$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f98e5b39-9271-4700-b6e2-c2328787d9f6.roa File: f98e5b39-9271-4700-b6e2-c2328787d9f6.roa (raw, json) Hash identifier: va796cSmECQmE3/VNCJzvBwdAptI2Vou9Jt4pjDc6mA= Subject key identifier: B0:1E:F2:DE:4F:6E:7A:BE:0F:2B:90:45:49:26:9D:7C:68:60:D0:BA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 59ADF80A8B14D382DFFDCE623CD006A47496BC35 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f98e5b39-9271-4700-b6e2-c2328787d9f6.roa Signing time: Tue 02 Sep 2025 00:01:39 +0000 ROA not before: Tue 02 Sep 2025 00:01:39 +0000 ROA not after: Tue 07 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 151.148.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Sep 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:ad:f8:0a:8b:14:d3:82:df:fd:ce:62:3c:d0:06:a4:74:96:bc:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 2 00:01:39 2025 GMT Not After : Oct 7 23:59:59 2025 GMT Subject: serialNumber=aefb8e6ed919012953971cbc4be96358972609255859127f36ae2202d61f5093, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:67:27:1d:8d:9d:38:f5:69:91:c3:72:c4:9a: fc:eb:fd:f9:be:a4:a1:84:54:59:1a:b7:47:2c:61: cd:9c:04:22:5d:bf:ec:f7:82:af:25:24:14:8b:2c: 82:e1:f0:2f:81:3b:62:99:12:c0:45:4d:39:17:5a: 64:02:65:95:74:b7:f0:7d:a9:0e:94:72:73:de:b4: 44:25:d5:96:ed:dc:6d:b1:f0:f1:9b:3e:5c:92:9b: 23:35:d2:65:14:bb:5f:39:e9:00:1c:5e:7a:72:94: f4:81:81:c5:c6:71:b6:bd:89:69:1c:60:57:69:ca: a3:cd:a8:21:12:e6:8f:c1:9c:02:93:85:2a:75:a1: f6:d9:03:80:02:06:92:2f:fe:e1:cb:8a:7f:f8:08: 79:38:67:53:d6:16:1a:b5:2e:f3:38:43:26:d7:57: 99:10:15:9b:5c:63:ce:6f:e1:13:29:4a:a9:49:b1: 9e:6b:3c:23:58:77:81:12:ef:c8:44:94:3e:c0:59: 5e:b7:5e:98:7f:cd:40:5e:1d:24:a1:e6:dd:fe:86: 1b:3a:8c:b1:3a:98:f7:8e:25:98:14:e0:50:e4:c1: c3:5d:4a:d4:1c:6b:0f:1f:7b:fe:e3:5a:64:d7:58: aa:11:3f:04:12:4c:ae:b9:d8:22:fd:41:31:03:66: da:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:1E:F2:DE:4F:6E:7A:BE:0F:2B:90:45:49:26:9D:7C:68:60:D0:BA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f98e5b39-9271-4700-b6e2-c2328787d9f6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.148.64.0/18 Signature Algorithm: sha256WithRSAEncryption 4f:54:54:5e:cd:bc:ee:20:a5:10:87:d8:8e:d3:b3:40:e4:25: 5e:01:28:16:76:39:60:f2:cd:a3:f5:55:c3:e7:4f:13:cc:2a: 16:ce:59:68:c3:9a:5c:06:f1:c8:f0:2e:88:ed:75:14:a8:c4: 0f:5f:07:15:46:f3:d4:f3:b3:4c:5e:8a:b0:f1:f1:b2:96:49: 71:93:20:65:84:92:f8:2a:a7:4f:44:48:85:03:a8:62:50:d2: 1c:7b:78:1f:7b:8c:da:ab:ab:d8:56:6f:73:9e:61:35:b0:32: 3b:32:ab:e6:e4:1a:d6:13:5c:72:25:ee:b7:bd:e8:ea:22:a8: 03:fe:c8:d6:b6:aa:96:35:c4:f8:b7:62:37:0b:02:63:ae:26: 76:54:4b:83:ee:a4:09:e4:2e:64:64:d3:37:37:9b:84:f9:2a: 3a:b3:8e:42:43:ad:59:97:9a:72:ea:21:be:1f:73:86:2e:44: a1:f5:90:02:d8:4f:6a:36:17:68:37:15:0f:58:c9:81:fc:a9: 9c:38:4a:15:f7:fe:93:c9:d2:ea:23:d1:d6:aa:28:7d:dc:23: e4:91:0b:8b:c4:a0:f4:4d:e1:b8:37:5d:80:da:3f:d0:04:c6: 78:a0:25:5a:34:91:04:e4:00:61:f4:aa:99:5b:39:d0:ed:90: 95:8e:c4:d3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWa34CosU04Lf/c5iPNAGpHSWvDUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTAyMDAwMTM5WhcNMjUxMDA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BhZWZiOGU2ZWQ5MTkwMTI5NTM5NzFjYmM0YmU5NjM1ODk3 MjYwOTI1NTg1OTEyN2YzNmFlMjIwMmQ2MWY1MDkzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDnZycdjZ049WmRw3LEmvzr/fm+pKGEVFkat0csYc2cBCJd v+z3gq8lJBSLLILh8C+BO2KZEsBFTTkXWmQCZZV0t/B9qQ6UcnPetEQl1Zbt3G2x 8PGbPlySmyM10mUUu1856QAcXnpylPSBgcXGcba9iWkcYFdpyqPNqCES5o/BnAKT hSp1ofbZA4ACBpIv/uHLin/4CHk4Z1PWFhq1LvM4QybXV5kQFZtcY85v4RMpSqlJ sZ5rPCNYd4ES78hElD7AWV63Xph/zUBeHSSh5t3+hhs6jLE6mPeOJZgU4FDkwcNd StQcaw8fe/7jWmTXWKoRPwQSTK652CL9QTEDZtq5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUsB7y3k9uer4PK5BFSSadfGhg0LowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Y5OGU1YjM5LTkyNzEtNDcwMC1iNmUyLWMyMzI4Nzg3ZDlmNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAaXlEAwDQYJKoZIhvcNAQELBQADggEBAE9UVF7NvO4gpRCH2I7Ts0DkJV4B KBZ2OWDyzaP1VcPnTxPMKhbOWWjDmlwG8cjwLojtdRSoxA9fBxVG89Tzs0xeirDx 8bKWSXGTIGWEkvgqp09ESIUDqGJQ0hx7eB97jNqrq9hWb3OeYTWwMjsyq+bkGtYT XHIl7re96OoiqAP+yNa2qpY1xPi3YjcLAmOuJnZUS4PupAnkLmRk0zc3m4T5Kjqz jkJDrVmXmnLqIb4fc4YuRKH1kALYT2o2F2g3FQ9YyYH8qZw4ShX3/pPJ0uoj0daq KH3cI+SRC4vEoPRN4bg3XYDaP9AExnigJVo0kQTkAGH0qplbOdDtkJWOxNM= -----END CERTIFICATE-----Generated at Fri Sep 19 02:27:07 2025 by rpki-client