$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ad85cb2e-193f-4cc5-be6e-f69071c9985c.roa File: ad85cb2e-193f-4cc5-be6e-f69071c9985c.roa (raw, json) Hash identifier: x4LHaCDFOGKECV0wDCP54pGHwsRYlQE4UAnB9lQNmGY= Subject key identifier: 9C:C2:1F:9E:F4:8F:B0:9B:AA:7B:C4:E2:70:BA:E4:22:65:8F:A0:37 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1B4CED081B09313599ED7FB16B0F942B078E72CF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ad85cb2e-193f-4cc5-be6e-f69071c9985c.roa Signing time: Fri 29 Aug 2025 16:41:07 +0000 ROA not before: Fri 29 Aug 2025 16:41:07 +0000 ROA not after: Fri 03 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 78.13.88.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:4c:ed:08:1b:09:31:35:99:ed:7f:b1:6b:0f:94:2b:07:8e:72:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 29 16:41:07 2025 GMT Not After : Oct 3 23:59:59 2025 GMT Subject: serialNumber=2c3fc9d3394a322d95836c51be0fd7b6fb713a7d77245bf62c85c7bca0da292c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:03:c7:83:ef:b8:07:16:da:f3:9c:5e:63:86: 62:40:31:91:dd:b4:91:66:3e:d3:31:7f:ae:f3:b9: 01:1f:d8:d6:53:c9:7d:29:f3:42:4e:26:b5:ce:26: d3:1b:61:e3:a1:f0:9f:10:71:6f:31:96:7a:46:ab: 37:e5:b0:f4:b7:a0:da:f4:00:6d:4d:cb:4a:a4:ed: 16:7d:c4:c2:5d:2c:c7:2a:e6:10:4b:d9:09:4b:c5: 12:7e:b5:6d:d8:c2:51:7f:4e:2b:32:2b:94:c0:fe: 4c:92:91:12:50:65:b0:ee:fd:cc:72:5c:f0:24:ba: 2f:c1:1f:96:49:20:fb:67:02:29:09:20:3c:e1:80: fc:ae:c8:0c:9b:5b:99:a4:79:3c:18:2a:5e:a3:ff: 39:6c:7c:0b:ed:9f:de:98:c6:58:66:4c:b7:5a:44: b8:6e:49:34:9f:c9:02:3b:68:1c:4d:1a:35:0a:10: 61:b6:78:02:35:9f:fe:d4:e2:c5:ca:74:42:a8:56: 79:e0:19:bc:85:84:06:fe:5e:26:e9:91:9e:47:70: 22:02:85:f7:92:b5:27:1b:22:6b:89:ef:3c:61:70: 29:db:4a:9b:42:aa:e8:be:23:29:59:26:8d:13:97: 04:d1:b4:c5:51:0f:c4:2e:df:e6:0f:98:0a:f1:f8: dc:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:C2:1F:9E:F4:8F:B0:9B:AA:7B:C4:E2:70:BA:E4:22:65:8F:A0:37 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ad85cb2e-193f-4cc5-be6e-f69071c9985c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 78.13.88.0/23 Signature Algorithm: sha256WithRSAEncryption b2:55:b4:dc:bb:3a:06:b5:ad:cb:c3:34:de:b5:f4:33:cd:41: 3a:18:2b:e5:21:2e:fb:be:ab:7a:7c:0b:e5:a6:ff:60:67:1a: a2:c3:58:15:bf:2f:7c:75:fd:2e:22:12:92:27:1c:8a:7b:9e: 6b:c3:f8:99:82:0a:c1:68:4a:31:ab:7d:2a:e7:0a:e3:59:8d: fa:99:49:48:c4:38:fd:f7:60:31:5f:54:87:4d:e6:f9:c9:16: 50:4f:18:cc:36:6b:c8:d0:4a:9a:01:6f:4b:38:66:2c:4a:9e: 7d:c2:07:eb:cf:51:92:d9:31:d2:44:72:48:59:1a:46:88:3c: b6:d5:90:6a:6d:f1:69:67:e0:8a:25:53:44:8f:2a:cb:64:ca: 5f:75:6e:0a:fc:67:88:d4:db:1a:25:90:67:39:90:f6:0c:eb: 70:cc:b1:16:e2:e7:9f:a2:9c:ee:b4:c8:32:c4:95:af:8d:21: d5:88:b6:c1:d5:87:85:3f:7c:fc:b2:b2:25:3d:33:68:fd:e1: 2b:0b:75:74:03:b8:4b:8c:ca:37:88:77:27:cb:06:c7:38:ac: b6:04:bb:c8:cd:41:f5:14:ea:1f:05:43:65:a0:89:49:6c:6d: b4:70:e0:1a:be:74:22:86:03:69:96:5b:c5:df:c9:09:1f:f7: 89:db:bf:c1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUG0ztCBsJMTWZ7X+xaw+UKweOcs8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI5MTY0MTA3WhcNMjUxMDAzMjM1OTU5 WjB6MUkwRwYDVQQFE0AyYzNmYzlkMzM5NGEzMjJkOTU4MzZjNTFiZTBmZDdiNmZi NzEzYTdkNzcyNDViZjYyYzg1YzdiY2EwZGEyOTJjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqA8eD77gHFtrznF5jhmJAMZHdtJFmPtMxf67zuQEf2NZT yX0p80JOJrXOJtMbYeOh8J8QcW8xlnpGqzflsPS3oNr0AG1Ny0qk7RZ9xMJdLMcq 5hBL2QlLxRJ+tW3YwlF/TisyK5TA/kySkRJQZbDu/cxyXPAkui/BH5ZJIPtnAikJ IDzhgPyuyAybW5mkeTwYKl6j/zlsfAvtn96YxlhmTLdaRLhuSTSfyQI7aBxNGjUK EGG2eAI1n/7U4sXKdEKoVnngGbyFhAb+XibpkZ5HcCIChfeStScbImuJ7zxhcCnb SptCqui+IylZJo0TlwTRtMVRD8Qu3+YPmArx+Nw5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUnMIfnvSPsJuqe8TicLrkImWPoDcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FkODVjYjJlLTE5M2YtNGNjNS1iZTZlLWY2OTA3MWM5OTg1Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFODVgwDQYJKoZIhvcNAQELBQADggEBALJVtNy7Oga1rcvDNN619DPNQToY K+UhLvu+q3p8C+Wm/2BnGqLDWBW/L3x1/S4iEpInHIp7nmvD+JmCCsFoSjGrfSrn CuNZjfqZSUjEOP33YDFfVIdN5vnJFlBPGMw2a8jQSpoBb0s4ZixKnn3CB+vPUZLZ MdJEckhZGkaIPLbVkGpt8Wln4IolU0SPKstkyl91bgr8Z4jU2xolkGc5kPYM63DM sRbi55+inO60yDLEla+NIdWItsHVh4U/fPyysiU9M2j94SsLdXQDuEuMyjeIdyfL Bsc4rLYEu8jNQfUU6h8FQ2WgiUlsbbRw4Bq+dCKGA2mWW8XfyQkf94nbv8E= -----END CERTIFICATE-----Generated at Sat Sep 6 14:18:41 2025 by rpki-client