$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/38e5c8f2-c974-43b5-8f46-5ca289b283ae.roa File: 38e5c8f2-c974-43b5-8f46-5ca289b283ae.roa (raw, json) Hash identifier: dJQZyf2H5cyE8ziVVv4XfJk0C2gC+hqbUHIdYlrscnw= Subject key identifier: A9:DF:DC:4E:1C:CB:08:93:B1:B6:A5:A9:53:FB:0D:47:EC:BF:D1:0A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 391F3388BB9FFBCC097AF7C09AB3D17789509F0E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/38e5c8f2-c974-43b5-8f46-5ca289b283ae.roa Signing time: Thu 18 Sep 2025 19:37:08 +0000 ROA not before: Thu 18 Sep 2025 19:37:08 +0000 ROA not after: Thu 23 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.91.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Sep 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:1f:33:88:bb:9f:fb:cc:09:7a:f7:c0:9a:b3:d1:77:89:50:9f:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 18 19:37:08 2025 GMT Not After : Oct 23 23:59:59 2025 GMT Subject: serialNumber=9c70844ff03f05b7e5beef914c02645c9dc6debb9f055d3d95a0260368ce2f3d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d4:b0:5e:b6:35:b0:df:1b:3e:85:bc:6e:01: 41:54:b7:b9:ba:96:57:e0:b7:0a:0a:d5:42:08:92: 22:82:91:ff:c5:5a:e1:39:f6:b1:85:a7:84:65:7c: 10:c1:2a:8d:f9:f1:e2:46:0e:ca:5c:88:5d:e0:f6: 97:3d:48:52:b3:4c:ba:1b:f6:d6:69:4a:02:08:79: 9a:81:a3:2a:68:f9:c8:d8:6f:e9:88:f4:21:b4:96: 9e:b3:36:db:43:f5:71:3c:50:60:09:31:72:7f:25: 65:6f:24:11:7e:7a:28:a4:74:ae:75:1a:97:e1:74: ed:5b:83:74:84:11:39:fa:36:a2:45:47:5b:d3:7a: 67:a4:07:1e:f2:31:4f:70:a7:b3:38:df:3e:86:fb: 63:2f:16:f7:5b:ef:c2:d2:ef:a2:0d:e2:b4:3f:e6: 8a:ee:a5:52:cc:e6:86:91:a6:68:0a:6f:b8:8f:8e: c7:6f:ac:1f:00:83:73:f9:b9:42:1c:8d:f3:dd:71: 0b:02:69:6e:04:cd:eb:9a:63:ce:26:7c:e9:bb:ce: ae:e2:43:64:dd:af:1d:63:ca:36:4a:9b:55:42:71: 47:45:30:f0:16:c3:9b:bf:4b:97:40:16:cb:7d:05: 60:6d:4f:72:08:b3:b1:c9:d4:bc:24:97:b2:23:c8: 9d:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:DF:DC:4E:1C:CB:08:93:B1:B6:A5:A9:53:FB:0D:47:EC:BF:D1:0A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/38e5c8f2-c974-43b5-8f46-5ca289b283ae.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.91.15.0/24 Signature Algorithm: sha256WithRSAEncryption 92:14:0b:94:73:ce:28:da:9f:82:a0:dd:e6:ff:48:61:f6:ae: ac:1c:f1:7d:fa:5a:fa:a3:48:d0:77:3e:f1:27:51:e1:08:80: dd:db:5a:20:9e:18:ab:ab:85:3a:39:7d:eb:ff:d6:14:ce:c1: c7:85:67:f9:5d:02:c2:62:ca:6d:2c:81:fa:a1:b0:66:0e:e5: 2d:9c:de:e2:e6:86:4f:4a:a9:71:22:62:83:30:d0:f3:a7:e1: db:85:d5:a7:1b:be:96:c0:c7:d4:d4:8b:c6:95:71:a5:6d:53: 02:91:fc:37:7d:6b:53:d1:cd:1f:7a:3a:99:26:62:12:e8:3b: bd:bd:7e:04:ff:c6:75:26:a9:7f:29:16:ae:42:1e:0a:a4:3d: 1d:88:50:a5:4c:bd:7c:5e:ee:61:fa:38:26:90:69:f8:52:63: 60:53:d8:b2:12:3e:8d:20:20:76:8a:9b:4a:6e:f8:de:ff:a0: cd:46:ff:b1:d8:a9:6f:a2:0a:8f:f3:2d:36:71:ca:0b:e4:7b: 4e:5b:ac:88:46:24:6e:a8:20:b2:59:35:72:1d:41:1b:23:ab: 6a:e0:83:c1:47:b3:9c:4d:6d:29:d1:56:83:cf:8e:72:6e:10: 50:36:01:00:fe:6d:b1:94:f2:18:e3:ab:bb:9f:98:ab:cd:03: 2d:df:f8:b4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOR8ziLuf+8wJevfAmrPRd4lQnw4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTE4MTkzNzA4WhcNMjUxMDIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A5YzcwODQ0ZmYwM2YwNWI3ZTViZWVmOTE0YzAyNjQ1Yzlk YzZkZWJiOWYwNTVkM2Q5NWEwMjYwMzY4Y2UyZjNkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDA1LBetjWw3xs+hbxuAUFUt7m6llfgtwoK1UIIkiKCkf/F WuE59rGFp4RlfBDBKo358eJGDspciF3g9pc9SFKzTLob9tZpSgIIeZqBoypo+cjY b+mI9CG0lp6zNttD9XE8UGAJMXJ/JWVvJBF+eiikdK51GpfhdO1bg3SEETn6NqJF R1vTemekBx7yMU9wp7M43z6G+2MvFvdb78LS76IN4rQ/5orupVLM5oaRpmgKb7iP jsdvrB8Ag3P5uUIcjfPdcQsCaW4EzeuaY84mfOm7zq7iQ2Tdrx1jyjZKm1VCcUdF MPAWw5u/S5dAFst9BWBtT3IIs7HJ1Lwkl7IjyJ2vAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUqd/cThzLCJOxtqWpU/sNR+y/0QowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM4ZTVjOGYyLWM5NzQtNDNiNS04ZjQ2LTVjYTI4OWIyODNhZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAXWw8wDQYJKoZIhvcNAQELBQADggEBAJIUC5Rzzijan4Kg3eb/SGH2rqwc 8X36WvqjSNB3PvEnUeEIgN3bWiCeGKurhTo5fev/1hTOwceFZ/ldAsJiym0sgfqh sGYO5S2c3uLmhk9KqXEiYoMw0POn4duF1acbvpbAx9TUi8aVcaVtUwKR/Dd9a1PR zR96OpkmYhLoO729fgT/xnUmqX8pFq5CHgqkPR2IUKVMvXxe7mH6OCaQafhSY2BT 2LISPo0gIHaKm0pu+N7/oM1G/7HYqW+iCo/zLTZxygvke05brIhGJG6oILJZNXId QRsjq2rgg8FHs5xNbSnRVoPPjnJuEFA2AQD+bbGU8hjjq7ufmKvNAy3f+LQ= -----END CERTIFICATE-----Generated at Fri Sep 19 03:16:36 2025 by rpki-client