$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f242a843-e5ef-4329-a630-1bbe90e85499.roa File: f242a843-e5ef-4329-a630-1bbe90e85499.roa (raw, json) Hash identifier: AVwhk+UY41wG14yL+I9YRWV89qcdrd70Q+XVhajxDP4= Subject key identifier: CA:31:50:03:83:68:08:3F:68:93:6F:72:1F:05:33:87:B8:7E:14:0E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 460C7330A6490255DC65AA8A9E51DC3B87DD9561 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f242a843-e5ef-4329-a630-1bbe90e85499.roa Signing time: Fri 29 Aug 2025 15:20:32 +0000 ROA not before: Fri 29 Aug 2025 15:20:32 +0000 ROA not after: Fri 03 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 161.178.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:0c:73:30:a6:49:02:55:dc:65:aa:8a:9e:51:dc:3b:87:dd:95:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 29 15:20:32 2025 GMT Not After : Oct 3 23:59:59 2025 GMT Subject: serialNumber=2284fe11589ac766a96718803274e4bff25f09e65948ed5994cfe0d70e79f379, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:fe:39:6b:85:7a:f1:c6:d5:ef:20:f6:a4:dc: bf:80:b6:c4:68:e9:fb:da:5f:68:65:c6:ad:b7:da: c4:36:91:c6:a9:a0:fe:5d:da:f8:81:76:5a:0c:97: f2:ed:9f:54:54:74:8d:36:11:19:a2:7f:aa:1d:37: 42:92:c1:39:6c:8f:3c:41:91:42:14:6b:92:d1:2a: de:2e:39:a8:37:9e:43:be:74:d4:29:37:70:24:29: a3:aa:fe:3c:42:ef:29:60:66:37:ee:63:63:da:ae: 35:b9:54:94:a4:89:42:08:d8:25:fd:b7:49:de:40: 62:4e:9b:7a:45:c7:04:71:31:a5:87:04:a9:49:9c: f1:c3:aa:48:a2:ea:64:60:d1:8f:c1:ab:8c:fc:d0: 28:34:67:6e:d2:77:9b:80:97:75:3e:5a:a1:08:fe: df:54:f2:3f:de:47:ca:d9:40:e1:76:af:b4:96:25: fe:be:24:d1:cf:92:b4:59:01:59:8d:6f:39:6b:a9: cd:ea:6e:df:04:a8:7e:ab:7b:25:c9:5f:8f:08:e0: a7:2a:26:e0:aa:d7:b3:e0:01:c2:1e:98:3a:a5:0b: e0:40:e4:82:3a:7f:81:2f:b0:85:dd:cf:16:7e:2d: 7b:5f:5e:c7:77:c2:b8:60:14:2e:de:70:86:22:49: 07:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:31:50:03:83:68:08:3F:68:93:6F:72:1F:05:33:87:B8:7E:14:0E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f242a843-e5ef-4329-a630-1bbe90e85499.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 161.178.32.0/19 Signature Algorithm: sha256WithRSAEncryption 94:f7:7b:93:51:44:58:90:15:ba:3c:8d:81:47:9a:f2:56:6b: 4d:6d:10:04:a8:71:2b:bf:31:c6:18:ff:32:99:68:c9:e6:9f: 9b:b7:37:89:2e:22:29:dd:ec:bf:a5:f8:62:fa:e6:30:e6:34: d3:c7:a4:ea:8d:6c:6c:ba:b7:a5:5f:47:90:25:37:75:9a:2f: 5a:cb:b1:5a:8d:fc:18:d9:ce:17:43:ec:e3:41:3b:2e:c4:5d: 96:d0:99:24:bc:5d:08:14:16:bc:68:39:d0:fd:01:fd:11:81: 5f:77:6e:e9:6f:1e:21:c9:9a:f3:f1:cf:b5:bc:5b:9d:7f:18: 3b:c3:dd:f8:5d:fc:2a:05:ca:ca:06:c6:64:bb:75:db:f9:0d: f4:4a:0e:7b:6c:c2:5a:4a:4c:a5:ba:91:5e:1b:3a:f1:aa:9c: d7:af:ec:aa:6c:29:66:05:74:bf:8f:71:9b:9e:2a:ae:c1:cd: 7b:48:81:9b:7c:ec:cb:9d:e8:00:48:4d:58:fb:66:1f:a3:ae: bd:97:73:65:ca:99:a1:f3:67:ba:8e:0b:0a:29:4c:93:f2:f9: d1:15:b8:1e:27:56:5d:7e:02:20:b3:02:63:1a:e0:e0:f8:0a: 32:af:b8:73:b1:2c:1c:ed:d2:ec:d5:32:86:e1:8f:9a:a7:a8: d5:40:32:e7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURgxzMKZJAlXcZaqKnlHcO4fdlWEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI5MTUyMDMyWhcNMjUxMDAzMjM1OTU5 WjB6MUkwRwYDVQQFE0AyMjg0ZmUxMTU4OWFjNzY2YTk2NzE4ODAzMjc0ZTRiZmYy NWYwOWU2NTk0OGVkNTk5NGNmZTBkNzBlNzlmMzc5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDF/jlrhXrxxtXvIPak3L+AtsRo6fvaX2hlxq232sQ2kcap oP5d2viBdloMl/Ltn1RUdI02ERmif6odN0KSwTlsjzxBkUIUa5LRKt4uOag3nkO+ dNQpN3AkKaOq/jxC7ylgZjfuY2ParjW5VJSkiUII2CX9t0neQGJOm3pFxwRxMaWH BKlJnPHDqkii6mRg0Y/Bq4z80Cg0Z27Sd5uAl3U+WqEI/t9U8j/eR8rZQOF2r7SW Jf6+JNHPkrRZAVmNbzlrqc3qbt8EqH6reyXJX48I4KcqJuCq17PgAcIemDqlC+BA 5II6f4EvsIXdzxZ+LXtfXsd3wrhgFC7ecIYiSQfFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUyjFQA4NoCD9ok29yHwUzh7h+FA4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YyNDJhODQzLWU1ZWYtNDMyOS1hNjMwLTFiYmU5MGU4NTQ5OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAWhsiAwDQYJKoZIhvcNAQELBQADggEBAJT3e5NRRFiQFbo8jYFHmvJWa01t EASocSu/McYY/zKZaMnmn5u3N4kuIind7L+l+GL65jDmNNPHpOqNbGy6t6VfR5Al N3WaL1rLsVqN/BjZzhdD7ONBOy7EXZbQmSS8XQgUFrxoOdD9Af0RgV93bulvHiHJ mvPxz7W8W51/GDvD3fhd/CoFysoGxmS7ddv5DfRKDntswlpKTKW6kV4bOvGqnNev 7KpsKWYFdL+PcZueKq7BzXtIgZt87Mud6ABITVj7Zh+jrr2Xc2XKmaHzZ7qOCwop TJPy+dEVuB4nVl1+AiCzAmMa4OD4CjKvuHOxLBzt0uzVMobhj5qnqNVAMuc= -----END CERTIFICATE-----Generated at Sat Sep 6 14:19:51 2025 by rpki-client