$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a08ba7ca-e89d-4d87-8eb3-23f2061ec4f1.roa File: a08ba7ca-e89d-4d87-8eb3-23f2061ec4f1.roa (raw, json) Hash identifier: eK2Y4R942D7tpCH/CqTG6077Wa8vD6Bmuh3IB0Tlu48= Subject key identifier: 70:A8:2C:77:47:D2:9F:98:24:DA:32:36:E0:81:F6:96:65:CE:67:75 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 59C54A617D06A2870206C4566739280BA92F2247 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a08ba7ca-e89d-4d87-8eb3-23f2061ec4f1.roa Signing time: Fri 22 Aug 2025 00:21:00 +0000 ROA not before: Fri 22 Aug 2025 00:21:00 +0000 ROA not after: Fri 26 Sep 2025 23:59:59 +0000 asID: 8987 IP address blocks: 16.64.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:c5:4a:61:7d:06:a2:87:02:06:c4:56:67:39:28:0b:a9:2f:22:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 22 00:21:00 2025 GMT Not After : Sep 26 23:59:59 2025 GMT Subject: serialNumber=3a119d6439548a96f2bda6734e500a72923b827db9d5158a9a58586989f35a03, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:0e:66:80:54:37:3f:87:23:7f:80:c2:97:b8: c4:1b:88:5a:c6:5a:5c:ff:91:d3:95:86:65:c3:6f: af:9a:22:e2:ba:88:7f:31:27:9d:1e:84:b9:b6:9c: af:1f:83:66:4d:a2:9c:7c:fa:e5:02:20:d6:6a:a8: a0:54:d4:d2:51:cb:73:60:c1:65:15:3d:6b:66:d2: d4:5d:d3:d1:35:77:7e:06:b3:91:89:62:17:35:69: b6:56:09:dd:5f:e9:94:46:40:84:1b:8a:36:06:05: 5c:b1:5f:28:89:6e:11:9a:0d:8d:d0:c5:71:0b:73: e6:b8:24:6a:03:97:c9:f8:87:a9:f8:2b:50:ee:59: 73:7c:fb:98:b9:fd:92:df:dd:65:b0:59:3a:07:09: d2:29:a5:6a:03:12:8d:11:45:60:61:34:f1:2b:47: 59:22:0a:2d:3b:dc:01:00:29:0a:b1:77:6f:85:b9: b2:bf:5a:25:ea:44:cb:e4:60:97:31:59:c8:26:39: dd:fb:54:6f:3c:ce:5f:b5:d8:15:5c:51:9f:53:50: 95:54:2e:81:50:07:b6:a9:fe:89:7f:b5:06:0f:89: f5:5b:fd:4a:4b:86:7f:39:28:6d:12:c9:f5:2e:17: 7d:11:f7:6e:d4:d5:f8:92:a1:25:21:a1:47:d0:f4: 08:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:A8:2C:77:47:D2:9F:98:24:DA:32:36:E0:81:F6:96:65:CE:67:75 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a08ba7ca-e89d-4d87-8eb3-23f2061ec4f1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.64.0.0/17 Signature Algorithm: sha256WithRSAEncryption d7:17:d0:13:91:e5:32:b6:7e:1a:ec:3f:41:3d:d1:c4:25:b0: 40:96:67:0e:47:51:f4:d9:96:f4:96:83:59:4b:54:4d:f7:59: 10:e9:1f:85:53:14:8f:a6:54:1e:cf:2d:a1:39:fa:31:20:c9: f9:c7:96:3f:83:3e:9f:6c:3e:c8:0c:37:48:4c:a2:a9:19:f0: 27:68:05:38:37:bf:fc:17:70:fc:32:44:5a:5a:a6:c0:ff:c7: f0:54:d9:78:5c:81:33:03:43:48:9a:9e:fb:6a:ed:f3:17:9a: ce:40:a4:e5:81:99:ac:87:a6:04:98:f4:90:99:7f:62:b6:4b: be:c3:30:b5:d6:76:03:55:80:4f:1c:c6:73:9a:7c:4c:2a:75: 33:86:25:17:bb:b5:96:56:cb:db:08:99:f3:e7:7c:8c:36:7a: ba:cf:db:9f:b9:00:e7:ac:85:d9:9f:52:26:43:c8:e3:7b:82: 14:13:df:6b:00:87:df:b7:ae:1c:4c:74:ce:77:55:9f:5a:00: 4f:75:da:a1:4e:cd:13:1e:e5:87:bb:5e:ba:c7:40:b5:2d:a2: 44:11:13:d1:95:00:5a:5d:0a:62:9f:1b:7b:5d:73:c5:2f:1f: 43:ee:65:e4:90:2f:b0:06:3b:bc:d6:b4:78:e5:a3:29:31:31: bb:4a:67:e9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWcVKYX0GoocCBsRWZzkoC6kvIkcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODIyMDAyMTAwWhcNMjUwOTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AzYTExOWQ2NDM5NTQ4YTk2ZjJiZGE2NzM0ZTUwMGE3Mjky M2I4MjdkYjlkNTE1OGE5YTU4NTg2OTg5ZjM1YTAzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDtDmaAVDc/hyN/gMKXuMQbiFrGWlz/kdOVhmXDb6+aIuK6 iH8xJ50ehLm2nK8fg2ZNopx8+uUCINZqqKBU1NJRy3NgwWUVPWtm0tRd09E1d34G s5GJYhc1abZWCd1f6ZRGQIQbijYGBVyxXyiJbhGaDY3QxXELc+a4JGoDl8n4h6n4 K1DuWXN8+5i5/ZLf3WWwWToHCdIppWoDEo0RRWBhNPErR1kiCi073AEAKQqxd2+F ubK/WiXqRMvkYJcxWcgmOd37VG88zl+12BVcUZ9TUJVULoFQB7ap/ol/tQYPifVb /UpLhn85KG0SyfUuF30R927U1fiSoSUhoUfQ9AgBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUcKgsd0fSn5gk2jI24IH2lmXOZ3UwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2EwOGJhN2NhLWU4OWQtNGQ4Ny04ZWIzLTIzZjIwNjFlYzRmMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcQQAAwDQYJKoZIhvcNAQELBQADggEBANcX0BOR5TK2fhrsP0E90cQlsECW Zw5HUfTZlvSWg1lLVE33WRDpH4VTFI+mVB7PLaE5+jEgyfnHlj+DPp9sPsgMN0hM oqkZ8CdoBTg3v/wXcPwyRFpapsD/x/BU2XhcgTMDQ0ianvtq7fMXms5ApOWBmayH pgSY9JCZf2K2S77DMLXWdgNVgE8cxnOafEwqdTOGJRe7tZZWy9sImfPnfIw2errP 25+5AOeshdmfUiZDyON7ghQT32sAh9+3rhxMdM53VZ9aAE912qFOzRMe5Ye7XrrH QLUtokQRE9GVAFpdCmKfG3tdc8UvH0PuZeSQL7AGO7zWtHjloykxMbtKZ+k= -----END CERTIFICATE-----Generated at Sat Sep 6 14:11:06 2025 by rpki-client