$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c22f83f9-6806-4731-9ee7-da3a022533e2.roa File: c22f83f9-6806-4731-9ee7-da3a022533e2.roa (raw, json) Hash identifier: Uz2vzpXEK+Vcwur+Ot27owwj+r8MPBJWB6X0dw7hYro= Subject key identifier: 28:66:3C:36:9C:9F:2A:46:AE:FD:B2:EE:1C:2F:2C:4D:11:82:9E:A3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 399A19132996B8F024989C67D205B4E657EEB87B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c22f83f9-6806-4731-9ee7-da3a022533e2.roa Signing time: Wed 16 Jul 2025 00:20:20 +0000 ROA not before: Wed 16 Jul 2025 00:20:20 +0000 ROA not after: Wed 20 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 170.15.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 09 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:9a:19:13:29:96:b8:f0:24:98:9c:67:d2:05:b4:e6:57:ee:b8:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 16 00:20:20 2025 GMT Not After : Aug 20 23:59:59 2025 GMT Subject: serialNumber=09d580448da2b172808cf6169f9db11322f5be9b61e9bf4da8271ba1d4040e5c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:64:a9:c8:36:a6:17:6f:6b:ce:4d:a2:27:db: ae:a2:e6:bd:46:34:ac:51:5e:68:f0:7d:58:65:0e: 03:07:65:1c:5c:39:b5:44:4e:d8:6a:17:7f:72:c7: f3:bc:bb:de:b5:04:c6:bf:00:61:f3:fd:f4:20:71: cd:b7:02:3f:2e:df:7d:12:aa:3e:f3:a9:4f:5a:6b: 3f:1f:41:e9:58:73:ba:27:a2:ec:0c:09:14:50:05: ca:b5:8e:7b:16:c6:93:25:62:7f:7d:44:8d:d3:ad: 48:0f:c0:43:92:7c:2f:88:a8:db:1e:7b:f0:54:a5: fe:f7:32:2a:4d:23:16:99:8d:09:ee:dc:50:72:72: 76:be:14:d6:1c:63:5c:1e:83:f3:c9:41:b8:ff:03: d6:24:a7:bc:e3:e1:8c:f8:34:39:d5:ae:4a:84:1e: 66:00:b8:9e:19:e0:fa:61:b2:0a:92:19:18:0f:d0: b2:82:4a:0c:b4:95:9f:bd:77:4c:1b:27:10:b9:4e: f2:50:59:2b:67:35:fc:de:4b:6f:23:de:a0:76:a7: b4:85:d5:fe:d8:d9:37:ae:83:5f:10:b3:26:03:35: b3:45:10:ac:4a:82:ad:50:df:0f:71:d1:22:e2:68: ed:16:ca:2d:80:cc:fa:24:71:27:ff:22:35:49:6e: 6f:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:66:3C:36:9C:9F:2A:46:AE:FD:B2:EE:1C:2F:2C:4D:11:82:9E:A3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c22f83f9-6806-4731-9ee7-da3a022533e2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 170.15.0.0/16 Signature Algorithm: sha256WithRSAEncryption a4:bb:0a:fb:b7:33:84:3b:45:03:ef:3e:93:e3:b2:af:8f:8e: b7:83:08:38:47:69:71:43:f0:20:b6:c1:76:b0:60:20:a8:45: 41:8d:70:ad:8e:3f:14:e0:cf:80:72:e1:54:5c:a9:d1:68:b5: ab:4a:b0:35:9e:50:22:f4:ea:9f:52:1e:cc:32:18:17:81:dc: 07:2c:cd:55:a2:47:7b:d1:30:71:89:d7:4f:fa:17:e5:39:0c: 00:2c:c4:ec:6a:0d:c8:56:55:b7:f0:ad:27:2e:7f:d5:7e:23: ab:c0:b8:d4:1e:3a:81:92:dc:61:bc:5f:bf:6b:ea:b3:70:f4: ba:d6:30:3b:14:6d:13:d4:e2:b5:ac:45:b1:20:d9:87:1d:93: 2e:95:f6:2b:75:34:9d:09:72:53:b8:b6:15:97:15:dc:65:96: 98:5f:15:60:87:97:c7:af:71:67:5a:79:ea:d7:ef:67:28:91: f3:e7:1c:4c:f3:cd:21:df:51:46:97:d7:2a:c0:00:b8:d7:e0: 06:a8:94:7c:c5:68:d4:8c:80:90:7f:09:21:8a:97:f1:b8:dc: 56:7c:aa:15:e4:18:9c:5a:fa:7c:96:1e:46:63:db:5e:f2:ee: 27:32:96:b1:d6:ae:7c:db:89:a6:aa:99:5c:9b:14:4b:b8:99: 11:b9:68:44 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUOZoZEymWuPAkmJxn0gW05lfuuHswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzE2MDAyMDIwWhcNMjUwODIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AwOWQ1ODA0NDhkYTJiMTcyODA4Y2Y2MTY5ZjlkYjExMzIy ZjViZTliNjFlOWJmNGRhODI3MWJhMWQ0MDQwZTVjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJZKnINqYXb2vOTaIn266i5r1GNKxRXmjwfVhlDgMHZRxc ObVETthqF39yx/O8u961BMa/AGHz/fQgcc23Aj8u330Sqj7zqU9aaz8fQelYc7on ouwMCRRQBcq1jnsWxpMlYn99RI3TrUgPwEOSfC+IqNsee/BUpf73MipNIxaZjQnu 3FBycna+FNYcY1weg/PJQbj/A9Ykp7zj4Yz4NDnVrkqEHmYAuJ4Z4PphsgqSGRgP 0LKCSgy0lZ+9d0wbJxC5TvJQWStnNfzeS28j3qB2p7SF1f7Y2Teug18QsyYDNbNF EKxKgq1Q3w9x0SLiaO0Wyi2AzPokcSf/IjVJbm9nAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUKGY8NpyfKkau/bLuHC8sTRGCnqMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MyMmY4M2Y5LTY4MDYtNDczMS05ZWU3LWRhM2EwMjI1MzNlMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCqDzANBgkqhkiG9w0BAQsFAAOCAQEApLsK+7czhDtFA+8+k+Oyr4+Ot4MI OEdpcUPwILbBdrBgIKhFQY1wrY4/FODPgHLhVFyp0Wi1q0qwNZ5QIvTqn1IezDIY F4HcByzNVaJHe9EwcYnXT/oX5TkMACzE7GoNyFZVt/CtJy5/1X4jq8C41B46gZLc Ybxfv2vqs3D0utYwOxRtE9TitaxFsSDZhx2TLpX2K3U0nQlyU7i2FZcV3GWWmF8V YIeXx69xZ1p56tfvZyiR8+ccTPPNId9RRpfXKsAAuNfgBqiUfMVo1IyAkH8JIYqX 8bjcVnyqFeQYnFr6fJYeRmPbXvLuJzKWsdaufNuJpqqZXJsUS7iZEbloRA== -----END CERTIFICATE-----Generated at Fri Aug 8 13:11:54 2025 by rpki-client