$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9c5b22d0-c570-479a-9176-1b8ae33317b3.roa File: 9c5b22d0-c570-479a-9176-1b8ae33317b3.roa (raw, json) Hash identifier: fP2iGYJLM4nKpCOOoO+u+QVlR9J5FllXILciuqQc8ec= Subject key identifier: 9E:13:01:34:1A:B1:F4:D9:68:F4:37:C7:E2:D8:0E:0F:85:85:3C:89 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 156E23AF9457B4597EA887A4F5E4ADF1EA3BAAE6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9c5b22d0-c570-479a-9176-1b8ae33317b3.roa Signing time: Tue 05 Aug 2025 15:00:23 +0000 ROA not before: Tue 05 Aug 2025 15:00:23 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 98.130.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:6e:23:af:94:57:b4:59:7e:a8:87:a4:f5:e4:ad:f1:ea:3b:aa:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 5 15:00:23 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=733c65ce74c559ef18505e08497938e35bed487a7884e43442d0535a0df7ddb8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:cc:14:38:74:b8:2d:fc:c0:df:93:c2:0f:f2: 9d:44:a1:f1:5e:39:20:db:24:dd:ca:2c:9c:e4:17: 13:81:59:48:a1:fb:37:55:f0:1d:dc:7f:a4:5b:89: 98:3f:18:9c:ba:25:c4:60:a1:80:25:ae:d1:11:22: 23:85:73:20:3d:56:68:bb:6a:5a:c3:ff:01:2a:bd: 4a:43:4e:8c:5e:b6:6b:c4:11:eb:7b:19:e0:a7:9f: af:d2:7f:10:b7:62:09:81:60:c3:11:13:f7:7f:25: 77:5e:f1:99:a4:2c:d8:87:e5:d6:1a:05:27:8b:9b: ad:a9:b1:1a:c3:bb:39:8a:c8:b1:2a:9b:5d:66:d7: e2:0f:6a:7b:ec:65:80:83:6b:61:dc:81:f8:76:6a: 34:c3:d4:9b:d4:1b:a3:8d:cc:ad:af:e4:09:ee:22: 78:68:06:87:97:67:d0:f5:25:81:14:43:c9:48:08: 7d:da:19:cf:44:53:36:cf:3a:42:4e:b3:8b:09:40: 68:8c:b6:78:8a:ce:b6:fa:4d:66:ba:86:7d:84:1a: 0d:75:a3:7f:f7:00:ce:d0:49:85:81:82:35:e7:08: 5f:09:6a:f7:42:ab:dd:7c:37:3f:b8:c7:cc:5c:92: 12:f8:45:bf:cb:f8:c8:d5:3f:2e:a2:80:ea:8d:22: f7:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:13:01:34:1A:B1:F4:D9:68:F4:37:C7:E2:D8:0E:0F:85:85:3C:89 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9c5b22d0-c570-479a-9176-1b8ae33317b3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 98.130.0.0/16 Signature Algorithm: sha256WithRSAEncryption 2e:bc:2a:65:7b:eb:29:76:e7:d1:a5:97:3d:e7:62:4b:39:7c: af:e8:d7:83:b9:78:1e:55:74:7a:32:92:21:b3:1d:16:2c:c2: b2:68:b2:fc:f1:89:ad:6e:a1:6b:04:ed:8b:42:15:0e:3e:16: 33:2e:64:8f:0b:c7:54:3f:f4:42:f3:2f:8a:e5:4b:91:8a:a0: 58:17:a7:07:8c:be:aa:d2:22:04:a6:72:66:3e:aa:37:13:5c: 52:4d:a8:6d:5b:ed:7b:de:6a:79:f3:f7:58:18:5d:8d:d5:48: 19:58:d7:18:cb:8f:7b:d4:7c:ea:0a:ba:2a:20:4f:11:58:44: 8a:d6:b9:e9:86:39:cf:ae:08:aa:09:84:12:53:60:21:3f:2e: 21:d3:31:f5:29:45:69:83:9f:39:3f:88:7e:b5:64:f2:fe:00: a4:97:45:09:9f:47:b2:71:cd:b9:5e:3b:4c:bc:0d:5b:32:5a: db:0b:e3:46:07:95:c7:a4:c7:f8:dd:14:e7:51:15:ce:52:57: fe:d2:5e:21:23:f9:93:3e:f9:6e:f5:ca:27:65:77:13:3f:66: 97:73:00:27:74:d4:2f:e3:59:cd:85:a3:b7:fd:38:df:d4:25: fb:6d:ae:a7:70:84:71:e6:cb:3d:0e:ec:dd:c9:6d:06:43:8b: ef:d7:0d:38 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUFW4jr5RXtFl+qIek9eSt8eo7quYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA1MTUwMDIzWhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MzNjNjVjZTc0YzU1OWVmMTg1MDVlMDg0OTc5MzhlMzVi ZWQ0ODdhNzg4NGU0MzQ0MmQwNTM1YTBkZjdkZGI4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+zBQ4dLgt/MDfk8IP8p1EofFeOSDbJN3KLJzkFxOBWUih +zdV8B3cf6RbiZg/GJy6JcRgoYAlrtERIiOFcyA9Vmi7alrD/wEqvUpDToxetmvE Eet7GeCnn6/SfxC3YgmBYMMRE/d/JXde8ZmkLNiH5dYaBSeLm62psRrDuzmKyLEq m11m1+IPanvsZYCDa2Hcgfh2ajTD1JvUG6ONzK2v5AnuInhoBoeXZ9D1JYEUQ8lI CH3aGc9EUzbPOkJOs4sJQGiMtniKzrb6TWa6hn2EGg11o3/3AM7QSYWBgjXnCF8J avdCq918Nz+4x8xckhL4Rb/L+MjVPy6igOqNIvdRAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUnhMBNBqx9Nlo9DfH4tgOD4WFPIkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzljNWIyMmQwLWM1NzAtNDc5YS05MTc2LTFiOGFlMzMzMTdiMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBigjANBgkqhkiG9w0BAQsFAAOCAQEALrwqZXvrKXbn0aWXPediSzl8r+jX g7l4HlV0ejKSIbMdFizCsmiy/PGJrW6hawTti0IVDj4WMy5kjwvHVD/0QvMviuVL kYqgWBenB4y+qtIiBKZyZj6qNxNcUk2obVvte95qefP3WBhdjdVIGVjXGMuPe9R8 6gq6KiBPEVhEita56YY5z64IqgmEElNgIT8uIdMx9SlFaYOfOT+IfrVk8v4ApJdF CZ9HsnHNuV47TLwNWzJa2wvjRgeVx6TH+N0U51EVzlJX/tJeISP5kz75bvXKJ2V3 Ez9ml3MAJ3TUL+NZzYWjt/0439Ql+22up3CEcebLPQ7s3cltBkOL79cNOA== -----END CERTIFICATE-----Generated at Fri Aug 8 19:22:02 2025 by rpki-client