$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/725de74a-ea25-4864-a260-52460f0b56de.roa File: 725de74a-ea25-4864-a260-52460f0b56de.roa (raw, json) Hash identifier: yQVL1kNGTT2odlbMLYtUpgvo7u9eUvNPurjkxVfSpZo= Subject key identifier: 61:62:0B:A4:68:C6:E7:E4:D8:08:F1:D0:4B:8A:07:82:5B:5F:65:5B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 54941E8284150E8CBBFFD0975990F040AAB75B95 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/725de74a-ea25-4864-a260-52460f0b56de.roa Signing time: Mon 11 Aug 2025 15:20:14 +0000 ROA not before: Mon 11 Aug 2025 15:20:14 +0000 ROA not after: Mon 15 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 192.43.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:94:1e:82:84:15:0e:8c:bb:ff:d0:97:59:90:f0:40:aa:b7:5b:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 11 15:20:14 2025 GMT Not After : Sep 15 23:59:59 2025 GMT Subject: serialNumber=9be0e52e13d0df14b638904787586d117c2580f2af317995833b1f0978d6bcb7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:5b:34:82:85:4b:ae:a6:9a:87:69:83:a5:03: 6c:27:10:f9:fa:88:2b:fa:be:17:6d:01:0a:9b:ce: 53:d8:05:41:5b:c3:a4:9e:30:8a:60:50:70:0e:05: 5f:df:52:ce:0e:cf:02:74:bc:ff:42:d2:e1:e9:09: 9e:a3:d6:cc:8c:ad:c3:eb:ea:29:96:04:24:6f:43: e3:cf:e0:cc:ae:76:2d:97:77:75:54:17:37:8a:8b: 6a:97:bc:cf:18:9a:8f:a6:f3:5d:c5:d8:06:77:3a: 5e:ad:64:b3:ce:6e:4c:27:1d:21:d6:24:b0:91:97: 58:a5:e9:6f:02:f1:74:29:b0:e5:39:e0:4e:51:57: e4:58:10:f0:f1:24:e6:73:6f:f8:c7:31:14:21:1f: c1:ac:91:20:3f:96:e5:bc:96:7c:69:69:77:ec:92: 29:0d:47:81:4a:ff:55:75:a3:02:2c:77:fc:e0:4a: f2:8a:55:f7:c1:27:57:43:ff:2d:62:85:e4:15:15: d3:f1:58:12:d1:fb:11:26:f5:c9:f2:3b:6c:ee:22: 3c:cb:8d:aa:02:17:be:c5:d0:96:7e:fd:8f:6b:ab: 1c:f7:8a:19:77:f1:6c:ee:1f:a7:5e:48:81:c7:56: be:a4:15:79:c9:0f:6b:43:9f:97:9d:75:9f:ac:cc: fa:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:62:0B:A4:68:C6:E7:E4:D8:08:F1:D0:4B:8A:07:82:5B:5F:65:5B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/725de74a-ea25-4864-a260-52460f0b56de.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.43.175.0/24 Signature Algorithm: sha256WithRSAEncryption 89:38:d8:f5:a2:86:7c:9f:eb:bb:15:a6:ec:46:5d:ac:f6:d9: f3:fe:87:ac:47:fc:33:25:22:6e:bb:1d:32:e7:fe:3a:7d:92: 9a:bf:e1:03:b1:91:6d:a0:09:80:55:46:d0:73:21:0a:48:3a: d1:e1:ad:32:93:fd:77:ff:a5:31:22:12:34:0d:ce:b1:88:c8: 0e:d8:bc:20:17:f4:79:a1:25:ad:2e:3e:42:8e:75:42:18:38: 47:bb:bd:23:7e:cc:a7:e4:aa:d5:45:4e:e3:6b:b8:8e:ce:28: 3d:f9:76:cf:a1:7a:a4:f9:5e:cd:6c:c7:3b:41:9f:cd:8c:ed: ed:cd:e0:e2:e6:cb:db:78:b0:7c:3a:01:ce:80:3a:fd:05:4c: 14:2c:fe:01:a2:b0:be:46:a0:23:f7:c5:c3:53:04:f8:7d:a6: 20:2e:1c:45:b2:a6:b3:1a:91:0d:fa:f8:c7:8d:63:fb:b9:e4: e3:0c:2f:a4:c8:8f:57:f5:e6:69:c7:e8:cc:af:0f:f5:c7:ca: 2e:ec:4b:14:63:0e:15:59:6d:cb:b4:f9:d8:de:4f:f6:9a:b3: 27:64:0f:8b:0d:91:54:e3:48:a0:ca:90:6a:1f:4f:94:cd:67: 9f:55:15:2c:cd:50:06:0d:57:1a:20:a5:c6:78:dd:fa:8c:16: 41:0f:b3:7e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVJQegoQVDoy7/9CXWZDwQKq3W5UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODExMTUyMDE0WhcNMjUwOTE1MjM1OTU5 WjB6MUkwRwYDVQQFE0A5YmUwZTUyZTEzZDBkZjE0YjYzODkwNDc4NzU4NmQxMTdj MjU4MGYyYWYzMTc5OTU4MzNiMWYwOTc4ZDZiY2I3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDdWzSChUuuppqHaYOlA2wnEPn6iCv6vhdtAQqbzlPYBUFb w6SeMIpgUHAOBV/fUs4OzwJ0vP9C0uHpCZ6j1syMrcPr6imWBCRvQ+PP4Myudi2X d3VUFzeKi2qXvM8Ymo+m813F2AZ3Ol6tZLPObkwnHSHWJLCRl1il6W8C8XQpsOU5 4E5RV+RYEPDxJOZzb/jHMRQhH8GskSA/luW8lnxpaXfskikNR4FK/1V1owIsd/zg SvKKVffBJ1dD/y1iheQVFdPxWBLR+xEm9cnyO2zuIjzLjaoCF77F0JZ+/Y9rqxz3 ihl38WzuH6deSIHHVr6kFXnJD2tDn5eddZ+szPqTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUYWILpGjG5+TYCPHQS4oHgltfZVswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzcyNWRlNzRhLWVhMjUtNDg2NC1hMjYwLTUyNDYwZjBiNTZkZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADAK68wDQYJKoZIhvcNAQELBQADggEBAIk42PWihnyf67sVpuxGXaz22fP+ h6xH/DMlIm67HTLn/jp9kpq/4QOxkW2gCYBVRtBzIQpIOtHhrTKT/Xf/pTEiEjQN zrGIyA7YvCAX9HmhJa0uPkKOdUIYOEe7vSN+zKfkqtVFTuNruI7OKD35ds+heqT5 Xs1sxztBn82M7e3N4OLmy9t4sHw6Ac6AOv0FTBQs/gGisL5GoCP3xcNTBPh9piAu HEWyprMakQ36+MeNY/u55OMML6TIj1f15mnH6MyvD/XHyi7sSxRjDhVZbcu0+dje T/aasydkD4sNkVTjSKDKkGofT5TNZ59VFSzNUAYNVxogpcZ43fqMFkEPs34= -----END CERTIFICATE-----Generated at Wed Aug 20 10:48:27 2025 by rpki-client