$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9467035e-ac22-4ed7-bdeb-771152f3e853.roa File: 9467035e-ac22-4ed7-bdeb-771152f3e853.roa (raw, json) Hash identifier: h7y3QNy2OQ6Lh1DczIvM+33tOe3dqIGQFKq7KVw8pxU= Subject key identifier: 8A:60:D3:AE:0F:EF:D0:1E:61:FD:FF:0B:73:B1:B7:9B:36:24:80:84 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 088D7EC041B4B0D847DC87ECD4EC0037DF09C158 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9467035e-ac22-4ed7-bdeb-771152f3e853.roa Signing time: Tue 05 Aug 2025 00:00:34 +0000 ROA not before: Tue 05 Aug 2025 00:00:34 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 170.68.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:8d:7e:c0:41:b4:b0:d8:47:dc:87:ec:d4:ec:00:37:df:09:c1:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 5 00:00:34 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=18d02dac206e5640fd6eaa302b70d871229a55d11f4083faf01fc39e2802b492, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:2b:47:c7:01:ac:ef:bc:aa:50:24:c5:c6:50: 70:54:09:12:a1:73:02:81:69:6e:4a:67:ca:45:17: 83:67:e6:55:aa:7b:dd:c9:36:88:63:3d:f7:08:60: db:d3:bd:27:3f:f8:e5:21:6c:73:e5:1e:73:af:fb: 08:cb:eb:ab:cc:b8:74:7f:7b:26:7e:3c:ab:69:83: 6d:97:12:46:e1:04:a1:fa:05:00:4d:9e:d8:0a:aa: 9e:1d:6d:4c:9d:5a:d6:bc:c2:2e:e3:ad:23:b6:42: 92:3c:c2:f7:ec:22:b5:ce:19:d1:07:0b:ce:c7:61: fc:a0:bc:57:5a:5b:ff:c6:1e:2c:46:85:43:4c:38: e1:e3:27:7e:a0:04:96:8f:fc:a2:2e:ac:67:9b:7c: bc:44:85:5b:45:44:41:f6:d6:ef:5c:e4:da:0f:25: d9:4d:27:20:0d:60:ba:a9:9e:55:c0:86:e7:81:11: 4a:6b:b6:84:66:f6:e9:cf:55:0a:9a:42:5e:57:f2: d3:1b:ae:37:0b:6e:eb:66:09:ca:bb:d9:4c:e4:66: 16:7f:aa:8d:f2:71:db:f3:57:68:e0:2c:14:79:46: 51:91:4a:23:d8:af:60:d1:29:f1:41:4c:e6:6d:e8: a5:f8:08:3a:15:47:21:d4:9a:39:02:2b:6e:93:ce: 82:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:60:D3:AE:0F:EF:D0:1E:61:FD:FF:0B:73:B1:B7:9B:36:24:80:84 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9467035e-ac22-4ed7-bdeb-771152f3e853.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 170.68.0.0/16 Signature Algorithm: sha256WithRSAEncryption 93:8b:c0:2c:25:fb:3a:58:d8:87:d4:4c:b1:2d:ef:3e:32:94: 0b:0e:3d:20:b6:30:1a:5a:4f:91:74:1a:6e:b2:c0:26:50:7e: 4d:5d:f4:13:22:f2:6a:e8:ee:1d:f5:07:c6:42:ba:11:7d:45: 57:4d:1b:75:89:44:cf:b9:64:71:23:53:ab:b4:1c:14:7a:3b: 3f:2b:13:bc:4c:47:44:5e:f1:90:7e:1e:bd:ed:f6:cd:9b:2c: c8:24:ea:e3:25:49:fd:9f:19:bc:c8:cd:5c:81:49:62:68:a0: 91:9c:45:1c:52:1d:46:c2:c7:52:9a:44:d4:c6:13:f9:fa:0a: bc:cf:bf:44:8b:41:99:dd:33:2e:af:3a:b5:df:94:06:88:d6: 42:a5:a6:9f:8a:db:d9:06:3f:fd:70:78:5b:b7:77:a2:fb:66: 59:f2:81:b2:3c:17:03:00:b4:cb:2c:8e:51:22:6a:10:1b:d8: 34:d8:27:18:1b:c1:3b:a5:e2:87:82:9e:63:60:0e:f3:dd:7f: 75:b1:b9:53:9f:a0:7c:fd:60:fa:fa:9e:77:49:3b:75:b3:51: d3:0b:3f:f8:4c:4f:b0:10:91:19:96:7c:81:c3:0a:e7:05:17: fa:93:17:63:02:ee:fa:df:bc:cd:45:5d:28:13:fb:44:0b:5a: ff:23:7a:7f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUCI1+wEG0sNhH3Ifs1OwAN98JwVgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA1MDAwMDM0WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AxOGQwMmRhYzIwNmU1NjQwZmQ2ZWFhMzAyYjcwZDg3MTIy OWE1NWQxMWY0MDgzZmFmMDFmYzM5ZTI4MDJiNDkyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCGK0fHAazvvKpQJMXGUHBUCRKhcwKBaW5KZ8pFF4Nn5lWq e93JNohjPfcIYNvTvSc/+OUhbHPlHnOv+wjL66vMuHR/eyZ+PKtpg22XEkbhBKH6 BQBNntgKqp4dbUydWta8wi7jrSO2QpI8wvfsIrXOGdEHC87HYfygvFdaW//GHixG hUNMOOHjJ36gBJaP/KIurGebfLxEhVtFREH21u9c5NoPJdlNJyANYLqpnlXAhueB EUprtoRm9unPVQqaQl5X8tMbrjcLbutmCcq72UzkZhZ/qo3ycdvzV2jgLBR5RlGR SiPYr2DRKfFBTOZt6KX4CDoVRyHUmjkCK26TzoJ1AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUimDTrg/v0B5h/f8Lc7G3mzYkgIQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk0NjcwMzVlLWFjMjItNGVkNy1iZGViLTc3MTE1MmYzZTg1My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCqRDANBgkqhkiG9w0BAQsFAAOCAQEAk4vALCX7OljYh9RMsS3vPjKUCw49 ILYwGlpPkXQabrLAJlB+TV30EyLyaujuHfUHxkK6EX1FV00bdYlEz7lkcSNTq7Qc FHo7PysTvExHRF7xkH4eve32zZssyCTq4yVJ/Z8ZvMjNXIFJYmigkZxFHFIdRsLH UppE1MYT+foKvM+/RItBmd0zLq86td+UBojWQqWmn4rb2QY//XB4W7d3ovtmWfKB sjwXAwC0yyyOUSJqEBvYNNgnGBvBO6Xih4KeY2AO891/dbG5U5+gfP1g+vqed0k7 dbNR0ws/+ExPsBCRGZZ8gcMK5wUX+pMXYwLu+t+8zUVdKBP7RAta/yN6fw== -----END CERTIFICATE-----Generated at Wed Aug 20 13:19:28 2025 by rpki-client