$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/54f9218d-a97e-4a82-9cc0-be9236a27d63.roa File: 54f9218d-a97e-4a82-9cc0-be9236a27d63.roa (raw, json) Hash identifier: AJfeF9j3peLF1TZChbGsyMUfooE518CHDIRdvcN2uxQ= Subject key identifier: 70:E8:26:2D:C4:8A:03:56:D7:91:0B:53:43:8A:E7:0E:12:76:DA:BC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5F1FBB4D758A09E1D4FAE9FC739F5CC2A2C7E245 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/54f9218d-a97e-4a82-9cc0-be9236a27d63.roa Signing time: Fri 29 Aug 2025 15:11:13 +0000 ROA not before: Fri 29 Aug 2025 15:11:13 +0000 ROA not after: Fri 03 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 157.175.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Sep 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:1f:bb:4d:75:8a:09:e1:d4:fa:e9:fc:73:9f:5c:c2:a2:c7:e2:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 29 15:11:13 2025 GMT Not After : Oct 3 23:59:59 2025 GMT Subject: serialNumber=ecd4df5defbac7db0dea74375ba17d0b0a4423503d550f190f8ac3db38c7ae3b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:2a:77:c9:0f:c0:81:d5:ef:21:ce:23:39:ab: 09:51:ff:b0:1e:ce:76:29:b5:38:52:3a:fb:66:85: b1:10:9c:20:2c:a6:01:75:4a:65:c1:59:18:2b:b2: ac:26:43:55:91:b5:96:3a:7a:ac:7c:ba:94:e4:31: c7:d5:0e:51:9c:76:72:8f:d2:78:a9:38:00:b3:b2: 1a:65:b0:a3:b4:ba:14:86:0b:be:c5:5e:a4:0f:6a: c5:e1:6a:3c:5a:b7:57:46:e4:ee:05:0b:21:29:b1: a0:01:34:4e:33:9a:b5:c8:3d:1c:5a:2c:fd:03:a2: c2:99:00:89:99:1f:71:9b:df:26:ab:36:b5:d6:6c: 20:ae:63:bb:ac:6c:5d:06:74:53:9e:4e:8a:69:2f: 46:83:74:be:3b:9d:71:7e:fd:97:2e:4d:8a:53:56: db:6b:a3:82:c6:21:e4:88:b5:58:d9:e3:c6:3a:22: 8f:84:f9:8e:ab:8d:f3:45:60:98:1f:62:23:fb:0f: f0:d2:6d:8b:d5:49:93:0a:2f:54:62:b3:5a:93:95: c5:dc:a8:2f:81:9d:23:e2:2b:c1:ba:79:0a:87:e3: f6:ed:c7:2c:8b:c2:f9:93:9b:c1:0b:e1:57:c3:e7: ba:1a:1e:9c:98:01:9a:00:99:ad:e4:71:57:22:aa: 24:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:E8:26:2D:C4:8A:03:56:D7:91:0B:53:43:8A:E7:0E:12:76:DA:BC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/54f9218d-a97e-4a82-9cc0-be9236a27d63.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.175.0.0/16 Signature Algorithm: sha256WithRSAEncryption ca:ec:e4:83:c0:41:15:65:aa:d0:23:aa:ee:e4:7a:5e:09:52: 9e:d6:4c:b0:2a:ec:60:a4:14:fd:f9:ba:35:53:1f:1c:03:c4: d1:86:24:05:aa:bc:42:99:c3:bf:7c:64:12:db:aa:b4:f0:68: b9:aa:d1:8d:52:2b:c8:bf:5f:a7:f4:c3:a7:a4:f8:bd:6b:e9: 50:cd:bf:13:f0:a9:88:c0:68:df:e9:4e:00:a8:f2:f4:05:3c: 6a:46:8a:a0:43:86:f6:25:52:79:b5:18:84:9d:44:5e:ef:b2: c9:76:c1:ac:a7:07:1f:6b:ab:99:78:a6:b1:81:81:27:23:78: fa:89:6e:e5:f3:b6:c8:8d:80:99:16:1d:09:ac:d8:f8:64:77: 4b:8f:3b:93:d4:b8:73:bd:9d:bb:77:73:53:6d:2f:a2:22:22: 5c:15:5e:bc:b0:75:b8:22:67:8a:10:2b:00:79:42:70:1d:d9: 04:a9:5f:af:6b:81:8d:29:cc:42:5d:4e:b7:66:c0:f6:43:72: 8e:a0:93:80:14:49:a9:55:f0:f6:07:93:e0:b6:00:b8:bd:09: aa:f6:46:32:56:c2:16:44:de:6e:11:c1:f9:49:7d:eb:41:e5: 82:4d:6e:98:37:53:f2:35:a0:ee:3e:c2:22:fb:e4:9e:9b:65: 40:38:8b:6c -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUXx+7TXWKCeHU+un8c59cwqLH4kUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI5MTUxMTEzWhcNMjUxMDAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BlY2Q0ZGY1ZGVmYmFjN2RiMGRlYTc0Mzc1YmExN2QwYjBh NDQyMzUwM2Q1NTBmMTkwZjhhYzNkYjM4YzdhZTNiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZKnfJD8CB1e8hziM5qwlR/7AeznYptThSOvtmhbEQnCAs pgF1SmXBWRgrsqwmQ1WRtZY6eqx8upTkMcfVDlGcdnKP0nipOACzshplsKO0uhSG C77FXqQPasXhajxat1dG5O4FCyEpsaABNE4zmrXIPRxaLP0DosKZAImZH3Gb3yar NrXWbCCuY7usbF0GdFOeToppL0aDdL47nXF+/ZcuTYpTVttro4LGIeSItVjZ48Y6 Io+E+Y6rjfNFYJgfYiP7D/DSbYvVSZMKL1Ris1qTlcXcqC+BnSPiK8G6eQqH4/bt xyyLwvmTm8EL4VfD57oaHpyYAZoAma3kcVciqiSfAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUcOgmLcSKA1bXkQtTQ4rnDhJ22rwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU0ZjkyMThkLWE5N2UtNGE4Mi05Y2MwLWJlOTIzNmEyN2Q2My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCdrzANBgkqhkiG9w0BAQsFAAOCAQEAyuzkg8BBFWWq0COq7uR6XglSntZM sCrsYKQU/fm6NVMfHAPE0YYkBaq8QpnDv3xkEtuqtPBouarRjVIryL9fp/TDp6T4 vWvpUM2/E/CpiMBo3+lOAKjy9AU8akaKoEOG9iVSebUYhJ1EXu+yyXbBrKcHH2ur mXimsYGBJyN4+olu5fO2yI2AmRYdCazY+GR3S487k9S4c72du3dzU20voiIiXBVe vLB1uCJnihArAHlCcB3ZBKlfr2uBjSnMQl1Ot2bA9kNyjqCTgBRJqVXw9geT4LYA uL0JqvZGMlbCFkTebhHB+Ul960Hlgk1umDdT8jWg7j7CIvvknptlQDiLbA== -----END CERTIFICATE-----Generated at Sat Sep 6 16:40:59 2025 by rpki-client