$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/52248f94-30ea-4ecd-abe4-da5a8409a81b.roa File: 52248f94-30ea-4ecd-abe4-da5a8409a81b.roa (raw, json) Hash identifier: Fk7jax6cTa9pqZveqsIs2+0QrUSbpNavkrxt9GQAiOo= Subject key identifier: 83:41:6B:7F:C5:05:FB:CC:E2:24:54:35:6D:C7:BE:50:96:F7:05:3F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7758F8A859599725F833F4604D98A1606CCC6ED1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/52248f94-30ea-4ecd-abe4-da5a8409a81b.roa Signing time: Mon 28 Jul 2025 15:41:10 +0000 ROA not before: Mon 28 Jul 2025 15:41:10 +0000 ROA not after: Mon 01 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.0.146.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:58:f8:a8:59:59:97:25:f8:33:f4:60:4d:98:a1:60:6c:cc:6e:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 28 15:41:10 2025 GMT Not After : Sep 1 23:59:59 2025 GMT Subject: serialNumber=885ab5b56935da03385b01444cdd7d0f9cd4e54e5baef7704c8276d550ccd85c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ef:60:1f:9c:92:3c:db:92:42:90:fb:0d:12: 7b:34:17:64:e7:b2:b9:3e:31:b2:fe:ee:a6:24:a4: dc:ec:2c:65:b4:5f:6a:ff:db:2a:fa:2e:b5:97:91: ba:ae:03:9a:55:b0:a1:32:00:91:95:85:40:43:2a: a9:ad:bd:2d:21:4d:e0:dd:70:a5:9a:e8:6b:fd:33: be:52:d1:fe:21:31:c2:4b:cf:a7:4c:67:7b:3d:ca: f2:f3:68:12:5d:25:9d:36:28:3b:7d:45:3e:66:ad: 0d:1f:e3:49:45:b1:75:e5:5d:5e:89:c2:7d:f4:8a: 58:2a:81:41:31:46:01:e5:22:26:63:d1:77:fa:08: b4:22:ec:9c:95:40:8b:3e:a2:11:bb:0b:5c:8c:a4: 47:4e:8a:8f:b1:48:61:d9:e6:47:2a:49:21:9f:6c: 17:f2:06:21:ed:fc:09:86:3b:bc:86:5e:29:4c:72: 0f:b5:5b:8b:b9:56:7d:c3:77:bb:d8:31:d4:16:c4: 8f:3e:04:eb:19:06:3c:dc:46:50:39:32:9c:91:21: ee:43:08:2a:d5:05:b0:65:4e:5f:e0:12:f5:50:a1: 13:e7:8f:9a:3a:e9:0c:66:db:db:a9:21:f8:fa:63: b4:5b:cc:89:e8:ed:53:1c:22:c1:f7:a1:55:65:55: 8a:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:41:6B:7F:C5:05:FB:CC:E2:24:54:35:6D:C7:BE:50:96:F7:05:3F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/52248f94-30ea-4ecd-abe4-da5a8409a81b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.0.146.0/23 Signature Algorithm: sha256WithRSAEncryption 39:e6:4d:44:26:7e:bc:06:f4:7d:37:b0:7f:fa:27:41:84:6f: 8f:59:42:a5:b4:9d:8e:72:e8:0b:c5:3f:2f:46:a3:b0:dd:13: 52:63:06:48:4d:4a:bc:e5:bc:c9:3f:ed:55:42:e3:be:b4:d3: 4f:24:cd:7d:c6:0c:9e:2a:94:13:0b:c0:13:8e:66:0e:f6:89: 22:c9:2d:be:2b:c7:da:9d:0f:cd:03:4a:e0:69:e5:be:6a:92: 8d:84:0d:8c:14:c3:5f:3b:5a:48:9f:e7:96:4f:7b:78:0a:a8: 3d:ab:60:47:02:82:2e:80:b7:24:aa:39:cf:47:e9:ed:8d:5b: de:8e:5c:80:98:df:8a:69:53:83:62:3d:be:fd:b3:86:88:29: a3:01:19:1d:26:0f:32:58:93:4b:a2:7a:7e:1e:60:2d:12:43: 1f:6e:c0:50:fe:ed:ae:4e:30:2c:bd:78:d9:07:52:e6:2b:71: 7c:47:88:d9:5c:5a:64:69:ce:2a:54:f8:58:14:d5:9d:dc:2a: f6:91:8a:dd:c9:c0:a7:04:7d:8c:23:da:44:a4:82:e1:29:2b: 47:4f:e5:43:b6:54:92:e6:d9:b7:e3:b5:70:86:88:36:7a:c6: a6:1e:f6:da:3e:f0:c8:64:d3:bd:3f:96:62:26:44:5b:9b:32: c7:55:c4:fe -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUd1j4qFlZlyX4M/RgTZihYGzMbtEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzI4MTU0MTEwWhcNMjUwOTAxMjM1OTU5 WjB6MUkwRwYDVQQFE0A4ODVhYjViNTY5MzVkYTAzMzg1YjAxNDQ0Y2RkN2QwZjlj ZDRlNTRlNWJhZWY3NzA0YzgyNzZkNTUwY2NkODVjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCz72AfnJI825JCkPsNEns0F2Tnsrk+MbL+7qYkpNzsLGW0 X2r/2yr6LrWXkbquA5pVsKEyAJGVhUBDKqmtvS0hTeDdcKWa6Gv9M75S0f4hMcJL z6dMZ3s9yvLzaBJdJZ02KDt9RT5mrQ0f40lFsXXlXV6Jwn30ilgqgUExRgHlIiZj 0Xf6CLQi7JyVQIs+ohG7C1yMpEdOio+xSGHZ5kcqSSGfbBfyBiHt/AmGO7yGXilM cg+1W4u5Vn3Dd7vYMdQWxI8+BOsZBjzcRlA5MpyRIe5DCCrVBbBlTl/gEvVQoRPn j5o66Qxm29upIfj6Y7RbzIno7VMcIsH3oVVlVYq3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUg0Frf8UF+8ziJFQ1bce+UJb3BT8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUyMjQ4Zjk0LTMwZWEtNGVjZC1hYmU0LWRhNWE4NDA5YTgxYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFFAJIwDQYJKoZIhvcNAQELBQADggEBADnmTUQmfrwG9H03sH/6J0GEb49Z QqW0nY5y6AvFPy9Go7DdE1JjBkhNSrzlvMk/7VVC4760008kzX3GDJ4qlBMLwBOO Zg72iSLJLb4rx9qdD80DSuBp5b5qko2EDYwUw187Wkif55ZPe3gKqD2rYEcCgi6A tySqOc9H6e2NW96OXICY34ppU4NiPb79s4aIKaMBGR0mDzJYk0uien4eYC0SQx9u wFD+7a5OMCy9eNkHUuYrcXxHiNlcWmRpzipU+FgU1Z3cKvaRit3JwKcEfYwj2kSk guEpK0dP5UO2VJLm2bfjtXCGiDZ6xqYe9to+8Mhk070/lmImRFubMsdVxP4= -----END CERTIFICATE-----Generated at Sat Aug 9 02:53:32 2025 by rpki-client