$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1e25c82c-c566-43b2-add2-4b2bab8925c8.roa File: 1e25c82c-c566-43b2-add2-4b2bab8925c8.roa (raw, json) Hash identifier: FgmPQx1x8uU+jz36kPy9Wc7+M/c19K4lrRLjT/LSZtY= Subject key identifier: 38:59:DD:02:9A:73:02:4A:F2:FC:86:35:48:E4:05:FA:9E:47:53:71 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6B9BFD42E3B817247545E00F4E61A3CBB3A5EBC4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1e25c82c-c566-43b2-add2-4b2bab8925c8.roa Signing time: Wed 13 Aug 2025 00:00:17 +0000 ROA not before: Wed 13 Aug 2025 00:00:17 +0000 ROA not after: Wed 17 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 104.153.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:9b:fd:42:e3:b8:17:24:75:45:e0:0f:4e:61:a3:cb:b3:a5:eb:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 13 00:00:17 2025 GMT Not After : Sep 17 23:59:59 2025 GMT Subject: serialNumber=a648929ed28a673078845750a2061e4df27e16c334064365b16c9c451a70079f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:6b:0f:f2:f3:ec:e2:b7:50:cd:6a:94:56:9c: f9:49:f1:8b:56:87:5a:ba:84:71:fa:df:d7:09:a5: be:e4:ad:a1:36:79:7a:ce:5d:b6:a9:bf:33:27:3a: db:8f:70:55:ab:2e:28:56:49:3e:f8:f7:f7:7c:c1: f9:06:88:de:b3:3f:45:90:8f:6f:e4:75:53:ec:f3: f6:a7:f5:72:29:95:21:96:83:ec:0b:78:77:76:35: cc:f5:45:8c:b6:eb:7d:2a:33:1e:97:22:78:59:58: 75:a8:ac:1e:b4:bc:1a:f6:f9:ac:e9:a4:40:32:56: d3:67:b6:4b:37:99:c3:1b:83:77:e9:c9:35:f5:c1: e0:61:ff:ce:85:8c:36:05:79:7b:e9:71:ae:1a:d8: 79:94:54:8b:3e:6c:d9:98:33:63:98:6c:6f:49:e8: d2:b0:8b:f3:a1:a8:30:76:94:20:9c:4d:33:a9:5f: f5:6d:3e:79:34:ae:d9:f8:54:28:ce:9b:a4:c0:91: f8:44:60:73:0a:8b:9b:8a:d0:03:13:0b:c1:91:cf: c4:6e:3e:0b:e9:3c:7f:24:df:92:20:49:a0:a2:bd: be:2e:0c:d1:89:72:13:28:01:fc:eb:90:aa:7a:a8: 5f:93:81:0e:2b:25:3c:af:e1:d4:8e:dc:d0:00:1f: db:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:59:DD:02:9A:73:02:4A:F2:FC:86:35:48:E4:05:FA:9E:47:53:71 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1e25c82c-c566-43b2-add2-4b2bab8925c8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.153.115.0/24 Signature Algorithm: sha256WithRSAEncryption a5:67:40:fc:e7:41:c0:35:9c:e6:1d:f0:1e:a9:1e:7f:07:8d: fe:6f:d7:12:d3:d9:7c:69:b7:2c:64:0d:00:8e:1b:13:c8:ea: 59:94:8c:b9:65:29:f4:75:a6:10:fc:32:bb:8e:6a:43:5c:99: dc:61:32:41:b9:5a:4a:69:da:0c:28:b2:63:e3:81:85:76:92: 84:c3:16:93:c4:3e:ea:93:7b:73:46:63:e2:35:b5:90:bd:4d: b0:ab:f0:5e:41:88:87:8c:f1:8f:6b:38:ff:04:24:6f:3e:3c: e3:2b:42:f5:d0:c3:d8:d5:82:c4:3e:23:59:38:78:d6:df:52: f5:94:cc:2c:1a:44:e0:f8:d5:c0:d8:ca:c3:21:ed:2a:b5:3a: 10:36:e0:b7:ca:42:e2:7a:34:3b:cb:b7:81:6b:42:53:c3:66: 3b:4b:56:24:89:02:24:46:e5:82:5d:e8:d0:bb:3a:58:75:8d: 64:18:32:58:c3:8c:f8:34:d1:5d:e7:a0:f4:6d:bf:c3:8f:de: ff:90:f6:65:8d:fe:ae:90:96:b9:f3:fa:26:0a:48:2c:54:1e: 10:7d:4b:f2:76:17:f2:b1:1e:c8:c4:ad:d5:44:6b:08:f8:f9: 3d:28:ae:19:49:a2:af:b4:76:3a:33:27:bf:45:da:1c:1e:4f: 31:1e:69:99 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUa5v9QuO4FyR1ReAPTmGjy7Ol68QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEzMDAwMDE3WhcNMjUwOTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNjQ4OTI5ZWQyOGE2NzMwNzg4NDU3NTBhMjA2MWU0ZGYy N2UxNmMzMzQwNjQzNjViMTZjOWM0NTFhNzAwNzlmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDaaw/y8+zit1DNapRWnPlJ8YtWh1q6hHH639cJpb7kraE2 eXrOXbapvzMnOtuPcFWrLihWST749/d8wfkGiN6zP0WQj2/kdVPs8/an9XIplSGW g+wLeHd2Ncz1RYy2630qMx6XInhZWHWorB60vBr2+azppEAyVtNntks3mcMbg3fp yTX1weBh/86FjDYFeXvpca4a2HmUVIs+bNmYM2OYbG9J6NKwi/OhqDB2lCCcTTOp X/VtPnk0rtn4VCjOm6TAkfhEYHMKi5uK0AMTC8GRz8RuPgvpPH8k35IgSaCivb4u DNGJchMoAfzrkKp6qF+TgQ4rJTyv4dSO3NAAH9sPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUOFndAppzAkry/IY1SOQF+p5HU3EwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFlMjVjODJjLWM1NjYtNDNiMi1hZGQyLTRiMmJhYjg5MjVjOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABomXMwDQYJKoZIhvcNAQELBQADggEBAKVnQPznQcA1nOYd8B6pHn8Hjf5v 1xLT2XxptyxkDQCOGxPI6lmUjLllKfR1phD8MruOakNcmdxhMkG5Wkpp2gwosmPj gYV2koTDFpPEPuqTe3NGY+I1tZC9TbCr8F5BiIeM8Y9rOP8EJG8+POMrQvXQw9jV gsQ+I1k4eNbfUvWUzCwaROD41cDYysMh7Sq1OhA24LfKQuJ6NDvLt4FrQlPDZjtL ViSJAiRG5YJd6NC7Olh1jWQYMljDjPg00V3noPRtv8OP3v+Q9mWN/q6Qlrnz+iYK SCxUHhB9S/J2F/KxHsjErdVEawj4+T0orhlJoq+0djozJ79F2hweTzEeaZk= -----END CERTIFICATE-----Generated at Wed Aug 20 10:42:50 2025 by rpki-client