$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3550ed23-56cb-4039-b3db-d2d82f35e363.roa File: 3550ed23-56cb-4039-b3db-d2d82f35e363.roa (raw, json) Hash identifier: UfRRm5xMRqL08I9a50g/SP4I+I91MWNQOVhl//o9l1E= Subject key identifier: 7B:E3:76:A6:D3:A9:B2:92:C8:2D:B9:E1:99:BF:2B:AF:E8:7C:8B:DA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 647AB612C2338EF011518E55933392147B3E8CC3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3550ed23-56cb-4039-b3db-d2d82f35e363.roa Signing time: Fri 01 Aug 2025 15:12:11 +0000 ROA not before: Fri 01 Aug 2025 15:12:11 +0000 ROA not after: Fri 05 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.225.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:7a:b6:12:c2:33:8e:f0:11:51:8e:55:93:33:92:14:7b:3e:8c:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 1 15:12:11 2025 GMT Not After : Sep 5 23:59:59 2025 GMT Subject: serialNumber=71d264400e03646575229e44b5b441eabfe59b6c23949e697cfc9a0e279d734d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:0a:b9:bc:b6:37:9f:ac:f7:6e:5a:47:13:95: ff:06:4d:33:01:44:85:77:bc:0a:57:1c:05:97:e2: 9a:76:68:7b:76:28:9f:e6:ac:b0:5f:a9:46:4f:93: 47:cc:bd:4a:e4:67:bd:59:ff:6d:5c:11:71:56:6f: 47:a8:f3:1e:e7:85:2d:27:db:84:e0:ab:15:25:53: 7b:bb:6e:28:a4:1b:b1:ff:16:d1:6b:85:4c:40:c3: e0:e8:3e:bd:16:8b:66:9f:99:7f:e9:88:d5:7f:2f: d9:f5:72:6f:48:73:a8:aa:64:e2:23:00:4b:94:2f: 81:7a:35:12:7b:35:68:e0:53:90:89:45:61:a7:0b: 38:63:1f:1a:98:4b:f4:7b:47:58:f2:ca:69:bb:dd: d7:1d:89:e8:89:53:8a:e6:06:8d:8d:ad:fe:99:a3: bd:9b:89:7d:ed:6d:45:78:39:e7:21:57:15:e7:6a: a4:b7:da:ec:86:0d:9d:b0:a9:a9:45:e0:05:07:6c: 45:bc:05:15:cb:89:d4:c3:4b:0d:1c:95:65:5f:0f: 47:53:c1:78:7e:59:9c:5b:a4:89:df:8a:bf:73:91: 2d:55:62:be:07:4b:98:13:f9:74:e5:79:47:d5:92: f3:a0:3d:0a:6a:6c:95:21:a1:d2:92:da:fb:9c:fa: df:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:E3:76:A6:D3:A9:B2:92:C8:2D:B9:E1:99:BF:2B:AF:E8:7C:8B:DA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3550ed23-56cb-4039-b3db-d2d82f35e363.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.225.0.0/16 Signature Algorithm: sha256WithRSAEncryption 69:97:72:04:30:c0:29:17:13:91:76:80:cb:7a:d5:2a:b7:2c: b2:bc:e3:56:79:eb:1f:f4:ec:08:fb:dd:18:57:aa:32:fe:35: 3c:7b:5b:94:f3:61:55:ad:5a:a3:a9:9b:6e:f2:ea:32:d8:74: b4:bc:52:83:4e:10:7a:5b:a9:a9:4d:54:89:e1:3f:75:e1:b7: 9e:47:38:07:c5:68:d0:b6:9e:d5:fa:5d:ca:71:ab:23:a6:65: b3:4f:aa:f0:01:d5:dc:7f:88:eb:82:14:b8:26:ec:2e:d1:8a: d8:c4:5f:5c:f0:0c:1c:24:db:d4:1a:eb:e8:5a:56:d2:be:61: 03:82:97:05:bb:ff:6e:d5:23:70:59:81:7c:fe:e2:4d:b0:f8: 6a:54:31:77:6e:22:b2:7c:17:ba:57:87:08:8f:08:f8:55:46: 2d:96:50:b4:f4:cf:7c:bf:8f:c3:a3:88:2c:77:68:cb:17:aa: 78:71:af:c1:3b:83:f9:f9:dd:5d:e4:38:af:52:fb:cc:76:b3: 70:a2:4d:d7:3a:e3:89:d1:ec:60:1e:47:d1:8b:63:ff:ae:3b: 0e:e1:d7:9e:5c:1a:44:45:68:10:71:e4:c7:b3:44:7c:0d:70: 3f:79:de:d4:2b:ca:47:6c:6f:7a:10:a6:bd:83:4e:83:16:36: 08:9c:43:3d -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUZHq2EsIzjvARUY5VkzOSFHs+jMMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAxMTUxMjExWhcNMjUwOTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MWQyNjQ0MDBlMDM2NDY1NzUyMjllNDRiNWI0NDFlYWJm ZTU5YjZjMjM5NDllNjk3Y2ZjOWEwZTI3OWQ3MzRkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6Crm8tjefrPduWkcTlf8GTTMBRIV3vApXHAWX4pp2aHt2 KJ/mrLBfqUZPk0fMvUrkZ71Z/21cEXFWb0eo8x7nhS0n24TgqxUlU3u7biikG7H/ FtFrhUxAw+DoPr0Wi2afmX/piNV/L9n1cm9Ic6iqZOIjAEuUL4F6NRJ7NWjgU5CJ RWGnCzhjHxqYS/R7R1jyymm73dcdieiJU4rmBo2Nrf6Zo72biX3tbUV4OechVxXn aqS32uyGDZ2wqalF4AUHbEW8BRXLidTDSw0clWVfD0dTwXh+WZxbpInfir9zkS1V Yr4HS5gT+XTleUfVkvOgPQpqbJUhodKS2vuc+t//AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUe+N2ptOpspLILbnhmb8rr+h8i9owHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM1NTBlZDIzLTU2Y2ItNDAzOS1iM2RiLWQyZDgyZjM1ZTM2My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAP4TANBgkqhkiG9w0BAQsFAAOCAQEAaZdyBDDAKRcTkXaAy3rVKrcssrzj VnnrH/TsCPvdGFeqMv41PHtblPNhVa1ao6mbbvLqMth0tLxSg04QelupqU1UieE/ deG3nkc4B8Vo0Lae1fpdynGrI6Zls0+q8AHV3H+I64IUuCbsLtGK2MRfXPAMHCTb 1Brr6FpW0r5hA4KXBbv/btUjcFmBfP7iTbD4alQxd24isnwXuleHCI8I+FVGLZZQ tPTPfL+Pw6OILHdoyxeqeHGvwTuD+fndXeQ4r1L7zHazcKJN1zrjidHsYB5H0Ytj /647DuHXnlwaREVoEHHkx7NEfA1wP3ne1CvKR2xvehCmvYNOgxY2CJxDPQ== -----END CERTIFICATE-----Generated at Mon Aug 4 22:15:41 2025 by rpki-client