$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5e89287-6c05-411f-a3e6-fef6be7964e1.roa File: a5e89287-6c05-411f-a3e6-fef6be7964e1.roa (raw, json) Hash identifier: pmQc0FjnLLW9FH9z9pqT1atvs4Mq7s6BJU9FPCQ11lk= Subject key identifier: 05:93:0B:46:6E:79:AC:82:9B:45:80:ED:C9:34:B7:A2:24:8C:8B:6E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 31A1510F82F3DCDA6C2E91C5E97C81453D05E7AE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5e89287-6c05-411f-a3e6-fef6be7964e1.roa Signing time: Tue 02 Sep 2025 00:01:37 +0000 ROA not before: Tue 02 Sep 2025 00:01:37 +0000 ROA not after: Tue 07 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 143.135.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:a1:51:0f:82:f3:dc:da:6c:2e:91:c5:e9:7c:81:45:3d:05:e7:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 2 00:01:37 2025 GMT Not After : Oct 7 23:59:59 2025 GMT Subject: serialNumber=60425e409313fa0967e4a99f5e4ebcc743f232eb1331a10b981e6de4f0902393, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:6c:13:43:8e:db:78:20:a9:2a:49:67:fc:36: b0:a5:cc:05:35:0e:84:68:14:6d:91:59:e5:0a:17: 76:ea:a8:de:01:cd:30:e3:7c:d4:8f:68:0c:90:9c: 9b:f0:f0:c8:f0:a6:63:57:69:75:b9:be:32:60:e6: 11:89:ae:7a:bf:0a:e7:82:0b:65:d8:f5:0b:c8:5e: 45:3b:35:e4:e6:dc:6c:56:b2:cc:0d:0f:6c:11:7c: 66:da:c8:65:e6:b6:b4:66:8b:61:62:0d:ad:60:6b: c5:34:98:cf:0e:2c:2d:37:82:dd:ae:71:7a:32:f2: 59:0d:e5:8f:ec:c9:b3:c6:cb:b6:1a:eb:0e:a9:45: d5:dc:35:f6:63:06:41:09:bc:6e:e1:42:99:4a:2a: 2b:1e:43:1b:a1:cc:58:0b:16:2d:db:61:dd:c2:d7: 4c:2e:45:8e:ca:b8:e7:cd:64:05:ea:29:07:fb:eb: 16:af:c0:ad:f6:cd:61:85:65:40:f7:1f:7e:3d:db: 83:8f:95:3e:4f:94:c7:69:60:33:a3:13:c8:68:a8: ba:eb:ab:84:1b:4b:b6:27:32:d8:b6:89:35:1b:f8: 08:7d:f0:4a:be:79:af:86:a9:18:ff:9b:b7:1b:37: c1:10:1a:a9:25:91:81:68:fd:ef:da:f1:34:70:3f: f2:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:93:0B:46:6E:79:AC:82:9B:45:80:ED:C9:34:B7:A2:24:8C:8B:6E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5e89287-6c05-411f-a3e6-fef6be7964e1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 143.135.0.0/16 Signature Algorithm: sha256WithRSAEncryption 1c:06:c3:1e:5c:b9:91:53:a0:55:7e:bc:ab:97:ac:47:34:9c: 62:34:af:c3:84:55:b2:e7:83:f1:4d:4d:2f:bc:fc:1a:9e:b8: 2e:c7:0c:aa:e5:8d:fb:3d:44:b5:b2:a2:e0:e6:f3:e9:d0:f8: 9f:95:33:5a:48:b7:ba:69:63:13:48:9f:5f:cf:db:ff:14:97: 03:7b:89:ac:b9:92:ca:48:68:ac:3e:c5:8d:04:2e:33:ad:43: 0e:fc:85:8d:7b:df:2c:55:9f:0f:e5:92:f6:40:ab:80:2b:60: b7:14:3f:53:bd:be:a1:18:1d:36:fd:64:d5:c0:57:c4:b4:8e: 44:28:31:82:50:12:41:b5:69:fc:f7:30:76:e0:5d:9c:9b:62: 7e:3f:1e:0d:84:8f:c4:31:c3:fb:9d:e8:1a:a2:25:75:21:bc: b4:e9:c7:f7:d5:5b:e6:f9:a4:60:da:6d:78:94:53:e9:ff:95: 90:a8:3b:79:87:06:ea:98:ae:2d:8b:af:7d:1d:fa:43:a8:8d: 23:fb:c3:b5:9c:e4:ab:14:2d:73:87:2d:ff:1c:d4:d8:f2:bf: 02:37:5c:e7:1d:96:df:75:bd:77:69:ab:5d:6c:9e:74:c1:f5: c4:43:97:39:f5:e1:27:45:13:fc:65:27:a6:b0:74:38:b8:5c: 2e:ee:8b:de -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUMaFRD4Lz3NpsLpHF6XyBRT0F564wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTAyMDAwMTM3WhcNMjUxMDA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A2MDQyNWU0MDkzMTNmYTA5NjdlNGE5OWY1ZTRlYmNjNzQz ZjIzMmViMTMzMWExMGI5ODFlNmRlNGYwOTAyMzkzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClbBNDjtt4IKkqSWf8NrClzAU1DoRoFG2RWeUKF3bqqN4B zTDjfNSPaAyQnJvw8MjwpmNXaXW5vjJg5hGJrnq/CueCC2XY9QvIXkU7NeTm3GxW sswND2wRfGbayGXmtrRmi2FiDa1ga8U0mM8OLC03gt2ucXoy8lkN5Y/sybPGy7Ya 6w6pRdXcNfZjBkEJvG7hQplKKiseQxuhzFgLFi3bYd3C10wuRY7KuOfNZAXqKQf7 6xavwK32zWGFZUD3H34924OPlT5PlMdpYDOjE8hoqLrrq4QbS7YnMti2iTUb+Ah9 8Eq+ea+GqRj/m7cbN8EQGqklkYFo/e/a8TRwP/I5AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUBZMLRm55rIKbRYDtyTS3oiSMi24wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E1ZTg5Mjg3LTZjMDUtNDExZi1hM2U2LWZlZjZiZTc5NjRlMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCPhzANBgkqhkiG9w0BAQsFAAOCAQEAHAbDHly5kVOgVX68q5esRzScYjSv w4RVsueD8U1NL7z8Gp64LscMquWN+z1EtbKi4Obz6dD4n5UzWki3umljE0ifX8/b /xSXA3uJrLmSykhorD7FjQQuM61DDvyFjXvfLFWfD+WS9kCrgCtgtxQ/U72+oRgd Nv1k1cBXxLSORCgxglASQbVp/PcwduBdnJtifj8eDYSPxDHD+53oGqIldSG8tOnH 99Vb5vmkYNpteJRT6f+VkKg7eYcG6piuLYuvfR36Q6iNI/vDtZzkqxQtc4ct/xzU 2PK/Ajdc5x2W33W9d2mrXWyedMH1xEOXOfXhJ0UT/GUnprB0OLhcLu6L3g== -----END CERTIFICATE-----Generated at Sat Sep 6 14:08:51 2025 by rpki-client