$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6076b8a5-2430-4e9c-a4fc-13785f08cd67.roa File: 6076b8a5-2430-4e9c-a4fc-13785f08cd67.roa (raw, json) Hash identifier: hNrkIdhpZmxZEvZSxXLxyCfveiYwOuHKkvuYCgS0akY= Subject key identifier: 4D:5D:48:25:FA:36:FA:D7:69:5D:13:AD:B1:C1:62:AC:D6:02:41:81 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6D547D56F54124F4D74D831473D9ACB7BE4BBD77 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6076b8a5-2430-4e9c-a4fc-13785f08cd67.roa Signing time: Wed 03 Sep 2025 00:01:03 +0000 ROA not before: Wed 03 Sep 2025 00:01:03 +0000 ROA not after: Wed 08 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 151.148.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:54:7d:56:f5:41:24:f4:d7:4d:83:14:73:d9:ac:b7:be:4b:bd:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 3 00:01:03 2025 GMT Not After : Oct 8 23:59:59 2025 GMT Subject: serialNumber=b9e45f3499760045bc02a78de3416a13e2bbfc5522f001dc7f7959bce8bcc2ec, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:35:8b:14:53:5c:dc:4e:f8:bf:6e:c5:7c:ec: 1b:49:4a:d8:46:af:6e:bd:bc:78:01:cd:f7:72:bd: 3b:81:ae:2d:9f:9d:17:f9:4d:60:bf:72:2e:69:90: d7:b6:33:41:96:17:c2:10:77:e1:4e:c3:21:a3:64: 02:0c:1b:b9:4f:ca:cc:dd:7d:40:00:76:41:77:e1: 10:99:d4:33:c1:05:cf:63:ca:e5:d1:ad:d9:53:36: 0b:b5:ff:a4:1f:40:b4:01:7d:df:a8:b6:3f:e7:ce: 0b:67:04:ab:93:bb:59:ff:f7:04:69:09:cb:dc:63: 44:cc:f0:3c:09:28:8c:3e:96:a4:42:87:27:41:50: 6e:3e:5e:ec:aa:5c:84:54:1f:39:6a:a7:06:ff:0d: 8a:f7:e6:4d:f8:16:f7:be:01:d3:96:a1:55:86:ec: 4e:60:fc:ae:6c:51:29:3c:96:28:48:5e:91:4a:1e: 34:6e:89:09:e5:02:54:05:df:2c:1d:54:6f:d2:3c: f6:cc:c1:28:38:e4:1f:45:7d:62:a1:31:46:28:c5: 36:12:e2:ae:a0:fa:c4:4c:90:ac:9f:6e:c0:73:2a: c3:07:24:30:59:82:34:cd:d9:7a:99:62:5f:84:7c: d7:6e:59:95:2f:48:af:57:68:49:43:ae:56:90:87: 52:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:5D:48:25:FA:36:FA:D7:69:5D:13:AD:B1:C1:62:AC:D6:02:41:81 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6076b8a5-2430-4e9c-a4fc-13785f08cd67.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.148.32.0/19 Signature Algorithm: sha256WithRSAEncryption 19:e7:23:1d:31:0f:32:22:b5:6c:05:92:e4:86:0d:9c:41:55: e3:0a:d2:02:e4:45:7d:76:b7:91:b4:29:29:77:0f:43:94:c0: 8f:f3:22:4c:86:c4:5d:02:2d:84:f8:8c:e2:07:64:48:d1:26: 61:5c:eb:0a:22:78:fc:86:0d:64:83:44:d6:71:db:d6:8a:1d: b4:20:20:e9:36:97:9f:f7:97:4b:0b:8b:c1:de:d5:07:2d:40: 45:e6:04:ee:41:f2:56:85:66:7c:37:73:88:43:45:6f:66:32: 0c:03:4d:64:1b:b8:57:01:73:2f:dd:3e:87:77:af:09:ce:82: 68:02:51:e4:65:64:f4:d5:ef:c0:8c:8b:7c:e4:c4:43:d4:82: f4:3d:37:57:f3:77:9b:38:44:3d:e4:de:70:ce:ca:85:7d:65: 5e:22:27:0c:f9:1d:8f:5b:c8:8c:b8:30:61:d5:89:ef:db:b4: 9d:9b:f4:66:d7:37:ec:62:1a:80:eb:22:c5:da:d9:18:00:9f: 65:a2:65:8b:23:eb:36:9f:7b:d2:ea:ab:bc:6a:41:a5:08:38: 3e:c6:d9:10:12:73:e6:e3:51:5e:55:c7:25:91:70:a3:81:55: 6a:4a:6c:02:1a:c6:19:2e:d4:25:ce:4c:42:f0:62:54:71:18: 92:b6:32:4f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbVR9VvVBJPTXTYMUc9mst75LvXcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTAzMDAwMTAzWhcNMjUxMDA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BiOWU0NWYzNDk5NzYwMDQ1YmMwMmE3OGRlMzQxNmExM2Uy YmJmYzU1MjJmMDAxZGM3Zjc5NTliY2U4YmNjMmVjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0NYsUU1zcTvi/bsV87BtJSthGr269vHgBzfdyvTuBri2f nRf5TWC/ci5pkNe2M0GWF8IQd+FOwyGjZAIMG7lPyszdfUAAdkF34RCZ1DPBBc9j yuXRrdlTNgu1/6QfQLQBfd+otj/nzgtnBKuTu1n/9wRpCcvcY0TM8DwJKIw+lqRC hydBUG4+XuyqXIRUHzlqpwb/DYr35k34Fve+AdOWoVWG7E5g/K5sUSk8lihIXpFK HjRuiQnlAlQF3ywdVG/SPPbMwSg45B9FfWKhMUYoxTYS4q6g+sRMkKyfbsBzKsMH JDBZgjTN2XqZYl+EfNduWZUvSK9XaElDrlaQh1K1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUTV1IJfo2+tdpXROtscFirNYCQYEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYwNzZiOGE1LTI0MzAtNGU5Yy1hNGZjLTEzNzg1ZjA4Y2Q2Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAWXlCAwDQYJKoZIhvcNAQELBQADggEBABnnIx0xDzIitWwFkuSGDZxBVeMK 0gLkRX12t5G0KSl3D0OUwI/zIkyGxF0CLYT4jOIHZEjRJmFc6woiePyGDWSDRNZx 29aKHbQgIOk2l5/3l0sLi8He1QctQEXmBO5B8laFZnw3c4hDRW9mMgwDTWQbuFcB cy/dPod3rwnOgmgCUeRlZPTV78CMi3zkxEPUgvQ9N1fzd5s4RD3k3nDOyoV9ZV4i Jwz5HY9byIy4MGHVie/btJ2b9GbXN+xiGoDrIsXa2RgAn2WiZYsj6zafe9Lqq7xq QaUIOD7G2RASc+bjUV5VxyWRcKOBVWpKbAIaxhku1CXOTELwYlRxGJK2Mk8= -----END CERTIFICATE-----Generated at Sat Sep 6 14:18:36 2025 by rpki-client