$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1e25c82c-c566-43b2-add2-4b2bab8925c8.roa File: 1e25c82c-c566-43b2-add2-4b2bab8925c8.roa (raw, json) Hash identifier: 98eMUhMAugeShbuvDPhiKSuQ8yrMu2n3EiyndZazm6M= Subject key identifier: B8:43:01:7B:AF:92:54:36:89:BB:2B:E5:E2:DF:17:E4:8A:CE:8A:C7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 20F4E8788B6B4E38A3ACD9C5F575818E195BE496 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1e25c82c-c566-43b2-add2-4b2bab8925c8.roa Signing time: Mon 08 Sep 2025 15:01:33 +0000 ROA not before: Mon 08 Sep 2025 15:01:33 +0000 ROA not after: Mon 13 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 104.153.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 19 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:f4:e8:78:8b:6b:4e:38:a3:ac:d9:c5:f5:75:81:8e:19:5b:e4:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 8 15:01:33 2025 GMT Not After : Oct 13 23:59:59 2025 GMT Subject: serialNumber=d7b010a68dbd3788631fca49b441bb892281469b8d17209cac2767d2fefa0edb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:74:c8:3f:3d:17:2e:9b:e7:23:72:89:66:81: 86:c1:7c:a5:85:8a:47:38:30:96:e0:69:f6:de:78: 72:87:39:c3:47:d1:a8:f2:3f:43:5e:1d:54:a0:da: 8f:0b:76:17:dd:08:26:ed:7f:fb:89:1f:20:59:24: b8:4e:30:52:95:64:69:88:5a:1b:88:a8:e2:5a:e0: e4:9d:db:ed:3b:9c:7c:c1:2d:dc:5d:37:b8:96:d8: 0e:12:cc:a5:ae:84:da:91:8e:68:95:ed:75:dd:29: 58:f0:23:44:a9:2a:d3:9b:75:45:f5:83:d4:81:c2: 6f:a8:58:c7:cc:c0:3d:dc:dd:21:91:a9:bc:65:19: 81:68:a5:2e:9b:d2:1c:3f:f8:c2:3d:d9:3e:0a:fa: c1:f6:2a:15:99:36:3c:ad:80:e8:84:ea:7b:41:b4: 6a:23:61:bb:9c:61:13:a5:a0:cc:33:32:11:62:6c: e1:39:02:d6:20:4c:48:2f:b3:ee:1d:d3:f4:bb:1d: 1f:47:f4:19:28:9b:dc:98:6e:ca:a1:99:91:29:17: 43:1e:e7:46:46:db:9f:06:85:5c:3b:af:33:32:ee: 47:3a:f0:23:76:82:25:d5:20:31:fc:b1:e8:32:45: 2b:54:9e:b1:00:5d:39:21:81:21:92:a6:84:4a:5b: 44:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:43:01:7B:AF:92:54:36:89:BB:2B:E5:E2:DF:17:E4:8A:CE:8A:C7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1e25c82c-c566-43b2-add2-4b2bab8925c8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.153.115.0/24 Signature Algorithm: sha256WithRSAEncryption d4:6d:b2:61:e8:85:4a:ae:2d:74:32:fe:38:5e:e5:0c:cb:b4: 6c:d5:93:2d:cc:18:20:5a:8d:ea:af:af:5f:f0:7e:e2:bf:75: 3a:78:09:ad:71:c5:43:0f:26:d1:e2:c4:7b:16:f8:34:65:4a: 4b:10:45:3a:4c:f9:b1:b8:97:36:d0:6c:2e:83:9c:05:b6:8b: 1a:b4:33:8b:c6:98:4d:38:2b:3c:33:dc:ff:fc:57:ba:bb:51: 53:fb:06:b5:25:8a:27:ea:2b:f5:7c:f9:c9:61:7b:24:bd:2c: ca:5b:a9:2a:0d:c8:b1:1c:3e:ee:c4:88:e9:c4:4d:5c:c2:b2: 54:18:c0:e0:c7:28:29:6b:e3:8e:dc:6c:10:60:c7:4d:eb:74: f7:2f:e0:01:6d:f6:31:55:d5:cf:29:6f:8c:4b:54:45:6e:f7: dd:28:4c:64:cd:4d:c0:67:a6:70:93:0e:bb:27:ac:55:4b:ab: d8:d0:16:b1:63:bd:f0:6c:62:06:ab:14:cc:4a:6f:e6:90:cc: da:a9:be:67:3a:0e:e2:b0:dc:44:77:c0:56:39:c7:7d:bb:55: a8:81:c0:6e:c4:e5:69:2b:b9:c9:97:2a:e6:5c:d5:79:2b:b5: 98:3f:33:b4:10:a9:02:65:d0:76:94:82:fd:0f:9c:28:ee:ee: 6f:de:77:c9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIPToeItrTjijrNnF9XWBjhlb5JYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA4MTUwMTMzWhcNMjUxMDEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BkN2IwMTBhNjhkYmQzNzg4NjMxZmNhNDliNDQxYmI4OTIy ODE0NjliOGQxNzIwOWNhYzI3NjdkMmZlZmEwZWRiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIdMg/PRcum+cjcolmgYbBfKWFikc4MJbgafbeeHKHOcNH 0ajyP0NeHVSg2o8LdhfdCCbtf/uJHyBZJLhOMFKVZGmIWhuIqOJa4OSd2+07nHzB LdxdN7iW2A4SzKWuhNqRjmiV7XXdKVjwI0SpKtObdUX1g9SBwm+oWMfMwD3c3SGR qbxlGYFopS6b0hw/+MI92T4K+sH2KhWZNjytgOiE6ntBtGojYbucYROloMwzMhFi bOE5AtYgTEgvs+4d0/S7HR9H9Bkom9yYbsqhmZEpF0Me50ZG258GhVw7rzMy7kc6 8CN2giXVIDH8segyRStUnrEAXTkhgSGSpoRKW0QPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUuEMBe6+SVDaJuyvl4t8X5IrOiscwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFlMjVjODJjLWM1NjYtNDNiMi1hZGQyLTRiMmJhYjg5MjVjOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABomXMwDQYJKoZIhvcNAQELBQADggEBANRtsmHohUquLXQy/jhe5QzLtGzV ky3MGCBajeqvr1/wfuK/dTp4Ca1xxUMPJtHixHsW+DRlSksQRTpM+bG4lzbQbC6D nAW2ixq0M4vGmE04Kzwz3P/8V7q7UVP7BrUliifqK/V8+clheyS9LMpbqSoNyLEc Pu7EiOnETVzCslQYwODHKClr447cbBBgx03rdPcv4AFt9jFV1c8pb4xLVEVu990o TGTNTcBnpnCTDrsnrFVLq9jQFrFjvfBsYgarFMxKb+aQzNqpvmc6DuKw3ER3wFY5 x327VaiBwG7E5WkrucmXKuZc1XkrtZg/M7QQqQJl0HaUgv0PnCju7m/ed8k= -----END CERTIFICATE-----Generated at Thu Sep 18 09:46:05 2025 by rpki-client