$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0edc2521-a53e-4b05-b534-8b3be9d9f8ef.roa File: 0edc2521-a53e-4b05-b534-8b3be9d9f8ef.roa (raw, json) Hash identifier: v+6jxdVTejvGYU+Zlw3RsqMg1km9onqmYwEocaFTnpo= Subject key identifier: 92:6E:E2:99:3A:78:A5:32:D4:06:FF:14:3D:68:5A:ED:AA:55:91:39 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 710A1C39BAE3A945F4204C7E6DDEF5FCACD9C244 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0edc2521-a53e-4b05-b534-8b3be9d9f8ef.roa Signing time: Tue 02 Sep 2025 00:21:41 +0000 ROA not before: Tue 02 Sep 2025 00:21:41 +0000 ROA not after: Tue 07 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 64.252.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:0a:1c:39:ba:e3:a9:45:f4:20:4c:7e:6d:de:f5:fc:ac:d9:c2:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 2 00:21:41 2025 GMT Not After : Oct 7 23:59:59 2025 GMT Subject: serialNumber=90634eaee602fd74f62e2d1109115be3f38815688cd89501f45745b5cd2a55ef, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:93:83:3c:e7:c0:75:47:22:60:a2:87:d1:0d: 21:94:b6:93:04:8e:d1:c1:64:f3:7b:97:7c:37:a2: 85:37:c5:d9:30:71:97:e1:e9:99:24:8f:3c:69:74: 94:83:d2:c3:f0:1f:65:cb:06:e0:30:24:08:be:e0: 48:92:cd:f9:1f:b5:f8:8f:c0:9d:55:85:48:9d:81: e4:5c:a6:f6:f6:de:2f:78:50:63:15:5a:f5:11:f7: 9b:40:b4:f6:79:62:62:04:b7:9e:92:9e:e2:1d:13: 4a:f5:65:4f:b7:73:fb:26:cb:b9:42:66:0a:40:a4: 11:81:00:69:c9:8c:c2:7d:db:5a:79:01:64:e2:f2: 96:1a:ac:d8:55:5d:93:a7:b4:6b:06:07:b3:31:a2: dc:53:5c:88:98:9a:b8:69:1d:61:43:d2:bd:67:ff: 65:0d:80:29:f6:16:c8:1c:c9:9a:40:4a:ea:47:d2: 3d:16:0d:5a:58:57:eb:28:11:e5:a7:47:94:98:77: 36:16:30:7a:95:04:bf:ec:42:8c:11:8e:fe:dd:b0: dc:1a:f1:b6:d8:8c:9f:cd:5b:71:16:44:c9:fb:a1: d3:d9:4a:38:39:7e:9f:f2:7a:b8:14:0a:30:0f:64: 30:b1:9f:c2:69:f6:1a:9c:12:09:9a:67:d9:6d:56: 9e:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:6E:E2:99:3A:78:A5:32:D4:06:FF:14:3D:68:5A:ED:AA:55:91:39 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0edc2521-a53e-4b05-b534-8b3be9d9f8ef.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.128.0/18 Signature Algorithm: sha256WithRSAEncryption c9:01:e3:bd:94:c1:c3:d2:ef:cc:78:2b:98:90:b6:3f:3a:49: c3:4d:9d:0c:f4:36:f3:d0:1f:c2:02:a3:e9:80:0d:03:78:41: 71:59:bb:04:a0:2a:f8:32:11:cf:d2:b3:ff:16:e8:7d:53:39: f3:a3:bc:c4:38:27:4a:27:85:04:5b:a1:2b:82:ee:cc:86:95: 69:d6:22:1d:b9:31:3f:0a:b2:44:f0:21:20:79:7c:44:c6:db: 8e:f9:0d:48:11:37:11:c6:f8:d2:c8:68:2e:66:ba:c6:db:da: 5d:ba:ac:f2:95:07:4f:d4:d1:81:4b:03:d4:5b:bd:63:42:93: 1e:fb:92:d9:f9:82:44:a7:92:90:ec:ad:20:6c:77:4e:c9:a7: 4e:a1:80:c0:7e:86:b0:ec:31:1f:3d:ff:09:bb:20:44:c0:4d: 57:31:a8:0a:dd:fe:bb:9b:85:05:bd:0d:f3:8f:ab:25:e9:f3: 87:af:cc:e3:c2:25:13:e7:20:07:4e:1c:f1:87:94:2d:92:ad: 2c:65:dc:eb:7c:68:ee:35:fd:11:7a:84:c1:f5:d0:d9:d3:b6: 30:78:33:6b:22:98:fe:40:a2:eb:ed:12:2b:a2:67:b2:2a:29: ef:5d:97:eb:0a:1f:d9:2b:6e:1e:50:19:a0:2e:dd:69:4d:dc: 3d:66:6b:c9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcQocObrjqUX0IEx+bd71/KzZwkQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTAyMDAyMTQxWhcNMjUxMDA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A5MDYzNGVhZWU2MDJmZDc0ZjYyZTJkMTEwOTExNWJlM2Yz ODgxNTY4OGNkODk1MDFmNDU3NDViNWNkMmE1NWVmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuk4M858B1RyJgoofRDSGUtpMEjtHBZPN7l3w3ooU3xdkw cZfh6ZkkjzxpdJSD0sPwH2XLBuAwJAi+4EiSzfkftfiPwJ1VhUidgeRcpvb23i94 UGMVWvUR95tAtPZ5YmIEt56SnuIdE0r1ZU+3c/smy7lCZgpApBGBAGnJjMJ921p5 AWTi8pYarNhVXZOntGsGB7MxotxTXIiYmrhpHWFD0r1n/2UNgCn2FsgcyZpASupH 0j0WDVpYV+soEeWnR5SYdzYWMHqVBL/sQowRjv7dsNwa8bbYjJ/NW3EWRMn7odPZ Sjg5fp/yergUCjAPZDCxn8Jp9hqcEgmaZ9ltVp4bAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUkm7imTp4pTLUBv8UPWha7apVkTkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBlZGMyNTIxLWE1M2UtNGIwNS1iNTM0LThiM2JlOWQ5ZjhlZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZA/IAwDQYJKoZIhvcNAQELBQADggEBAMkB472UwcPS78x4K5iQtj86ScNN nQz0NvPQH8ICo+mADQN4QXFZuwSgKvgyEc/Ss/8W6H1TOfOjvMQ4J0onhQRboSuC 7syGlWnWIh25MT8KskTwISB5fETG2475DUgRNxHG+NLIaC5musbb2l26rPKVB0/U 0YFLA9RbvWNCkx77ktn5gkSnkpDsrSBsd07Jp06hgMB+hrDsMR89/wm7IETATVcx qArd/rubhQW9DfOPqyXp84evzOPCJRPnIAdOHPGHlC2SrSxl3Ot8aO41/RF6hMH1 0NnTtjB4M2simP5AouvtEiuiZ7IqKe9dl+sKH9krbh5QGaAu3WlN3D1ma8k= -----END CERTIFICATE-----Generated at Sat Sep 6 14:08:21 2025 by rpki-client