$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/98aa5ac4-1895-4aa6-9175-1ee3bda2890d.roa File: 98aa5ac4-1895-4aa6-9175-1ee3bda2890d.roa (raw, json) Hash identifier: 63gqQPG7EBo+ZeikSgJp5fa1vWSanPUkLXgYTPsok3s= Subject key identifier: 01:AA:32:B1:7E:BF:E1:99:F4:8F:AC:DE:9B:13:68:92:CD:AB:6D:4D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3F457F4DEE9BDCB28673A04E277E84ADBF2F5F20 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/98aa5ac4-1895-4aa6-9175-1ee3bda2890d.roa Signing time: Wed 13 Aug 2025 00:30:57 +0000 ROA not before: Wed 13 Aug 2025 00:30:57 +0000 ROA not after: Wed 17 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 64.252.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:45:7f:4d:ee:9b:dc:b2:86:73:a0:4e:27:7e:84:ad:bf:2f:5f:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 13 00:30:57 2025 GMT Not After : Sep 17 23:59:59 2025 GMT Subject: serialNumber=21c3f7fe9f617790f061e7f1876b3882b02f027b6c001dcafad5140c837a2a94, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:06:ff:4d:ab:33:ed:78:28:58:b5:54:3c:40: 85:eb:bf:bd:3c:e4:8f:1b:26:09:78:9e:9e:cd:33: 0d:e5:cf:ed:c5:e1:05:58:3b:e0:02:3e:09:de:03: b8:15:73:ec:d2:48:9b:62:79:98:40:16:37:75:9e: 22:15:ca:a2:a7:78:78:d6:4b:fa:97:18:de:02:92: 66:42:24:5b:c4:62:d8:bc:72:c1:cf:58:34:3d:80: 2f:b9:9e:5c:de:ab:b7:4c:1e:70:1f:29:f8:c9:1b: b0:74:ab:f5:e1:19:ba:95:ce:87:74:2d:5f:1b:64: 01:b4:b8:40:76:06:db:ce:72:27:36:f7:78:f7:4c: 83:60:f9:3e:c9:f4:59:eb:69:ea:6d:57:25:70:06: 3f:32:46:0d:58:ae:bf:9b:db:12:2f:7b:d4:4c:06: 62:f0:de:3f:03:58:29:b8:b6:b3:db:53:a7:91:31: 26:6d:74:69:e6:73:ff:53:bc:5a:7c:50:d8:da:0f: 23:cd:81:d4:0d:c8:6e:68:6e:f1:b6:77:f9:a0:af: 5d:e3:37:d7:a9:e4:b5:83:e9:12:4c:16:02:2e:54: 86:43:5c:27:48:66:10:62:a5:67:47:bf:f2:34:e8: 08:c2:36:c0:5e:b8:3e:cb:e0:b2:68:56:33:6b:b2: b9:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:AA:32:B1:7E:BF:E1:99:F4:8F:AC:DE:9B:13:68:92:CD:AB:6D:4D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/98aa5ac4-1895-4aa6-9175-1ee3bda2890d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.116.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:26:c1:f0:0a:ec:53:ad:fc:16:a6:1a:92:7d:e2:87:03:ee: ae:78:0b:f3:cd:d8:ca:5d:04:17:26:f1:c5:4d:b3:ad:89:7d: 4d:26:59:ba:58:5b:60:37:9a:33:62:8b:3b:83:3a:41:36:89: 3a:56:11:a1:ad:14:33:02:54:65:ac:d6:ed:36:01:c7:06:05: 8c:a6:3f:13:3c:47:32:c3:8c:c5:50:4f:21:c5:c6:28:0e:ab: 75:19:64:1b:a7:58:74:69:df:27:15:fd:88:c5:90:46:d1:f0: f9:3d:40:a8:90:c1:a0:b4:e5:d3:95:69:f2:7e:6f:57:cf:67: 4e:0a:47:18:9c:b9:22:ef:6f:71:50:2c:f7:81:80:77:d5:ef: 26:78:16:36:f8:d7:23:57:53:38:72:6d:75:07:65:cb:2b:67: 90:78:cf:34:9a:ea:fd:97:bf:d0:ad:2d:5d:7f:ad:91:74:61: 35:4b:a5:60:50:39:ca:2a:bb:ad:d6:3e:d9:99:37:75:73:39: d3:2d:bc:a8:49:28:75:25:1e:6f:00:db:3d:ef:6d:4e:c2:33: f0:82:81:3c:9d:43:10:5b:71:a0:39:cb:31:5e:f2:25:c4:47: bb:1e:2f:f2:e1:dd:cf:0c:59:0c:c7:47:df:de:7f:01:6e:a5: 38:3a:cf:e2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUP0V/Te6b3LKGc6BOJ36Erb8vXyAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEzMDAzMDU3WhcNMjUwOTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMWMzZjdmZTlmNjE3NzkwZjA2MWU3ZjE4NzZiMzg4MmIw MmYwMjdiNmMwMDFkY2FmYWQ1MTQwYzgzN2EyYTk0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCTBv9NqzPteChYtVQ8QIXrv7085I8bJgl4np7NMw3lz+3F 4QVYO+ACPgneA7gVc+zSSJtieZhAFjd1niIVyqKneHjWS/qXGN4CkmZCJFvEYti8 csHPWDQ9gC+5nlzeq7dMHnAfKfjJG7B0q/XhGbqVzod0LV8bZAG0uEB2BtvOcic2 93j3TINg+T7J9FnraeptVyVwBj8yRg1Yrr+b2xIve9RMBmLw3j8DWCm4trPbU6eR MSZtdGnmc/9TvFp8UNjaDyPNgdQNyG5obvG2d/mgr13jN9ep5LWD6RJMFgIuVIZD XCdIZhBipWdHv/I06AjCNsBeuD7L4LJoVjNrsrmHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUAaoysX6/4Zn0j6zemxNoks2rbU0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk4YWE1YWM0LTE4OTUtNGFhNi05MTc1LTFlZTNiZGEyODkwZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA/HQwDQYJKoZIhvcNAQELBQADggEBAEomwfAK7FOt/BamGpJ94ocD7q54 C/PN2MpdBBcm8cVNs62JfU0mWbpYW2A3mjNiizuDOkE2iTpWEaGtFDMCVGWs1u02 AccGBYymPxM8RzLDjMVQTyHFxigOq3UZZBunWHRp3ycV/YjFkEbR8Pk9QKiQwaC0 5dOVafJ+b1fPZ04KRxicuSLvb3FQLPeBgHfV7yZ4Fjb41yNXUzhybXUHZcsrZ5B4 zzSa6v2Xv9CtLV1/rZF0YTVLpWBQOcoqu63WPtmZN3VzOdMtvKhJKHUlHm8A2z3v bU7CM/CCgTydQxBbcaA5yzFe8iXER7seL/Lh3c8MWQzHR9/efwFupTg6z+I= -----END CERTIFICATE-----Generated at Wed Aug 20 10:48:41 2025 by rpki-client