$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/01ff9c8f-8da9-44ae-9b64-115add0db1f6.roa File: 01ff9c8f-8da9-44ae-9b64-115add0db1f6.roa (raw, json) Hash identifier: RGeUBAmGqzOXfuBavEHq+dB88Z092LdbFmk96OOkofM= Subject key identifier: 2A:F5:9A:E5:B8:06:74:25:3D:26:C0:82:19:B4:6B:8A:4C:AD:CB:C5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 29988AB12B140D046D96757E41FE8A31D59CC3D6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/01ff9c8f-8da9-44ae-9b64-115add0db1f6.roa Signing time: Sat 02 Aug 2025 00:51:39 +0000 ROA not before: Sat 02 Aug 2025 00:51:39 +0000 ROA not after: Sat 06 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 204.236.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 05 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:98:8a:b1:2b:14:0d:04:6d:96:75:7e:41:fe:8a:31:d5:9c:c3:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 2 00:51:39 2025 GMT Not After : Sep 6 23:59:59 2025 GMT Subject: serialNumber=c8ad8507eb06132b19892fdbbc5f6b2d3db0fa8084eac139c89f7aaa515094ee, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:7b:38:d6:fd:6a:af:47:6c:3a:02:98:48:c5: dd:60:2b:01:f9:aa:0f:9c:1f:bc:0f:1d:41:8e:56: 2b:f6:08:aa:f2:d3:8a:59:c9:9a:09:9b:b3:bd:79: 5c:7c:10:59:89:31:e0:b9:b3:52:23:7c:99:cb:50: ff:34:e4:b4:00:1d:ee:47:8c:c1:dd:a3:9b:6a:9a: 3c:e1:50:b5:04:77:88:f9:27:6d:72:8f:86:b6:03: 7c:c0:fe:1a:2a:47:52:29:f2:9e:a2:68:ce:4c:b1: 45:e7:b8:82:bc:4c:b8:17:1b:33:70:17:f6:7e:4c: 6a:e5:9c:f6:f5:29:a6:3d:99:57:50:ae:b7:1e:f0: b8:65:51:43:36:a0:e7:7d:db:0b:e8:97:75:a0:2d: fc:83:c4:5e:ee:6e:35:96:91:94:21:bc:44:bd:2b: da:f0:b3:2f:f3:e6:fe:89:03:38:e5:bd:29:9d:84: 0e:06:b7:25:28:e0:50:02:97:fe:61:ac:d0:4b:4d: c3:8b:ae:aa:a0:b6:dc:ac:38:12:99:0c:61:0e:7b: 97:11:d3:fe:6b:35:47:45:38:ef:df:8d:4d:90:25: 53:27:74:3e:6a:16:b5:7d:10:29:4c:78:78:7d:76: 00:17:e1:5f:42:95:9b:34:95:cc:8a:a6:2e:f9:4c: ba:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:F5:9A:E5:B8:06:74:25:3D:26:C0:82:19:B4:6B:8A:4C:AD:CB:C5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/01ff9c8f-8da9-44ae-9b64-115add0db1f6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.236.192.0/18 Signature Algorithm: sha256WithRSAEncryption 5a:6e:c7:53:ea:78:58:8b:8f:3e:7d:b4:9d:ff:3b:eb:dc:f3: c4:2d:53:a5:1b:ac:82:3f:21:fa:12:cd:68:ee:d8:83:4f:98: ad:ab:6a:b2:f7:75:e0:97:3c:4a:67:93:dd:5b:43:14:c8:67: 38:00:97:62:11:f3:10:3f:63:84:82:68:f2:d3:ec:4e:4c:ef: ff:30:93:d6:0f:3f:66:b0:48:35:f0:14:ae:2d:73:d6:58:ec: 66:17:61:d1:7e:bd:2f:a3:65:e8:0b:d3:76:b0:5a:41:93:2f: 61:fb:13:a5:4e:70:bb:cb:e7:cb:33:13:a9:6f:85:b9:dd:e9: 7b:34:50:9e:17:f0:59:da:36:f6:8c:33:96:e6:a2:d2:08:de: 6e:7b:09:e2:bd:27:de:37:10:05:a9:2c:ba:68:3d:82:05:52: b6:62:42:d8:3a:10:c3:fc:39:60:1e:ac:3d:72:cd:77:e3:b0: da:63:31:c4:23:51:8b:a2:cf:33:7a:5e:b7:10:22:cd:0c:db: 63:b0:9d:39:69:6f:c9:42:f5:e5:9f:42:40:23:78:f1:2a:d2: 40:cc:eb:67:a1:d6:f1:81:ea:d1:d6:79:75:11:9b:d6:42:12: b1:5c:b8:29:47:90:e3:64:df:c4:3e:60:f4:ce:73:2b:84:94: a0:09:07:ad -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKZiKsSsUDQRtlnV+Qf6KMdWcw9YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAyMDA1MTM5WhcNMjUwOTA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BjOGFkODUwN2ViMDYxMzJiMTk4OTJmZGJiYzVmNmIyZDNk YjBmYTgwODRlYWMxMzljODlmN2FhYTUxNTA5NGVlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCXezjW/WqvR2w6AphIxd1gKwH5qg+cH7wPHUGOViv2CKry 04pZyZoJm7O9eVx8EFmJMeC5s1IjfJnLUP805LQAHe5HjMHdo5tqmjzhULUEd4j5 J21yj4a2A3zA/hoqR1Ip8p6iaM5MsUXnuIK8TLgXGzNwF/Z+TGrlnPb1KaY9mVdQ rrce8LhlUUM2oOd92wvol3WgLfyDxF7ubjWWkZQhvES9K9rwsy/z5v6JAzjlvSmd hA4GtyUo4FACl/5hrNBLTcOLrqqgttysOBKZDGEOe5cR0/5rNUdFOO/fjU2QJVMn dD5qFrV9EClMeHh9dgAX4V9ClZs0lcyKpi75TLqXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUKvWa5bgGdCU9JsCCGbRrikyty8UwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzAxZmY5YzhmLThkYTktNDRhZS05YjY0LTExNWFkZDBkYjFmNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAbM7MAwDQYJKoZIhvcNAQELBQADggEBAFpux1PqeFiLjz59tJ3/O+vc88Qt U6UbrII/IfoSzWju2INPmK2rarL3deCXPEpnk91bQxTIZzgAl2IR8xA/Y4SCaPLT 7E5M7/8wk9YPP2awSDXwFK4tc9ZY7GYXYdF+vS+jZegL03awWkGTL2H7E6VOcLvL 58szE6lvhbnd6Xs0UJ4X8FnaNvaMM5bmotII3m57CeK9J943EAWpLLpoPYIFUrZi Qtg6EMP8OWAerD1yzXfjsNpjMcQjUYuizzN6XrcQIs0M22OwnTlpb8lC9eWfQkAj ePEq0kDM62eh1vGB6tHWeXURm9ZCErFcuClHkONk38Q+YPTOcyuElKAJB60= -----END CERTIFICATE-----Generated at Mon Aug 4 15:40:46 2025 by rpki-client