$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/61b7b9ae-b712-4a51-b302-aafa1010e46e.roa File: 61b7b9ae-b712-4a51-b302-aafa1010e46e.roa (raw, json) Hash identifier: b6LN9w80wj7j9HKq5Tz1yIQS3/QQ7JuMVAg88PdTByM= Subject key identifier: C9:8A:8C:34:F1:92:6E:A3:98:5D:F1:02:45:BC:23:54:F3:92:23:2E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4ED297A8D7EEF508E19B9D120744E0441967B857 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/61b7b9ae-b712-4a51-b302-aafa1010e46e.roa Signing time: Mon 11 Aug 2025 15:00:16 +0000 ROA not before: Mon 11 Aug 2025 15:00:16 +0000 ROA not after: Mon 15 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 107.176.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:d2:97:a8:d7:ee:f5:08:e1:9b:9d:12:07:44:e0:44:19:67:b8:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 11 15:00:16 2025 GMT Not After : Sep 15 23:59:59 2025 GMT Subject: serialNumber=1cdc821ed372b3cd53a2816232b9d47c2bddb2049cc5c3866fa629babfa2b231, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:2d:f9:72:47:3e:1b:d7:06:da:5f:23:33:ab: b2:63:df:16:34:7b:64:c4:d6:71:2d:60:2e:72:5f: 0a:1b:69:05:8b:3c:1f:aa:f2:d1:92:14:87:c3:1c: 32:d4:bc:ca:e1:af:c9:a2:5b:6b:48:9a:56:6b:7c: 93:ba:ce:02:f5:bb:45:25:f2:3d:9a:92:f6:48:e0: 0a:11:b1:fb:a7:ec:ce:be:93:9c:4e:bb:00:af:01: 66:cb:eb:79:01:85:66:b8:ac:d8:8f:9e:a4:48:36: 1d:6b:64:63:b8:f3:e0:30:20:d3:67:47:bf:08:dd: 09:85:20:e9:c6:d2:8f:7f:0b:cb:dd:6f:b8:ab:cb: 1f:5c:f3:5b:d1:21:0f:33:94:c9:29:fb:e2:6f:40: ad:32:db:15:1d:60:18:c7:4d:ee:9c:d9:41:6d:72: 9d:4b:29:8f:9d:cc:d7:7f:a5:89:70:65:36:a6:a8: 2d:4e:0b:bf:a5:fc:e0:70:f9:57:29:c0:d8:a9:0b: de:fb:9a:b8:3c:0e:0a:02:fe:cc:20:0b:da:c3:99: d7:f7:43:b3:fb:46:ca:96:c3:60:2f:d4:5b:e6:32: 38:63:26:3e:fe:bd:78:d3:01:be:f7:08:95:97:24: 87:72:d7:d2:51:24:c0:43:5d:8f:ca:cc:f6:cf:bb: 75:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:8A:8C:34:F1:92:6E:A3:98:5D:F1:02:45:BC:23:54:F3:92:23:2E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/61b7b9ae-b712-4a51-b302-aafa1010e46e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.176.0.0/15 Signature Algorithm: sha256WithRSAEncryption b8:45:a8:bf:ad:a3:79:b1:88:1b:56:d2:65:a4:cc:8c:2a:f3: a9:0d:fb:c0:ba:6c:5b:55:92:39:fb:6f:6a:ed:ad:c6:7e:f2: de:ec:a7:56:49:d8:8f:b1:e6:93:7c:cd:0d:66:75:3d:2a:4d: 3b:90:7c:35:b0:c3:77:b5:af:b5:5f:de:ea:81:de:77:48:3c: d8:36:28:94:7e:4d:f9:39:1b:c4:2c:00:db:cb:6b:83:f9:bc: 85:6a:f8:0a:03:b0:7e:8a:e2:f4:cd:b5:71:71:51:88:be:37: 58:96:f7:5c:bf:8c:81:6d:c1:57:48:bf:38:51:aa:be:24:ed: a1:58:df:8a:cf:cc:47:8a:b2:bc:15:6e:1a:f8:e2:dd:f0:52: a6:71:ed:8b:ec:8b:4b:1e:ca:66:fb:b4:32:1d:5b:4f:e3:48: 93:1b:ac:7c:d8:a3:80:fd:38:c4:6b:4d:f1:af:88:23:2e:ad: 7b:6d:b9:43:d3:c7:bc:8c:7f:52:f9:e5:1d:bc:3b:52:a6:11: 05:0a:dc:a6:76:a2:de:ad:7f:f9:65:16:68:21:1d:f6:dc:e7: ce:b1:4e:2e:f5:da:c4:b4:0c:ca:22:c6:bf:63:06:40:03:a4: 61:97:78:53:28:6c:e0:a3:67:52:3b:3e:44:e5:87:dd:d0:b7: d2:d4:07:2f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUTtKXqNfu9Qjhm50SB0TgRBlnuFcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODExMTUwMDE2WhcNMjUwOTE1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxY2RjODIxZWQzNzJiM2NkNTNhMjgxNjIzMmI5ZDQ3YzJi ZGRiMjA0OWNjNWMzODY2ZmE2MjliYWJmYTJiMjMxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCVLflyRz4b1wbaXyMzq7Jj3xY0e2TE1nEtYC5yXwobaQWL PB+q8tGSFIfDHDLUvMrhr8miW2tImlZrfJO6zgL1u0Ul8j2akvZI4AoRsfun7M6+ k5xOuwCvAWbL63kBhWa4rNiPnqRINh1rZGO48+AwINNnR78I3QmFIOnG0o9/C8vd b7iryx9c81vRIQ8zlMkp++JvQK0y2xUdYBjHTe6c2UFtcp1LKY+dzNd/pYlwZTam qC1OC7+l/OBw+VcpwNipC977mrg8DgoC/swgC9rDmdf3Q7P7RsqWw2Av1FvmMjhj Jj7+vXjTAb73CJWXJIdy19JRJMBDXY/KzPbPu3UjAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUyYqMNPGSbqOYXfECRbwjVPOSIy4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYxYjdiOWFlLWI3MTItNGE1MS1iMzAyLWFhZmExMDEwZTQ2ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwFrsDANBgkqhkiG9w0BAQsFAAOCAQEAuEWov62jebGIG1bSZaTMjCrzqQ37 wLpsW1WSOftvau2txn7y3uynVknYj7Hmk3zNDWZ1PSpNO5B8NbDDd7WvtV/e6oHe d0g82DYolH5N+TkbxCwA28trg/m8hWr4CgOwfori9M21cXFRiL43WJb3XL+MgW3B V0i/OFGqviTtoVjfis/MR4qyvBVuGvji3fBSpnHti+yLSx7KZvu0Mh1bT+NIkxus fNijgP04xGtN8a+IIy6te225Q9PHvIx/UvnlHbw7UqYRBQrcpnai3q1/+WUWaCEd 9tznzrFOLvXaxLQMyiLGv2MGQAOkYZd4Uyhs4KNnUjs+ROWH3dC30tQHLw== -----END CERTIFICATE-----Generated at Wed Aug 20 13:12:56 2025 by rpki-client