$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/98dabde8-c510-4c80-abcd-864ef2bfbbf9.roa File: 98dabde8-c510-4c80-abcd-864ef2bfbbf9.roa (raw, json) Hash identifier: JX7HhosiS7At8aH6ONcadIJcVlqru1T5aGJfYutc20w= Subject key identifier: F3:B0:CE:A8:D6:3F:EE:9F:2A:25:0B:2C:51:B4:E1:7A:8A:B0:94:A0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 381FBF20C42C08DCFBFF0F537738D092ED2EAD90 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/98dabde8-c510-4c80-abcd-864ef2bfbbf9.roa Signing time: Tue 05 Aug 2025 00:52:10 +0000 ROA not before: Tue 05 Aug 2025 00:52:10 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 75.101.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:1f:bf:20:c4:2c:08:dc:fb:ff:0f:53:77:38:d0:92:ed:2e:ad:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 5 00:52:10 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=e7898372f0e80a5ab2b82b4acf8c1fe2ab872a32d4331f39faa2d388bb2746ca, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:60:85:46:ea:ef:e3:c9:e8:6e:90:15:3a:88: 47:bc:78:b5:1b:f2:b7:d7:8b:62:b4:e0:2a:bc:a5: 96:4e:ee:ac:c1:fe:2b:51:66:d6:fd:a2:53:ca:23: b4:72:6b:58:46:77:b6:dc:04:ff:66:df:d5:68:74: 47:d3:2e:cb:a9:cc:76:d5:75:c3:07:02:65:f8:c6: 4f:1d:8b:17:19:c2:51:be:54:e6:f9:ab:c3:dc:22: 43:c6:8d:90:23:69:44:05:a5:2b:45:0d:ab:c9:a0: 36:be:a1:6c:4f:fc:e1:1c:e2:f7:6e:cb:4c:1e:35: bf:b1:76:e9:f2:9f:3e:85:47:26:f4:24:59:98:d2: 4d:29:a4:15:ed:3c:1c:ae:57:9a:37:ad:72:7b:72: a8:ad:9b:b9:0c:9c:d4:10:8f:a5:13:74:da:b2:6f: cd:2a:ac:f2:01:ac:f7:32:4d:9e:ea:85:ca:f9:4d: e1:00:b6:af:f8:be:ed:da:a7:25:a0:fa:73:33:3f: f8:2c:ef:20:a0:a1:d6:c5:25:d6:7a:03:32:a1:41: 24:0f:ec:9b:80:b5:2b:55:d5:bb:fe:b2:e5:73:c4: d3:90:b9:aa:52:41:0a:4c:b2:4b:1e:83:65:56:58: f3:7e:c4:de:fe:67:ea:6a:44:fa:f9:65:64:d7:6c: 78:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:B0:CE:A8:D6:3F:EE:9F:2A:25:0B:2C:51:B4:E1:7A:8A:B0:94:A0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/98dabde8-c510-4c80-abcd-864ef2bfbbf9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 75.101.192.0/18 Signature Algorithm: sha256WithRSAEncryption 9a:e9:f0:64:2d:75:09:96:09:29:2b:88:49:f4:c6:1c:90:18: d3:cb:47:93:4a:ea:6b:12:2d:f5:f3:aa:c9:85:50:68:5e:a0: df:6e:91:bb:fa:ea:db:86:da:2e:7a:15:9f:11:3c:9b:8c:53: d5:ca:5e:62:1b:9e:1c:e7:da:a1:4d:7d:58:0a:62:d3:76:4c: 43:1e:bf:e6:68:2e:7e:12:15:8f:1d:5e:e8:09:2b:3e:8e:76: fe:1a:26:6d:d8:d6:46:fc:1f:b7:c7:4d:b4:11:20:a6:a3:7c: b1:01:2a:18:76:9d:17:68:e6:45:7c:34:22:e2:1c:6c:c5:45: 73:56:b3:81:63:82:cd:f0:b8:f2:ba:0f:f8:ec:2b:8b:68:2f: 2d:6b:8f:6e:8d:0a:d3:90:04:57:bb:96:73:87:c5:83:f5:ca: 2b:b4:2e:71:8a:8c:d5:2d:23:28:f6:c6:f9:65:4b:66:f5:49: 88:4a:ce:6a:d2:12:0b:1b:ed:57:92:ae:b7:90:50:b2:ba:0b: 58:bc:6d:cd:78:d2:d5:e8:86:08:90:d8:c6:ac:93:8c:bd:5e: 8a:06:71:2b:e4:33:d6:a6:3a:59:1e:69:1a:59:ea:1d:a3:ca: 2a:da:ca:17:3d:ab:25:9c:74:e2:00:38:9b:d0:48:c6:38:29: e0:fb:0b:b7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOB+/IMQsCNz7/w9TdzjQku0urZAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA1MDA1MjEwWhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNzg5ODM3MmYwZTgwYTVhYjJiODJiNGFjZjhjMWZlMmFi ODcyYTMyZDQzMzFmMzlmYWEyZDM4OGJiMjc0NmNhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLYIVG6u/jyehukBU6iEe8eLUb8rfXi2K04Cq8pZZO7qzB /itRZtb9olPKI7Rya1hGd7bcBP9m39VodEfTLsupzHbVdcMHAmX4xk8dixcZwlG+ VOb5q8PcIkPGjZAjaUQFpStFDavJoDa+oWxP/OEc4vduy0weNb+xdunynz6FRyb0 JFmY0k0ppBXtPByuV5o3rXJ7cqitm7kMnNQQj6UTdNqyb80qrPIBrPcyTZ7qhcr5 TeEAtq/4vu3apyWg+nMzP/gs7yCgodbFJdZ6AzKhQSQP7JuAtStV1bv+suVzxNOQ uapSQQpMskseg2VWWPN+xN7+Z+pqRPr5ZWTXbHhhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU87DOqNY/7p8qJQssUbTheoqwlKAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk4ZGFiZGU4LWM1MTAtNGM4MC1hYmNkLTg2NGVmMmJmYmJmOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZLZcAwDQYJKoZIhvcNAQELBQADggEBAJrp8GQtdQmWCSkriEn0xhyQGNPL R5NK6msSLfXzqsmFUGheoN9ukbv66tuG2i56FZ8RPJuMU9XKXmIbnhzn2qFNfVgK YtN2TEMev+ZoLn4SFY8dXugJKz6Odv4aJm3Y1kb8H7fHTbQRIKajfLEBKhh2nRdo 5kV8NCLiHGzFRXNWs4Fjgs3wuPK6D/jsK4toLy1rj26NCtOQBFe7lnOHxYP1yiu0 LnGKjNUtIyj2xvllS2b1SYhKzmrSEgsb7VeSrreQULK6C1i8bc140tXohgiQ2Mas k4y9XooGcSvkM9amOlkeaRpZ6h2jyirayhc9qyWcdOIAOJvQSMY4KeD7C7c= -----END CERTIFICATE-----Generated at Fri Aug 8 19:23:16 2025 by rpki-client