$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2279a492-73db-41f0-98ae-bd6039e89d3b.roa File: 2279a492-73db-41f0-98ae-bd6039e89d3b.roa (raw, json) Hash identifier: SjoHcyuV8s9WkvflD5lMVljdMrEUGGAMWsCKLDvYdtY= Subject key identifier: 15:5D:21:26:BA:C5:0C:8A:80:6D:67:7C:FF:D0:46:CE:D6:3D:0A:3E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 61BDE8DCD66E461EFF3643C008BCF6F5339B348B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2279a492-73db-41f0-98ae-bd6039e89d3b.roa Signing time: Sat 09 Aug 2025 00:01:11 +0000 ROA not before: Sat 09 Aug 2025 00:01:11 +0000 ROA not after: Sat 13 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 134.31.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:bd:e8:dc:d6:6e:46:1e:ff:36:43:c0:08:bc:f6:f5:33:9b:34:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 9 00:01:11 2025 GMT Not After : Sep 13 23:59:59 2025 GMT Subject: serialNumber=84e3e5003aec617e92f2aeb9ece8c203332df7c4695ad934557123b1e8a1faf5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:2f:37:e8:ef:31:58:e6:fc:3c:75:99:39:85: cd:9d:c6:8b:d1:4c:f9:95:6d:77:f8:c8:28:f5:e6: 1d:8e:62:83:99:b7:a2:2c:8a:dd:3d:a9:06:cf:91: 4d:d6:18:b9:73:59:e8:1a:e0:4f:7b:f7:0e:db:ea: f0:c2:97:0b:6b:af:0a:c6:24:ed:4f:a5:e4:18:65: 88:56:9c:1f:c5:71:a5:d6:c2:c5:a2:2e:fc:46:83: 27:47:19:be:32:85:09:16:65:de:27:9b:27:8d:22: 53:61:07:fd:67:bb:92:79:86:dd:31:50:02:33:c5: bf:e8:e3:f9:1f:1c:24:06:c7:ab:4a:8c:03:15:09: 2f:00:03:90:36:2e:89:c2:81:0a:1f:65:e0:eb:a9: 8a:03:9c:bc:b7:b0:06:61:33:c4:cf:aa:9e:5f:94: 7d:ba:40:b7:8d:4d:23:57:10:08:99:bd:f6:ba:1f: 9e:6a:8c:81:55:ae:64:b9:5e:e6:05:66:ab:c4:63: ef:79:2f:15:40:c2:2d:94:34:43:38:02:7c:9f:9b: 43:20:e8:96:98:ca:5e:8a:0f:c9:6d:e8:a6:00:82: fa:9b:c9:9f:c5:3c:f2:64:bc:b4:65:0e:14:4d:65: 3d:af:37:a9:38:b1:1e:f2:4d:aa:e8:2d:98:69:25: 8e:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:5D:21:26:BA:C5:0C:8A:80:6D:67:7C:FF:D0:46:CE:D6:3D:0A:3E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2279a492-73db-41f0-98ae-bd6039e89d3b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 134.31.0.0/16 Signature Algorithm: sha256WithRSAEncryption 87:c1:42:a0:96:2f:0a:a9:5c:c9:e0:72:6f:23:33:e4:09:af: cc:cf:c4:17:55:d1:b6:8d:e6:6d:91:90:7c:95:10:87:1f:81: c0:82:c1:bd:9c:ba:bb:ad:cf:d2:38:b5:98:e8:81:8b:69:67: 5b:31:a6:b6:fc:92:61:56:8a:74:22:cd:a7:77:f1:a9:e0:44: 66:67:00:15:05:b1:60:85:20:21:be:df:7f:d7:d1:fa:69:73: 38:af:94:70:e6:91:05:32:01:ed:38:49:7b:47:61:f9:fc:df: 89:4e:30:b6:63:45:d0:78:f5:6b:00:21:01:5d:52:fc:cf:29: 7a:d3:a9:a1:08:7d:b3:4b:94:fd:6e:fd:a0:03:70:ba:b4:c3: 44:c9:7b:01:ad:1e:0c:07:35:18:db:48:1d:ed:a2:0e:2d:e8: 20:ba:9c:cc:e0:23:64:61:a7:d8:db:1e:ac:79:51:01:31:a2: de:97:84:68:5a:64:b6:34:50:c9:c8:7a:80:10:89:70:4c:18: aa:07:8d:99:f7:36:d7:59:56:ab:67:e8:c5:99:6b:45:3a:fe: a1:86:c2:ec:65:d9:fa:19:54:75:23:d1:b1:e3:95:30:27:dc: d8:7e:cc:a0:84:38:17:dd:e0:23:a7:f8:a2:5d:56:6f:a7:84: 68:97:2b:aa -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUYb3o3NZuRh7/NkPACLz29TObNIswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA5MDAwMTExWhcNMjUwOTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A4NGUzZTUwMDNhZWM2MTdlOTJmMmFlYjllY2U4YzIwMzMz MmRmN2M0Njk1YWQ5MzQ1NTcxMjNiMWU4YTFmYWY1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCRLzfo7zFY5vw8dZk5hc2dxovRTPmVbXf4yCj15h2OYoOZ t6Isit09qQbPkU3WGLlzWega4E979w7b6vDClwtrrwrGJO1PpeQYZYhWnB/FcaXW wsWiLvxGgydHGb4yhQkWZd4nmyeNIlNhB/1nu5J5ht0xUAIzxb/o4/kfHCQGx6tK jAMVCS8AA5A2LonCgQofZeDrqYoDnLy3sAZhM8TPqp5flH26QLeNTSNXEAiZvfa6 H55qjIFVrmS5XuYFZqvEY+95LxVAwi2UNEM4Anyfm0Mg6JaYyl6KD8lt6KYAgvqb yZ/FPPJkvLRlDhRNZT2vN6k4sR7yTaroLZhpJY5dAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUFV0hJrrFDIqAbWd8/9BGztY9Cj4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIyNzlhNDkyLTczZGItNDFmMC05OGFlLWJkNjAzOWU4OWQzYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCGHzANBgkqhkiG9w0BAQsFAAOCAQEAh8FCoJYvCqlcyeBybyMz5AmvzM/E F1XRto3mbZGQfJUQhx+BwILBvZy6u63P0ji1mOiBi2lnWzGmtvySYVaKdCLNp3fx qeBEZmcAFQWxYIUgIb7ff9fR+mlzOK+UcOaRBTIB7ThJe0dh+fzfiU4wtmNF0Hj1 awAhAV1S/M8petOpoQh9s0uU/W79oANwurTDRMl7Aa0eDAc1GNtIHe2iDi3oILqc zOAjZGGn2NserHlRATGi3peEaFpktjRQych6gBCJcEwYqgeNmfc211lWq2foxZlr RTr+oYbC7GXZ+hlUdSPRseOVMCfc2H7MoIQ4F93gI6f4ol1Wb6eEaJcrqg== -----END CERTIFICATE-----Generated at Wed Aug 20 10:41:25 2025 by rpki-client