$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6d6f11b1-2aaf-4a0f-8ad0-f885ce22e3d2.roa File: 6d6f11b1-2aaf-4a0f-8ad0-f885ce22e3d2.roa (raw, json) Hash identifier: kjIfjgk+ijtv8qukLWx+2GwjogIQ2etIn/6bRTqPIOY= Subject key identifier: 88:6E:F1:A7:63:57:56:A5:F0:99:66:C0:44:CC:25:F9:EB:C6:6F:1D Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 62D9A5E5D7E14D19D1ED423F42BE2B75D6858BAC Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6d6f11b1-2aaf-4a0f-8ad0-f885ce22e3d2.roa Signing time: Wed 20 Aug 2025 00:41:46 +0000 ROA not before: Wed 20 Aug 2025 00:41:46 +0000 ROA not after: Wed 24 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 150.222.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:d9:a5:e5:d7:e1:4d:19:d1:ed:42:3f:42:be:2b:75:d6:85:8b:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 20 00:41:46 2025 GMT Not After : Sep 24 23:59:59 2025 GMT Subject: serialNumber=4c492017bfe5c4a9a672f40c68fb2e31e80b1e47200c1d0fe58123cb8f38cedb, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:af:49:76:21:87:57:fb:8d:fe:2a:6a:dc:52: 70:2b:83:0c:51:b4:4b:9a:75:84:59:21:07:b4:07: 82:9c:87:bf:ea:ad:7c:ad:57:36:fd:b0:63:9b:63: 25:47:b6:f9:85:ac:c8:fd:89:5e:3b:9e:ef:93:bb: a4:3b:fd:15:39:84:85:c4:1e:11:f1:f6:6c:90:40: 43:aa:d7:0d:86:70:30:4e:af:77:7b:78:3e:f6:d8: 4d:bb:86:ed:2e:8d:0c:74:b8:78:3b:96:70:04:a4: 85:d1:4e:79:80:9b:61:ad:61:75:b4:92:2a:e7:44: fe:82:08:4a:b5:e7:26:4b:b1:a4:db:05:cf:f2:27: 46:fd:02:b4:dc:c5:5b:d2:f7:6a:03:eb:2b:9d:c2: 2f:66:f8:e3:39:4d:c9:02:e6:6b:b1:66:2c:97:17: 0d:19:f5:38:48:99:fa:7f:e5:e8:dd:ea:e3:9b:7c: e3:1f:9a:e0:b7:a0:e9:a2:80:f8:93:62:89:2a:85: 5f:e6:a7:ca:4b:7b:3e:a5:5c:26:39:b8:a8:84:41: 71:86:b5:55:04:c4:6b:24:bc:cf:b4:7b:98:38:18: 28:54:df:ea:db:d6:60:96:8b:ac:26:83:f2:b6:31: 47:16:28:70:29:76:4f:1c:b8:f5:6f:ba:75:d3:94: 99:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:6E:F1:A7:63:57:56:A5:F0:99:66:C0:44:CC:25:F9:EB:C6:6F:1D X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6d6f11b1-2aaf-4a0f-8ad0-f885ce22e3d2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.222.226.0/24 Signature Algorithm: sha256WithRSAEncryption 13:fa:77:5f:c7:1d:c8:6c:19:e0:4d:50:94:f5:b9:4f:dd:18: 7f:c6:b9:b4:f2:36:c1:a0:95:02:b8:81:85:96:f4:e0:a1:a0: ee:6f:80:2e:4c:88:1d:ef:f5:41:5a:d6:6a:62:ce:64:c7:c6: 3b:06:78:fd:ee:f7:ab:2b:d0:32:0d:74:85:5e:10:e4:c6:81: 44:9e:cf:2d:56:46:13:cf:51:82:cb:a4:d4:df:b0:f7:aa:b1: c4:61:78:f0:9c:cc:b8:2f:47:65:0a:d7:87:dd:95:84:b9:2f: 79:cc:bb:35:66:1e:3b:5a:5a:a7:df:bb:11:7c:8b:35:59:c4: 8e:3f:68:c5:b9:3a:2a:80:ed:b1:0e:68:b1:1b:de:03:cf:c3: e3:ca:5b:6f:40:5e:c3:ec:21:ca:af:7a:c4:bc:77:52:cd:f0: 30:95:0d:0e:64:22:ca:c4:dc:65:47:50:55:12:5a:0c:22:16: c8:71:39:ee:ec:a0:c9:fa:82:d9:e3:a3:ab:fc:26:12:48:19: e6:b7:08:95:06:7a:b4:5a:99:6c:dd:eb:60:97:2a:14:b6:64: d7:06:9c:4b:66:be:f6:8f:39:57:48:15:b5:51:5a:3d:d6:c0: 31:2c:fe:c3:ad:74:fa:ec:b9:a7:eb:73:e8:c4:14:7b:27:ac: 92:65:72:2d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYtml5dfhTRnR7UI/Qr4rddaFi6wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODIwMDA0MTQ2WhcNMjUwOTI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0YzQ5MjAxN2JmZTVjNGE5YTY3MmY0MGM2OGZiMmUzMWU4 MGIxZTQ3MjAwYzFkMGZlNTgxMjNjYjhmMzhjZWRiMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDur0l2IYdX+43+KmrcUnArgwxRtEuadYRZIQe0B4Kch7/q rXytVzb9sGObYyVHtvmFrMj9iV47nu+Tu6Q7/RU5hIXEHhHx9myQQEOq1w2GcDBO r3d7eD722E27hu0ujQx0uHg7lnAEpIXRTnmAm2GtYXW0kirnRP6CCEq15yZLsaTb Bc/yJ0b9ArTcxVvS92oD6yudwi9m+OM5TckC5muxZiyXFw0Z9ThImfp/5ejd6uOb fOMfmuC3oOmigPiTYokqhV/mp8pLez6lXCY5uKiEQXGGtVUExGskvM+0e5g4GChU 3+rb1mCWi6wmg/K2MUcWKHApdk8cuPVvunXTlJl5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUiG7xp2NXVqXwmWbARMwl+evGbx0wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzZkNmYxMWIxLTJhYWYtNGEwZi04YWQwLWY4ODVjZTIyZTNkMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACW3uIwDQYJKoZIhvcNAQELBQADggEBABP6d1/HHchsGeBNUJT1uU/dGH/G ubTyNsGglQK4gYWW9OChoO5vgC5MiB3v9UFa1mpizmTHxjsGeP3u96sr0DINdIVe EOTGgUSezy1WRhPPUYLLpNTfsPeqscRhePCczLgvR2UK14fdlYS5L3nMuzVmHjta WqffuxF8izVZxI4/aMW5OiqA7bEOaLEb3gPPw+PKW29AXsPsIcqvesS8d1LN8DCV DQ5kIsrE3GVHUFUSWgwiFshxOe7soMn6gtnjo6v8JhJIGea3CJUGerRamWzd62CX KhS2ZNcGnEtmvvaPOVdIFbVRWj3WwDEs/sOtdPrsuafrc+jEFHsnrJJlci0= -----END CERTIFICATE-----Generated at Wed Aug 20 10:38:04 2025 by rpki-client