$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5753e2d3-4442-467a-b1d8-3c38c62f910c.roa File: 5753e2d3-4442-467a-b1d8-3c38c62f910c.roa (raw, json) Hash identifier: dSeSACdF86G2FNXgACJmqdloJY0oIZ06Qfg7ExJiI+k= Subject key identifier: 92:C7:75:55:1F:6C:4A:4F:55:9B:04:E8:E7:9E:D4:A1:48:A3:4D:0B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4E8D2A3AFBDDEEC07C01D035786C28B882350803 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5753e2d3-4442-467a-b1d8-3c38c62f910c.roa Signing time: Fri 05 Sep 2025 00:21:04 +0000 ROA not before: Fri 05 Sep 2025 00:21:04 +0000 ROA not after: Fri 10 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 161.228.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 19 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:8d:2a:3a:fb:dd:ee:c0:7c:01:d0:35:78:6c:28:b8:82:35:08:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 5 00:21:04 2025 GMT Not After : Oct 10 23:59:59 2025 GMT Subject: serialNumber=2661eb42a926e9367573d612fcff7bd075b21e2bca745fe629fe0906571ed573, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:22:aa:ea:e8:28:fa:31:e5:75:14:c4:52:14: f4:3d:8d:87:c7:9d:92:8b:84:d3:6e:52:be:1e:86: a4:3b:d7:c0:27:cf:f1:3c:83:b5:f2:a5:d5:6b:e7: 93:3b:bd:30:85:63:d0:a7:8e:a6:6a:c6:0c:05:2c: 8f:4b:97:b9:64:33:fd:d9:86:96:72:e2:57:4b:04: 8a:81:7c:d1:ce:53:6d:0a:cf:e6:46:8c:83:61:e3: ca:be:36:69:d3:f6:58:ca:2f:ab:23:f7:86:0a:87: 22:60:d9:43:17:f8:31:28:b6:d9:9b:f0:a5:b6:0d: 2c:3e:59:da:44:40:c6:3d:3c:98:6c:19:9c:35:db: df:5f:b3:36:13:55:90:d6:71:23:e8:f3:cc:85:f7: ec:c8:9a:dd:71:ac:38:fc:6e:73:b2:5c:23:75:9a: 8c:c9:3a:fc:f0:81:8e:73:7f:0e:27:09:98:c1:73: ac:a4:5f:aa:31:fa:ec:51:62:99:39:27:cb:dc:ca: bd:fa:f3:c4:6e:95:15:08:11:23:a5:13:39:6b:b3: 66:18:4c:67:c9:ba:71:54:b7:a8:9d:19:b9:50:3d: a4:ec:56:1f:6b:56:09:45:d7:37:e5:99:41:d8:01: af:11:c0:0c:c6:1c:c7:29:e5:0f:cb:c2:dd:58:18: e0:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:C7:75:55:1F:6C:4A:4F:55:9B:04:E8:E7:9E:D4:A1:48:A3:4D:0B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5753e2d3-4442-467a-b1d8-3c38c62f910c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 161.228.192.0/18 Signature Algorithm: sha256WithRSAEncryption 9d:ea:5f:6d:2a:00:96:cf:4c:c4:fc:f1:19:aa:64:11:f9:3e: 19:1b:20:f3:b6:66:92:04:0b:4b:f2:ac:71:ec:e0:35:21:39: e6:72:3c:4e:14:62:19:93:a7:c2:10:52:fb:a3:d6:87:d8:72: 27:18:b5:cd:19:ab:59:f6:45:17:9b:18:8a:87:3c:ed:2d:90: 30:1f:eb:70:45:03:5d:37:5e:d7:c0:e9:bf:cc:fd:7b:b3:85: d6:e7:26:e0:9e:7d:8b:18:2c:35:dc:e7:ae:13:f7:d5:c4:d6: 80:46:d3:d2:34:fc:25:34:87:ab:96:c1:3a:c0:f4:56:a3:ce: 20:87:5c:97:b0:f3:b2:c3:76:de:57:ba:8a:2b:3f:2c:bd:d9: 5b:a3:77:15:0d:20:66:ab:f7:c3:24:48:8a:75:47:e6:bd:46: 13:aa:b2:00:a4:5f:c3:20:9e:d7:8d:39:ea:11:5e:cd:8f:a6: 87:46:d9:79:de:28:a6:db:55:6c:92:51:a9:26:81:a4:c3:82: a1:05:d6:21:32:58:92:e6:a2:a5:fa:82:f3:32:f2:bd:e7:d9: ed:01:8a:48:8d:48:b8:48:b8:3d:9f:46:ef:f2:6c:37:85:3c: 9d:84:8b:91:f9:28:b0:24:50:06:e8:2a:0d:64:47:e8:a2:48: d7:9c:02:bc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTo0qOvvd7sB8AdA1eGwouII1CAMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA1MDAyMTA0WhcNMjUxMDEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyNjYxZWI0MmE5MjZlOTM2NzU3M2Q2MTJmY2ZmN2JkMDc1 YjIxZTJiY2E3NDVmZTYyOWZlMDkwNjU3MWVkNTczMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2Iqrq6Cj6MeV1FMRSFPQ9jYfHnZKLhNNuUr4ehqQ718An z/E8g7XypdVr55M7vTCFY9CnjqZqxgwFLI9Ll7lkM/3ZhpZy4ldLBIqBfNHOU20K z+ZGjINh48q+NmnT9ljKL6sj94YKhyJg2UMX+DEottmb8KW2DSw+WdpEQMY9PJhs GZw1299fszYTVZDWcSPo88yF9+zImt1xrDj8bnOyXCN1mozJOvzwgY5zfw4nCZjB c6ykX6ox+uxRYpk5J8vcyr3688RulRUIESOlEzlrs2YYTGfJunFUt6idGblQPaTs Vh9rVglF1zflmUHYAa8RwAzGHMcp5Q/Lwt1YGODJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUksd1VR9sSk9VmwTo557UoUijTQswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU3NTNlMmQzLTQ0NDItNDY3YS1iMWQ4LTNjMzhjNjJmOTEwYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAah5MAwDQYJKoZIhvcNAQELBQADggEBAJ3qX20qAJbPTMT88RmqZBH5Phkb IPO2ZpIEC0vyrHHs4DUhOeZyPE4UYhmTp8IQUvuj1ofYcicYtc0Zq1n2RRebGIqH PO0tkDAf63BFA103XtfA6b/M/XuzhdbnJuCefYsYLDXc564T99XE1oBG09I0/CU0 h6uWwTrA9FajziCHXJew87LDdt5XuoorPyy92VujdxUNIGar98MkSIp1R+a9RhOq sgCkX8MgnteNOeoRXs2PpodG2XneKKbbVWySUakmgaTDgqEF1iEyWJLmoqX6gvMy 8r3n2e0BikiNSLhIuD2fRu/ybDeFPJ2Ei5H5KLAkUAboKg1kR+iiSNecArw= -----END CERTIFICATE-----Generated at Thu Sep 18 05:17:28 2025 by rpki-client