$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/12aab65b-41fe-4e44-98e4-a3bfeab8c9b0.roa File: 12aab65b-41fe-4e44-98e4-a3bfeab8c9b0.roa (raw, json) Hash identifier: NmsqqepmXo0dlEnK6BAEC4mYiMeI5yHfz+a2rwDrz0M= Subject key identifier: A1:C5:6F:5C:2F:40:2F:E4:23:3A:40:60:5B:5D:FB:21:1B:97:3B:82 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2844BFCE2070CC1FDB737AA4221D559096B7F587 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/12aab65b-41fe-4e44-98e4-a3bfeab8c9b0.roa Signing time: Mon 28 Jul 2025 15:30:36 +0000 ROA not before: Mon 28 Jul 2025 15:30:36 +0000 ROA not after: Mon 01 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.198.68.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:44:bf:ce:20:70:cc:1f:db:73:7a:a4:22:1d:55:90:96:b7:f5:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 28 15:30:36 2025 GMT Not After : Sep 1 23:59:59 2025 GMT Subject: serialNumber=a1286b51e72f82cd7b60856ad4e3e5ed1b31129ab641a6b06c3c0517f55c37b1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:a3:9f:02:57:97:97:53:88:39:74:c4:72:1c: e0:f0:c4:18:0c:72:0c:ef:3f:9e:31:e8:e0:05:42: 2a:af:09:24:57:ae:ce:bd:18:c8:90:17:92:c7:88: e5:7b:9c:b8:f2:38:7f:83:e0:9e:e9:d4:1f:45:05: da:b2:c0:56:bd:2b:b1:6b:27:69:b9:36:83:71:88: 12:c2:90:43:06:ca:d8:96:24:20:c0:75:c1:c0:22: e9:cb:ab:2e:d3:41:74:05:a3:81:72:50:d1:05:0f: 5b:38:b0:4a:0d:5b:f6:74:df:7c:0f:aa:1c:9b:e1: 97:d0:e5:c4:bb:ba:04:02:d3:f4:f3:90:0b:e2:8b: af:15:04:8a:39:17:29:e6:15:c3:e4:c6:64:b7:70: 65:72:be:ec:67:08:f4:eb:96:c0:a7:4a:3e:5b:31: 04:be:b8:d3:8d:11:fd:d1:e5:d0:76:1b:d1:8b:91: 88:25:ef:6e:dc:04:c5:7c:d8:94:e4:04:89:db:ba: 53:96:6e:97:94:aa:5f:4a:0d:01:e5:fc:ab:06:a5: f3:95:82:3e:83:10:a3:fe:6f:05:ea:1b:6c:31:82: f1:94:2f:fe:0d:14:68:a6:42:5f:a5:a8:30:cd:84: 27:dc:b5:99:7a:b4:0a:22:50:3b:11:ce:43:71:7b: 89:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:C5:6F:5C:2F:40:2F:E4:23:3A:40:60:5B:5D:FB:21:1B:97:3B:82 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/12aab65b-41fe-4e44-98e4-a3bfeab8c9b0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.198.68.0/23 Signature Algorithm: sha256WithRSAEncryption c2:43:23:8a:f8:36:0f:58:a7:19:c1:1d:ed:3e:72:05:cf:b2: f5:d0:bf:af:57:c1:5b:14:af:30:e6:78:94:9e:05:55:6c:a2: 6e:aa:e8:2b:22:14:62:44:85:0d:41:15:8b:0d:11:da:cc:a2: 90:11:dc:9a:21:09:9b:98:cd:ec:7a:70:64:cb:9f:ba:c3:f4: d6:c8:4f:11:a0:8a:fb:f6:a7:e7:4e:a3:4e:31:e9:a3:64:6f: 06:a3:32:5b:9c:24:da:cf:ec:fa:e7:22:86:e9:c9:17:28:13: 65:fd:c3:a2:d0:10:76:d3:1b:4a:fc:b0:93:58:8b:6f:56:5b: 1b:48:4e:4b:de:55:c9:b6:e3:6d:4c:f7:1d:6c:a6:1b:55:1d: 74:60:76:d8:d1:d8:99:1e:28:47:de:58:8f:52:2c:29:b1:02: ed:13:78:6f:f0:e7:6a:ec:45:9a:d2:21:df:9d:30:17:38:84: ff:00:14:77:61:7c:27:2e:19:1c:82:9e:b4:a8:fc:a7:a5:da: c4:32:e3:87:a1:a0:33:4a:73:cc:1e:25:8f:ba:23:34:99:17: 45:a3:dd:53:15:ea:86:ae:95:f3:a9:09:62:16:eb:22:94:6e: af:1f:d3:96:54:6e:f0:64:d4:54:8c:18:af:70:7f:9f:7e:18: 79:88:07:bb -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKES/ziBwzB/bc3qkIh1VkJa39YcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzI4MTUzMDM2WhcNMjUwOTAxMjM1OTU5 WjB6MUkwRwYDVQQFE0BhMTI4NmI1MWU3MmY4MmNkN2I2MDg1NmFkNGUzZTVlZDFi MzExMjlhYjY0MWE2YjA2YzNjMDUxN2Y1NWMzN2IxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDho58CV5eXU4g5dMRyHODwxBgMcgzvP54x6OAFQiqvCSRX rs69GMiQF5LHiOV7nLjyOH+D4J7p1B9FBdqywFa9K7FrJ2m5NoNxiBLCkEMGytiW JCDAdcHAIunLqy7TQXQFo4FyUNEFD1s4sEoNW/Z033wPqhyb4ZfQ5cS7ugQC0/Tz kAvii68VBIo5FynmFcPkxmS3cGVyvuxnCPTrlsCnSj5bMQS+uNONEf3R5dB2G9GL kYgl727cBMV82JTkBInbulOWbpeUql9KDQHl/KsGpfOVgj6DEKP+bwXqG2wxgvGU L/4NFGimQl+lqDDNhCfctZl6tAoiUDsRzkNxe4kxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUocVvXC9AL+QjOkBgW137IRuXO4IwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzEyYWFiNjViLTQxZmUtNGU0NC05OGU0LWEzYmZlYWI4YzliMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHYxkQwDQYJKoZIhvcNAQELBQADggEBAMJDI4r4Ng9YpxnBHe0+cgXPsvXQ v69XwVsUrzDmeJSeBVVsom6q6CsiFGJEhQ1BFYsNEdrMopAR3JohCZuYzex6cGTL n7rD9NbITxGgivv2p+dOo04x6aNkbwajMlucJNrP7PrnIobpyRcoE2X9w6LQEHbT G0r8sJNYi29WWxtITkveVcm2421M9x1sphtVHXRgdtjR2JkeKEfeWI9SLCmxAu0T eG/w52rsRZrSId+dMBc4hP8AFHdhfCcuGRyCnrSo/Kel2sQy44ehoDNKc8weJY+6 IzSZF0Wj3VMV6oaulfOpCWIW6yKUbq8f05ZUbvBk1FSMGK9wf59+GHmIB7s= -----END CERTIFICATE-----Generated at Mon Aug 4 21:54:56 2025 by rpki-client