$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dff8c68e-92cf-4970-bec5-0fb3666b27a5.roa File: dff8c68e-92cf-4970-bec5-0fb3666b27a5.roa (raw, json) Hash identifier: vvjKSXOsABcmrV8z7qyP48bXb/E09ZyV0v18TAQD6E0= Subject key identifier: F8:0C:63:DA:FE:DF:56:F9:79:E6:A6:06:3A:34:FC:ED:CF:09:E9:BB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 23A9849631EBD1B721A93EE12C9CE9D462036BD4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dff8c68e-92cf-4970-bec5-0fb3666b27a5.roa Signing time: Wed 06 Aug 2025 00:10:57 +0000 ROA not before: Wed 06 Aug 2025 00:10:57 +0000 ROA not after: Wed 10 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 146.130.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:a9:84:96:31:eb:d1:b7:21:a9:3e:e1:2c:9c:e9:d4:62:03:6b:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 6 00:10:57 2025 GMT Not After : Sep 10 23:59:59 2025 GMT Subject: serialNumber=55a6b73973302ef0aaf24df99df53a0864dfb3e4f7432582c01f17262fd8fc7a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:7e:50:82:98:9a:89:40:af:47:78:ba:1c:53: 6b:08:87:e2:ac:aa:b8:ed:9d:b7:36:6c:70:93:72: 91:cf:9f:07:6d:ed:62:46:07:8a:76:9c:cb:cd:d7: 96:74:dc:02:ff:64:9a:85:e7:4d:31:38:d6:97:5d: 59:56:e0:84:89:fe:40:39:ed:d1:26:de:bf:0e:6c: d6:14:36:0d:07:dc:02:a3:8b:8d:d8:c3:98:2f:41: 07:40:2b:12:9f:67:44:77:78:5c:c0:09:08:e1:d1: b7:5c:13:26:f0:20:0c:05:f7:26:a1:6e:7d:d2:02: fc:04:24:7d:b3:10:a0:20:4f:5b:a2:b4:87:0e:74: b0:dc:61:50:0c:4d:e2:b0:23:ba:95:c0:38:31:c2: 10:28:e1:8d:f7:01:6c:4b:2e:e4:93:4a:de:61:e0: b1:f4:bc:24:d6:54:0d:57:c2:b8:3e:fb:c0:dc:0e: f7:98:45:cb:55:c5:35:17:9e:97:bf:ab:d0:16:04: d7:55:40:ae:43:21:f5:c6:8c:e5:32:e7:49:eb:f5: df:19:6a:1b:c8:91:4d:aa:fe:fa:ff:ce:b3:c8:af: a8:2e:79:c0:c8:53:8f:ca:c2:8b:a8:31:e4:66:a0: ae:37:6e:c9:2e:08:a6:7d:ac:5d:01:f8:5d:ab:1b: df:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:0C:63:DA:FE:DF:56:F9:79:E6:A6:06:3A:34:FC:ED:CF:09:E9:BB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dff8c68e-92cf-4970-bec5-0fb3666b27a5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 146.130.0.0/16 Signature Algorithm: sha256WithRSAEncryption 7d:a6:90:2a:9e:40:c0:32:79:3d:c3:06:72:64:d4:e3:8f:1a: c4:35:e3:80:33:01:06:8b:18:c8:1f:81:b7:9e:46:b0:ae:7b: d9:78:ee:98:d9:d3:82:41:e9:a0:7f:8c:94:d8:f8:11:55:87: 2c:a3:c8:68:fb:58:b0:79:27:43:eb:c8:9a:26:2d:33:ab:14: 33:6e:a8:db:07:dd:17:b6:8c:a6:c1:a5:2d:e8:42:4e:aa:7a: 81:c4:ad:f2:be:37:28:e8:3d:fe:3d:c6:26:5a:93:13:bf:27: 4c:68:76:14:5d:b0:26:44:7a:37:18:e7:79:af:99:6c:cd:f1: 4e:02:00:22:0b:06:10:dc:88:b1:75:a5:c8:97:ce:ac:14:e1: 44:e1:3f:af:fd:7a:9b:37:1f:0f:29:43:70:9d:7c:23:10:c8: 47:a1:ea:93:26:35:1b:2d:fc:a1:23:02:16:a6:14:c3:67:f9: e2:6f:9d:c9:e9:8b:6a:e9:f9:cf:ff:99:bf:ec:6d:e7:95:7e: 4c:e4:bc:d3:93:cc:d2:82:64:a1:8f:c3:86:26:e9:29:74:0a: 52:ba:c3:cb:76:d6:c6:be:e9:f5:62:66:63:e4:7a:b0:10:5e: 89:c9:71:8b:0c:bd:7a:2c:68:fc:fb:97:74:b1:54:d4:31:20: 9a:71:f7:22 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUI6mEljHr0bchqT7hLJzp1GIDa9QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA2MDAxMDU3WhcNMjUwOTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A1NWE2YjczOTczMzAyZWYwYWFmMjRkZjk5ZGY1M2EwODY0 ZGZiM2U0Zjc0MzI1ODJjMDFmMTcyNjJmZDhmYzdhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCYflCCmJqJQK9HeLocU2sIh+Ksqrjtnbc2bHCTcpHPnwdt 7WJGB4p2nMvN15Z03AL/ZJqF500xONaXXVlW4ISJ/kA57dEm3r8ObNYUNg0H3AKj i43Yw5gvQQdAKxKfZ0R3eFzACQjh0bdcEybwIAwF9yahbn3SAvwEJH2zEKAgT1ui tIcOdLDcYVAMTeKwI7qVwDgxwhAo4Y33AWxLLuSTSt5h4LH0vCTWVA1Xwrg++8Dc DveYRctVxTUXnpe/q9AWBNdVQK5DIfXGjOUy50nr9d8ZahvIkU2q/vr/zrPIr6gu ecDIU4/KwouoMeRmoK43bskuCKZ9rF0B+F2rG9/1AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU+Axj2v7fVvl55qYGOjT87c8J6bswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RmZjhjNjhlLTkyY2YtNDk3MC1iZWM1LTBmYjM2NjZiMjdhNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCSgjANBgkqhkiG9w0BAQsFAAOCAQEAfaaQKp5AwDJ5PcMGcmTU448axDXj gDMBBosYyB+Bt55GsK572XjumNnTgkHpoH+MlNj4EVWHLKPIaPtYsHknQ+vImiYt M6sUM26o2wfdF7aMpsGlLehCTqp6gcSt8r43KOg9/j3GJlqTE78nTGh2FF2wJkR6 Nxjnea+ZbM3xTgIAIgsGENyIsXWlyJfOrBThROE/r/16mzcfDylDcJ18IxDIR6Hq kyY1Gy38oSMCFqYUw2f54m+dyemLaun5z/+Zv+xt55V+TOS805PM0oJkoY/Dhibp KXQKUrrDy3bWxr7p9WJmY+R6sBBeiclxiwy9eixo/PuXdLFU1DEgmnH3Ig== -----END CERTIFICATE-----Generated at Wed Aug 20 10:50:05 2025 by rpki-client