$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/54e42db5-0b5b-478b-82ca-813f1638abd2.roa File: 54e42db5-0b5b-478b-82ca-813f1638abd2.roa (raw, json) Hash identifier: eLt8K6mLq7JZyPzXurMlnFk2Mow20cMOR+yCKIXRpxQ= Subject key identifier: AA:49:E2:E3:57:55:42:9F:48:0C:04:FF:CA:BE:A0:27:F3:A5:BA:BA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0EE22F4375379B881454E023C6FCD1C41E72E301 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/54e42db5-0b5b-478b-82ca-813f1638abd2.roa Signing time: Wed 13 Aug 2025 00:31:06 +0000 ROA not before: Wed 13 Aug 2025 00:31:06 +0000 ROA not after: Wed 17 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 65.176.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:e2:2f:43:75:37:9b:88:14:54:e0:23:c6:fc:d1:c4:1e:72:e3:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 13 00:31:06 2025 GMT Not After : Sep 17 23:59:59 2025 GMT Subject: serialNumber=8c639a74ab72b5a13622c9ce1122b4c8a14615b9e65d0b829a5c38fc206852ee, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a8:48:65:02:a7:30:11:71:dc:69:33:d4:5e: 53:d2:d6:8d:5e:34:5b:5c:c7:56:ca:ae:9d:14:fe: cd:6f:57:13:2d:69:c0:f3:26:81:ff:40:3f:f2:5e: 45:6c:1f:b2:fb:c3:89:fb:4d:5f:1a:c2:ba:16:c9: 79:09:85:d8:fc:b7:d2:23:56:f0:03:7a:be:86:28: 47:14:ee:95:50:20:28:03:aa:c4:93:ee:a5:db:f0: 7f:89:55:03:eb:69:fa:0e:c3:12:d6:e6:17:cf:35: 4a:92:97:cd:90:e1:c9:b9:e7:07:a7:4a:b3:90:bc: 1b:51:df:dc:0a:16:df:ce:40:c9:80:3c:62:c6:67: c7:db:b7:3e:18:18:d1:13:6d:b1:32:d4:b1:c9:e3: 11:28:88:45:37:48:ee:18:4d:e2:fe:16:32:3e:c3: 69:b4:f9:ef:39:3d:1f:42:fb:d6:d3:c7:1c:96:af: a8:34:53:e9:d2:38:2e:3e:da:9b:ee:c1:91:7e:3c: 91:07:96:a9:36:4b:5b:e5:ea:06:70:95:b1:d3:36: e9:17:8a:59:e4:a3:56:5c:cd:13:2a:71:9f:0d:66: 1a:5f:10:57:7a:e1:2e:d4:66:93:09:8a:4f:5d:93: 34:bc:a1:1e:d2:5d:d2:94:1a:88:1e:52:72:14:30: f6:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:49:E2:E3:57:55:42:9F:48:0C:04:FF:CA:BE:A0:27:F3:A5:BA:BA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/54e42db5-0b5b-478b-82ca-813f1638abd2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 65.176.0.0/14 Signature Algorithm: sha256WithRSAEncryption 4b:9c:9b:bb:49:03:d3:55:25:a6:59:b0:e2:c8:43:5d:2c:da: 67:39:63:c1:79:70:ed:bc:4c:f6:a6:34:d2:25:09:10:24:b1: 74:81:6d:93:b4:8b:88:ba:b2:d7:21:85:b2:55:b0:97:2b:7d: a8:9f:09:c1:fb:8b:db:3c:af:ce:d3:80:2a:2a:fb:61:f1:32: 11:48:d9:c8:f0:8a:14:47:be:ee:d6:2f:7d:81:f4:71:26:0a: 08:66:37:35:ce:7e:2c:5a:1b:76:1d:53:1f:aa:d2:ab:66:83: d7:40:ce:11:54:18:d2:63:86:5b:4f:02:94:25:16:bf:41:d7: e0:24:17:11:e5:12:bb:e6:91:06:6b:c5:29:64:00:0e:01:ce: da:ae:69:f6:e0:37:d4:bf:1e:90:03:c7:a0:8d:48:06:4b:28: c6:de:1a:12:9a:9d:60:6a:e1:04:4a:59:d8:3c:22:16:d5:37: 63:fe:7d:1a:59:c2:ba:54:cb:56:43:28:14:3d:42:f5:5d:8a: fd:93:98:ba:b6:ca:d1:1f:11:5e:58:45:13:c8:1d:c1:48:53: 62:bb:6d:1f:de:23:f4:de:fb:a2:99:6c:57:a0:10:45:08:25: 57:71:a5:12:03:60:15:89:7d:ef:bc:a9:30:20:66:44:07:da: 86:aa:e5:42 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUDuIvQ3U3m4gUVOAjxvzRxB5y4wEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEzMDAzMTA2WhcNMjUwOTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A4YzYzOWE3NGFiNzJiNWExMzYyMmM5Y2UxMTIyYjRjOGEx NDYxNWI5ZTY1ZDBiODI5YTVjMzhmYzIwNjg1MmVlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzqEhlAqcwEXHcaTPUXlPS1o1eNFtcx1bKrp0U/s1vVxMt acDzJoH/QD/yXkVsH7L7w4n7TV8awroWyXkJhdj8t9IjVvADer6GKEcU7pVQICgD qsST7qXb8H+JVQPrafoOwxLW5hfPNUqSl82Q4cm55wenSrOQvBtR39wKFt/OQMmA PGLGZ8fbtz4YGNETbbEy1LHJ4xEoiEU3SO4YTeL+FjI+w2m0+e85PR9C+9bTxxyW r6g0U+nSOC4+2pvuwZF+PJEHlqk2S1vl6gZwlbHTNukXilnko1ZczRMqcZ8NZhpf EFd64S7UZpMJik9dkzS8oR7SXdKUGogeUnIUMPbjAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUqkni41dVQp9IDAT/yr6gJ/OlurowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU0ZTQyZGI1LTBiNWItNDc4Yi04MmNhLTgxM2YxNjM4YWJkMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwJBsDANBgkqhkiG9w0BAQsFAAOCAQEAS5ybu0kD01Ulplmw4shDXSzaZzlj wXlw7bxM9qY00iUJECSxdIFtk7SLiLqy1yGFslWwlyt9qJ8JwfuL2zyvztOAKir7 YfEyEUjZyPCKFEe+7tYvfYH0cSYKCGY3Nc5+LFobdh1TH6rSq2aD10DOEVQY0mOG W08ClCUWv0HX4CQXEeUSu+aRBmvFKWQADgHO2q5p9uA31L8ekAPHoI1IBksoxt4a EpqdYGrhBEpZ2DwiFtU3Y/59GlnCulTLVkMoFD1C9V2K/ZOYurbK0R8RXlhFE8gd wUhTYrttH94j9N77oplsV6AQRQglV3GlEgNgFYl977ypMCBmRAfahqrlQg== -----END CERTIFICATE-----Generated at Wed Aug 20 13:18:41 2025 by rpki-client