$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0f5557ac-ffba-4435-9f9b-f31f5f5a4203.roa File: 0f5557ac-ffba-4435-9f9b-f31f5f5a4203.roa (raw, json) Hash identifier: c60onA9YUdpZn0srY/u1xjZyQKozecUrlCBIIU7fsqk= Subject key identifier: 60:28:33:38:9C:72:26:A9:4D:78:EC:CC:60:8D:18:F0:6B:50:C4:9B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 08BE4CDFD02BA0D7D1EEDE202B759F3070272960 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0f5557ac-ffba-4435-9f9b-f31f5f5a4203.roa Signing time: Fri 29 Aug 2025 00:22:09 +0000 ROA not before: Fri 29 Aug 2025 00:22:09 +0000 ROA not after: Fri 03 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 23.23.64.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:be:4c:df:d0:2b:a0:d7:d1:ee:de:20:2b:75:9f:30:70:27:29:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 29 00:22:09 2025 GMT Not After : Oct 3 23:59:59 2025 GMT Subject: serialNumber=9bf35b6c5f33d318be66abe0223daefc5bc80e25de7afa8923e68de3bd17be69, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:ef:c9:4b:b4:b7:e7:3c:7d:cb:90:0b:53:e3: f5:d6:9b:ec:3a:85:99:76:b9:0c:bd:ef:b1:c9:a1: cb:66:56:02:20:7c:05:63:3d:56:74:69:1d:bf:0a: 1a:f3:0b:31:06:0b:99:90:29:6d:7b:c2:ae:1d:e0: 68:3b:f3:57:3e:e8:ec:aa:e7:a3:e8:9c:4b:ca:d3: e7:c8:46:75:e3:49:8a:a7:32:c5:4b:88:db:c3:65: 5a:9d:8c:60:56:0c:43:65:5c:17:2d:9a:f4:41:8f: f5:74:6b:78:b3:fe:c2:f3:d8:b8:4b:a1:ee:fe:92: 43:87:5f:54:c8:94:c2:b5:7a:47:36:48:2f:6a:cf: 50:e2:05:89:e4:4f:4b:f3:ea:90:c9:35:57:3c:33: 1e:01:0b:16:3c:84:98:44:2e:9f:bb:8a:62:4e:20: 8f:1a:69:e2:5c:bf:d5:a8:15:9b:55:2a:a5:91:8d: fb:38:35:fe:9a:13:37:9c:5d:92:b9:44:f3:6c:70: 1e:d8:5e:89:3c:30:53:f2:54:f8:7a:11:e9:f4:6e: c4:9a:df:7f:aa:26:2c:e5:90:a9:68:5d:d6:43:bd: 44:85:d3:e5:87:99:9d:ac:84:d2:0c:00:76:f6:41: 80:31:9b:96:58:a9:d5:81:61:c2:7c:fc:ea:70:1d: a0:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:28:33:38:9C:72:26:A9:4D:78:EC:CC:60:8D:18:F0:6B:50:C4:9B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0f5557ac-ffba-4435-9f9b-f31f5f5a4203.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.23.64.0/21 Signature Algorithm: sha256WithRSAEncryption 60:04:92:a5:7a:d8:91:db:d5:68:a7:fe:d9:22:a6:51:33:1e: 8c:fb:db:1b:e1:32:0b:f5:55:42:37:e6:07:46:1a:ec:c1:01: 92:66:94:a2:82:ca:05:ee:94:b5:32:2b:26:80:7e:c1:3a:0e: 28:b4:39:eb:5d:37:67:d7:8f:95:88:67:a2:6b:41:33:dc:ad: fe:ed:a5:b9:e3:52:23:c6:d9:bd:b1:a9:ae:fb:4a:eb:d4:4a: d7:3f:d9:6e:f8:a1:75:14:81:67:cd:b1:e6:f4:9b:7f:e4:16: a9:21:17:53:1e:d2:b8:ea:d6:94:a6:33:9c:fe:ff:48:08:fc: e8:0b:31:9b:4c:03:14:6f:78:9a:94:b0:80:a9:a5:73:ce:9b: b8:63:95:ea:08:9c:c9:71:56:0a:17:c6:e5:b0:7c:85:7f:3f: c1:e0:fb:d6:9d:61:fc:50:ed:aa:68:16:70:c6:46:f1:77:f8: 4c:22:d6:b5:41:60:a6:13:0b:c0:04:a2:83:57:a0:e9:f6:18: a9:cf:52:9e:6e:24:ce:fb:aa:97:44:b0:83:6c:8c:a3:a4:c3: f3:06:27:63:50:95:d1:bd:0d:e3:c6:bc:dd:5f:02:e6:d5:f7: b3:d3:35:51:8b:a5:78:0a:b5:b9:3d:62:20:7c:97:c3:0a:89: d9:8d:47:a1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCL5M39AroNfR7t4gK3WfMHAnKWAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI5MDAyMjA5WhcNMjUxMDAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A5YmYzNWI2YzVmMzNkMzE4YmU2NmFiZTAyMjNkYWVmYzVi YzgwZTI1ZGU3YWZhODkyM2U2OGRlM2JkMTdiZTY5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDG78lLtLfnPH3LkAtT4/XWm+w6hZl2uQy977HJoctmVgIg fAVjPVZ0aR2/ChrzCzEGC5mQKW17wq4d4Gg781c+6Oyq56PonEvK0+fIRnXjSYqn MsVLiNvDZVqdjGBWDENlXBctmvRBj/V0a3iz/sLz2LhLoe7+kkOHX1TIlMK1ekc2 SC9qz1DiBYnkT0vz6pDJNVc8Mx4BCxY8hJhELp+7imJOII8aaeJcv9WoFZtVKqWR jfs4Nf6aEzecXZK5RPNscB7YXok8MFPyVPh6Een0bsSa33+qJizlkKloXdZDvUSF 0+WHmZ2shNIMAHb2QYAxm5ZYqdWBYcJ8/OpwHaCTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUYCgzOJxyJqlNeOzMYI0Y8GtQxJswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBmNTU1N2FjLWZmYmEtNDQzNS05ZjliLWYzMWY1ZjVhNDIwMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMXF0AwDQYJKoZIhvcNAQELBQADggEBAGAEkqV62JHb1Win/tkiplEzHoz7 2xvhMgv1VUI35gdGGuzBAZJmlKKCygXulLUyKyaAfsE6Dii0OetdN2fXj5WIZ6Jr QTPcrf7tpbnjUiPG2b2xqa77SuvUStc/2W74oXUUgWfNseb0m3/kFqkhF1Me0rjq 1pSmM5z+/0gI/OgLMZtMAxRveJqUsICppXPOm7hjleoInMlxVgoXxuWwfIV/P8Hg +9adYfxQ7apoFnDGRvF3+Ewi1rVBYKYTC8AEooNXoOn2GKnPUp5uJM77qpdEsINs jKOkw/MGJ2NQldG9DePGvN1fAubV97PTNVGLpXgKtbk9YiB8l8MKidmNR6E= -----END CERTIFICATE-----Generated at Sat Sep 6 14:12:11 2025 by rpki-client