$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e1bc806e-2572-403e-b1e0-48367c6289fe.roa File: e1bc806e-2572-403e-b1e0-48367c6289fe.roa (raw, json) Hash identifier: 7c/9n8AWK5Zvt/JkL4G0qtmn3VQ2UyyTbyFtUiRF5ec= Subject key identifier: 15:D3:19:C2:A5:43:5D:C5:AB:24:4F:3B:9D:B6:A0:1A:09:35:C8:AA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 193895E7FF610C458CFCA3E351E5B25881ABA175 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e1bc806e-2572-403e-b1e0-48367c6289fe.roa Signing time: Sat 09 Aug 2025 00:01:12 +0000 ROA not before: Sat 09 Aug 2025 00:01:12 +0000 ROA not after: Sat 13 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 134.43.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 11 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:38:95:e7:ff:61:0c:45:8c:fc:a3:e3:51:e5:b2:58:81:ab:a1:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 9 00:01:12 2025 GMT Not After : Sep 13 23:59:59 2025 GMT Subject: serialNumber=6e77a244e18c9bce003e30debc35eacdecc422de8068003add0d69ee51ff9b5e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:6e:95:4c:25:52:72:48:63:c7:14:aa:0a:87: 69:aa:f6:5a:b4:83:b5:f4:9f:30:db:45:83:06:e7: 02:04:7f:b1:0b:0e:bb:c2:c7:13:5f:a3:11:4f:b8: cb:0e:69:78:c1:60:26:25:a8:fd:63:87:3d:50:aa: 48:7a:9c:21:71:b5:38:a7:03:51:80:04:6d:66:cf: b5:00:74:3e:80:94:1a:9a:24:d5:12:91:75:f9:bd: 03:2c:e9:41:26:e1:82:e1:2d:2d:97:5b:61:6e:75: 95:61:02:89:22:ff:56:3f:0e:41:9a:15:00:38:e2: 33:56:79:ad:bd:40:d4:33:19:0b:86:2d:63:79:f3: 9a:04:5f:52:90:db:de:9b:af:2c:ef:d2:c9:73:24: 80:42:56:21:10:92:3a:5d:b8:bf:37:dc:30:8f:ed: 13:23:d3:82:76:d1:07:29:f0:6c:fd:4b:ca:b2:dc: 76:11:7e:ca:61:46:af:dd:a6:5e:63:d9:94:03:5c: 7b:50:37:9d:35:1f:6a:f9:83:56:79:6a:26:b8:43: 3f:62:9b:ab:be:9f:f7:5a:95:da:f3:24:60:c8:ac: ac:f3:13:08:3a:89:45:f9:3e:a3:68:28:0c:cf:a0: 34:98:98:b9:ac:8b:ad:92:86:5b:59:1d:0a:a7:67: 38:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:D3:19:C2:A5:43:5D:C5:AB:24:4F:3B:9D:B6:A0:1A:09:35:C8:AA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e1bc806e-2572-403e-b1e0-48367c6289fe.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 134.43.0.0/16 Signature Algorithm: sha256WithRSAEncryption d1:d8:8c:f0:73:21:f8:74:10:39:a5:da:bb:3a:52:d1:b9:85: c2:c3:80:db:1c:a8:be:71:a2:ee:a8:aa:7f:10:d0:92:78:fe: 54:5e:ae:5e:b7:85:ad:98:34:ed:10:d9:7f:26:a6:26:a4:8f: 23:45:91:44:48:ca:68:dc:f6:89:40:cd:3c:a1:e2:e6:5c:c0: 2f:81:6f:1e:29:be:b6:da:3d:be:3a:c2:ca:ab:fe:40:e7:a6: d3:6b:f0:b1:44:d3:26:86:13:14:72:51:2c:07:31:be:bc:5a: 7e:c0:12:ce:10:04:e2:fe:87:7e:f0:de:8e:01:b4:12:9e:eb: c1:f8:7b:d7:80:7c:38:61:fb:c1:b7:5a:8d:b3:1c:96:b9:13: d0:0b:66:27:a0:82:e3:05:d0:82:2c:c5:1a:06:22:f4:35:84: 78:78:3d:eb:60:3e:19:1b:ea:74:62:56:c1:a4:63:5f:f7:e8: 47:d6:5c:b9:c5:7a:e2:10:db:fc:ac:f6:c0:ba:94:c7:1b:b1: 5b:f1:de:d1:f0:eb:e5:8f:70:9d:71:d8:f5:55:cc:50:bf:28: 4c:af:79:67:2c:46:9f:0c:6e:6b:6e:1d:e4:91:9b:04:88:e6: 6e:2f:63:a7:40:cd:06:6a:12:7b:21:05:b0:3a:55:f5:ce:3a: 8a:aa:ef:e6 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUGTiV5/9hDEWM/KPjUeWyWIGroXUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA5MDAwMTEyWhcNMjUwOTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZTc3YTI0NGUxOGM5YmNlMDAzZTMwZGViYzM1ZWFjZGVj YzQyMmRlODA2ODAwM2FkZDBkNjllZTUxZmY5YjVlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAbpVMJVJySGPHFKoKh2mq9lq0g7X0nzDbRYMG5wIEf7EL DrvCxxNfoxFPuMsOaXjBYCYlqP1jhz1Qqkh6nCFxtTinA1GABG1mz7UAdD6AlBqa JNUSkXX5vQMs6UEm4YLhLS2XW2FudZVhAoki/1Y/DkGaFQA44jNWea29QNQzGQuG LWN585oEX1KQ296bryzv0slzJIBCViEQkjpduL833DCP7RMj04J20Qcp8Gz9S8qy 3HYRfsphRq/dpl5j2ZQDXHtQN501H2r5g1Z5aia4Qz9im6u+n/daldrzJGDIrKzz Ewg6iUX5PqNoKAzPoDSYmLmsi62ShltZHQqnZzgxAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUFdMZwqVDXcWrJE87nbagGgk1yKowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2UxYmM4MDZlLTI1NzItNDAzZS1iMWUwLTQ4MzY3YzYyODlmZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCGKzANBgkqhkiG9w0BAQsFAAOCAQEA0diM8HMh+HQQOaXauzpS0bmFwsOA 2xyovnGi7qiqfxDQknj+VF6uXreFrZg07RDZfyamJqSPI0WRREjKaNz2iUDNPKHi 5lzAL4FvHim+tto9vjrCyqv+QOem02vwsUTTJoYTFHJRLAcxvrxafsASzhAE4v6H fvDejgG0Ep7rwfh714B8OGH7wbdajbMclrkT0AtmJ6CC4wXQgizFGgYi9DWEeHg9 62A+GRvqdGJWwaRjX/foR9ZcucV64hDb/Kz2wLqUxxuxW/He0fDr5Y9wnXHY9VXM UL8oTK95ZyxGnwxua24d5JGbBIjmbi9jp0DNBmoSeyEFsDpV9c46iqrv5g== -----END CERTIFICATE-----Generated at Sat Aug 9 23:08:45 2025 by rpki-client