$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5764c5f6-9fe6-46c5-b1a0-268cd76692f2.roa File: 5764c5f6-9fe6-46c5-b1a0-268cd76692f2.roa (raw, json) Hash identifier: +7gr+keCiGB+czE7EKhwqQQw/9lvAjMB4Xb9rOBejcs= Subject key identifier: 32:CB:EA:ED:99:FE:6A:CB:9D:66:6A:73:A8:E9:24:09:5D:19:35:9B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1553DEE875F55313CAA950AE403F179ED6A86531 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5764c5f6-9fe6-46c5-b1a0-268cd76692f2.roa Signing time: Tue 02 Sep 2025 00:01:41 +0000 ROA not before: Tue 02 Sep 2025 00:01:41 +0000 ROA not after: Tue 07 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 153.42.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:53:de:e8:75:f5:53:13:ca:a9:50:ae:40:3f:17:9e:d6:a8:65:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 2 00:01:41 2025 GMT Not After : Oct 7 23:59:59 2025 GMT Subject: serialNumber=4ca5f6817ac5077de3f0bf14efe9bfe3774db58e860a7a6bf24ff9ee1e77d9c8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:2b:48:0d:11:21:d3:b4:a3:a2:38:87:8c:f3: fa:7f:f7:42:c2:7a:bf:1e:2c:bf:86:cd:1c:5c:13: 53:64:b2:11:6d:8e:e2:e0:c1:55:dd:cd:84:55:4a: 06:d2:0e:5e:d9:e6:d0:80:db:97:ad:f2:80:3c:07: 66:cf:07:86:e0:0f:30:03:e9:2f:6e:2a:7c:be:5e: e0:d7:32:04:0a:3a:0b:48:e3:6c:86:5a:88:92:84: 6e:31:ab:a1:4b:27:c2:1d:a6:f4:4d:cd:70:39:6e: 57:d4:0a:1c:17:82:71:59:86:0d:7d:fc:31:c3:23: 10:7a:f6:ee:bf:23:4a:75:bb:43:3f:c0:c6:1f:16: 50:2d:08:f8:1a:db:72:4e:4f:44:66:c4:e8:30:a6: 0f:77:14:82:2f:ff:01:83:7a:8f:65:92:e2:74:c8: 35:91:61:30:a4:65:9c:3b:8e:61:4a:aa:57:3f:08: e2:3e:05:42:59:b8:21:6e:5d:48:13:9e:1e:f2:d0: 7a:a6:7c:29:e5:6a:bb:70:7b:42:86:c6:7a:5e:7a: 3c:5c:61:31:68:79:36:3b:b4:fe:34:3d:64:0f:02: a6:f0:d1:f0:66:2c:35:93:38:d8:3f:97:68:75:b2: ce:53:c3:74:a6:89:4f:3f:b1:0a:08:6d:a5:0d:1b: 4e:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:CB:EA:ED:99:FE:6A:CB:9D:66:6A:73:A8:E9:24:09:5D:19:35:9B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5764c5f6-9fe6-46c5-b1a0-268cd76692f2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 153.42.0.0/16 Signature Algorithm: sha256WithRSAEncryption 23:b7:e3:4a:81:e7:90:2f:e4:53:7a:39:34:6e:a8:1b:70:fa: 97:0a:61:a2:9b:f8:2f:e5:c0:f2:92:ab:46:e9:70:6c:5a:cd: bc:bc:d8:fa:71:6e:c5:e5:45:61:d5:41:c2:47:e0:45:ec:da: c8:85:39:60:44:a9:a3:72:d7:90:fb:b7:d3:3c:65:14:59:41: 46:83:63:8e:6e:c1:69:23:57:2c:cd:23:c4:f2:7e:82:73:e2: 10:45:f1:0c:da:b6:06:35:a6:27:00:d6:c4:9f:c5:03:e2:3c: da:38:7b:24:ed:72:0b:84:79:0f:33:c5:8a:57:a0:88:9c:a5: 8b:2c:a8:78:d4:68:a7:74:b5:40:d4:ad:bd:67:21:50:e7:f9: 68:d8:a7:e7:ba:c1:37:6b:35:81:5b:93:65:1f:47:2e:40:61: d8:70:0e:8f:02:3d:23:d2:93:1d:fc:97:89:f5:36:7d:bc:1a: 4a:27:07:93:46:5c:d1:60:13:2d:28:5d:1c:a8:b2:70:a8:7f: d6:17:80:93:6d:d3:52:7d:62:08:90:8c:10:c5:b0:c3:6f:3b: 1b:8a:d0:cb:5c:27:d9:4c:f1:c3:47:b9:6f:6c:79:06:3f:23: 83:0d:72:0f:a0:99:52:1a:8b:5a:e9:e3:95:10:76:13:26:6d: e3:9b:5d:ef -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUFVPe6HX1UxPKqVCuQD8XntaoZTEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTAyMDAwMTQxWhcNMjUxMDA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0Y2E1ZjY4MTdhYzUwNzdkZTNmMGJmMTRlZmU5YmZlMzc3 NGRiNThlODYwYTdhNmJmMjRmZjllZTFlNzdkOWM4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8K0gNESHTtKOiOIeM8/p/90LCer8eLL+GzRxcE1NkshFt juLgwVXdzYRVSgbSDl7Z5tCA25et8oA8B2bPB4bgDzAD6S9uKny+XuDXMgQKOgtI 42yGWoiShG4xq6FLJ8IdpvRNzXA5blfUChwXgnFZhg19/DHDIxB69u6/I0p1u0M/ wMYfFlAtCPga23JOT0RmxOgwpg93FIIv/wGDeo9lkuJ0yDWRYTCkZZw7jmFKqlc/ COI+BUJZuCFuXUgTnh7y0HqmfCnlartwe0KGxnpeejxcYTFoeTY7tP40PWQPAqbw 0fBmLDWTONg/l2h1ss5Tw3SmiU8/sQoIbaUNG04XAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUMsvq7Zn+asudZmpzqOkkCV0ZNZswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU3NjRjNWY2LTlmZTYtNDZjNS1iMWEwLTI2OGNkNzY2OTJmMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCZKjANBgkqhkiG9w0BAQsFAAOCAQEAI7fjSoHnkC/kU3o5NG6oG3D6lwph opv4L+XA8pKrRulwbFrNvLzY+nFuxeVFYdVBwkfgRezayIU5YESpo3LXkPu30zxl FFlBRoNjjm7BaSNXLM0jxPJ+gnPiEEXxDNq2BjWmJwDWxJ/FA+I82jh7JO1yC4R5 DzPFilegiJyliyyoeNRop3S1QNStvWchUOf5aNin57rBN2s1gVuTZR9HLkBh2HAO jwI9I9KTHfyXifU2fbwaSicHk0Zc0WATLShdHKiycKh/1heAk23TUn1iCJCMEMWw w287G4rQy1wn2Uzxw0e5b2x5Bj8jgw1yD6CZUhqLWunjlRB2EyZt45td7w== -----END CERTIFICATE-----Generated at Sat Sep 6 14:11:32 2025 by rpki-client