$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f6791e6e-7c87-4b47-886c-921b0bc60437.roa File: f6791e6e-7c87-4b47-886c-921b0bc60437.roa (raw, json) Hash identifier: KCSijOa3InpMqhMu/S8spwbw8ywRidJ/NTNkq4SRETE= Subject key identifier: 15:2F:AE:A1:F9:73:5F:4C:2D:14:D3:70:A9:35:51:27:8F:4C:39:8B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4E68B7AB8A553A250C7635FBDDA36E341D76B49B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f6791e6e-7c87-4b47-886c-921b0bc60437.roa Signing time: Mon 04 Aug 2025 15:41:13 +0000 ROA not before: Mon 04 Aug 2025 15:41:13 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 164.195.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:68:b7:ab:8a:55:3a:25:0c:76:35:fb:dd:a3:6e:34:1d:76:b4:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 15:41:13 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=30cc7c7337f7e5e9c4d2a48bb43d4dede737b6f487b3b2a79fb9f55a12c0a2ba, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:55:1e:2c:53:da:4e:a5:82:7b:47:3c:42:54: fa:fe:35:f7:19:09:2f:80:b4:eb:04:ad:9d:8a:6c: 93:ba:92:b3:1f:05:c1:f1:23:52:8f:a2:ab:5c:d0: d0:4d:2e:50:9d:0c:23:71:ca:7c:9b:14:a1:ac:bf: d4:14:d9:fa:52:dc:95:c2:24:da:b5:4b:29:1e:aa: c5:9b:02:08:48:16:ca:e0:dd:6d:37:31:65:b2:46: 7e:bd:96:42:e1:52:12:89:d1:ee:34:97:7f:6c:18: 3c:14:71:1e:87:4f:20:f4:40:28:ab:f8:6e:f0:77: 87:56:ad:07:c0:40:77:30:8c:64:ba:9f:f7:4f:e5: 93:03:f3:44:a1:4f:a6:43:92:2d:b0:22:e6:07:95: 3b:17:5b:dd:f6:56:78:b2:bb:30:f5:2d:be:d3:ce: 11:26:58:ab:1a:4e:0a:04:d2:2f:4f:b4:1b:36:80: 83:6b:e8:61:82:52:0f:ed:9c:f1:57:ca:c7:8a:2f: b2:36:61:9f:50:ac:4a:1c:d8:10:b1:53:82:18:31: e5:74:d1:48:10:12:7a:4a:71:d7:87:c0:f8:82:b6: b2:dc:6b:5e:16:63:70:f4:14:65:c0:ed:4d:13:1e: 59:db:ff:25:01:66:fd:aa:7f:3e:d9:cb:5b:97:ac: 6e:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:2F:AE:A1:F9:73:5F:4C:2D:14:D3:70:A9:35:51:27:8F:4C:39:8B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f6791e6e-7c87-4b47-886c-921b0bc60437.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 164.195.0.0/16 Signature Algorithm: sha256WithRSAEncryption 33:b1:5c:52:25:ac:16:11:63:81:b7:cf:4c:a8:e7:ff:a9:75: 35:e5:f6:67:ac:ae:4b:46:72:02:52:af:6a:06:c6:c0:52:2d: 3f:e7:f1:16:d4:32:6d:96:58:5d:7f:5d:3c:1d:8f:af:35:02: 48:74:e6:3d:09:5a:e6:8d:7f:94:c4:dc:13:72:63:4a:74:8e: cc:b6:a8:1d:8f:df:c4:6f:7b:80:a9:a2:c5:3a:ca:59:36:90: 4c:f7:ad:cc:5a:06:fa:9c:15:f7:cc:24:a0:3a:a8:c7:76:b5: eb:d3:ba:fc:ea:04:df:12:39:b3:12:f1:ec:d2:30:63:82:d7: 15:16:f6:5c:42:21:2e:aa:5b:f2:6b:aa:28:5e:26:23:22:77: 07:1d:73:fa:c4:47:8f:99:9f:34:d6:67:2b:0b:81:76:2f:99: d8:85:ff:cf:33:aa:d6:5b:c8:8c:c6:69:fb:68:31:86:67:a1: 87:a9:58:cc:e6:06:32:10:ec:bb:c0:ee:5d:05:c8:d6:47:28: 64:0c:f1:75:9f:22:a3:6c:2b:84:8e:67:23:31:cd:77:4a:5d: f1:4b:5a:57:1a:e7:a2:c2:1d:78:ed:74:8f:00:5d:ba:13:1e: 3e:f7:20:cd:be:fd:8b:a9:79:0b:09:65:2e:15:1c:7a:d6:48: 6b:c4:27:d4 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUTmi3q4pVOiUMdjX73aNuNB12tJswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA0MTU0MTEzWhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMGNjN2M3MzM3ZjdlNWU5YzRkMmE0OGJiNDNkNGRlZGU3 MzdiNmY0ODdiM2IyYTc5ZmI5ZjU1YTEyYzBhMmJhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsVR4sU9pOpYJ7RzxCVPr+NfcZCS+AtOsErZ2KbJO6krMf BcHxI1KPoqtc0NBNLlCdDCNxynybFKGsv9QU2fpS3JXCJNq1SykeqsWbAghIFsrg 3W03MWWyRn69lkLhUhKJ0e40l39sGDwUcR6HTyD0QCir+G7wd4dWrQfAQHcwjGS6 n/dP5ZMD80ShT6ZDki2wIuYHlTsXW932VniyuzD1Lb7TzhEmWKsaTgoE0i9PtBs2 gINr6GGCUg/tnPFXyseKL7I2YZ9QrEoc2BCxU4IYMeV00UgQEnpKcdeHwPiCtrLc a14WY3D0FGXA7U0THlnb/yUBZv2qfz7Zy1uXrG6HAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUFS+uoflzX0wtFNNwqTVRJ49MOYswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Y2NzkxZTZlLTdjODctNGI0Ny04ODZjLTkyMWIwYmM2MDQzNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCkwzANBgkqhkiG9w0BAQsFAAOCAQEAM7FcUiWsFhFjgbfPTKjn/6l1NeX2 Z6yuS0ZyAlKvagbGwFItP+fxFtQybZZYXX9dPB2PrzUCSHTmPQla5o1/lMTcE3Jj SnSOzLaoHY/fxG97gKmixTrKWTaQTPetzFoG+pwV98wkoDqox3a169O6/OoE3xI5 sxLx7NIwY4LXFRb2XEIhLqpb8muqKF4mIyJ3Bx1z+sRHj5mfNNZnKwuBdi+Z2IX/ zzOq1lvIjMZp+2gxhmehh6lYzOYGMhDsu8DuXQXI1kcoZAzxdZ8io2wrhI5nIzHN d0pd8UtaVxrnosIdeO10jwBduhMePvcgzb79i6l5CwllLhUcetZIa8Qn1A== -----END CERTIFICATE-----Generated at Wed Aug 6 10:17:24 2025 by rpki-client