$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/225a370b-b7ff-4d29-8cc6-b57287923a22.roa File: 225a370b-b7ff-4d29-8cc6-b57287923a22.roa (raw, json) Hash identifier: 6FQLB+rDtyvC9oDzO5D5rPqsUovyPUE+zqkSprlT3ks= Subject key identifier: 4D:98:AC:3F:D0:3F:4D:E8:A9:8D:60:A5:DF:E4:1E:55:C3:7F:DC:C4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2639382E947D3220F6ADB9A97BE15FC87EF96F89 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/225a370b-b7ff-4d29-8cc6-b57287923a22.roa Signing time: Fri 01 Aug 2025 15:01:35 +0000 ROA not before: Fri 01 Aug 2025 15:01:35 +0000 ROA not after: Fri 05 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 1.178.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 09 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:39:38:2e:94:7d:32:20:f6:ad:b9:a9:7b:e1:5f:c8:7e:f9:6f:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 1 15:01:35 2025 GMT Not After : Sep 5 23:59:59 2025 GMT Subject: serialNumber=a64577eda17803e9c75060e8fac30cbe9e4aa7386b3223227fb6cff12acfce92, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:39:43:18:3d:62:8b:df:2a:29:c2:f6:a0:ba: 4b:ce:a5:43:9c:fe:ab:af:9d:be:27:f5:f8:db:ff: 45:87:e4:cc:73:f4:22:18:b8:b2:4f:d9:3b:87:e5: 37:1d:91:76:8e:17:61:0b:a9:db:f1:65:ed:f3:b3: 47:0d:34:80:1a:99:5d:93:49:a0:00:f6:ff:b0:4a: b3:21:b7:9b:a5:42:6c:b3:27:ba:d8:8c:86:ec:b4: 2e:93:f5:6a:f1:f8:e9:36:32:66:16:ff:c5:6a:32: 89:9d:52:1c:e4:cf:35:8b:f1:99:74:d7:7f:14:ad: 5d:0e:6d:1d:f9:f7:6c:be:83:b1:69:ed:aa:30:77: 32:55:2c:92:11:c2:6d:6d:8f:23:85:a8:2d:6b:07: c8:2c:7a:49:1e:df:56:04:da:f0:64:47:97:df:d5: f7:02:c3:36:d8:a8:e8:89:13:71:a4:bc:84:c3:3b: 2c:e4:df:e7:24:5c:94:82:ef:a8:d9:7b:9c:d9:8c: b8:fa:77:fc:3b:8c:3b:15:9f:91:51:e5:ed:f1:c9: b9:3b:ff:f3:c8:d3:83:7f:72:8b:13:0e:f8:48:39: ee:3e:c6:d4:8e:43:67:a6:0a:4e:55:28:0c:3d:83: df:43:b4:1c:cf:d7:02:04:22:a1:33:91:f5:13:27: c0:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:98:AC:3F:D0:3F:4D:E8:A9:8D:60:A5:DF:E4:1E:55:C3:7F:DC:C4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/225a370b-b7ff-4d29-8cc6-b57287923a22.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 1.178.4.0/22 Signature Algorithm: sha256WithRSAEncryption 0f:d3:7f:4e:e0:d1:44:30:d1:f2:4b:97:c7:77:4c:08:e6:ff: 11:e5:42:3f:da:c1:6f:ac:3e:4d:14:d6:83:45:cc:61:bc:71: 27:76:f9:c6:e8:1a:2d:b7:5f:3a:12:1f:b8:d1:02:c1:b9:2f: f1:e6:d6:8c:85:a6:c2:24:1b:11:36:76:b1:06:df:2f:84:7f: 28:73:e0:0d:01:41:4f:31:f4:01:c4:12:61:45:25:26:cc:4f: dc:a7:5d:01:fb:80:6d:83:9f:a3:81:9e:c7:c1:b4:ce:40:81: 21:ba:f6:9c:95:47:9e:51:38:84:51:5f:ab:0a:a3:e4:13:0d: ee:af:75:5f:ba:e9:6e:95:14:af:57:4b:20:be:35:be:36:6a: 0d:00:03:04:be:f8:27:fb:4a:77:34:28:a4:c0:1f:c1:24:c8: 31:b9:9f:e8:c5:88:fd:fc:75:6f:43:87:f1:18:e0:8d:ef:45: e4:b9:b9:1f:ed:52:54:d8:d9:e5:b7:7f:a5:07:e0:68:15:48: 1a:1c:07:de:1d:41:2b:cd:79:bc:83:af:09:21:44:dd:43:6d: 49:e1:35:e3:8c:bc:51:28:0b:20:9f:e4:94:5a:8f:12:aa:31: 49:30:5a:25:c6:e0:a2:a3:67:44:81:44:ce:e6:1b:d8:c7:64: f2:bd:99:29 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJjk4LpR9MiD2rbmpe+FfyH75b4kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAxMTUwMTM1WhcNMjUwOTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNjQ1NzdlZGExNzgwM2U5Yzc1MDYwZThmYWMzMGNiZTll NGFhNzM4NmIzMjIzMjI3ZmI2Y2ZmMTJhY2ZjZTkyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLOUMYPWKL3yopwvagukvOpUOc/quvnb4n9fjb/0WH5Mxz 9CIYuLJP2TuH5TcdkXaOF2ELqdvxZe3zs0cNNIAamV2TSaAA9v+wSrMht5ulQmyz J7rYjIbstC6T9Wrx+Ok2MmYW/8VqMomdUhzkzzWL8Zl0138UrV0ObR3592y+g7Fp 7aowdzJVLJIRwm1tjyOFqC1rB8gsekke31YE2vBkR5ff1fcCwzbYqOiJE3GkvITD Oyzk3+ckXJSC76jZe5zZjLj6d/w7jDsVn5FR5e3xybk7//PI04N/cosTDvhIOe4+ xtSOQ2emCk5VKAw9g99DtBzP1wIEIqEzkfUTJ8CdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUTZisP9A/TeipjWCl3+QeVcN/3MQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIyNWEzNzBiLWI3ZmYtNGQyOS04Y2M2LWI1NzI4NzkyM2EyMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBsgQwDQYJKoZIhvcNAQELBQADggEBAA/Tf07g0UQw0fJLl8d3TAjm/xHl Qj/awW+sPk0U1oNFzGG8cSd2+cboGi23XzoSH7jRAsG5L/Hm1oyFpsIkGxE2drEG 3y+Efyhz4A0BQU8x9AHEEmFFJSbMT9ynXQH7gG2Dn6OBnsfBtM5AgSG69pyVR55R OIRRX6sKo+QTDe6vdV+66W6VFK9XSyC+Nb42ag0AAwS++Cf7Snc0KKTAH8EkyDG5 n+jFiP38dW9Dh/EY4I3vReS5uR/tUlTY2eW3f6UH4GgVSBocB94dQSvNebyDrwkh RN1DbUnhNeOMvFEoCyCf5JRajxKqMUkwWiXG4KKjZ0SBRM7mG9jHZPK9mSk= -----END CERTIFICATE-----Generated at Fri Aug 8 13:09:41 2025 by rpki-client