$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/752845bf-4fad-4178-abc3-345e36b80c44.roa File: 752845bf-4fad-4178-abc3-345e36b80c44.roa (raw, json) Hash identifier: c8nSFP7msK0JQxGYPRGASJsf/R0F2jaIiRa29qzCt2o= Subject key identifier: D1:91:0F:EF:50:9B:A4:85:08:AE:F6:B9:C0:A0:D6:19:58:6F:FE:82 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5BC3700432EDF7FB06F9E91951F0DC22123A2F15 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/752845bf-4fad-4178-abc3-345e36b80c44.roa Signing time: Mon 28 Jul 2025 15:41:09 +0000 ROA not before: Mon 28 Jul 2025 15:41:09 +0000 ROA not after: Mon 01 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.0.142.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:c3:70:04:32:ed:f7:fb:06:f9:e9:19:51:f0:dc:22:12:3a:2f:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 28 15:41:09 2025 GMT Not After : Sep 1 23:59:59 2025 GMT Subject: serialNumber=1a35c099a2b53fc65e73362fa1b72c0b8f839e059afabd8b54dbb57f0be482af, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:5b:54:54:13:c5:fa:fd:cf:48:05:30:3a:d1: cb:41:27:f2:1b:86:51:28:7e:24:57:6d:f2:af:20: 95:53:ee:71:99:59:c0:d3:17:76:b7:e2:db:65:ee: 79:5d:f7:ca:f0:bc:b4:73:77:67:a2:b8:35:0c:bb: 8e:56:04:34:d9:5c:a1:69:db:19:7b:95:b2:a0:9e: 1f:ed:af:54:cf:44:0f:06:c9:6b:71:07:d4:4d:e0: a1:d7:48:68:30:44:cb:e3:92:36:1f:53:8e:6c:39: ce:5b:3a:c9:f2:6c:81:42:c0:ca:62:70:d1:ca:86: d5:a4:32:28:b6:0b:f1:eb:2f:c3:7b:e0:2a:15:df: 98:7b:4b:74:c6:90:9b:6a:d7:8a:da:90:8a:17:9d: 53:14:75:0b:36:e0:0d:f1:37:3e:95:35:4a:bd:45: b9:25:c3:5e:08:d5:40:a1:03:d0:a9:f0:02:14:00: d0:2e:eb:41:5d:7e:5a:8d:68:f7:e1:09:24:d2:e6: c4:49:6c:f2:0b:b3:04:89:9d:1e:85:8b:7b:0c:c9: 42:71:a2:ce:bd:30:67:db:b2:00:0f:e8:ff:ff:e8: e1:76:c8:a8:cc:8f:56:35:72:87:28:b9:36:c0:cb: 64:21:22:36:ba:4c:25:98:be:cd:16:72:1b:b9:47: 20:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:91:0F:EF:50:9B:A4:85:08:AE:F6:B9:C0:A0:D6:19:58:6F:FE:82 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/752845bf-4fad-4178-abc3-345e36b80c44.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.0.142.0/23 Signature Algorithm: sha256WithRSAEncryption 1b:fd:7f:e5:2d:37:e3:52:f2:35:b9:6e:50:04:9a:8d:68:7b: e2:0f:8f:99:cc:9b:59:4a:02:2f:50:25:c4:c2:da:d0:4d:43: d6:1c:49:15:22:5b:38:28:28:c5:5c:d3:a1:63:49:df:db:c7: ad:86:5d:57:24:82:42:bd:e9:44:49:70:c9:3c:30:8d:e3:da: f3:8c:8b:72:32:a2:a0:54:ad:d5:e4:05:10:f2:a6:f3:96:6d: ae:ae:30:dc:e2:2c:9d:b1:04:a8:c2:05:7b:28:f9:0e:16:71: 39:24:9e:69:c9:36:a4:63:62:04:e8:9d:69:65:82:3e:5a:e7: 1c:02:62:8a:18:b4:8c:26:e2:23:2a:5b:32:88:c6:cf:b3:bb: 46:de:e5:63:19:18:97:02:bf:0d:97:04:c5:db:58:e6:4d:6a: b7:a7:16:01:ae:f5:24:bd:6a:b8:e5:20:38:d7:f2:04:81:d1: 3b:80:76:16:bd:2b:36:d0:05:ad:98:60:01:f6:b6:fd:40:ad: 00:a5:06:c6:96:bd:fb:c6:2e:b0:8c:bb:c5:4f:3d:21:c3:f9: 02:8a:38:c4:01:40:89:9f:c8:c8:30:71:b0:be:18:bc:46:d8: 4f:31:f6:ad:a1:85:b5:71:c9:b4:5f:28:37:2b:bb:1f:a9:01: f2:81:f6:e4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUW8NwBDLt9/sG+ekZUfDcIhI6LxUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzI4MTU0MTA5WhcNMjUwOTAxMjM1OTU5 WjB6MUkwRwYDVQQFE0AxYTM1YzA5OWEyYjUzZmM2NWU3MzM2MmZhMWI3MmMwYjhm ODM5ZTA1OWFmYWJkOGI1NGRiYjU3ZjBiZTQ4MmFmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDeW1RUE8X6/c9IBTA60ctBJ/IbhlEofiRXbfKvIJVT7nGZ WcDTF3a34ttl7nld98rwvLRzd2eiuDUMu45WBDTZXKFp2xl7lbKgnh/tr1TPRA8G yWtxB9RN4KHXSGgwRMvjkjYfU45sOc5bOsnybIFCwMpicNHKhtWkMii2C/HrL8N7 4CoV35h7S3TGkJtq14rakIoXnVMUdQs24A3xNz6VNUq9Rbklw14I1UChA9Cp8AIU ANAu60FdflqNaPfhCSTS5sRJbPILswSJnR6Fi3sMyUJxos69MGfbsgAP6P//6OF2 yKjMj1Y1cocouTbAy2QhIja6TCWYvs0Wchu5RyAvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU0ZEP71CbpIUIrva5wKDWGVhv/oIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc1Mjg0NWJmLTRmYWQtNDE3OC1hYmMzLTM0NWUzNmI4MGM0NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFFAI4wDQYJKoZIhvcNAQELBQADggEBABv9f+UtN+NS8jW5blAEmo1oe+IP j5nMm1lKAi9QJcTC2tBNQ9YcSRUiWzgoKMVc06FjSd/bx62GXVckgkK96URJcMk8 MI3j2vOMi3IyoqBUrdXkBRDypvOWba6uMNziLJ2xBKjCBXso+Q4WcTkknmnJNqRj YgTonWllgj5a5xwCYooYtIwm4iMqWzKIxs+zu0be5WMZGJcCvw2XBMXbWOZNaren FgGu9SS9arjlIDjX8gSB0TuAdha9KzbQBa2YYAH2tv1ArQClBsaWvfvGLrCMu8VP PSHD+QKKOMQBQImfyMgwcbC+GLxG2E8x9q2hhbVxybRfKDcrux+pAfKB9uQ= -----END CERTIFICATE-----Generated at Sat Aug 9 10:41:24 2025 by rpki-client