$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/58b42984-22be-4af1-8da5-6fa235d1029c.roa File: 58b42984-22be-4af1-8da5-6fa235d1029c.roa (raw, json) Hash identifier: adua+MjEfJa70ZUV9yAur5Vy0uVcLqu02yM5931/tcY= Subject key identifier: 47:44:9B:93:5D:BB:54:DD:59:16:DD:98:93:74:08:37:8B:B4:3E:50 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 550D397625A50436754F17A6E35539980D7A22B6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/58b42984-22be-4af1-8da5-6fa235d1029c.roa Signing time: Wed 03 Sep 2025 00:01:26 +0000 ROA not before: Wed 03 Sep 2025 00:01:26 +0000 ROA not after: Wed 08 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 104.153.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:0d:39:76:25:a5:04:36:75:4f:17:a6:e3:55:39:98:0d:7a:22:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 3 00:01:26 2025 GMT Not After : Oct 8 23:59:59 2025 GMT Subject: serialNumber=a8e403b495cdfc7bccf1a7ea12833d1c24aa9dab431dd3187b024d4cdb80eefc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:ac:2d:8e:a1:b3:f2:65:66:70:ff:61:4f:7f: eb:d2:0c:e9:e0:9b:b8:13:fc:57:78:88:2a:d7:d8: ad:63:9d:6c:6a:5e:b5:fb:43:84:9b:35:17:cd:f7: ec:c3:0a:f1:46:74:bc:be:33:88:75:a1:e7:e5:08: 76:c8:f3:be:ff:d5:00:f0:0c:0f:47:6b:72:40:da: 88:a8:29:6d:5f:b7:be:d1:6e:b0:4a:bc:a3:ae:0c: 92:3e:d9:67:91:1d:b0:87:d5:b5:90:04:08:1e:00: 1e:29:aa:55:42:b3:3c:cd:dc:92:21:ff:c6:59:3e: da:19:b0:93:95:13:06:83:de:c5:e2:a1:af:8e:69: e6:de:8b:ae:4b:0c:63:89:77:fc:c4:62:b0:f2:a1: 30:3e:80:ed:a7:24:f9:2f:a4:31:4e:ab:b0:73:26: 53:04:42:f6:1b:bb:5f:88:15:32:98:ab:3d:49:25: 7b:dc:86:9f:fd:3b:91:4a:40:d8:ca:55:e7:d8:a6: ef:e6:22:26:34:f1:f4:a7:13:49:fb:21:b9:09:d1: 2a:7f:db:e5:ec:8a:a1:03:a3:d5:b3:18:ed:a3:8f: 96:90:31:10:82:61:1d:fa:92:54:74:bc:9c:ba:87: a0:21:25:09:59:73:a8:75:1c:9d:22:bc:1c:d8:aa: 44:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:44:9B:93:5D:BB:54:DD:59:16:DD:98:93:74:08:37:8B:B4:3E:50 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/58b42984-22be-4af1-8da5-6fa235d1029c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.153.118.0/24 Signature Algorithm: sha256WithRSAEncryption 12:86:17:d0:87:c4:0f:d4:8e:84:d5:e4:2d:d4:9a:ce:3e:12: 12:4d:a7:80:f3:c7:d9:11:60:cf:d9:25:2c:1e:f3:8d:6f:08: c9:d4:a8:33:79:82:3f:63:d9:7f:c3:19:cf:9a:0a:d4:a7:ae: 7a:94:14:3a:60:97:83:5c:29:0e:b1:99:f7:82:07:44:89:83: d7:4c:89:a0:27:42:6c:69:3d:83:17:25:09:f4:9a:92:1e:52: 86:18:bb:b9:f2:b2:8a:25:05:bd:39:46:75:e2:ad:a8:eb:6b: 9b:76:df:72:46:e1:37:c9:21:c3:09:7e:56:e5:39:cd:7b:bc: ea:af:ab:5c:28:ef:25:18:e2:2f:ab:50:38:6d:15:5d:cd:9c: 57:8a:d0:60:3a:c2:eb:2a:04:01:c7:d7:05:52:dc:34:60:c7: c5:05:7d:57:27:52:a7:df:76:2f:2f:59:84:a1:63:50:28:42: 8b:5d:a1:85:99:9f:65:63:7c:6b:ad:bd:bf:6c:70:29:9f:a5: 9f:3e:c9:33:55:4f:b8:24:77:63:9c:10:a9:43:ef:a0:59:0d: 0d:bd:72:5a:da:dd:70:fb:d6:b8:44:a2:26:0e:ec:42:ff:f0: ce:16:69:61:dd:78:d3:7f:4f:1d:18:b5:c0:4d:f0:ca:54:ec: 91:f7:89:cc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVQ05diWlBDZ1Txem41U5mA16IrYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTAzMDAwMTI2WhcNMjUxMDA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BhOGU0MDNiNDk1Y2RmYzdiY2NmMWE3ZWExMjgzM2QxYzI0 YWE5ZGFiNDMxZGQzMTg3YjAyNGQ0Y2RiODBlZWZjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCprC2OobPyZWZw/2FPf+vSDOngm7gT/Fd4iCrX2K1jnWxq XrX7Q4SbNRfN9+zDCvFGdLy+M4h1oeflCHbI877/1QDwDA9Ha3JA2oioKW1ft77R brBKvKOuDJI+2WeRHbCH1bWQBAgeAB4pqlVCszzN3JIh/8ZZPtoZsJOVEwaD3sXi oa+Oaebei65LDGOJd/zEYrDyoTA+gO2nJPkvpDFOq7BzJlMEQvYbu1+IFTKYqz1J JXvchp/9O5FKQNjKVefYpu/mIiY08fSnE0n7IbkJ0Sp/2+XsiqEDo9WzGO2jj5aQ MRCCYR36klR0vJy6h6AhJQlZc6h1HJ0ivBzYqkR/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUR0Sbk127VN1ZFt2Yk3QIN4u0PlAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU4YjQyOTg0LTIyYmUtNGFmMS04ZGE1LTZmYTIzNWQxMDI5Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABomXYwDQYJKoZIhvcNAQELBQADggEBABKGF9CHxA/UjoTV5C3Ums4+EhJN p4Dzx9kRYM/ZJSwe841vCMnUqDN5gj9j2X/DGc+aCtSnrnqUFDpgl4NcKQ6xmfeC B0SJg9dMiaAnQmxpPYMXJQn0mpIeUoYYu7nysoolBb05RnXirajra5t233JG4TfJ IcMJflblOc17vOqvq1wo7yUY4i+rUDhtFV3NnFeK0GA6wusqBAHH1wVS3DRgx8UF fVcnUqffdi8vWYShY1AoQotdoYWZn2VjfGutvb9scCmfpZ8+yTNVT7gkd2OcEKlD 76BZDQ29clra3XD71rhEoiYO7EL/8M4WaWHdeNN/Tx0YtcBN8MpU7JH3icw= -----END CERTIFICATE-----Generated at Sat Sep 6 14:11:02 2025 by rpki-client