$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5b89ddc1-d111-41bb-9344-342f1446c197.roa File: 5b89ddc1-d111-41bb-9344-342f1446c197.roa (raw, json) Hash identifier: NZ1QnOfJDDrtwzwumFlDkWn6Wz132WIJFf7r7LkxGNo= Subject key identifier: EC:BD:21:1C:B9:77:90:CD:9D:2E:0D:7E:7F:D4:53:DC:1E:13:2B:C0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 10B325081DA047DB536E16A97B1F10A16199B864 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5b89ddc1-d111-41bb-9344-342f1446c197.roa Signing time: Thu 18 Sep 2025 19:37:07 +0000 ROA not before: Thu 18 Sep 2025 19:37:07 +0000 ROA not after: Thu 23 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.91.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Sep 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:b3:25:08:1d:a0:47:db:53:6e:16:a9:7b:1f:10:a1:61:99:b8:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 18 19:37:07 2025 GMT Not After : Oct 23 23:59:59 2025 GMT Subject: serialNumber=dfc2645e8d4fc0d3ddabaa9ac53bb200d9beda3b4eda3b2ba4d0c7dde31b4c9d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:15:ed:f7:7a:d5:7d:c9:dc:ea:bc:a3:75:c5: 1d:18:47:49:99:96:95:ac:ae:56:c0:75:fd:6b:8c: 18:90:6d:bc:0b:48:24:47:ad:5f:d8:c3:c8:3d:8f: a2:b9:90:a8:24:9e:bf:90:68:ff:6b:c3:70:98:40: 8b:d1:08:39:14:5b:a8:00:cd:8c:f2:81:e5:7d:ad: 88:b1:eb:6f:cc:f3:43:8a:7f:da:3a:d0:a7:66:9b: d3:d7:9e:c6:8a:eb:ca:ea:ec:8b:d2:5f:97:d0:12: 04:e9:13:b0:4c:3b:49:0d:c5:6a:1d:84:be:be:6b: 7f:23:ad:f5:2b:3b:f9:bd:98:61:71:4a:ad:32:3d: c3:50:78:f2:7a:1e:e3:72:ab:dc:07:9b:3f:06:f1: a1:c4:00:b8:cb:dd:fe:fd:dc:2c:df:49:e2:44:a4: f8:df:df:c2:cd:f5:58:2d:fa:5b:40:3e:d0:51:c3: b1:d5:36:c2:5c:91:2a:4a:21:e9:b5:4b:90:87:4b: 49:75:f7:62:72:bf:86:00:d9:21:8d:60:af:23:47: 0f:b8:e7:a8:ea:d5:92:c2:b9:f3:66:df:a8:bb:77: 42:0d:55:f5:fe:bd:91:70:66:f9:34:78:d7:18:93: 10:f6:e0:fa:55:34:52:e0:36:5c:63:a3:cf:4c:82: 89:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:BD:21:1C:B9:77:90:CD:9D:2E:0D:7E:7F:D4:53:DC:1E:13:2B:C0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5b89ddc1-d111-41bb-9344-342f1446c197.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.91.14.0/24 Signature Algorithm: sha256WithRSAEncryption 37:88:fe:fb:aa:94:b5:c1:d5:9a:8c:27:5f:44:d5:fb:1f:46: 77:7d:55:1f:8f:06:05:f9:34:47:21:8b:b9:15:92:3f:ae:33: a5:43:9f:a0:73:3d:e6:80:a4:7b:67:c6:fe:c8:cd:ed:01:12: 5b:78:d1:45:2d:0c:95:d8:9a:16:1a:4c:e3:42:a9:57:de:f2: de:68:0e:f7:38:77:10:43:e0:77:8a:96:ed:7f:a0:49:05:d7: 2d:05:21:90:15:2e:50:46:2f:81:6d:f9:5c:36:36:0b:49:ff: e2:15:bc:3e:70:fc:84:4e:09:7c:00:c9:9e:07:ad:33:75:1e: 21:4f:e9:f9:99:c3:e0:d8:62:5b:05:3b:85:2e:f5:ee:14:e5: 58:e7:ba:be:aa:8c:b8:7e:d9:e6:e1:2a:b9:23:29:e4:ea:cb: c3:d8:86:a6:a5:f2:8a:6d:0c:26:4a:d7:d7:91:e6:02:27:50: 99:c6:4d:6b:e1:c8:2c:20:c8:82:ca:c2:57:7d:bd:f8:b4:be: 57:80:29:49:91:23:10:65:13:89:66:d8:32:bb:60:d4:90:48: 58:70:8d:4c:34:a6:49:1c:b5:79:f4:6e:87:27:0d:e8:49:a9: fa:d0:49:6a:0c:28:6a:28:e6:ca:4f:c2:62:80:4a:55:d9:ee: dc:85:7a:ea -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUELMlCB2gR9tTbhapex8QoWGZuGQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTE4MTkzNzA3WhcNMjUxMDIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BkZmMyNjQ1ZThkNGZjMGQzZGRhYmFhOWFjNTNiYjIwMGQ5 YmVkYTNiNGVkYTNiMmJhNGQwYzdkZGUzMWI0YzlkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuFe33etV9ydzqvKN1xR0YR0mZlpWsrlbAdf1rjBiQbbwL SCRHrV/Yw8g9j6K5kKgknr+QaP9rw3CYQIvRCDkUW6gAzYzygeV9rYix62/M80OK f9o60Kdmm9PXnsaK68rq7IvSX5fQEgTpE7BMO0kNxWodhL6+a38jrfUrO/m9mGFx Sq0yPcNQePJ6HuNyq9wHmz8G8aHEALjL3f793CzfSeJEpPjf38LN9Vgt+ltAPtBR w7HVNsJckSpKIem1S5CHS0l192Jyv4YA2SGNYK8jRw+456jq1ZLCufNm36i7d0IN VfX+vZFwZvk0eNcYkxD24PpVNFLgNlxjo89MgokhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU7L0hHLl3kM2dLg1+f9RT3B4TK8AwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzViODlkZGMxLWQxMTEtNDFiYi05MzQ0LTM0MmYxNDQ2YzE5Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAXWw4wDQYJKoZIhvcNAQELBQADggEBADeI/vuqlLXB1ZqMJ19E1fsfRnd9 VR+PBgX5NEchi7kVkj+uM6VDn6BzPeaApHtnxv7Ize0BElt40UUtDJXYmhYaTONC qVfe8t5oDvc4dxBD4HeKlu1/oEkF1y0FIZAVLlBGL4Ft+Vw2NgtJ/+IVvD5w/IRO CXwAyZ4HrTN1HiFP6fmZw+DYYlsFO4Uu9e4U5Vjnur6qjLh+2ebhKrkjKeTqy8PY hqal8optDCZK19eR5gInUJnGTWvhyCwgyILKwld9vfi0vleAKUmRIxBlE4lm2DK7 YNSQSFhwjUw0pkkctXn0bocnDehJqfrQSWoMKGoo5spPwmKASlXZ7tyFeuo= -----END CERTIFICATE-----Generated at Fri Sep 19 03:21:49 2025 by rpki-client