$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/48743620-d852-4c45-84d7-d4a7e3874270.roa File: 48743620-d852-4c45-84d7-d4a7e3874270.roa (raw, json) Hash identifier: krQ3g/aCh6dAYYsEmYZsVLOz5GBdkfwVVynuuLYA6s0= Subject key identifier: C9:F3:AD:02:A7:E0:7F:9D:C9:1E:99:7B:A8:5D:7F:A9:2A:17:7C:AF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 20E8C8BB9791C1EE15E24E556DB64A2EF8ACB5FE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/48743620-d852-4c45-84d7-d4a7e3874270.roa Signing time: Fri 29 Aug 2025 15:11:19 +0000 ROA not before: Fri 29 Aug 2025 15:11:19 +0000 ROA not after: Fri 03 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 168.192.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 18 Sep 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:e8:c8:bb:97:91:c1:ee:15:e2:4e:55:6d:b6:4a:2e:f8:ac:b5:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 29 15:11:19 2025 GMT Not After : Oct 3 23:59:59 2025 GMT Subject: serialNumber=83059248ef1b863c15340437a89906224037b6822e3e359fc9f033647b7b1daf, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:d2:f0:6e:3d:a0:57:4f:ac:10:27:13:cd:b2: 62:a8:24:a8:e2:62:fd:70:0c:38:68:35:f4:3c:8f: 8c:f3:08:8b:50:e8:f5:54:2e:80:7d:1e:45:c2:cf: 5a:43:c1:f5:1c:b5:eb:ad:5d:8b:0a:69:10:c6:7f: 27:2f:5d:2c:3f:60:e0:2a:fb:52:b7:a8:fc:66:81: 5a:83:0c:80:5b:1c:93:cb:d3:b2:a8:13:29:3c:8b: 1a:65:b3:ea:17:64:26:3d:0c:a7:ad:5d:4d:98:e4: 91:a8:e3:e6:b1:58:f5:da:c3:8a:87:29:28:ef:6b: b5:2f:34:f5:db:e5:04:62:2e:05:77:d1:32:bd:73: ec:af:ca:c0:39:b8:16:2d:c9:49:df:b6:ae:ab:55: 96:27:63:5d:12:20:a3:9b:89:de:cc:f6:b0:86:51: f0:1b:e0:b7:a6:7f:96:b0:31:9a:50:6f:d3:5e:2f: 36:cb:ea:e0:3a:66:0a:cc:50:b7:8b:e9:d9:88:8b: e4:88:e0:bd:a5:af:2a:4c:67:dc:3a:07:69:cf:d9: 49:21:24:39:18:1a:14:5f:d9:fa:7f:20:fd:93:80: c6:1d:be:97:80:54:58:da:93:55:2e:ba:6b:85:a6: 53:b0:15:fa:a5:90:8d:6f:a9:52:51:34:3e:62:ce: d3:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:F3:AD:02:A7:E0:7F:9D:C9:1E:99:7B:A8:5D:7F:A9:2A:17:7C:AF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/48743620-d852-4c45-84d7-d4a7e3874270.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 168.192.0.0/15 Signature Algorithm: sha256WithRSAEncryption 3a:c7:09:dd:a7:1c:ed:f5:10:20:6b:9f:71:ea:15:4f:b4:05: 07:91:e2:6e:b3:12:37:75:9c:89:23:13:55:df:cd:49:f5:00: 68:c6:0a:6b:64:d1:8a:1f:72:83:61:ad:6b:21:12:c7:ed:aa: a0:11:0e:87:c8:7c:aa:56:49:9e:7a:f7:19:66:5a:f5:8f:94: 96:f2:d7:1b:d4:b4:ca:8e:4f:6e:a0:d0:11:bc:5c:5c:94:1a: 78:20:04:a8:f1:b5:0e:13:7c:16:58:43:80:68:36:44:e4:a1: 64:6a:45:f4:7b:f5:22:de:ed:f4:a6:f0:62:d6:3c:24:39:06: db:02:6e:09:df:00:f7:9c:78:b6:57:8c:35:f4:b9:fd:f9:0b: 31:d9:ed:b6:2d:d4:74:8a:72:29:1e:57:66:16:50:9d:06:70: f9:c8:c3:30:51:69:1c:5f:25:e0:4b:23:b8:e9:ce:2f:3d:ab: 68:d1:41:ae:9a:6e:74:04:9a:46:e0:14:8f:ef:59:24:a4:66: f6:ae:2f:e2:2f:5a:24:08:12:1c:e4:4a:92:cd:a6:85:ab:34: 59:5f:5b:c0:39:d3:a2:b9:43:5c:b2:64:dd:b8:bd:d9:b9:00: 06:b3:d2:f3:ed:39:7a:be:ad:7b:49:8b:f8:1f:f5:88:50:bc: 95:fc:ec:73 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUIOjIu5eRwe4V4k5VbbZKLvistf4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI5MTUxMTE5WhcNMjUxMDAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A4MzA1OTI0OGVmMWI4NjNjMTUzNDA0MzdhODk5MDYyMjQw MzdiNjgyMmUzZTM1OWZjOWYwMzM2NDdiN2IxZGFmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDC0vBuPaBXT6wQJxPNsmKoJKjiYv1wDDhoNfQ8j4zzCItQ 6PVULoB9HkXCz1pDwfUcteutXYsKaRDGfycvXSw/YOAq+1K3qPxmgVqDDIBbHJPL 07KoEyk8ixpls+oXZCY9DKetXU2Y5JGo4+axWPXaw4qHKSjva7UvNPXb5QRiLgV3 0TK9c+yvysA5uBYtyUnftq6rVZYnY10SIKObid7M9rCGUfAb4Lemf5awMZpQb9Ne LzbL6uA6ZgrMULeL6dmIi+SI4L2lrypMZ9w6B2nP2UkhJDkYGhRf2fp/IP2TgMYd vpeAVFjak1UuumuFplOwFfqlkI1vqVJRND5iztOFAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUyfOtAqfgf53JHpl7qF1/qSoXfK8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ4NzQzNjIwLWQ4NTItNGM0NS04NGQ3LWQ0YTdlMzg3NDI3MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwGowDANBgkqhkiG9w0BAQsFAAOCAQEAOscJ3acc7fUQIGufceoVT7QFB5Hi brMSN3WciSMTVd/NSfUAaMYKa2TRih9yg2GtayESx+2qoBEOh8h8qlZJnnr3GWZa 9Y+UlvLXG9S0yo5PbqDQEbxcXJQaeCAEqPG1DhN8FlhDgGg2ROShZGpF9Hv1It7t 9KbwYtY8JDkG2wJuCd8A95x4tleMNfS5/fkLMdntti3UdIpyKR5XZhZQnQZw+cjD MFFpHF8l4EsjuOnOLz2raNFBrppudASaRuAUj+9ZJKRm9q4v4i9aJAgSHORKks2m has0WV9bwDnTorlDXLJk3bi92bkABrPS8+05er6te0mL+B/1iFC8lfzscw== -----END CERTIFICATE-----Generated at Wed Sep 17 04:37:41 2025 by rpki-client