$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0cafe4c1-68f8-4701-986b-5ec06431a231.roa File: 0cafe4c1-68f8-4701-986b-5ec06431a231.roa (raw, json) Hash identifier: +0kgMHJj0v5d3v8dV8EP19aDFUFpwO/1PeH2ZckUXWc= Subject key identifier: 26:D9:35:DC:F5:65:B0:30:D8:22:23:D8:10:85:35:37:1F:10:69:BA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 47EE773592B42236337301CCBBBBA89C82A042F4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0cafe4c1-68f8-4701-986b-5ec06431a231.roa Signing time: Mon 04 Aug 2025 17:40:14 +0000 ROA not before: Mon 04 Aug 2025 17:40:14 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.25.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:ee:77:35:92:b4:22:36:33:73:01:cc:bb:bb:a8:9c:82:a0:42:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 17:40:14 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=e4be0643b7ff268c44d3171ef367c93649945f2f2486c15636a79cef52c8bfff, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:f3:8c:ec:6c:41:37:62:9f:c8:79:6a:fe:09: 49:30:38:33:ee:54:1b:00:f6:d2:ef:05:5b:2f:d7: 83:fe:6e:b5:45:dd:5b:6f:20:0e:39:35:cd:39:b9: 10:f0:72:e6:ca:d6:bf:c8:99:8e:80:c4:c7:fa:63: 8c:12:8d:a8:6c:73:56:8b:f3:51:8a:df:d1:47:b7: 62:f2:a7:0f:4e:b5:42:26:b0:81:61:62:9d:85:63: 68:87:0f:79:e0:d4:ca:64:3e:d9:fe:bf:26:b6:6e: 14:5d:47:b0:6d:c5:9b:01:e1:2c:dc:30:9b:14:c1: 8c:b5:ef:47:0f:d6:fa:83:d7:d4:3c:b7:e0:5a:51: 4c:a9:ff:35:50:b6:51:98:82:f5:95:d9:a1:24:70: 97:92:90:7a:12:55:cf:40:13:77:b3:ea:2e:55:4f: ad:94:31:63:24:6d:4a:f1:d2:08:52:36:6f:42:39: f2:f1:6f:af:ef:85:92:66:b7:b8:10:8c:3f:1b:07: 1b:9d:d7:a5:1d:d7:c0:e2:fd:b2:42:34:4d:85:e4: 8a:34:dc:4e:a0:d4:90:37:bb:f4:ed:37:9b:a9:84: c0:0d:5a:eb:a4:cd:e3:a2:4e:a5:84:5b:39:fd:07: 12:48:1d:fd:fa:5c:4a:a3:81:90:23:16:94:58:8e: ed:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:D9:35:DC:F5:65:B0:30:D8:22:23:D8:10:85:35:37:1F:10:69:BA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0cafe4c1-68f8-4701-986b-5ec06431a231.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.25.0.0/16 Signature Algorithm: sha256WithRSAEncryption c9:ae:f9:60:aa:c9:c8:39:61:82:e6:18:d1:b6:e1:d2:c9:df: 0e:07:8d:82:7f:17:c3:37:53:ce:ff:8a:eb:74:90:da:d7:f4: 59:d5:47:08:f3:85:43:ff:8a:6a:39:68:ba:76:ed:42:b5:db: c8:98:62:98:66:31:85:9f:fc:f3:e8:86:33:e9:e6:5c:3e:28: 33:4c:36:26:78:95:cf:fe:fe:c4:07:6d:96:10:76:4c:7d:60: 03:8d:22:e3:c1:c2:ea:b2:6a:0e:77:b0:27:2a:b0:38:84:a5: 2b:ed:7c:e3:52:83:e1:3f:24:89:bc:44:1d:a0:61:16:5b:d1: 02:9a:8e:18:c8:33:65:57:64:54:eb:71:09:6d:16:cd:29:4b: 97:00:15:6b:96:79:cd:fe:2b:50:48:61:97:e3:6e:ca:e4:00: 23:f9:6f:08:f1:31:b6:63:0f:b2:86:57:be:43:47:28:06:ee: 36:3b:31:04:da:61:96:b1:1b:01:5c:ef:f7:95:8b:6b:b2:85: b4:bd:78:50:2a:83:af:49:8c:13:20:4c:e7:47:36:e7:97:72: f8:f3:46:eb:1f:d0:1d:b5:03:ed:5f:80:37:b3:00:08:a6:11: eb:f5:37:8b:7c:3b:30:a2:db:f6:ed:c4:cd:f4:38:18:d8:ac: 68:1c:b8:6d -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUR+53NZK0IjYzcwHMu7uonIKgQvQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA0MTc0MDE0WhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNGJlMDY0M2I3ZmYyNjhjNDRkMzE3MWVmMzY3YzkzNjQ5 OTQ1ZjJmMjQ4NmMxNTYzNmE3OWNlZjUyYzhiZmZmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC484zsbEE3Yp/IeWr+CUkwODPuVBsA9tLvBVsv14P+brVF 3VtvIA45Nc05uRDwcubK1r/ImY6AxMf6Y4wSjahsc1aL81GK39FHt2Lypw9OtUIm sIFhYp2FY2iHD3ng1MpkPtn+vya2bhRdR7BtxZsB4SzcMJsUwYy170cP1vqD19Q8 t+BaUUyp/zVQtlGYgvWV2aEkcJeSkHoSVc9AE3ez6i5VT62UMWMkbUrx0ghSNm9C OfLxb6/vhZJmt7gQjD8bBxud16Ud18Di/bJCNE2F5Io03E6g1JA3u/TtN5uphMAN WuukzeOiTqWEWzn9BxJIHf36XEqjgZAjFpRYju3lAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUJtk13PVlsDDYIiPYEIU1Nx8QabowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBjYWZlNGMxLTY4ZjgtNDcwMS05ODZiLTVlYzA2NDMxYTIzMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2GTANBgkqhkiG9w0BAQsFAAOCAQEAya75YKrJyDlhguYY0bbh0snfDgeN gn8XwzdTzv+K63SQ2tf0WdVHCPOFQ/+KajlounbtQrXbyJhimGYxhZ/88+iGM+nm XD4oM0w2JniVz/7+xAdtlhB2TH1gA40i48HC6rJqDnewJyqwOISlK+1841KD4T8k ibxEHaBhFlvRApqOGMgzZVdkVOtxCW0WzSlLlwAVa5Z5zf4rUEhhl+NuyuQAI/lv CPExtmMPsoZXvkNHKAbuNjsxBNphlrEbAVzv95WLa7KFtL14UCqDr0mMEyBM50c2 55dy+PNG6x/QHbUD7V+AN7MACKYR6/U3i3w7MKLb9u3EzfQ4GNisaBy4bQ== -----END CERTIFICATE-----Generated at Fri Aug 8 19:27:04 2025 by rpki-client