$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/14093ced-0677-41a7-9db0-a2497340d51e.roa File: 14093ced-0677-41a7-9db0-a2497340d51e.roa (raw, json) Hash identifier: ZjT8oFTBotURi2Q2HVE3LHUjahv4lZk9A9tvLeHGOD4= Subject key identifier: 9C:0D:91:C1:D1:41:51:57:55:95:9E:DB:76:45:BE:90:1D:13:05:17 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 21CB63E5D3228314926F111EED951A5CF85F8BA3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/14093ced-0677-41a7-9db0-a2497340d51e.roa Signing time: Thu 18 Sep 2025 19:37:12 +0000 ROA not before: Thu 18 Sep 2025 19:37:12 +0000 ROA not after: Thu 23 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.91.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Sep 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:cb:63:e5:d3:22:83:14:92:6f:11:1e:ed:95:1a:5c:f8:5f:8b:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 18 19:37:12 2025 GMT Not After : Oct 23 23:59:59 2025 GMT Subject: serialNumber=95250041154c74e959b87121419e588cefa3593b617da32e3f5e01126d1089c8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:9f:cc:29:bd:d9:8c:72:dd:5d:e6:fb:f1:94: f7:f0:c7:80:57:16:e2:ab:b6:87:8a:ae:e2:83:ca: 11:6c:e0:34:0c:c2:00:15:d7:8a:26:a3:fd:83:6a: 4c:0f:07:74:70:3d:f7:d2:3c:6a:ca:f4:87:d4:4a: dd:a1:9f:be:f8:71:3c:e2:70:76:7e:1c:60:cd:f2: 9f:60:79:cc:d9:3f:da:b4:7b:47:cd:f2:10:cd:a7: 98:1c:ec:10:ee:2e:f7:d3:17:ba:c3:6f:ee:ba:ff: fc:d5:15:05:49:d8:10:d9:ef:ef:d8:12:96:d8:3e: 36:f2:f7:9a:0d:ac:40:17:ab:ad:cb:05:f7:bb:92: 0a:ab:30:a3:90:3b:2d:9a:3b:39:75:ca:a1:6a:68: 57:b4:ec:b2:88:60:46:33:6c:83:63:f5:3e:73:e2: 33:6f:fe:69:3c:47:a9:cd:95:a5:81:4f:5d:52:74: 50:a2:1a:38:02:5a:fc:00:67:4e:37:37:6c:f5:1a: 91:12:d9:6e:20:70:30:68:5f:5f:80:f0:ed:7f:28: 7f:cb:b3:71:4c:f8:aa:cd:0b:1c:ba:26:a4:5f:b6: c1:d7:d6:ab:7b:71:78:21:38:07:0d:19:32:49:65: 64:f7:87:29:ab:c0:be:76:3e:14:79:0d:fb:a7:e1: ab:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:0D:91:C1:D1:41:51:57:55:95:9E:DB:76:45:BE:90:1D:13:05:17 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/14093ced-0677-41a7-9db0-a2497340d51e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.91.18.0/24 Signature Algorithm: sha256WithRSAEncryption a3:66:62:db:47:d7:f0:9a:e2:cb:20:4e:32:e2:45:ae:c2:95: 99:9b:74:13:9d:03:31:28:13:78:c9:06:91:08:ae:8d:11:47: 7f:ca:23:ae:bd:6d:71:11:d1:17:0e:7c:82:28:3c:6b:20:48: 43:c3:e6:d8:cd:3f:8a:09:bf:9c:8f:db:91:ff:fd:67:aa:2b: b6:6a:89:2a:0e:e0:e0:96:56:91:32:94:e2:6d:1d:22:df:82: 7d:1f:9d:9a:49:5a:48:a4:a8:8f:55:34:97:af:e6:3f:7a:f6: 14:b8:fc:de:31:5c:d9:54:82:7c:ea:06:99:ae:a6:d9:44:07: 35:75:0d:14:75:53:2f:c5:ec:1e:8e:91:37:0b:bb:df:8f:d4: 4a:ad:95:e8:09:b0:54:b4:56:ed:35:5a:3c:96:07:95:e8:fa: 86:a2:13:da:e3:4d:b7:38:44:b9:f3:8b:3d:04:6e:fb:fa:85: 38:1b:08:66:b3:e2:54:b9:91:c4:13:f1:60:3c:f7:db:5b:41: 09:1c:6c:18:2f:a0:64:eb:75:e4:f9:92:b8:08:23:bb:21:15: af:0a:7b:b6:a4:06:1b:6d:26:88:36:32:d3:90:d6:b1:2a:b3: 69:9f:02:7e:63:a0:2f:68:a2:ff:c7:3f:93:1b:18:59:42:14: 45:29:9e:06 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIctj5dMigxSSbxEe7ZUaXPhfi6MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTE4MTkzNzEyWhcNMjUxMDIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A5NTI1MDA0MTE1NGM3NGU5NTliODcxMjE0MTllNTg4Y2Vm YTM1OTNiNjE3ZGEzMmUzZjVlMDExMjZkMTA4OWM4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIn8wpvdmMct1d5vvxlPfwx4BXFuKrtoeKruKDyhFs4DQM wgAV14omo/2DakwPB3RwPffSPGrK9IfUSt2hn774cTzicHZ+HGDN8p9geczZP9q0 e0fN8hDNp5gc7BDuLvfTF7rDb+66//zVFQVJ2BDZ7+/YEpbYPjby95oNrEAXq63L Bfe7kgqrMKOQOy2aOzl1yqFqaFe07LKIYEYzbINj9T5z4jNv/mk8R6nNlaWBT11S dFCiGjgCWvwAZ043N2z1GpES2W4gcDBoX1+A8O1/KH/Ls3FM+KrNCxy6JqRftsHX 1qt7cXghOAcNGTJJZWT3hymrwL52PhR5Dfun4atxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUnA2RwdFBUVdVlZ7bdkW+kB0TBRcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE0MDkzY2VkLTA2NzctNDFhNy05ZGIwLWEyNDk3MzQwZDUxZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAXWxIwDQYJKoZIhvcNAQELBQADggEBAKNmYttH1/Ca4ssgTjLiRa7ClZmb dBOdAzEoE3jJBpEIro0RR3/KI669bXER0RcOfIIoPGsgSEPD5tjNP4oJv5yP25H/ /WeqK7ZqiSoO4OCWVpEylOJtHSLfgn0fnZpJWkikqI9VNJev5j969hS4/N4xXNlU gnzqBpmuptlEBzV1DRR1Uy/F7B6OkTcLu9+P1EqtlegJsFS0Vu01WjyWB5Xo+oai E9rjTbc4RLnziz0Ebvv6hTgbCGaz4lS5kcQT8WA899tbQQkcbBgvoGTrdeT5krgI I7shFa8Ke7akBhttJog2MtOQ1rEqs2mfAn5joC9oov/HP5MbGFlCFEUpngY= -----END CERTIFICATE-----Generated at Fri Sep 19 03:16:30 2025 by rpki-client