$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/646c43c0-5fb0-40e1-9466-05bdc0cdc3f1.roa File: 646c43c0-5fb0-40e1-9466-05bdc0cdc3f1.roa (raw, json) Hash identifier: feykDw99o7LIOXPC7dmvxPwFh2dyebkpkfj7mEbetyI= Subject key identifier: 49:1C:28:4F:38:6B:B0:73:E6:CD:03:1F:96:81:E5:A2:A1:D0:8F:37 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 59BE47162417688D64FF32BBE5D11B29E99FFFB1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/646c43c0-5fb0-40e1-9466-05bdc0cdc3f1.roa Signing time: Wed 27 Aug 2025 00:50:27 +0000 ROA not before: Wed 27 Aug 2025 00:50:27 +0000 ROA not after: Wed 01 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 174.129.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:be:47:16:24:17:68:8d:64:ff:32:bb:e5:d1:1b:29:e9:9f:ff:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 27 00:50:27 2025 GMT Not After : Oct 1 23:59:59 2025 GMT Subject: serialNumber=e86005eaf7694c203a982c5876fee99be6720f9c09ce7c2f4e0a4b933a371b54, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:27:96:fe:64:19:a2:36:78:1d:e0:82:5e:3d: 20:4e:30:8b:21:65:bf:53:ed:95:96:1c:13:3f:50: 6e:4d:75:43:22:06:35:eb:b0:df:e3:4e:30:9c:24: 37:de:20:85:ba:59:44:60:99:27:d9:d6:8a:49:7f: d4:69:b0:5d:8d:cd:f5:c4:e6:85:c6:44:3f:74:84: 2e:b6:f4:96:3a:f5:8c:91:10:6d:cc:51:9a:d8:a4: 26:09:be:3a:1c:3c:c3:13:f0:70:90:d2:38:ed:3d: 1d:07:51:9a:e2:cf:49:08:54:0e:f0:96:9e:98:88: b2:b3:c9:e5:6e:e5:7a:fe:48:c3:31:45:89:b6:a9: ac:e4:c4:2d:07:6d:98:22:66:0a:8f:60:10:22:df: d8:08:5c:06:83:62:b8:21:49:3e:16:3e:88:bc:a4: 37:f9:47:32:e5:91:d5:7b:4f:f9:69:de:e5:fb:29: 91:09:b8:83:67:6a:8e:ff:b3:a3:45:58:09:1e:5a: 17:60:9e:7b:b7:2d:9b:dc:c6:6b:da:94:03:39:98: fa:61:0d:64:21:ff:38:92:0d:43:23:9e:98:ab:29: 29:41:7c:7f:7f:23:3f:53:1c:4b:ce:07:66:33:a3: 67:bf:10:31:b0:07:ad:0c:69:ee:ea:dd:c3:3b:ad: e0:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:1C:28:4F:38:6B:B0:73:E6:CD:03:1F:96:81:E5:A2:A1:D0:8F:37 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/646c43c0-5fb0-40e1-9466-05bdc0cdc3f1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 174.129.192.0/18 Signature Algorithm: sha256WithRSAEncryption 80:a8:5a:fe:c0:8b:ea:88:d8:c1:85:6d:62:0a:e9:94:7f:91: 36:01:71:2a:c2:9d:cd:17:0f:49:a8:76:27:12:64:0f:33:4b: 3f:f2:fd:fd:dc:c1:b1:85:f2:3b:79:22:0e:32:84:6e:b1:a1: 4c:79:3c:dd:b3:ba:6e:ae:33:ee:f8:2c:21:c3:b5:08:6d:b6: 09:ab:8d:11:8b:64:80:16:8e:5c:2c:33:32:2b:de:8d:c0:ed: 46:84:e4:e1:25:0d:98:23:aa:da:21:bc:95:35:ef:0e:2f:a7: a8:a1:98:96:8b:42:ab:f1:26:e1:f2:c7:6f:53:61:7f:97:71: 01:bb:38:07:d9:a9:0f:7c:0d:2f:13:79:30:93:53:ad:39:f6: 82:41:b6:77:07:f8:4b:96:95:f2:53:52:2f:76:b2:c5:ec:32: 71:42:ef:3d:f3:b1:65:cc:68:23:48:1a:3d:e0:24:ac:38:c8: 79:e2:b4:dd:d8:67:af:d5:3d:d1:ad:45:78:3e:16:70:ed:76: 93:46:c7:9d:5f:8c:f3:17:ff:c2:63:32:1e:d0:b9:ea:ed:7d: fe:bd:96:76:01:35:e0:47:a0:44:d8:c7:a8:0f:9e:87:5d:d5: 6c:0b:eb:0a:f7:bd:45:67:57:fa:55:62:b9:bf:3a:93:78:09: d6:30:fd:4c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWb5HFiQXaI1k/zK75dEbKemf/7EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI3MDA1MDI3WhcNMjUxMDAxMjM1OTU5 WjB6MUkwRwYDVQQFE0BlODYwMDVlYWY3Njk0YzIwM2E5ODJjNTg3NmZlZTk5YmU2 NzIwZjljMDljZTdjMmY0ZTBhNGI5MzNhMzcxYjU0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCWJ5b+ZBmiNngd4IJePSBOMIshZb9T7ZWWHBM/UG5NdUMi BjXrsN/jTjCcJDfeIIW6WURgmSfZ1opJf9RpsF2NzfXE5oXGRD90hC629JY69YyR EG3MUZrYpCYJvjocPMMT8HCQ0jjtPR0HUZriz0kIVA7wlp6YiLKzyeVu5Xr+SMMx RYm2qazkxC0HbZgiZgqPYBAi39gIXAaDYrghST4WPoi8pDf5RzLlkdV7T/lp3uX7 KZEJuINnao7/s6NFWAkeWhdgnnu3LZvcxmvalAM5mPphDWQh/ziSDUMjnpirKSlB fH9/Iz9THEvOB2Yzo2e/EDGwB60Mae7q3cM7reDVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUSRwoTzhrsHPmzQMfloHloqHQjzcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY0NmM0M2MwLTVmYjAtNDBlMS05NDY2LTA1YmRjMGNkYzNmMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAaugcAwDQYJKoZIhvcNAQELBQADggEBAICoWv7Ai+qI2MGFbWIK6ZR/kTYB cSrCnc0XD0modicSZA8zSz/y/f3cwbGF8jt5Ig4yhG6xoUx5PN2zum6uM+74LCHD tQhttgmrjRGLZIAWjlwsMzIr3o3A7UaE5OElDZgjqtohvJU17w4vp6ihmJaLQqvx JuHyx29TYX+XcQG7OAfZqQ98DS8TeTCTU6059oJBtncH+EuWlfJTUi92ssXsMnFC 7z3zsWXMaCNIGj3gJKw4yHnitN3YZ6/VPdGtRXg+FnDtdpNGx51fjPMX/8JjMh7Q uertff69lnYBNeBHoETYx6gPnodd1WwL6wr3vUVnV/pVYrm/OpN4CdYw/Uw= -----END CERTIFICATE-----Generated at Sat Sep 6 14:19:24 2025 by rpki-client