$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bada3e67-c008-4ed4-add1-6c213e7acb37.roa File: bada3e67-c008-4ed4-add1-6c213e7acb37.roa (raw, json) Hash identifier: /8kBCGx3mHuG2h971A/w/ebTnOxTyeTcCXkBHHWEbWw= Subject key identifier: C4:C0:0D:32:7E:DC:83:6E:75:B8:EA:39:96:2F:B8:CD:29:4F:11:9D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 274919925F81690A18E8141FD76EADCC819C2BA1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bada3e67-c008-4ed4-add1-6c213e7acb37.roa Signing time: Wed 27 Aug 2025 00:51:30 +0000 ROA not before: Wed 27 Aug 2025 00:51:30 +0000 ROA not after: Wed 01 Oct 2025 23:59:59 +0000 asID: 7224 IP address blocks: 198.14.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:49:19:92:5f:81:69:0a:18:e8:14:1f:d7:6e:ad:cc:81:9c:2b:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 27 00:51:30 2025 GMT Not After : Oct 1 23:59:59 2025 GMT Subject: serialNumber=ec340215263f5e3e098f0071a4efebbcc76d77d1df50088a72ef376cae147bf7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:6e:7b:33:ce:51:b9:45:b0:6c:8b:a1:f4:3d: c9:48:98:88:2e:52:48:d8:2a:d7:a7:83:18:30:04: 3b:29:92:f6:62:2f:43:66:c1:6f:de:17:4f:14:d5: 57:6e:05:0f:25:aa:ef:02:7b:db:77:64:3f:20:8d: d5:ee:fd:12:c5:6d:6c:34:12:b7:5a:f5:67:d1:3a: 3f:82:10:8a:d6:dc:73:56:c6:07:7a:25:32:4a:19: f3:48:71:f6:af:59:cd:d7:7c:8a:3d:d8:59:e7:ee: 9a:b5:75:fa:f4:3d:6b:b8:eb:cf:bc:70:b7:46:41: f7:73:55:70:e0:6b:60:32:89:fe:3c:43:d0:ef:84: 7f:55:d5:58:90:a4:e0:79:50:cb:24:69:b8:93:5b: fd:f2:e5:0d:c0:64:cc:59:51:01:fd:d0:cc:1d:e7: cc:b8:d8:55:4a:c7:3e:8b:0b:5c:34:38:65:ed:39: 40:b6:79:a3:f3:ba:a3:98:1c:f6:02:c1:86:39:7b: f7:5f:dd:57:4a:55:ef:b5:84:bd:36:b3:89:bc:15: 98:19:8b:c4:48:32:16:b8:29:09:1a:a5:2e:41:4c: b3:da:3f:98:49:64:02:14:55:48:46:53:19:31:ad: b1:fe:09:9b:70:7d:ca:b2:02:79:74:12:2d:cc:6b: 26:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:C0:0D:32:7E:DC:83:6E:75:B8:EA:39:96:2F:B8:CD:29:4F:11:9D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bada3e67-c008-4ed4-add1-6c213e7acb37.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.14.1.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:47:f0:2e:37:84:79:50:0a:2f:5f:c7:b6:63:b7:76:ac:bf: 6c:ec:1d:61:58:00:79:8e:28:81:72:b3:cd:60:08:d2:05:3d: 7d:d4:cd:b6:c1:16:18:3a:c0:09:b5:cb:89:a5:90:75:eb:53: 1c:37:e6:4c:dd:bb:35:91:78:a3:76:0e:2e:56:95:93:61:4a: 72:0f:cd:61:b0:0e:41:a0:fc:df:fe:0e:3c:54:dc:9a:8d:52: 5e:d4:14:46:27:08:8c:4b:7f:91:6e:de:ea:3f:60:a6:af:d2: e2:f7:f7:a1:06:72:5d:7c:8c:1d:fe:49:99:2f:73:31:b6:62: ef:27:9f:2b:5b:82:d2:9b:60:4f:e1:00:85:66:a2:89:78:55: 31:03:1c:f9:f7:92:3c:d0:75:0a:6d:af:7f:cf:0f:5b:19:56: 39:da:67:b2:f5:8a:d5:cb:98:0e:8f:63:43:96:01:b1:9c:79: b3:0d:5b:6b:1c:03:f1:50:31:06:35:98:97:d8:da:ed:2d:5e: c2:f4:b0:24:87:fd:21:8c:c0:aa:fa:f7:c9:f4:47:ce:c1:d0: 9c:d0:91:42:2c:d4:20:13:c5:ff:af:ab:07:3f:cc:49:f5:cd: 9d:be:ee:fa:64:dc:0c:76:ab:cf:bd:ac:92:4a:0c:f9:56:8a: 5d:2b:c2:d0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJ0kZkl+BaQoY6BQf126tzIGcK6EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI3MDA1MTMwWhcNMjUxMDAxMjM1OTU5 WjB6MUkwRwYDVQQFE0BlYzM0MDIxNTI2M2Y1ZTNlMDk4ZjAwNzFhNGVmZWJiY2M3 NmQ3N2QxZGY1MDA4OGE3MmVmMzc2Y2FlMTQ3YmY3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtbnszzlG5RbBsi6H0PclImIguUkjYKtengxgwBDspkvZi L0NmwW/eF08U1VduBQ8lqu8Ce9t3ZD8gjdXu/RLFbWw0Erda9WfROj+CEIrW3HNW xgd6JTJKGfNIcfavWc3XfIo92Fnn7pq1dfr0PWu468+8cLdGQfdzVXDga2Ayif48 Q9DvhH9V1ViQpOB5UMskabiTW/3y5Q3AZMxZUQH90Mwd58y42FVKxz6LC1w0OGXt OUC2eaPzuqOYHPYCwYY5e/df3VdKVe+1hL02s4m8FZgZi8RIMha4KQkapS5BTLPa P5hJZAIUVUhGUxkxrbH+CZtwfcqyAnl0Ei3MayYNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUxMANMn7cg251uOo5li+4zSlPEZ0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JhZGEzZTY3LWMwMDgtNGVkNC1hZGQxLTZjMjEzZTdhY2IzNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGDgEwDQYJKoZIhvcNAQELBQADggEBAGxH8C43hHlQCi9fx7Zjt3asv2zs HWFYAHmOKIFys81gCNIFPX3UzbbBFhg6wAm1y4mlkHXrUxw35kzduzWReKN2Di5W lZNhSnIPzWGwDkGg/N/+DjxU3JqNUl7UFEYnCIxLf5Fu3uo/YKav0uL396EGcl18 jB3+SZkvczG2Yu8nnytbgtKbYE/hAIVmool4VTEDHPn3kjzQdQptr3/PD1sZVjna Z7L1itXLmA6PY0OWAbGcebMNW2scA/FQMQY1mJfY2u0tXsL0sCSH/SGMwKr698n0 R87B0JzQkUIs1CATxf+vqwc/zEn1zZ2+7vpk3Ax2q8+9rJJKDPlWil0rwtA= -----END CERTIFICATE-----Generated at Sat Sep 6 14:08:25 2025 by rpki-client