$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e85e2573-73cc-4d70-be6b-4b61dd0f34b7.roa File: e85e2573-73cc-4d70-be6b-4b61dd0f34b7.roa (raw, json) Hash identifier: zQq5MFayi1c2VqFYYPU0XoFMcZbOw+r9mlm61AZj8kE= Subject key identifier: 72:92:AA:6E:20:C1:32:95:FD:C4:BE:A1:5B:18:26:A3:9F:D2:74:EB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 74586BFEE7164E9DE35B9BA7AB23D1A2EA735995 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e85e2573-73cc-4d70-be6b-4b61dd0f34b7.roa Signing time: Wed 13 Aug 2025 00:40:15 +0000 ROA not before: Wed 13 Aug 2025 00:40:15 +0000 ROA not after: Wed 17 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 68.217.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:58:6b:fe:e7:16:4e:9d:e3:5b:9b:a7:ab:23:d1:a2:ea:73:59:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 13 00:40:15 2025 GMT Not After : Sep 17 23:59:59 2025 GMT Subject: serialNumber=4ea371259261c58e65fc2d3f9df41e18bbc5727055248249493377ba2af590ed, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:83:e5:fa:c3:3e:57:2c:8a:42:24:b3:37:67:df: 3e:0a:9b:88:f7:e8:cb:d9:6f:d0:76:d4:be:8f:ac: cb:ff:f7:36:df:fe:6c:9c:7c:7a:54:23:57:b5:ff: 90:9d:67:06:03:76:25:dc:7e:4b:1b:cd:16:c8:d7: aa:9b:88:9a:18:ac:51:fc:60:9b:f8:98:53:f2:19: 0f:fd:81:c0:45:51:d4:08:cc:52:95:df:68:5d:c8: 9c:ce:69:7f:66:66:46:56:58:0e:d2:bf:93:5b:c6: 79:7a:31:db:09:c6:63:bf:93:ac:5e:f7:e6:a7:b1: d0:e4:6c:28:3a:ed:a2:61:5e:35:38:ab:3a:6d:e5: e8:a2:c7:73:1e:15:42:26:11:e2:ee:7d:29:c3:4b: 00:0f:a1:36:ae:80:52:7e:b6:35:fe:dc:59:cb:b7: 20:55:56:a9:74:47:61:fb:89:e1:63:d4:6d:0f:69: 0e:29:ec:ab:c2:13:3b:fd:12:9c:f3:e5:69:c5:66: 9f:93:ce:d4:b7:25:2c:bc:a2:b8:1a:72:da:34:5d: cf:43:f0:4e:66:94:50:10:95:2b:a5:8a:97:1b:39: 42:25:d4:b1:31:be:78:8c:84:85:6d:71:b1:aa:c4: c9:0f:37:72:d2:32:33:5d:9a:80:e1:4c:53:f7:ad: 3a:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:92:AA:6E:20:C1:32:95:FD:C4:BE:A1:5B:18:26:A3:9F:D2:74:EB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e85e2573-73cc-4d70-be6b-4b61dd0f34b7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 68.217.0.0/16 Signature Algorithm: sha256WithRSAEncryption 67:fc:00:ed:cf:8b:38:d0:dc:ed:b5:1e:b3:c3:9e:0b:ce:39: a5:fb:3c:0c:25:07:e4:02:a4:68:fd:ca:d6:b1:85:df:91:3a: cd:ea:61:67:ae:b4:28:97:cf:19:c2:28:99:a2:3d:6b:4c:c1: fa:51:2c:1d:67:af:02:8e:75:a1:2b:05:e7:86:f2:a0:4d:a2: d6:6a:f5:aa:2b:21:3e:1c:e4:cd:d2:ae:f4:8d:8c:b9:22:60: 66:cb:fb:13:88:88:68:ca:29:19:9b:67:9f:26:a8:76:87:17: a0:50:c0:24:14:0c:17:92:bb:51:de:46:18:0f:78:8d:91:fb: a2:9a:7c:fd:6b:5e:c5:99:b2:d3:5b:54:c1:c9:c2:ae:7f:48: 7a:45:48:f2:92:04:34:4d:fc:9f:a4:81:3d:7f:79:9b:67:ac: cb:76:94:20:17:b8:0c:b9:da:e3:7f:e2:ef:fc:67:e3:e2:5b: 8d:2c:15:9a:09:9d:45:26:6d:7b:b9:39:f3:84:ba:00:40:4d: 22:f2:05:fd:8f:47:ec:e3:c1:6e:5b:42:7a:84:68:23:18:c5: 33:d0:ae:d9:bf:22:30:87:c7:90:03:23:18:e5:1f:c7:1c:5e: 48:98:c3:3a:50:c1:72:09:ad:76:e8:85:96:30:2f:75:c3:7d: 55:a8:a7:fd -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUdFhr/ucWTp3jW5unqyPRoupzWZUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEzMDA0MDE1WhcNMjUwOTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZWEzNzEyNTkyNjFjNThlNjVmYzJkM2Y5ZGY0MWUxOGJi YzU3MjcwNTUyNDgyNDk0OTMzNzdiYTJhZjU5MGVkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCD5frDPlcsikIkszdn3z4Km4j36MvZb9B21L6PrMv/9zbf /mycfHpUI1e1/5CdZwYDdiXcfksbzRbI16qbiJoYrFH8YJv4mFPyGQ/9gcBFUdQI zFKV32hdyJzOaX9mZkZWWA7Sv5Nbxnl6MdsJxmO/k6xe9+ansdDkbCg67aJhXjU4 qzpt5eiix3MeFUImEeLufSnDSwAPoTaugFJ+tjX+3FnLtyBVVql0R2H7ieFj1G0P aQ4p7KvCEzv9Epzz5WnFZp+TztS3JSy8orgacto0Xc9D8E5mlFAQlSulipcbOUIl 1LExvniMhIVtcbGqxMkPN3LSMjNdmoDhTFP3rTrhAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUcpKqbiDBMpX9xL6hWxgmo5/SdOswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U4NWUyNTczLTczY2MtNGQ3MC1iZTZiLTRiNjFkZDBmMzRiNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBE2TANBgkqhkiG9w0BAQsFAAOCAQEAZ/wA7c+LONDc7bUes8OeC845pfs8 DCUH5AKkaP3K1rGF35E6zephZ660KJfPGcIomaI9a0zB+lEsHWevAo51oSsF54by oE2i1mr1qishPhzkzdKu9I2MuSJgZsv7E4iIaMopGZtnnyaodocXoFDAJBQMF5K7 Ud5GGA94jZH7opp8/WtexZmy01tUwcnCrn9IekVI8pIENE38n6SBPX95m2esy3aU IBe4DLna43/i7/xn4+JbjSwVmgmdRSZte7k584S6AEBNIvIF/Y9H7OPBbltCeoRo IxjFM9Cu2b8iMIfHkAMjGOUfxxxeSJjDOlDBcgmtduiFljAvdcN9Vain/Q== -----END CERTIFICATE-----Generated at Wed Aug 20 10:47:00 2025 by rpki-client