$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/840dc329-f1a5-40eb-82f6-7a9d55ec7f85.roa File: 840dc329-f1a5-40eb-82f6-7a9d55ec7f85.roa (raw, json) Hash identifier: S/kFww8nlgyulxLx0cEj2U6a3wljBQ7gALlRD/FUNdQ= Subject key identifier: D9:5F:A8:90:2C:0C:16:AF:45:D1:89:32:15:C2:5B:B2:1B:27:16:3F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7684913E4C5D612A42CA6B8FFE3841D2021A0DDD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/840dc329-f1a5-40eb-82f6-7a9d55ec7f85.roa Signing time: Wed 13 Aug 2025 00:31:08 +0000 ROA not before: Wed 13 Aug 2025 00:31:08 +0000 ROA not after: Wed 17 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 65.8.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:84:91:3e:4c:5d:61:2a:42:ca:6b:8f:fe:38:41:d2:02:1a:0d:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 13 00:31:08 2025 GMT Not After : Sep 17 23:59:59 2025 GMT Subject: serialNumber=ccb067a01922a561095928b7c79d3da5486598b9f66ca28dc033d350384af41f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:14:82:87:eb:d2:74:0f:37:92:3f:c1:52:f2: 04:da:f1:13:ba:80:72:c9:c9:04:dd:8f:2d:ff:f6: a5:91:7e:49:bf:2c:ce:4c:2e:40:65:1c:2d:77:93: b4:f6:2d:f6:6f:37:23:33:d2:0a:8c:42:bc:7a:f2: 02:67:0c:e5:dd:f2:8e:9f:ac:40:63:02:38:cf:94: 41:e0:bc:ed:cd:05:d2:95:f1:87:51:a7:f0:b2:f1: 4e:56:f0:01:a8:ad:40:bf:0d:6d:a8:a3:7f:31:5a: 16:3c:15:9a:27:f2:51:e5:62:66:78:c1:7a:aa:8e: df:c1:53:62:93:3d:27:c1:b6:68:9f:b4:a1:01:12: 56:67:8c:bc:d5:11:e7:ca:db:1d:de:76:42:cd:04: 20:da:e0:51:92:f2:4e:25:47:f2:33:ea:cf:eb:fb: 42:3c:7b:ab:f4:2b:5c:77:28:e2:ec:76:35:c9:97: 68:50:62:c3:e6:19:2c:d3:7e:77:f1:83:03:00:c4: db:5c:dc:7e:5e:52:2a:22:21:26:5c:05:1e:28:65: 4f:60:e8:da:1b:e4:08:7d:ff:92:1e:f2:d1:e2:a3: 4c:f6:f3:28:10:a5:05:b3:a5:5c:80:7e:46:bb:f1: bc:cd:6c:d5:90:2e:21:a1:9d:c9:06:0a:8f:92:3a: 16:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:5F:A8:90:2C:0C:16:AF:45:D1:89:32:15:C2:5B:B2:1B:27:16:3F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/840dc329-f1a5-40eb-82f6-7a9d55ec7f85.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 65.8.0.0/14 Signature Algorithm: sha256WithRSAEncryption 24:3a:2f:29:de:50:91:18:55:d2:eb:fb:d4:a2:25:c3:ed:61: 48:56:f0:ca:e8:d0:76:eb:63:09:55:4a:cb:ba:48:b0:cc:18: 91:a1:75:01:a6:f4:40:b6:81:7a:a1:3b:43:b4:b0:74:cb:90: 01:be:9d:53:e2:b4:46:04:d1:e3:52:0e:cf:04:c3:fc:12:69: 73:86:85:5b:82:52:b4:23:59:1f:28:3c:0c:f2:b9:33:fc:42: d6:40:7e:6e:38:dc:7f:b0:4d:f9:9b:33:1e:61:20:17:26:54: 2e:f0:58:b1:fe:81:56:5c:86:5c:81:a4:b6:df:c4:de:48:03: 7b:e2:69:06:02:ef:0e:a5:85:6a:ae:6d:70:03:99:19:50:79: 53:ed:e4:ea:f1:5a:37:d9:06:a3:cf:65:52:a6:77:61:1f:94: e1:0a:a0:af:e6:9f:29:c0:22:d7:06:f6:24:64:b8:0a:bf:9e: b5:2a:7b:b5:5e:31:77:0d:f8:11:4e:3a:14:01:15:80:af:5e: ce:d9:22:a4:9b:57:d4:28:19:24:15:b3:f0:2d:44:69:1e:71: dd:6a:03:97:53:5e:ea:b1:9d:d2:e4:d1:7d:98:cb:b2:a8:2f: 37:46:52:a7:1e:46:31:a5:b7:df:ff:e9:f0:ca:7a:c5:e2:fc: 57:76:1c:f6 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUdoSRPkxdYSpCymuP/jhB0gIaDd0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEzMDAzMTA4WhcNMjUwOTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BjY2IwNjdhMDE5MjJhNTYxMDk1OTI4YjdjNzlkM2RhNTQ4 NjU5OGI5ZjY2Y2EyOGRjMDMzZDM1MDM4NGFmNDFmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCLFIKH69J0DzeSP8FS8gTa8RO6gHLJyQTdjy3/9qWRfkm/ LM5MLkBlHC13k7T2LfZvNyMz0gqMQrx68gJnDOXd8o6frEBjAjjPlEHgvO3NBdKV 8YdRp/Cy8U5W8AGorUC/DW2oo38xWhY8FZon8lHlYmZ4wXqqjt/BU2KTPSfBtmif tKEBElZnjLzVEefK2x3edkLNBCDa4FGS8k4lR/Iz6s/r+0I8e6v0K1x3KOLsdjXJ l2hQYsPmGSzTfnfxgwMAxNtc3H5eUioiISZcBR4oZU9g6Nob5Ah9/5Ie8tHio0z2 8ygQpQWzpVyAfka78bzNbNWQLiGhnckGCo+SOhbFAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU2V+okCwMFq9F0YkyFcJbshsnFj8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg0MGRjMzI5LWYxYTUtNDBlYi04MmY2LTdhOWQ1NWVjN2Y4NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwJBCDANBgkqhkiG9w0BAQsFAAOCAQEAJDovKd5QkRhV0uv71KIlw+1hSFbw yujQdutjCVVKy7pIsMwYkaF1Aab0QLaBeqE7Q7SwdMuQAb6dU+K0RgTR41IOzwTD /BJpc4aFW4JStCNZHyg8DPK5M/xC1kB+bjjcf7BN+ZszHmEgFyZULvBYsf6BVlyG XIGktt/E3kgDe+JpBgLvDqWFaq5tcAOZGVB5U+3k6vFaN9kGo89lUqZ3YR+U4Qqg r+afKcAi1wb2JGS4Cr+etSp7tV4xdw34EU46FAEVgK9eztkipJtX1CgZJBWz8C1E aR5x3WoDl1Ne6rGd0uTRfZjLsqgvN0ZSpx5GMaW33//p8Mp6xeL8V3Yc9g== -----END CERTIFICATE-----Generated at Wed Aug 20 10:46:21 2025 by rpki-client