$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8d469487-1107-4d13-bd1f-6f60c5d3da36.roa File: 8d469487-1107-4d13-bd1f-6f60c5d3da36.roa (raw, json) Hash identifier: 6XkbTA3C2HCcxcF6XppYfOnWYscZ8YqR4KLgkTx9pDg= Subject key identifier: A1:28:BA:26:8C:DA:BF:2C:CF:66:6C:BF:46:46:80:77:C5:9C:E1:FB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 758BFADAC83332EA0DCA85CEB80B485C60B1573C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8d469487-1107-4d13-bd1f-6f60c5d3da36.roa Signing time: Mon 04 Aug 2025 17:41:07 +0000 ROA not before: Mon 04 Aug 2025 17:41:07 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 64.23.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 08 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:8b:fa:da:c8:33:32:ea:0d:ca:85:ce:b8:0b:48:5c:60:b1:57:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 17:41:07 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=6f5381940778ab91efbc8883748cec01126161f221a7f69f1e0b6c7c89c88f69, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:cb:2f:fc:9c:8c:48:97:71:b9:8f:d3:fe:94: c4:c3:1b:cf:1d:25:36:e0:94:f2:05:43:55:63:0f: f8:e9:27:59:49:5f:4f:e8:c7:98:50:88:70:b1:a2: 21:05:ee:5c:7a:b4:b0:3c:3f:cc:ff:d1:11:03:07: c9:3d:d7:da:29:4e:11:99:3d:59:1a:d6:aa:dc:b4: 9d:be:f8:bf:d4:c4:2e:e3:ba:92:2f:f1:c1:45:6a: 3f:70:0f:d7:68:5a:1f:86:66:72:4b:02:4c:a4:53: dd:51:15:9f:43:98:61:4d:44:9e:fe:f0:86:0a:0a: 78:1d:38:6a:8e:41:a4:e2:93:ef:e0:67:ca:31:07: 1f:26:6e:38:4f:78:8f:58:28:40:75:1a:af:38:19: da:09:6d:e5:57:7e:fc:53:14:8e:52:29:f6:82:fd: 7c:98:15:77:27:fa:4f:b4:62:dc:cf:08:51:8e:9b: cf:59:6d:12:d4:cf:50:95:06:39:cb:c1:5d:43:9f: dc:3c:18:46:fb:99:cd:29:a5:55:18:4f:02:56:44: eb:46:05:f6:12:fc:48:62:0f:18:23:64:61:24:6f: 6a:6e:3a:50:c8:47:97:10:02:0d:4b:44:ca:f1:74: d4:84:49:ca:f3:a6:7c:80:33:ad:13:95:44:cd:ff: aa:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:28:BA:26:8C:DA:BF:2C:CF:66:6C:BF:46:46:80:77:C5:9C:E1:FB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8d469487-1107-4d13-bd1f-6f60c5d3da36.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.23.0.0/18 Signature Algorithm: sha256WithRSAEncryption d2:63:31:3f:af:9a:b8:7d:4a:2e:aa:bb:27:c8:fa:f5:d4:fb: 40:60:c2:0e:21:14:47:c9:ce:bf:21:fb:af:37:69:6d:28:54: 51:14:dd:9f:76:e2:5d:4c:96:06:3b:39:8d:be:43:9d:35:6c: b8:6f:1e:fc:2f:16:7f:37:5b:c5:ee:97:32:21:2e:17:b1:ce: 39:a6:47:c7:96:61:13:f5:cf:37:28:d3:0a:02:ea:12:25:d8: 4c:c3:d6:94:a2:f8:f8:4f:2e:a9:0f:b6:4d:a9:b4:bb:10:33: 89:c1:73:9e:c2:b3:9c:39:7f:df:c9:06:d6:4f:b4:7a:f2:ee: a8:42:da:c9:c7:78:17:f3:da:e6:75:a9:94:5d:5a:c0:db:1b: 8f:28:21:92:57:87:4a:25:22:7f:47:90:42:c0:14:9e:2e:99: f8:c7:14:7a:0f:2b:2b:f9:d3:61:c6:c4:45:63:a9:2c:01:88: b9:5a:a8:49:5b:1c:5d:7d:93:e4:49:4e:73:57:d8:16:37:45: 3b:48:3c:3a:93:4b:9f:37:80:d7:14:45:3f:1c:da:38:2f:2a: 56:0b:bf:9a:02:1e:26:41:64:4a:d9:97:a1:ea:1e:e4:17:a3: 2d:d4:7b:0d:31:34:d3:96:64:44:10:28:6a:c1:d0:b4:41:aa: b2:77:a7:1f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdYv62sgzMuoNyoXOuAtIXGCxVzwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA0MTc0MTA3WhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZjUzODE5NDA3NzhhYjkxZWZiYzg4ODM3NDhjZWMwMTEy NjE2MWYyMjFhN2Y2OWYxZTBiNmM3Yzg5Yzg4ZjY5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5yy/8nIxIl3G5j9P+lMTDG88dJTbglPIFQ1VjD/jpJ1lJ X0/ox5hQiHCxoiEF7lx6tLA8P8z/0REDB8k919opThGZPVka1qrctJ2++L/UxC7j upIv8cFFaj9wD9doWh+GZnJLAkykU91RFZ9DmGFNRJ7+8IYKCngdOGqOQaTik+/g Z8oxBx8mbjhPeI9YKEB1Gq84GdoJbeVXfvxTFI5SKfaC/XyYFXcn+k+0YtzPCFGO m89ZbRLUz1CVBjnLwV1Dn9w8GEb7mc0ppVUYTwJWROtGBfYS/EhiDxgjZGEkb2pu OlDIR5cQAg1LRMrxdNSEScrzpnyAM60TlUTN/6oLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUoSi6JozavyzPZmy/RkaAd8Wc4fswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhkNDY5NDg3LTExMDctNGQxMy1iZDFmLTZmNjBjNWQzZGEzNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZAFwAwDQYJKoZIhvcNAQELBQADggEBANJjMT+vmrh9Si6quyfI+vXU+0Bg wg4hFEfJzr8h+683aW0oVFEU3Z924l1MlgY7OY2+Q501bLhvHvwvFn83W8XulzIh LhexzjmmR8eWYRP1zzco0woC6hIl2EzD1pSi+PhPLqkPtk2ptLsQM4nBc57Cs5w5 f9/JBtZPtHry7qhC2snHeBfz2uZ1qZRdWsDbG48oIZJXh0olIn9HkELAFJ4umfjH FHoPKyv502HGxEVjqSwBiLlaqElbHF19k+RJTnNX2BY3RTtIPDqTS583gNcURT8c 2jgvKlYLv5oCHiZBZErZl6HqHuQXoy3Uew0xNNOWZEQQKGrB0LRBqrJ3px8= -----END CERTIFICATE-----Generated at Thu Aug 7 04:01:02 2025 by rpki-client