$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59b45e95-5c92-40c2-8378-600986966c75.roa File: 59b45e95-5c92-40c2-8378-600986966c75.roa (raw, json) Hash identifier: QHYc9VuZ2Arg0iBmIObSUQIe/71a6wVHXuJ6+2BX+HE= Subject key identifier: BA:C5:25:AA:ED:E4:97:D1:FF:3C:F5:54:D2:8C:60:66:D1:3D:13:7E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5AB8F3BD53B76BCB3C4CFC5562AA04E462E4BA20 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59b45e95-5c92-40c2-8378-600986966c75.roa Signing time: Sat 06 Sep 2025 00:50:27 +0000 ROA not before: Sat 06 Sep 2025 00:50:27 +0000 ROA not after: Sat 11 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 96.0.102.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:b8:f3:bd:53:b7:6b:cb:3c:4c:fc:55:62:aa:04:e4:62:e4:ba:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 6 00:50:27 2025 GMT Not After : Oct 11 23:59:59 2025 GMT Subject: serialNumber=f31f1b69f596c660a691fea67ee32322d4e3df5e25490c83975dc1e388b7490a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:96:40:9b:b7:7e:c2:7f:95:2a:0e:20:4f:23: 03:c4:9f:20:eb:40:b5:fd:5b:87:84:e4:60:e3:6e: f5:05:6e:54:5a:46:93:db:40:e5:9a:41:69:ea:01: ae:47:bc:bf:f2:57:33:26:2b:8b:89:ac:ea:69:b5: 4b:de:40:ca:b0:b5:d2:03:a6:2f:e1:50:d4:d8:85: 19:35:04:78:6c:cd:5e:cc:e9:88:0a:d6:bc:5c:ff: b9:ac:66:e5:6e:d1:32:3e:16:e0:47:f1:6c:d9:d2: 4f:bb:59:df:d8:b0:db:c4:43:61:a3:d6:3a:5b:61: b6:f7:99:7c:29:46:f6:b0:ee:98:15:c0:cc:e3:be: 0d:81:cf:5a:11:64:a0:7c:99:1d:a9:6e:b5:fe:0c: e1:e7:86:e5:7b:42:e1:0b:68:5a:dd:c0:ea:1a:e7: ee:f6:f3:86:95:ab:2c:05:b7:e8:e9:44:66:29:bb: 25:57:d6:b9:52:3c:c6:f9:d3:f5:f7:33:cf:91:d4: ff:5b:38:7d:9e:b5:f2:8e:01:31:0a:ce:59:c6:fb: 4b:30:f0:f4:4a:34:16:5e:d9:47:79:b2:f1:d6:d0: d1:3a:46:14:59:4b:6c:b1:65:b9:98:e2:fb:91:a5: 99:ed:bc:d6:63:b5:42:cc:79:6a:9b:23:03:bf:06: 4a:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:C5:25:AA:ED:E4:97:D1:FF:3C:F5:54:D2:8C:60:66:D1:3D:13:7E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59b45e95-5c92-40c2-8378-600986966c75.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.0.102.0/23 Signature Algorithm: sha256WithRSAEncryption bd:c8:0c:fe:4a:ae:56:6a:e6:50:17:dc:b5:80:73:27:d2:2d: 46:e0:63:2f:90:9c:d8:c4:b6:cb:1b:3b:ba:8a:b9:05:33:ac: 72:11:4a:10:70:c8:d0:11:f6:59:2e:2d:67:63:6f:12:fd:f8: e8:23:30:86:cb:4b:0d:e1:ba:21:06:c9:12:de:9f:92:8a:c6: 9d:b3:c5:41:81:6f:83:3c:72:36:23:f5:fe:79:25:79:da:b1: 3a:54:92:c0:07:85:68:e9:1b:7c:1b:62:37:63:81:3f:70:86: dc:41:c5:0e:e2:88:43:5b:8b:81:99:e3:f8:14:ea:43:54:d3: 4b:d7:6d:7c:83:55:45:14:e8:ae:d0:06:09:b7:5c:11:cb:41: fd:4e:f3:b8:31:ed:08:be:38:1d:a8:d9:5d:a9:bb:71:c4:fe: 4e:f0:eb:ec:d0:fd:b9:b6:c4:5a:ec:6b:b5:88:56:6f:89:8d: 9b:33:54:47:02:ba:04:ec:b4:9f:b0:11:63:6f:2f:b7:35:11: 07:7c:5b:1c:f1:7c:3e:e4:75:c8:a0:0d:e6:a3:0e:61:68:90: 3e:db:75:56:16:d0:80:5b:1c:bb:9b:af:05:73:d9:a6:83:af: 6a:78:ec:f5:53:af:f9:f9:da:a5:53:45:88:70:06:1e:5a:2a: 83:5e:fd:b3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWrjzvVO3a8s8TPxVYqoE5GLkuiAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA2MDA1MDI3WhcNMjUxMDExMjM1OTU5 WjB6MUkwRwYDVQQFE0BmMzFmMWI2OWY1OTZjNjYwYTY5MWZlYTY3ZWUzMjMyMmQ0 ZTNkZjVlMjU0OTBjODM5NzVkYzFlMzg4Yjc0OTBhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDblkCbt37Cf5UqDiBPIwPEnyDrQLX9W4eE5GDjbvUFblRa RpPbQOWaQWnqAa5HvL/yVzMmK4uJrOpptUveQMqwtdIDpi/hUNTYhRk1BHhszV7M 6YgK1rxc/7msZuVu0TI+FuBH8WzZ0k+7Wd/YsNvEQ2Gj1jpbYbb3mXwpRvaw7pgV wMzjvg2Bz1oRZKB8mR2pbrX+DOHnhuV7QuELaFrdwOoa5+7284aVqywFt+jpRGYp uyVX1rlSPMb50/X3M8+R1P9bOH2etfKOATEKzlnG+0sw8PRKNBZe2Ud5svHW0NE6 RhRZS2yxZbmY4vuRpZntvNZjtULMeWqbIwO/BkqBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUusUlqu3kl9H/PPVU0oxgZtE9E34wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU5YjQ1ZTk1LTVjOTItNDBjMi04Mzc4LTYwMDk4Njk2NmM3NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFgAGYwDQYJKoZIhvcNAQELBQADggEBAL3IDP5KrlZq5lAX3LWAcyfSLUbg Yy+QnNjEtssbO7qKuQUzrHIRShBwyNAR9lkuLWdjbxL9+OgjMIbLSw3huiEGyRLe n5KKxp2zxUGBb4M8cjYj9f55JXnasTpUksAHhWjpG3wbYjdjgT9whtxBxQ7iiENb i4GZ4/gU6kNU00vXbXyDVUUU6K7QBgm3XBHLQf1O87gx7Qi+OB2o2V2pu3HE/k7w 6+zQ/bm2xFrsa7WIVm+JjZszVEcCugTstJ+wEWNvL7c1EQd8WxzxfD7kdcigDeaj DmFokD7bdVYW0IBbHLubrwVz2aaDr2p47PVTr/n52qVTRYhwBh5aKoNe/bM= -----END CERTIFICATE-----Generated at Sat Sep 6 14:14:29 2025 by rpki-client