$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22e0224f-add1-4750-9889-4168c3af1743.roa File: 22e0224f-add1-4750-9889-4168c3af1743.roa (raw, json) Hash identifier: x4BTf7KM2u6t5gwuQN1fYupOO0X9eASGlYdTgs1cC68= Subject key identifier: 5C:2C:83:32:CA:15:AB:26:3F:1D:3E:7F:7A:AD:6B:89:82:B4:99:B0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 482A01C1433CE2C298C1E7642A16D6E780FD3D6D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22e0224f-add1-4750-9889-4168c3af1743.roa Signing time: Wed 13 Aug 2025 00:00:17 +0000 ROA not before: Wed 13 Aug 2025 00:00:17 +0000 ROA not after: Wed 17 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 104.153.112.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:2a:01:c1:43:3c:e2:c2:98:c1:e7:64:2a:16:d6:e7:80:fd:3d:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 13 00:00:17 2025 GMT Not After : Sep 17 23:59:59 2025 GMT Subject: serialNumber=4cf41a6db794d35ea62b5fd545cdd48f238bb54bf271d79445747c81797f5caa, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:96:ee:19:33:7e:51:b8:4a:41:ee:c4:e1:37: e1:97:cc:53:d1:5c:3f:e7:16:6d:00:8b:77:16:2f: d3:c0:31:c9:24:61:3b:10:ea:81:5d:b9:0f:f9:cc: 9e:68:0f:df:36:6e:5e:ce:30:8b:8f:87:a3:d1:bc: 08:c7:ec:01:ce:ce:c0:26:8a:33:6e:3c:cb:72:18: 9f:e3:d0:86:ba:c2:c6:7c:76:e6:27:ee:a6:0b:9c: 3d:7b:68:74:33:81:b8:83:12:45:a7:9d:d7:36:cd: 10:47:1b:68:cd:3c:71:72:84:fe:3f:55:7b:91:c4: 3d:11:e4:73:42:10:ff:ba:f0:81:e6:e6:02:65:31: 8c:62:0a:84:8c:8f:b7:7f:53:9e:1e:52:19:2e:e2: 53:fe:9e:10:23:c0:de:ee:5d:6b:50:d5:17:16:61: d9:43:1c:83:95:b7:7e:c4:d4:7d:16:34:50:84:98: 81:70:54:22:f7:d2:2e:ac:9b:a1:a7:bd:fc:58:5a: f4:ce:c5:0d:f0:84:b0:4f:0c:cf:74:cd:c9:30:a3: e9:0e:24:82:33:68:c5:50:67:56:fc:d7:76:40:41: 42:67:37:bd:c2:ae:dc:21:f1:8c:62:de:be:c5:b5: 57:83:71:2d:a6:6f:ca:a7:70:26:61:57:36:6d:4a: f3:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:2C:83:32:CA:15:AB:26:3F:1D:3E:7F:7A:AD:6B:89:82:B4:99:B0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22e0224f-add1-4750-9889-4168c3af1743.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.153.112.0/21 Signature Algorithm: sha256WithRSAEncryption 4f:64:71:a3:8f:76:11:4c:6b:12:c5:9c:f4:ba:91:df:67:41: aa:4e:ed:da:f7:3e:64:74:da:e7:0c:46:c6:4f:16:11:47:04: 63:1c:52:11:dc:38:11:00:ba:34:f7:ab:2d:24:f0:3d:09:2d: 59:7f:0b:e6:5d:14:44:16:83:c0:21:c6:5a:11:73:dc:62:63: 91:f0:fe:8f:df:b1:2a:23:11:c4:7f:24:9a:95:1a:67:90:bf: ec:e3:69:7f:db:57:da:fa:12:73:1a:d6:41:79:c5:81:ef:2e: 4f:55:0c:0b:32:8c:7c:81:c7:44:54:23:c0:b0:81:c5:62:f2: 74:3d:1c:c9:f3:d5:33:ee:de:37:8f:3f:4c:fe:9c:4a:49:1b: be:f1:9f:8f:ee:85:02:3b:f5:d2:96:f9:56:6b:68:af:0a:94: df:68:55:89:c3:33:30:ac:72:a8:79:68:f3:25:ba:75:4b:2f: d8:c0:34:de:30:37:d8:28:26:ba:8a:6d:c6:55:20:69:2c:6e: 3f:6d:fe:3b:a1:c0:71:72:04:e2:be:96:32:60:23:ee:54:6c: 8e:70:77:da:b9:78:b2:3c:8e:d8:30:ed:1a:0b:2d:b3:40:79: de:17:18:92:30:47:71:7b:76:bb:23:75:f2:62:08:da:5f:85: 22:a3:bb:58 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSCoBwUM84sKYwedkKhbW54D9PW0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEzMDAwMDE3WhcNMjUwOTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0Y2Y0MWE2ZGI3OTRkMzVlYTYyYjVmZDU0NWNkZDQ4ZjIz OGJiNTRiZjI3MWQ3OTQ0NTc0N2M4MTc5N2Y1Y2FhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDOlu4ZM35RuEpB7sThN+GXzFPRXD/nFm0Ai3cWL9PAMckk YTsQ6oFduQ/5zJ5oD982bl7OMIuPh6PRvAjH7AHOzsAmijNuPMtyGJ/j0Ia6wsZ8 duYn7qYLnD17aHQzgbiDEkWnndc2zRBHG2jNPHFyhP4/VXuRxD0R5HNCEP+68IHm 5gJlMYxiCoSMj7d/U54eUhku4lP+nhAjwN7uXWtQ1RcWYdlDHIOVt37E1H0WNFCE mIFwVCL30i6sm6GnvfxYWvTOxQ3whLBPDM90zckwo+kOJIIzaMVQZ1b813ZAQUJn N73Crtwh8Yxi3r7FtVeDcS2mb8qncCZhVzZtSvMVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUXCyDMsoVqyY/HT5/eq1riYK0mbAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIyZTAyMjRmLWFkZDEtNDc1MC05ODg5LTQxNjhjM2FmMTc0My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANomXAwDQYJKoZIhvcNAQELBQADggEBAE9kcaOPdhFMaxLFnPS6kd9nQapO 7dr3PmR02ucMRsZPFhFHBGMcUhHcOBEAujT3qy0k8D0JLVl/C+ZdFEQWg8AhxloR c9xiY5Hw/o/fsSojEcR/JJqVGmeQv+zjaX/bV9r6EnMa1kF5xYHvLk9VDAsyjHyB x0RUI8CwgcVi8nQ9HMnz1TPu3jePP0z+nEpJG77xn4/uhQI79dKW+VZraK8KlN9o VYnDMzCscqh5aPMlunVLL9jANN4wN9goJrqKbcZVIGksbj9t/juhwHFyBOK+ljJg I+5UbI5wd9q5eLI8jtgw7RoLLbNAed4XGJIwR3F7drsjdfJiCNpfhSKju1g= -----END CERTIFICATE-----Generated at Wed Aug 20 13:19:32 2025 by rpki-client