$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f98e5b39-9271-4700-b6e2-c2328787d9f6.roa File: f98e5b39-9271-4700-b6e2-c2328787d9f6.roa (raw, json) Hash identifier: Y70gz8xHEBIRHKpvahBGe3ruW0pjBpxIG3EHwEDnzOI= Subject key identifier: 8B:6D:CF:56:BE:37:DB:EB:B8:C8:92:80:DD:BD:D6:7B:94:CE:38:2A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 139A738C2F55554A2CC14F0D3E1D043D80E04EB9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f98e5b39-9271-4700-b6e2-c2328787d9f6.roa Signing time: Fri 08 Aug 2025 00:00:30 +0000 ROA not before: Fri 08 Aug 2025 00:00:30 +0000 ROA not after: Fri 12 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 151.148.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:9a:73:8c:2f:55:55:4a:2c:c1:4f:0d:3e:1d:04:3d:80:e0:4e:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 8 00:00:30 2025 GMT Not After : Sep 12 23:59:59 2025 GMT Subject: serialNumber=5c455b0a2b204b5c10d86410d535f599773217f2fa32c1ba7603e1a9abee0cc9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:e2:83:f3:ee:0d:18:95:e0:bf:be:da:4d:c7: 01:5c:81:1d:71:c2:3e:28:50:dd:49:f7:5c:52:01: 8f:ce:5d:18:71:cd:89:4b:8b:cb:e4:ad:1b:44:17: f4:dd:1b:ee:a2:73:1d:7b:72:2e:ef:59:16:a0:00: 28:fb:6f:41:3b:1e:6d:67:d5:7d:2d:49:ce:29:8e: 1c:20:a7:70:a5:54:60:5c:ef:9f:8d:d2:e3:e7:de: e0:b6:83:07:f6:63:dc:14:0f:57:12:9f:da:f8:70: 70:54:5c:80:4e:5b:45:c0:4a:b2:9c:a0:60:1b:98: 0f:44:97:aa:76:7e:cc:80:cf:e6:c7:0a:2c:24:5b: ad:20:bc:6b:63:32:2a:99:44:1b:ba:25:9b:e5:3a: 5c:50:34:ba:eb:10:66:7c:8b:a4:ff:ba:a2:66:f1: 34:d3:d9:7e:e2:14:f8:f4:03:f5:d0:1b:99:c6:66: 4c:ea:fc:ac:ef:54:49:09:18:b0:06:2c:55:32:4d: de:03:38:f0:d9:7e:e7:80:03:fe:ad:ca:1e:15:84: c4:11:5a:25:6c:f0:06:7b:47:7d:a2:79:fa:fe:df: 42:0c:21:72:bc:05:04:c2:e2:56:13:cb:2f:21:b4: b0:48:f1:a4:eb:7d:e1:ad:c9:9a:52:fb:89:c4:7e: 03:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:6D:CF:56:BE:37:DB:EB:B8:C8:92:80:DD:BD:D6:7B:94:CE:38:2A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f98e5b39-9271-4700-b6e2-c2328787d9f6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.148.64.0/18 Signature Algorithm: sha256WithRSAEncryption a7:12:93:ed:d1:39:a6:12:da:84:65:11:8e:13:63:26:fa:8f: fc:b9:00:76:0d:dd:a0:08:92:51:ba:e4:29:03:18:a5:9b:ff: b2:ac:8d:94:d5:71:15:48:4a:50:2d:ac:0f:0e:44:0d:08:94: 3b:25:92:f4:93:e4:f7:53:54:71:20:2b:37:d8:5c:bf:08:e8: e3:c6:e2:00:a4:21:44:ea:3e:34:d2:01:89:bd:4d:f2:ae:a4: 7f:d2:c8:1b:fc:0d:91:8a:3a:9e:ed:1e:b5:dc:7f:c4:b0:1a: 68:c9:3d:70:2d:a5:81:ed:25:3d:66:c8:07:94:f9:91:bd:ed: 27:09:39:e3:d1:e6:df:06:69:97:22:16:a1:75:b3:29:36:23: 70:f2:14:4a:b4:ff:00:bb:07:c7:3c:97:84:e3:4b:d3:7e:0f: a3:4f:97:19:13:b0:90:92:7b:9c:ed:7f:ba:a4:a6:0f:b4:9c: d7:fa:ba:d6:e5:f4:1f:9b:2b:01:36:74:02:55:f2:b5:3d:14: 2f:f7:08:37:30:96:90:95:51:6a:e5:95:34:00:8f:c8:f2:81: b0:b3:b6:82:2a:dc:a0:c4:6e:79:f7:af:14:2e:6e:ac:92:34: ff:f0:86:95:2b:25:72:4c:50:d9:74:91:de:40:4e:85:f7:27: 47:fd:03:15 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUE5pzjC9VVUoswU8NPh0EPYDgTrkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA4MDAwMDMwWhcNMjUwOTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A1YzQ1NWIwYTJiMjA0YjVjMTBkODY0MTBkNTM1ZjU5OTc3 MzIxN2YyZmEzMmMxYmE3NjAzZTFhOWFiZWUwY2M5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDP4oPz7g0YleC/vtpNxwFcgR1xwj4oUN1J91xSAY/OXRhx zYlLi8vkrRtEF/TdG+6icx17ci7vWRagACj7b0E7Hm1n1X0tSc4pjhwgp3ClVGBc 75+N0uPn3uC2gwf2Y9wUD1cSn9r4cHBUXIBOW0XASrKcoGAbmA9El6p2fsyAz+bH CiwkW60gvGtjMiqZRBu6JZvlOlxQNLrrEGZ8i6T/uqJm8TTT2X7iFPj0A/XQG5nG Zkzq/KzvVEkJGLAGLFUyTd4DOPDZfueAA/6tyh4VhMQRWiVs8AZ7R32iefr+30IM IXK8BQTC4lYTyy8htLBI8aTrfeGtyZpS+4nEfgOVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUi23PVr432+u4yJKA3b3We5TOOCowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Y5OGU1YjM5LTkyNzEtNDcwMC1iNmUyLWMyMzI4Nzg3ZDlmNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAaXlEAwDQYJKoZIhvcNAQELBQADggEBAKcSk+3ROaYS2oRlEY4TYyb6j/y5 AHYN3aAIklG65CkDGKWb/7KsjZTVcRVISlAtrA8ORA0IlDslkvST5PdTVHEgKzfY XL8I6OPG4gCkIUTqPjTSAYm9TfKupH/SyBv8DZGKOp7tHrXcf8SwGmjJPXAtpYHt JT1myAeU+ZG97ScJOePR5t8GaZciFqF1syk2I3DyFEq0/wC7B8c8l4TjS9N+D6NP lxkTsJCSe5ztf7qkpg+0nNf6utbl9B+bKwE2dAJV8rU9FC/3CDcwlpCVUWrllTQA j8jygbCztoIq3KDEbnn3rxQubqySNP/whpUrJXJMUNl0kd5AToX3J0f9AxU= -----END CERTIFICATE-----Generated at Wed Aug 20 10:47:03 2025 by rpki-client