$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/790971bf-41cf-4aa6-8e90-bfe884c9a6c5.roa File: 790971bf-41cf-4aa6-8e90-bfe884c9a6c5.roa (raw, json) Hash identifier: ll/pt4uJt0lxExYh70xiD16N0/udEq7tMo4ph6uTosU= Subject key identifier: 86:2C:B0:D5:B6:E1:26:46:A9:64:1F:DF:10:01:A2:03:99:1F:62:65 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 584BF2955ADD8624FD0BB2C93E7116E6A3E0206B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/790971bf-41cf-4aa6-8e90-bfe884c9a6c5.roa Signing time: Tue 12 Aug 2025 00:51:39 +0000 ROA not before: Tue 12 Aug 2025 00:51:39 +0000 ROA not after: Tue 16 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 75.47.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:4b:f2:95:5a:dd:86:24:fd:0b:b2:c9:3e:71:16:e6:a3:e0:20:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 12 00:51:39 2025 GMT Not After : Sep 16 23:59:59 2025 GMT Subject: serialNumber=9e4dd5cf027e6598f67e964af2904da55b5e63e7a5ef33a7aea3414545323868, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f5:3e:84:ca:b4:d1:4b:cb:4a:29:17:dd:44: c8:cd:af:f9:7c:13:55:8d:82:7f:0a:a3:96:a7:90: 82:fe:14:7b:94:bb:83:3f:38:7e:b7:92:27:05:79: 20:38:d2:7d:f5:46:38:c7:76:64:63:0c:aa:e3:3e: 29:3c:87:b7:93:7d:69:d2:6e:c9:24:87:df:93:35: 54:bd:8c:ec:a7:69:d4:32:c8:76:8a:07:11:e0:11: 38:3f:50:79:63:73:24:bb:73:fa:11:46:a5:27:1c: 85:b0:59:11:7c:0c:53:57:f9:fa:0c:58:66:10:ca: d7:9b:e7:7b:04:7d:56:d5:2a:09:f3:79:f3:60:24: 82:ce:7e:54:e8:a8:26:88:93:c4:3d:c9:94:e3:c7: 61:9e:c0:b5:0d:60:7a:6e:a3:f9:8a:58:26:37:96: 07:00:93:b9:5b:4a:ba:ff:94:e4:9d:53:65:a7:47: 42:03:2b:1d:0d:d1:51:d3:38:68:14:36:68:5a:47: 7f:e9:4f:5d:27:62:1e:53:b6:1a:17:6b:fb:7a:92: 9b:47:2c:6d:a6:8d:2a:eb:6f:7f:5b:1c:56:09:c4: 16:8d:e4:d7:6c:c2:aa:27:32:e0:43:6a:93:2c:e5: 44:34:e9:67:8a:29:ca:f8:f1:da:31:86:a2:34:27: dd:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:2C:B0:D5:B6:E1:26:46:A9:64:1F:DF:10:01:A2:03:99:1F:62:65 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/790971bf-41cf-4aa6-8e90-bfe884c9a6c5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 75.47.128.0/18 Signature Algorithm: sha256WithRSAEncryption ba:6c:8f:7f:84:88:b1:a3:04:a9:fa:7b:60:20:30:05:b1:3b: d7:ce:2d:e0:30:bf:ac:95:24:0d:88:9e:35:0c:c7:93:de:0f: f4:17:64:73:e7:f7:16:42:4a:c3:e2:4f:29:9e:03:88:ff:10: 13:c6:e3:c0:0f:06:04:7c:7e:c7:4a:91:68:df:e9:93:49:ad: c8:ba:85:b1:91:3e:e4:eb:6c:a8:dc:6c:44:90:25:98:14:e6: fc:f2:ad:51:d6:9b:ca:61:e2:54:3d:5a:79:3b:c8:61:47:96: 75:de:1b:47:e0:e2:17:84:0c:06:37:ab:7f:1f:b5:f6:1a:03: c3:be:ec:29:42:85:a4:a8:f8:b8:cc:60:38:00:07:c7:f3:58: 41:fa:c8:c4:15:36:a5:8d:4a:4a:ae:d5:1f:87:a1:47:16:f9: 29:a2:d7:4a:49:da:e0:1d:5f:4b:7a:f7:66:0f:1b:43:56:df: 94:dd:39:e5:5b:59:bf:2c:c9:cd:2f:2c:21:3d:8a:8f:96:53: d5:39:22:81:71:93:dd:71:82:f4:d7:f0:c3:3e:67:34:4b:ca: 71:d5:87:1c:33:6c:67:a6:ed:c9:84:9b:00:1b:12:30:13:45: 36:10:6c:05:7d:13:a8:5d:6e:d1:35:f1:94:b6:53:68:ed:48: a8:a8:2e:52 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWEvylVrdhiT9C7LJPnEW5qPgIGswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEyMDA1MTM5WhcNMjUwOTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZTRkZDVjZjAyN2U2NTk4ZjY3ZTk2NGFmMjkwNGRhNTVi NWU2M2U3YTVlZjMzYTdhZWEzNDE0NTQ1MzIzODY4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC79T6EyrTRS8tKKRfdRMjNr/l8E1WNgn8Ko5ankIL+FHuU u4M/OH63kicFeSA40n31RjjHdmRjDKrjPik8h7eTfWnSbskkh9+TNVS9jOynadQy yHaKBxHgETg/UHljcyS7c/oRRqUnHIWwWRF8DFNX+foMWGYQyteb53sEfVbVKgnz efNgJILOflToqCaIk8Q9yZTjx2GewLUNYHpuo/mKWCY3lgcAk7lbSrr/lOSdU2Wn R0IDKx0N0VHTOGgUNmhaR3/pT10nYh5TthoXa/t6kptHLG2mjSrrb39bHFYJxBaN 5NdswqonMuBDapMs5UQ06WeKKcr48doxhqI0J93BAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUhiyw1bbhJkapZB/fEAGiA5kfYmUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc5MDk3MWJmLTQxY2YtNGFhNi04ZTkwLWJmZTg4NGM5YTZjNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZLL4AwDQYJKoZIhvcNAQELBQADggEBALpsj3+EiLGjBKn6e2AgMAWxO9fO LeAwv6yVJA2InjUMx5PeD/QXZHPn9xZCSsPiTymeA4j/EBPG48APBgR8fsdKkWjf 6ZNJrci6hbGRPuTrbKjcbESQJZgU5vzyrVHWm8ph4lQ9Wnk7yGFHlnXeG0fg4heE DAY3q38ftfYaA8O+7ClChaSo+LjMYDgAB8fzWEH6yMQVNqWNSkqu1R+HoUcW+Smi 10pJ2uAdX0t692YPG0NW35TdOeVbWb8syc0vLCE9io+WU9U5IoFxk91xgvTX8MM+ ZzRLynHVhxwzbGem7cmEmwAbEjATRTYQbAV9E6hdbtE18ZS2U2jtSKioLlI= -----END CERTIFICATE-----Generated at Wed Aug 20 13:20:17 2025 by rpki-client