$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/195f43e5-9baf-4f50-bcbb-65039707f56b.roa File: 195f43e5-9baf-4f50-bcbb-65039707f56b.roa (raw, json) Hash identifier: 8qMqRZK1KEEw1cXU5GLymPodEom4obYEft5VX/bDQTs= Subject key identifier: 57:87:B5:C0:53:5B:88:C7:24:98:91:3A:38:DF:C3:E6:47:EE:C5:78 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 50BACC9F6683DB92312DF34F11E9E49E6637CB3F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/195f43e5-9baf-4f50-bcbb-65039707f56b.roa Signing time: Mon 01 Sep 2025 15:10:22 +0000 ROA not before: Mon 01 Sep 2025 15:10:22 +0000 ROA not after: Mon 06 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 161.228.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Sep 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:ba:cc:9f:66:83:db:92:31:2d:f3:4f:11:e9:e4:9e:66:37:cb:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 1 15:10:22 2025 GMT Not After : Oct 6 23:59:59 2025 GMT Subject: serialNumber=7813f968c7d9026c58addc6a4728eb6040ddf11414ea3d4d6f7855e1296c1a9f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:6f:0f:50:5f:8c:8d:0b:1e:b2:13:da:e6:62: 61:52:58:e1:b1:21:16:8e:4d:5b:d9:35:13:ec:18: d7:17:62:0c:16:0c:9a:e9:8c:e3:7d:9d:46:03:7e: d5:cb:89:1b:e1:70:2c:ba:c5:0f:18:4a:f5:55:90: eb:4a:3d:c1:ce:69:ba:56:42:b1:1f:c8:9f:00:b4: 43:31:be:45:44:f9:21:e7:07:a2:3d:69:02:95:29: 54:94:0d:74:25:32:f4:7f:0f:32:2f:c8:a7:69:a3: 26:67:af:e0:ff:11:eb:49:21:26:6b:57:c9:fd:96: a2:42:28:da:3e:8d:35:b7:d7:de:22:09:2b:f6:ed: ee:8e:1e:b9:70:a0:3e:cf:3e:ac:b0:d1:84:d6:0e: 9e:aa:37:33:a5:05:c2:d0:20:97:6a:30:7b:82:ed: cc:02:c2:10:7d:a2:ec:c9:20:51:bf:50:ca:b2:08: 42:9e:cb:6a:cd:b3:c4:bd:4c:10:13:22:f3:1e:81: ef:3f:b4:bb:b9:a2:ac:8e:ec:ac:5a:b2:72:76:b9: e0:ac:cd:6c:26:16:6e:5c:53:bb:69:11:4f:e7:ad: a5:10:3c:9e:b6:1a:b5:14:ee:ad:a9:c2:94:00:44: 94:6c:ce:74:74:e3:b9:96:37:5f:a1:44:06:2c:33: df:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:87:B5:C0:53:5B:88:C7:24:98:91:3A:38:DF:C3:E6:47:EE:C5:78 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/195f43e5-9baf-4f50-bcbb-65039707f56b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 161.228.128.0/18 Signature Algorithm: sha256WithRSAEncryption 6e:60:37:ed:5a:75:58:67:02:9e:a8:ad:09:0b:ee:9a:02:c3: 05:cf:e1:fb:f0:de:dc:49:29:39:dc:f5:49:db:92:d8:ba:08: 84:40:af:23:95:ba:a9:27:66:d4:da:cf:e0:7f:8c:a7:93:49: 42:28:93:68:93:6f:15:b8:56:7d:03:66:b0:76:ac:fa:e8:0b: f3:43:14:5e:0c:0b:ab:88:7d:6e:b1:f4:42:78:61:90:8c:a1: 6b:3b:0d:d1:a2:53:45:b4:d9:e0:ba:2d:29:27:54:3f:70:e1: 52:aa:2e:cc:8f:63:40:a4:9c:f4:e6:8d:c4:08:97:04:9c:a8: bb:d6:5c:77:36:e1:32:42:4b:9e:f7:87:74:60:5e:88:14:2a: 64:a0:48:77:d9:46:9c:8a:2e:cc:66:8e:80:0f:19:f1:9a:53: 7e:cc:d9:26:a0:22:7b:2f:29:7f:5f:fe:6b:94:5c:2d:58:48: 74:9b:cc:26:8d:de:91:a1:03:85:c8:bd:ea:79:8f:47:b3:f9: ca:8f:16:46:fa:d6:e9:cb:8a:43:6b:64:2c:91:e8:7a:fa:77: 7c:24:58:f6:78:5c:2a:c7:96:6d:06:ef:f5:f4:87:42:b1:72: 6d:32:2d:c7:6c:47:fe:7d:66:a5:fb:a5:21:6a:de:f6:95:ba: 4a:04:43:3a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUULrMn2aD25IxLfNPEenknmY3yz8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTAxMTUxMDIyWhcNMjUxMDA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ODEzZjk2OGM3ZDkwMjZjNThhZGRjNmE0NzI4ZWI2MDQw ZGRmMTE0MTRlYTNkNGQ2Zjc4NTVlMTI5NmMxYTlmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCIbw9QX4yNCx6yE9rmYmFSWOGxIRaOTVvZNRPsGNcXYgwW DJrpjON9nUYDftXLiRvhcCy6xQ8YSvVVkOtKPcHOabpWQrEfyJ8AtEMxvkVE+SHn B6I9aQKVKVSUDXQlMvR/DzIvyKdpoyZnr+D/EetJISZrV8n9lqJCKNo+jTW3194i CSv27e6OHrlwoD7PPqyw0YTWDp6qNzOlBcLQIJdqMHuC7cwCwhB9ouzJIFG/UMqy CEKey2rNs8S9TBATIvMege8/tLu5oqyO7KxasnJ2ueCszWwmFm5cU7tpEU/nraUQ PJ62GrUU7q2pwpQARJRsznR047mWN1+hRAYsM98NAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUV4e1wFNbiMckmJE6ON/D5kfuxXgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE5NWY0M2U1LTliYWYtNGY1MC1iY2JiLTY1MDM5NzA3ZjU2Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAah5IAwDQYJKoZIhvcNAQELBQADggEBAG5gN+1adVhnAp6orQkL7poCwwXP 4fvw3txJKTnc9Unbkti6CIRAryOVuqknZtTaz+B/jKeTSUIok2iTbxW4Vn0DZrB2 rProC/NDFF4MC6uIfW6x9EJ4YZCMoWs7DdGiU0W02eC6LSknVD9w4VKqLsyPY0Ck nPTmjcQIlwScqLvWXHc24TJCS573h3RgXogUKmSgSHfZRpyKLsxmjoAPGfGaU37M 2SagInsvKX9f/muUXC1YSHSbzCaN3pGhA4XIvep5j0ez+cqPFkb61unLikNrZCyR 6Hr6d3wkWPZ4XCrHlm0G7/X0h0Kxcm0yLcdsR/59ZqX7pSFq3vaVukoEQzo= -----END CERTIFICATE-----Generated at Thu Sep 18 19:46:18 2025 by rpki-client