$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/183114c1-3537-409b-bf98-35d1e862b2f5.roa File: 183114c1-3537-409b-bf98-35d1e862b2f5.roa (raw, json) Hash identifier: Vhzs9srKN+jcTNG1xDFqs+xkfOnz+vnNaL2t5eQ1vr8= Subject key identifier: 1A:80:44:DB:31:71:07:F7:CA:D0:A9:56:3B:61:28:09:A7:C6:30:38 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3A4EEF2B77183EBA1FEA49A284F22C6FBD74EF7F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/183114c1-3537-409b-bf98-35d1e862b2f5.roa Signing time: Mon 04 Aug 2025 15:50:32 +0000 ROA not before: Mon 04 Aug 2025 15:50:32 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 208.86.90.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:4e:ef:2b:77:18:3e:ba:1f:ea:49:a2:84:f2:2c:6f:bd:74:ef:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 15:50:32 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=5c2cfe9f818c31505d6b08bd048897ca5b9a7457d408312ea65c61f0f6b46ff2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:1e:e4:73:f4:59:30:b4:d0:e0:e8:c4:83:e3: 47:a1:76:53:94:5d:48:e6:fc:b4:30:7a:0c:23:12: a6:6b:20:5d:11:3e:b3:d0:cd:c1:db:a4:5d:86:86: a8:f5:b9:05:46:2a:da:1e:49:0e:fd:9c:8b:cc:81: bc:8f:43:bc:d0:e3:09:2b:ff:b7:6d:ca:16:b2:8c: 34:0b:85:0c:79:d8:45:ad:94:fc:3b:73:b1:33:a3: 0e:f1:74:ef:02:e8:68:b9:e8:f2:a6:be:a1:ad:18: 3a:60:cb:58:9a:75:4f:67:91:dd:d2:05:a1:9b:ab: ea:ac:2e:65:09:a9:f8:fd:2f:65:7b:f3:66:3c:6d: 8c:07:37:33:15:ae:c7:7b:c4:b9:ef:1b:f9:3f:e7: 17:a3:f9:ac:38:02:65:4b:8f:02:cd:8c:65:2e:7b: a8:7f:af:51:3e:41:22:2b:5e:2e:cf:ef:59:d3:49: e4:d0:2e:78:32:15:0d:1d:84:db:5a:52:23:8e:21: 94:43:eb:33:b7:58:27:ce:64:6e:17:38:7e:c1:ef: 45:09:70:47:5b:6f:b6:4f:7a:bf:e4:f0:ea:f6:b2: 59:9b:35:13:a6:d8:4b:96:e3:ba:28:57:96:ab:30: b9:39:69:92:66:36:71:e0:91:e6:99:42:fe:a3:4f: 8d:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:80:44:DB:31:71:07:F7:CA:D0:A9:56:3B:61:28:09:A7:C6:30:38 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/183114c1-3537-409b-bf98-35d1e862b2f5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 208.86.90.0/23 Signature Algorithm: sha256WithRSAEncryption c0:e0:e5:93:4b:bb:76:54:21:49:d2:38:b0:47:df:d6:16:c4: 1c:5d:13:e1:3d:7c:98:bc:22:ed:9f:b9:43:ef:3d:62:3b:5f: d1:72:ac:c7:59:7e:de:ec:0b:79:7d:48:5b:f4:00:ff:52:bf: 42:27:d8:55:a3:d5:7f:7e:45:a4:7f:b3:77:e3:fc:cf:f0:8d: 0c:de:b1:59:57:c0:2e:26:2a:94:3e:cf:78:7d:98:ce:c2:49: 01:d0:e9:53:65:28:fd:42:c8:d6:07:e0:ee:6e:ee:72:33:10: 5c:e2:e2:e3:c4:88:a4:3a:81:63:38:d4:36:f5:d3:e1:a0:1f: c9:3d:cf:e7:cc:8b:ac:99:34:04:da:c7:a5:cd:f4:78:6b:b5: 5d:63:00:19:ba:04:5f:62:c4:84:38:fc:3d:85:cb:de:7a:54: 3c:c6:a4:e7:75:68:68:be:9c:f0:59:b1:e9:89:8d:c6:b9:79: 25:66:7b:ce:68:c2:a0:c5:62:2d:ab:2c:e6:27:24:0b:d8:36: 12:90:e0:8e:3e:3d:43:ac:50:23:d9:3d:04:19:52:d8:6f:33: 76:c6:8d:c8:26:d8:8d:fa:ed:da:a7:1d:61:05:02:21:d4:7b: 9a:cb:28:79:ec:75:a4:ac:03:80:6d:36:ce:75:d2:fd:65:54: 12:c7:0f:02 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOk7vK3cYProf6kmihPIsb710738wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA0MTU1MDMyWhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A1YzJjZmU5ZjgxOGMzMTUwNWQ2YjA4YmQwNDg4OTdjYTVi OWE3NDU3ZDQwODMxMmVhNjVjNjFmMGY2YjQ2ZmYyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1HuRz9FkwtNDg6MSD40ehdlOUXUjm/LQwegwjEqZrIF0R PrPQzcHbpF2Ghqj1uQVGKtoeSQ79nIvMgbyPQ7zQ4wkr/7dtyhayjDQLhQx52EWt lPw7c7Ezow7xdO8C6Gi56PKmvqGtGDpgy1iadU9nkd3SBaGbq+qsLmUJqfj9L2V7 82Y8bYwHNzMVrsd7xLnvG/k/5xej+aw4AmVLjwLNjGUue6h/r1E+QSIrXi7P71nT SeTQLngyFQ0dhNtaUiOOIZRD6zO3WCfOZG4XOH7B70UJcEdbb7ZPer/k8Or2slmb NROm2EuW47ooV5arMLk5aZJmNnHgkeaZQv6jT42ZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUGoBE2zFxB/fK0KlWO2EoCafGMDgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE4MzExNGMxLTM1MzctNDA5Yi1iZjk4LTM1ZDFlODYyYjJmNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHQVlowDQYJKoZIhvcNAQELBQADggEBAMDg5ZNLu3ZUIUnSOLBH39YWxBxd E+E9fJi8Iu2fuUPvPWI7X9FyrMdZft7sC3l9SFv0AP9Sv0In2FWj1X9+RaR/s3fj /M/wjQzesVlXwC4mKpQ+z3h9mM7CSQHQ6VNlKP1CyNYH4O5u7nIzEFzi4uPEiKQ6 gWM41Db10+GgH8k9z+fMi6yZNATax6XN9HhrtV1jABm6BF9ixIQ4/D2Fy956VDzG pOd1aGi+nPBZsemJjca5eSVme85owqDFYi2rLOYnJAvYNhKQ4I4+PUOsUCPZPQQZ UthvM3bGjcgm2I367dqnHWEFAiHUe5rLKHnsdaSsA4BtNs510v1lVBLHDwI= -----END CERTIFICATE-----Generated at Sat Aug 9 10:39:03 2025 by rpki-client