$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/979dc8d9-65f6-490d-ba4a-cbcc274052e3.roa File: 979dc8d9-65f6-490d-ba4a-cbcc274052e3.roa (raw, json) Hash identifier: a1I84rj5A9In0nFV/bmhmyJLUr2t0zYk6th4ox5o32U= Subject key identifier: DE:70:40:0A:9C:52:C4:AA:58:5C:B6:EB:94:1D:E6:15:A4:F7:88:F5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 21A918DC9972C1F94D2BE617BDB802B49C6A487C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/979dc8d9-65f6-490d-ba4a-cbcc274052e3.roa Signing time: Mon 28 Jul 2025 15:41:12 +0000 ROA not before: Mon 28 Jul 2025 15:41:12 +0000 ROA not after: Mon 01 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.0.152.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:a9:18:dc:99:72:c1:f9:4d:2b:e6:17:bd:b8:02:b4:9c:6a:48:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 28 15:41:12 2025 GMT Not After : Sep 1 23:59:59 2025 GMT Subject: serialNumber=7c10c71a7f506fa934618d6260cf83dec915d3c85f71e252912ac35af72fdb80, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:84:39:a9:31:4d:5b:07:54:be:f2:b6:69:7e: 8e:19:21:cf:06:a9:ac:28:78:ed:38:c0:2d:4f:95: 89:a5:78:62:fe:ab:10:25:01:28:95:ea:6a:a4:1c: ed:cf:30:39:65:0d:52:da:a2:f6:ea:b6:54:15:fd: 74:35:24:5d:0f:33:43:6f:bf:dd:30:6e:e0:99:88: a7:14:8e:64:dd:53:d0:de:84:c7:e2:cb:93:75:a4: 3b:1e:aa:3f:e7:cd:72:e6:a9:4e:c1:cc:29:90:ab: 88:61:58:fd:d9:75:cd:16:97:4f:c1:89:e8:d0:4f: e3:de:d8:5c:e5:78:d8:8b:a2:f1:fa:7d:e8:f9:ea: 03:03:8e:32:19:61:62:ba:62:94:3a:08:78:65:ec: a7:fe:bb:bf:d2:a2:b8:ad:89:bb:aa:8d:51:89:ce: 13:e1:20:6b:86:34:f4:a9:7c:c2:8c:c3:0f:c9:2f: f5:39:5f:7b:20:88:ae:27:74:df:ef:a2:0b:cb:ea: a2:b1:f2:fd:d4:f5:1a:85:fe:95:9c:7e:a3:fa:94: 8f:bf:5d:8a:48:52:b5:2c:27:ab:86:47:8c:38:49: a5:a6:81:d6:ea:b9:bf:c2:3e:3b:07:00:8c:59:60: b5:bd:58:2f:f4:0e:3d:58:aa:6f:38:02:15:64:a2: 44:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:70:40:0A:9C:52:C4:AA:58:5C:B6:EB:94:1D:E6:15:A4:F7:88:F5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/979dc8d9-65f6-490d-ba4a-cbcc274052e3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.0.152.0/21 Signature Algorithm: sha256WithRSAEncryption 6c:8b:5e:96:d8:96:32:01:a3:98:5b:08:dc:f5:e6:93:5d:f6: 2e:da:b3:52:0c:de:ee:33:f9:a4:5c:5a:ba:bc:bf:e0:60:1d: 53:e0:d0:20:8c:10:7f:57:65:e8:c6:30:ec:f8:3c:c3:8c:d0: 19:e3:e4:de:bb:ad:36:68:9e:9e:94:8e:67:a0:53:62:ea:82: df:9d:cd:20:68:04:bb:e4:95:a6:45:67:21:e7:27:a7:cd:56: e0:62:b9:89:ad:87:e8:30:78:c8:5a:0d:ce:70:3e:b9:23:43: 75:86:2e:5d:9d:81:c3:9c:0d:73:13:9e:7e:2b:91:e1:99:e1: 38:c6:9c:56:17:c8:36:0f:ec:62:64:e6:18:6f:82:9d:62:0f: 72:39:ab:cf:ca:88:f2:a7:63:5c:be:62:f5:5d:6b:69:90:22: 7f:c9:a9:e7:fe:fe:6e:07:8e:c4:c7:c0:16:50:db:77:5c:fe: b2:da:d0:d2:92:be:02:44:ee:21:cb:29:d9:f7:6a:63:df:5c: 3e:c7:8f:96:be:91:b1:57:07:fa:5f:1c:0c:83:d9:7b:95:f0: d5:41:5f:6a:74:e8:47:5e:e6:08:e9:b6:60:a3:3b:d7:68:6e: 36:ec:47:11:b5:e7:aa:16:4b:77:44:ca:97:4d:b5:17:45:61: cb:49:d1:ff -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIakY3JlywflNK+YXvbgCtJxqSHwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzI4MTU0MTEyWhcNMjUwOTAxMjM1OTU5 WjB6MUkwRwYDVQQFE0A3YzEwYzcxYTdmNTA2ZmE5MzQ2MThkNjI2MGNmODNkZWM5 MTVkM2M4NWY3MWUyNTI5MTJhYzM1YWY3MmZkYjgwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCthDmpMU1bB1S+8rZpfo4ZIc8GqawoeO04wC1PlYmleGL+ qxAlASiV6mqkHO3PMDllDVLaovbqtlQV/XQ1JF0PM0Nvv90wbuCZiKcUjmTdU9De hMfiy5N1pDseqj/nzXLmqU7BzCmQq4hhWP3Zdc0Wl0/BiejQT+Pe2FzleNiLovH6 fej56gMDjjIZYWK6YpQ6CHhl7Kf+u7/SoritibuqjVGJzhPhIGuGNPSpfMKMww/J L/U5X3sgiK4ndN/vogvL6qKx8v3U9RqF/pWcfqP6lI+/XYpIUrUsJ6uGR4w4SaWm gdbqub/CPjsHAIxZYLW9WC/0Dj1Yqm84AhVkokStAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU3nBACpxSxKpYXLbrlB3mFaT3iPUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk3OWRjOGQ5LTY1ZjYtNDkwZC1iYTRhLWNiY2MyNzQwNTJlMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANFAJgwDQYJKoZIhvcNAQELBQADggEBAGyLXpbYljIBo5hbCNz15pNd9i7a s1IM3u4z+aRcWrq8v+BgHVPg0CCMEH9XZejGMOz4PMOM0Bnj5N67rTZonp6Ujmeg U2Lqgt+dzSBoBLvklaZFZyHnJ6fNVuBiuYmth+gweMhaDc5wPrkjQ3WGLl2dgcOc DXMTnn4rkeGZ4TjGnFYXyDYP7GJk5hhvgp1iD3I5q8/KiPKnY1y+YvVda2mQIn/J qef+/m4HjsTHwBZQ23dc/rLa0NKSvgJE7iHLKdn3amPfXD7Hj5a+kbFXB/pfHAyD 2XuV8NVBX2p06Ede5gjptmCjO9dobjbsRxG156oWS3dEypdNtRdFYctJ0f8= -----END CERTIFICATE-----Generated at Sat Aug 9 10:48:38 2025 by rpki-client