$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b3c0e199-49ca-4e9e-90e1-c595278d550d.roa File: b3c0e199-49ca-4e9e-90e1-c595278d550d.roa (raw, json) Hash identifier: YCRhwlwONWjzuL0VK8Gv0bHsPeLmAf6gk5uDU7cAu6Q= Subject key identifier: E9:81:5F:D8:6B:54:0F:1B:05:A8:B4:D0:03:83:AE:13:DD:F1:64:03 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1AF7251310467776285CB9F6070FD7119FE92892 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b3c0e199-49ca-4e9e-90e1-c595278d550d.roa Signing time: Wed 06 Aug 2025 14:22:07 +0000 ROA not before: Wed 06 Aug 2025 14:22:07 +0000 ROA not after: Wed 10 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 94.36.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:f7:25:13:10:46:77:76:28:5c:b9:f6:07:0f:d7:11:9f:e9:28:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 6 14:22:07 2025 GMT Not After : Sep 10 23:59:59 2025 GMT Subject: serialNumber=7cc45c9249beee64e855cf7120437c51b1acdb88a1e44a29b614eb3b142822b5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:16:2f:6f:47:fa:db:a0:e7:6f:f8:d4:01:44: 06:96:33:2c:6b:2f:12:3b:04:8f:be:b2:36:0d:a0: a4:66:64:b2:23:58:33:9c:26:50:c8:9a:cd:1a:8e: ec:21:b5:a2:86:d0:8f:c3:ea:41:63:ba:44:9a:66: 68:7d:0d:6a:e3:c7:23:e3:c4:0d:84:c0:c0:03:ef: ce:1e:3b:6a:a4:65:48:15:93:68:6e:17:0f:7d:89: 73:14:b2:a2:41:bb:f8:bd:2c:3f:4a:18:6d:ad:68: 31:a8:ac:84:16:85:46:47:e3:bd:9e:96:6f:e7:2e: c1:7d:4f:82:bf:f2:d5:cb:e6:09:71:5b:86:b7:45: 8a:de:41:2b:61:0d:71:48:3a:1c:a9:9d:17:47:7f: b7:05:96:ef:71:3a:83:f2:d7:a7:d4:94:97:88:ea: b0:fa:a8:b8:fd:fc:6d:ef:29:73:24:53:9a:c0:20: 64:d9:13:8e:bd:91:3a:92:70:06:41:5a:5e:1f:44: 5c:e8:ef:d9:54:9f:4d:45:8d:5f:86:90:98:b7:75: f1:b9:71:8a:f7:dd:42:d1:fb:97:c8:38:4c:e1:f0: dc:a2:39:7a:16:22:8e:2f:87:1f:ca:70:57:67:00: 89:4d:41:67:fc:69:10:58:61:c6:c4:97:ab:10:a8: e2:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:81:5F:D8:6B:54:0F:1B:05:A8:B4:D0:03:83:AE:13:DD:F1:64:03 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b3c0e199-49ca-4e9e-90e1-c595278d550d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 94.36.0.0/15 Signature Algorithm: sha256WithRSAEncryption 25:c7:03:17:46:c1:9e:9e:7e:ff:e0:1f:8e:55:03:14:b2:c0: 1a:8d:27:7b:6a:6f:41:06:be:56:23:a5:0d:b8:9f:e7:2e:e8: f8:a5:fe:e2:32:0c:df:13:38:c9:74:c7:6a:37:5e:a5:89:81: 2c:34:5f:46:62:17:b5:6b:6b:b2:f7:f4:af:45:6e:c5:58:73: 56:19:7a:9d:6b:33:ed:a8:d2:5e:9f:84:81:85:8f:ea:78:ca: 40:77:d5:da:c7:dc:22:c0:5c:db:ba:77:e1:be:18:c3:83:ae: 5c:e5:4b:4a:b5:ad:af:f3:f1:7e:9b:f2:e7:dd:15:df:06:ab: c1:cc:62:d7:13:64:8b:09:7e:14:77:cb:f2:1f:6e:89:23:09: 22:42:93:54:22:2f:e8:ca:10:37:fb:e9:1e:62:bd:7b:86:06: 80:84:3c:5a:1c:81:e6:59:8a:a5:de:5d:0d:31:11:ca:0b:1c: 61:5a:9c:e6:51:ed:9c:ae:9c:33:bf:76:55:c5:45:a9:30:22: 19:fa:55:48:a4:69:0e:e8:33:f8:7b:18:1a:28:dd:f5:03:77: 75:56:b5:dc:c4:9a:bb:7a:09:f1:ac:ae:82:73:77:b4:b0:ce: 3f:13:41:c1:aa:79:4b:ca:59:90:5a:0a:63:6d:96:a1:8f:07: 52:a7:b1:c2 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUGvclExBGd3YoXLn2Bw/XEZ/pKJIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA2MTQyMjA3WhcNMjUwOTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3Y2M0NWM5MjQ5YmVlZTY0ZTg1NWNmNzEyMDQzN2M1MWIx YWNkYjg4YTFlNDRhMjliNjE0ZWIzYjE0MjgyMmI1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZFi9vR/rboOdv+NQBRAaWMyxrLxI7BI++sjYNoKRmZLIj WDOcJlDIms0ajuwhtaKG0I/D6kFjukSaZmh9DWrjxyPjxA2EwMAD784eO2qkZUgV k2huFw99iXMUsqJBu/i9LD9KGG2taDGorIQWhUZH472elm/nLsF9T4K/8tXL5glx W4a3RYreQSthDXFIOhypnRdHf7cFlu9xOoPy16fUlJeI6rD6qLj9/G3vKXMkU5rA IGTZE469kTqScAZBWl4fRFzo79lUn01FjV+GkJi3dfG5cYr33ULR+5fIOEzh8Nyi OXoWIo4vhx/KcFdnAIlNQWf8aRBYYcbEl6sQqOJNAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU6YFf2GtUDxsFqLTQA4OuE93xZAMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IzYzBlMTk5LTQ5Y2EtNGU5ZS05MGUxLWM1OTUyNzhkNTUwZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwFeJDANBgkqhkiG9w0BAQsFAAOCAQEAJccDF0bBnp5+/+AfjlUDFLLAGo0n e2pvQQa+ViOlDbif5y7o+KX+4jIM3xM4yXTHajdepYmBLDRfRmIXtWtrsvf0r0Vu xVhzVhl6nWsz7ajSXp+EgYWP6njKQHfV2sfcIsBc27p34b4Yw4OuXOVLSrWtr/Px fpvy590V3warwcxi1xNkiwl+FHfL8h9uiSMJIkKTVCIv6MoQN/vpHmK9e4YGgIQ8 WhyB5lmKpd5dDTERygscYVqc5lHtnK6cM792VcVFqTAiGfpVSKRpDugz+HsYGijd 9QN3dVa13MSau3oJ8ayugnN3tLDOPxNBwap5S8pZkFoKY22WoY8HUqexwg== -----END CERTIFICATE-----Generated at Sat Aug 9 01:21:09 2025 by rpki-client