$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d8fadca1-ece1-4fd9-8c0c-44964044b286.roa File: d8fadca1-ece1-4fd9-8c0c-44964044b286.roa (raw, json) Hash identifier: GQO282+Js/w585Aly+//PkEEp5BKAhF1tx8J6ebyRXg= Subject key identifier: 3F:3C:1D:8B:9F:68:BE:AC:B6:87:8C:F7:79:C5:11:23:13:2A:53:94 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6CEEFD2BC31FD483C4851EBA3AFB2B65EC820499 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d8fadca1-ece1-4fd9-8c0c-44964044b286.roa Signing time: Wed 06 Aug 2025 00:10:57 +0000 ROA not before: Wed 06 Aug 2025 00:10:57 +0000 ROA not after: Wed 10 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 142.54.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:ee:fd:2b:c3:1f:d4:83:c4:85:1e:ba:3a:fb:2b:65:ec:82:04:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 6 00:10:57 2025 GMT Not After : Sep 10 23:59:59 2025 GMT Subject: serialNumber=064970abb731e22c2ff2ca92b40d0dbf924eb3d895b0913179d7cd51e0c5b9f9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:db:35:a2:68:68:e0:b4:15:7e:81:47:a9:69: 92:8c:06:41:ec:ba:25:04:41:4b:54:e5:4d:2f:2a: 64:d1:43:90:46:9a:37:c4:15:2a:59:d5:2e:62:ef: a0:cd:f5:2e:07:82:15:30:04:77:7e:b5:da:76:74: 5f:c9:f3:49:ae:df:a0:ad:3b:22:a2:d4:f4:e7:d5: 7d:25:6c:0e:ca:77:f7:4b:f2:ab:25:78:9c:10:24: 9b:3b:a4:54:94:23:cb:56:55:9f:fd:82:2c:0e:17: 1b:66:64:e0:c6:86:fa:de:47:fe:2d:e6:25:3b:b4: fe:c0:ed:71:bc:6f:e9:69:ac:51:29:8b:f7:87:f7: 6d:d0:29:2d:6b:70:8f:b8:df:f9:c8:ef:81:2a:5a: a2:a5:1c:f8:96:c3:b8:02:cd:7d:f7:e3:42:7c:f8: 15:e3:a3:8e:f4:b1:c1:45:c3:63:7a:f2:8a:bf:16: 30:e1:9e:df:3d:f1:e7:a8:0a:45:55:13:b1:3a:1c: 60:69:25:d2:85:18:97:3b:cf:79:53:b1:d8:46:56: e2:ec:bd:94:22:65:f2:d0:45:82:17:ab:6a:36:64: e8:a4:df:33:92:68:1f:2f:77:81:c4:31:a2:f5:29: 1d:aa:f5:e6:7c:1e:9b:53:ac:b6:9a:c4:5d:43:a3: 61:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:3C:1D:8B:9F:68:BE:AC:B6:87:8C:F7:79:C5:11:23:13:2A:53:94 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d8fadca1-ece1-4fd9-8c0c-44964044b286.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 142.54.128.0/19 Signature Algorithm: sha256WithRSAEncryption 10:39:5e:46:1f:b8:ae:ed:ac:55:2c:22:c5:7c:c5:01:e1:58: 39:b0:64:a5:a5:cc:bb:2e:ac:54:d6:71:c2:d8:04:45:a9:a1: 0f:8a:bc:dc:26:6d:b9:9f:ba:4f:c2:52:fb:51:78:e7:fd:fc: 4a:2a:a1:db:1c:36:fa:77:8e:b0:97:16:af:c4:2e:57:4c:0e: 3a:14:d7:1c:d9:19:eb:6a:57:cd:ec:12:d0:10:68:25:a3:84: 1f:e6:6a:73:12:2e:a2:91:e1:8a:93:a9:9e:a4:a4:26:48:c9: 58:17:1c:b8:d1:87:fc:7b:37:48:d4:82:87:dc:d6:49:3c:b6: e0:b6:76:89:64:35:29:d1:f2:bf:31:a1:80:a8:e4:ba:9b:7e: 3a:87:df:30:60:b1:e2:99:a3:91:19:48:d1:4a:12:d9:69:28: 04:44:e6:71:1f:87:03:6c:0e:9b:6d:b0:1d:64:0f:4b:f2:3c: 32:78:47:e8:96:ae:68:d1:4d:58:fb:ef:e7:5d:02:47:12:df: 71:71:2b:54:1b:03:05:0e:9f:a9:35:d4:cd:a6:d2:6e:7b:b9: 59:3e:bd:f2:60:a7:0b:c3:92:58:68:c6:50:7a:69:f3:14:de: 87:5f:4f:83:43:a9:b5:bd:37:0c:8b:98:24:94:f8:9b:05:5d: f0:e5:c2:21 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbO79K8Mf1IPEhR66OvsrZeyCBJkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA2MDAxMDU3WhcNMjUwOTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AwNjQ5NzBhYmI3MzFlMjJjMmZmMmNhOTJiNDBkMGRiZjky NGViM2Q4OTViMDkxMzE3OWQ3Y2Q1MWUwYzViOWY5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCd2zWiaGjgtBV+gUepaZKMBkHsuiUEQUtU5U0vKmTRQ5BG mjfEFSpZ1S5i76DN9S4HghUwBHd+tdp2dF/J80mu36CtOyKi1PTn1X0lbA7Kd/dL 8qsleJwQJJs7pFSUI8tWVZ/9giwOFxtmZODGhvreR/4t5iU7tP7A7XG8b+lprFEp i/eH923QKS1rcI+43/nI74EqWqKlHPiWw7gCzX3340J8+BXjo470scFFw2N68oq/ FjDhnt898eeoCkVVE7E6HGBpJdKFGJc7z3lTsdhGVuLsvZQiZfLQRYIXq2o2ZOik 3zOSaB8vd4HEMaL1KR2q9eZ8HptTrLaaxF1Do2E/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUPzwdi59ovqy2h4z3ecURIxMqU5QwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q4ZmFkY2ExLWVjZTEtNGZkOS04YzBjLTQ0OTY0MDQ0YjI4Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAWONoAwDQYJKoZIhvcNAQELBQADggEBABA5XkYfuK7trFUsIsV8xQHhWDmw ZKWlzLsurFTWccLYBEWpoQ+KvNwmbbmfuk/CUvtReOf9/EoqodscNvp3jrCXFq/E LldMDjoU1xzZGetqV83sEtAQaCWjhB/manMSLqKR4YqTqZ6kpCZIyVgXHLjRh/x7 N0jUgofc1kk8tuC2dolkNSnR8r8xoYCo5LqbfjqH3zBgseKZo5EZSNFKEtlpKARE 5nEfhwNsDpttsB1kD0vyPDJ4R+iWrmjRTVj77+ddAkcS33FxK1QbAwUOn6k11M2m 0m57uVk+vfJgpwvDklhoxlB6afMU3odfT4NDqbW9NwyLmCSU+JsFXfDlwiE= -----END CERTIFICATE-----Generated at Wed Aug 20 10:44:15 2025 by rpki-client