f: b9:7a:d0:19:b4:60:9d:73:a5:2b:77:91:65:b3:6f: 78:86:9a:7e:59:06:37:d1:69:fd:30:3e:63:23:06: 85:3a:27:d7:bd:51:43:de:0c:f8:22:65:3e:4f:ed: 5f:92:be:eb:c3:99:5f:e2:1e:a6:fe:83:58:18:c7: dc:3f:52:c5:5e:41:d3:68:09:90:ff:f7:dd:fe:42: c5:b9:f2:b7:64:f8:94:0b:4b:c9:d9:4d:d0:2c:8a: 4f:00:0d:bb:38:3e:2e:6c:7d:01:a9:fc:61:c6:0c: b4:ba:2d:db:b5:59:b1:eb:ed:2b:7b:5a:13:11:a8: cf:b4:2b:c5:6c:a6:18:37:30:fb:f3:a7:5d:1f:d3: 69:5a:21:7a:0e:49:ae:a2:b0:31:91:62:e7:2b:69: 7d:11:47:42:4b:c6:56:53:c9:93:fa:65:1b:c3:d6: 7c:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:9E:99:98:50:8F:BA:9C:16:7B:98:63:AA:EC:6D:2F:01:C6:1A:0C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/07008d8d-f039-461c-be80-d42cb304abe4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.20.0.0/15 Signature Algorithm: sha256WithRSAEncryption 79:7c:c4:22:01:db:0e:fd:11:eb:71:66:3f:ad:69:a2:08:11: a8:ec:b4:56:57:4b:e2:e7:13:28:49:e1:17:a9:00:08:e3:58: 1a:35:14:b5:46:84:73:91:cb:8a:47:a6:61:65:5e:02:0a:90: ad:82:2c:23:eb:2d:52:06:2f:fc:a9:02:9b:4b:47:42:6f:93: e7:94:c7:18:4f:f1:ac:fa:dc:0f:ee:e5:dd:c9:2a:a8:64:93: 32:77:0f:a3:6f:b7:d6:78:32:1c:9d:bc:eb:55:3f:f5:19:d0: e3:f2:9f:d0:ef:63:20:9d:48:4d:b5:b5:09:bd:18:13:30:f9: 78:45:a6:8f:a3:08:bd:19:fd:22:9b:14:ae:c9:ef:53:8a:2d: 11:1f:40:62:5d:b0:e2:46:fa:ae:3f:01:9b:ba:b3:90:a3:ec: 54:ee:bc:1a:f0:24:fb:50:c1:7a:f0:6c:50:9a:fa:20:e9:f9: 26:7a:62:d9:60:e4:21:86:5e:4a:af:fc:82:eb:2b:ff:0d:75: b1:7e:c1:6c:39:10:ae:88:d2:45:05:72:64:5e:ef:13:df:a6: 09:bd:c7:b0:1e:56:85:b9:3f:fc:dc:c6:11:5d:ae:f1:4b:c2: 1f:76:d3:a4:cc:0c:36:2c:22:33:b0:16:a6:1d:2c:00:fe:33: 6e:1f:00:a2 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUSLwH7H21GhUxBh4yHqhuwbIknBUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEyMDAzMDE5WhcNMjUwOTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A1MTIyOTJmYWM5ZjY4NGFhZmMyODI0YTBmMTA5ZTcwYWZk MmYyY2FhODA3YTY1YTY3YzY1MjIwMzJjYzNmMzNlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDaArp9JT1xCxooBfLUEbQ40fjp7C7I+MkSkgsv5kNZUo5I wZA0D9WECxHoZIrb93GbEaMB/J/XkvuNSutJZHNXtPmM7vQJMpr45NZQ7pMVtMVN FhYzP8bAb7l60Bm0YJ1zpSt3kWWzb3iGmn5ZBjfRaf0wPmMjBoU6J9e9UUPeDPgi ZT5P7V+SvuvDmV/iHqb+g1gYx9w/UsVeQdNoCZD/993+QsW58rdk+JQLS8nZTdAs ik8ADbs4Pi5sfQGp/GHGDLS6Ldu1WbHr7St7WhMRqM+0K8Vsphg3MPvzp10f02la IXoOSa6isDGRYucraX0RR0JLxlZTyZP6ZRvD1nxfAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUT56ZmFCPupwWe5hjquxtLwHGGgwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA3MDA4ZDhkLWYwMzktNDYxYy1iZTgwLWQ0MmNiMzA0YWJlNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwE2FDANBgkqhkiG9w0BAQsFAAOCAQEAeXzEIgHbDv0R63FmP61poggRqOy0 VldL4ucTKEnhF6kACONYGjUUtUaEc5HLikemYWVeAgqQrYIsI+stUgYv/KkCm0tH Qm+T55THGE/xrPrcD+7l3ckqqGSTMncPo2+31ngyHJ2861U/9RnQ4/Kf0O9jIJ1I TbW1Cb0YEzD5eEWmj6MIvRn9IpsUrsnvU4otER9AYl2w4kb6rj8Bm7qzkKPsVO68 GvAk+1DBevBsUJr6IOn5Jnpi2WDkIYZeSq/8gusr/w11sX7BbDkQrojSRQVyZF7v E9+mCb3HsB5Whbk//NzGEV2u8UvCH3bTpMwMNiwiM7AWph0sAP4zbh8Aog== -----END CERTIFICATE-----Generated at Wed Aug 20 10:45:19 2025 by rpki-client