$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/97f5c8a5-a13a-4184-ad59-ad948ef2fade.roa File: 97f5c8a5-a13a-4184-ad59-ad948ef2fade.roa (raw, json) Hash identifier: Qc464P0SwKA6ytnUjkO9l/b3KDf8lUOSMCWTu63OYOs= Subject key identifier: D0:24:AF:6C:26:ED:B5:78:1E:C9:96:E9:84:DC:16:2F:43:51:1D:4E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 33905F2DA95F06DC4CEF7BCE48F304FFFFF18BBD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/97f5c8a5-a13a-4184-ad59-ad948ef2fade.roa Signing time: Wed 03 Sep 2025 00:10:31 +0000 ROA not before: Wed 03 Sep 2025 00:10:31 +0000 ROA not after: Wed 08 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 74.186.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:90:5f:2d:a9:5f:06:dc:4c:ef:7b:ce:48:f3:04:ff:ff:f1:8b:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 3 00:10:31 2025 GMT Not After : Oct 8 23:59:59 2025 GMT Subject: serialNumber=1efc624364b8c0864d5d2b899642454e33354109e42cb299e37557dd5478f188, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:46:fe:c3:19:7e:18:f4:4c:66:ae:80:84:c1: 1a:68:b4:19:70:ab:18:f5:4a:60:1c:33:fc:39:7e: 90:53:d2:93:54:be:ab:d8:fa:42:72:d9:18:7b:c8: 47:3d:6d:58:12:20:71:9c:ac:9e:a4:7b:11:e4:fb: 8c:63:34:2c:1e:96:aa:5b:80:65:6c:7c:29:99:6b: 77:24:a3:b6:ad:3f:a9:22:2d:b7:11:c0:2b:bc:0c: 1d:35:bf:68:91:fa:1d:20:de:83:9b:ca:03:09:e9: 44:bc:42:a0:2d:69:fe:e1:a2:fd:13:dd:41:36:1f: c7:45:ab:33:d7:46:fa:b0:50:e4:cc:22:3a:b2:16: f5:cf:45:b0:b8:64:25:93:4a:97:dc:7f:35:da:a2: b3:50:39:0e:6e:e9:4b:9e:eb:83:d8:e6:f2:dd:66: ff:0e:3d:7a:6c:9f:2c:4a:c0:e4:40:b6:71:f3:8b: 1e:01:86:92:10:ef:06:4d:f9:72:95:30:25:38:de: 90:6b:de:e1:65:da:b8:6f:68:77:da:ce:2e:d2:47: a9:ac:85:87:13:59:4b:67:c6:8e:9a:ea:d2:6e:65: e8:c2:ff:da:f5:43:d2:12:e3:d4:5b:13:4c:6d:4d: 55:8c:7e:a0:7a:a9:58:96:bd:58:e1:6c:10:24:d0: 83:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:24:AF:6C:26:ED:B5:78:1E:C9:96:E9:84:DC:16:2F:43:51:1D:4E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/97f5c8a5-a13a-4184-ad59-ad948ef2fade.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 74.186.0.0/16 Signature Algorithm: sha256WithRSAEncryption d6:ac:4a:31:eb:df:2c:70:a6:42:98:18:08:98:57:f4:93:e3: 0d:b8:b5:91:12:5d:ba:30:bd:fe:a8:69:f7:7b:ce:fb:95:00: ce:20:b0:46:5a:1c:4a:11:bf:c6:0d:c9:55:27:21:bc:42:5f: ee:87:27:f0:c3:af:95:89:86:57:47:4c:ef:0f:80:57:30:ed: b3:67:6f:e1:c3:0c:45:a4:e4:ab:b7:e8:bb:49:ca:12:91:2e: 49:bd:e9:b7:a0:60:71:02:20:4a:f7:7d:11:f7:89:a7:72:7e: d2:00:cf:71:40:ff:e3:01:7b:03:90:b6:ae:67:cc:ee:47:1a: 48:4f:14:7f:f0:e3:b2:8c:a7:db:21:49:a8:cb:76:3e:67:e6: df:3f:59:f5:e0:57:b2:d5:1a:ae:f9:79:22:12:6f:c3:29:c5: 92:be:2a:b0:48:8c:2e:da:04:a0:5a:51:08:4b:cc:83:05:52: 73:1c:73:0e:f9:b3:78:85:ce:d1:92:66:aa:0a:de:88:70:ca: 27:4c:48:1e:c7:3e:88:1c:4c:9b:0d:ab:e7:6d:6a:69:b2:01: eb:ce:04:bf:a7:de:da:5d:6b:88:17:9f:64:d1:6f:88:cc:0a: 3f:e5:88:0f:2c:6a:b3:60:c6:3b:b4:5f:9b:1a:3c:bc:f2:cb: 27:56:03:5f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUM5BfLalfBtxM73vOSPME///xi70wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTAzMDAxMDMxWhcNMjUxMDA4MjM1OTU5 WjB6MUkwRwYDVQQFE0AxZWZjNjI0MzY0YjhjMDg2NGQ1ZDJiODk5NjQyNDU0ZTMz MzU0MTA5ZTQyY2IyOTllMzc1NTdkZDU0NzhmMTg4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDZRv7DGX4Y9ExmroCEwRpotBlwqxj1SmAcM/w5fpBT0pNU vqvY+kJy2Rh7yEc9bVgSIHGcrJ6kexHk+4xjNCwelqpbgGVsfCmZa3cko7atP6ki LbcRwCu8DB01v2iR+h0g3oObygMJ6US8QqAtaf7hov0T3UE2H8dFqzPXRvqwUOTM IjqyFvXPRbC4ZCWTSpfcfzXaorNQOQ5u6Uue64PY5vLdZv8OPXpsnyxKwORAtnHz ix4BhpIQ7wZN+XKVMCU43pBr3uFl2rhvaHfazi7SR6mshYcTWUtnxo6a6tJuZejC /9r1Q9IS49RbE0xtTVWMfqB6qViWvVjhbBAk0IMFAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU0CSvbCbttXgeyZbphNwWL0NRHU4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk3ZjVjOGE1LWExM2EtNDE4NC1hZDU5LWFkOTQ4ZWYyZmFkZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBKujANBgkqhkiG9w0BAQsFAAOCAQEA1qxKMevfLHCmQpgYCJhX9JPjDbi1 kRJdujC9/qhp93vO+5UAziCwRlocShG/xg3JVSchvEJf7ocn8MOvlYmGV0dM7w+A VzDts2dv4cMMRaTkq7fou0nKEpEuSb3pt6BgcQIgSvd9EfeJp3J+0gDPcUD/4wF7 A5C2rmfM7kcaSE8Uf/Djsoyn2yFJqMt2Pmfm3z9Z9eBXstUarvl5IhJvwynFkr4q sEiMLtoEoFpRCEvMgwVScxxzDvmzeIXO0ZJmqgreiHDKJ0xIHsc+iBxMmw2r521q abIB684Ev6fe2l1riBefZNFviMwKP+WIDyxqs2DGO7Rfmxo8vPLLJ1YDXw== -----END CERTIFICATE-----Generated at Sat Sep 6 14:08:27 2025 by rpki-client