$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/12b6201c-9d02-4277-832d-0f1c79e967c0.roa File: 12b6201c-9d02-4277-832d-0f1c79e967c0.roa (raw, json) Hash identifier: x11JqaSodGu8b23xWmCaNFLQWbVahOuCed2ecacvem0= Subject key identifier: F5:EA:61:44:2A:70:2A:7D:21:4A:CE:1E:CA:3D:C5:DB:53:B8:CE:70 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 115F1627441112B1487A53280F9BD6FE13D15A5B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/12b6201c-9d02-4277-832d-0f1c79e967c0.roa Signing time: Fri 29 Aug 2025 00:30:36 +0000 ROA not before: Fri 29 Aug 2025 00:30:36 +0000 ROA not after: Fri 03 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 23.23.80.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:5f:16:27:44:11:12:b1:48:7a:53:28:0f:9b:d6:fe:13:d1:5a:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 29 00:30:36 2025 GMT Not After : Oct 3 23:59:59 2025 GMT Subject: serialNumber=3854c837b816def5fe73a92fd6aff2b0799b635dd8fa4eec5a4b4a5868fafdce, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:17:27:1b:84:07:fa:8e:4a:93:0f:19:50:59: 5c:90:7c:60:d0:9c:ca:5e:3a:af:2f:c1:69:7b:ea: ce:9c:fa:e7:53:76:b7:8b:f8:a0:c3:ad:6e:d5:a1: c6:59:3a:a5:87:e7:65:06:ac:db:18:48:b0:2b:a0: b0:a8:f9:72:29:40:5e:33:5f:f0:c2:f3:c0:ed:07: 2f:da:80:0d:77:78:fe:35:11:71:5d:ba:0d:77:1d: 50:97:40:92:95:2e:52:34:0e:83:a5:73:a9:9b:b4: 05:82:32:81:1c:70:c4:84:b3:fc:a5:ee:50:93:86: 9b:ee:d4:e6:3f:4a:11:e2:3d:0b:bc:04:3b:0f:3e: bd:7c:1c:e7:cd:3f:00:39:49:17:cd:32:fd:16:4c: fc:35:e6:72:ce:07:86:72:86:8c:0d:ef:0a:05:08: 4b:74:6c:0f:00:75:57:f0:eb:db:b3:de:36:db:5e: 2c:57:44:c8:73:4d:ca:b6:4a:26:1c:9e:2c:e4:92: d2:3d:25:8e:92:9b:5d:da:2c:56:d3:ef:88:21:18: 94:c1:83:46:cf:44:dd:d1:d0:dc:2b:67:48:20:ca: 06:f1:72:b5:3d:a8:cd:cc:bd:e4:e8:50:1e:e9:c4: 40:2b:ed:91:dd:85:e2:7c:54:ec:0b:3c:86:94:b0: c0:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:EA:61:44:2A:70:2A:7D:21:4A:CE:1E:CA:3D:C5:DB:53:B8:CE:70 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/12b6201c-9d02-4277-832d-0f1c79e967c0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.23.80.0/20 Signature Algorithm: sha256WithRSAEncryption ab:70:61:3d:f8:27:3e:fb:8f:f9:2f:bf:a7:55:f3:d0:95:61: 15:f4:7b:84:68:df:cd:5f:aa:4a:b3:08:be:18:2e:85:b1:a3: 84:93:b7:c5:81:f0:20:71:2d:1b:12:0a:fd:8f:48:24:0b:d5: ad:eb:6d:ae:d3:50:61:05:ce:c9:c3:52:22:cf:d1:87:53:7b: 81:12:17:df:81:2d:20:54:2c:86:f5:40:62:8c:ff:5e:6b:e8: 43:13:7f:2e:58:20:bb:a4:8a:3c:2a:dc:7c:f8:a8:1d:9d:12: a9:d1:17:2f:c7:da:b6:1f:ef:e6:4a:ad:ad:29:69:7c:2c:3d: 31:8a:a0:48:d1:7f:33:2a:c9:95:41:49:c4:9c:04:f4:1a:66: 5b:a8:ee:8a:1a:88:77:6b:a5:58:b2:2d:b2:b6:82:cb:b9:1c: ae:48:ed:09:95:b7:9e:a1:f0:12:18:9b:6c:a4:10:4e:d1:e5: fa:5d:4e:35:eb:3e:95:1d:8e:a1:e4:85:a7:f5:08:0c:73:5e: e1:dd:8c:cb:26:25:65:0e:7d:a4:db:83:b3:82:24:ea:1c:9f: 7c:cb:bd:d0:85:5c:78:77:a0:8f:6e:a1:4f:c4:49:88:ff:bf: 93:e7:56:52:d0:77:82:b5:c1:47:e2:cc:31:b4:7d:0b:5c:19: d1:40:e3:70 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEV8WJ0QRErFIelMoD5vW/hPRWlswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI5MDAzMDM2WhcNMjUxMDAzMjM1OTU5 WjB6MUkwRwYDVQQFE0AzODU0YzgzN2I4MTZkZWY1ZmU3M2E5MmZkNmFmZjJiMDc5 OWI2MzVkZDhmYTRlZWM1YTRiNGE1ODY4ZmFmZGNlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCTFycbhAf6jkqTDxlQWVyQfGDQnMpeOq8vwWl76s6c+udT dreL+KDDrW7VocZZOqWH52UGrNsYSLAroLCo+XIpQF4zX/DC88DtBy/agA13eP41 EXFdug13HVCXQJKVLlI0DoOlc6mbtAWCMoEccMSEs/yl7lCThpvu1OY/ShHiPQu8 BDsPPr18HOfNPwA5SRfNMv0WTPw15nLOB4ZyhowN7woFCEt0bA8AdVfw69uz3jbb XixXRMhzTcq2SiYcnizkktI9JY6Sm13aLFbT74ghGJTBg0bPRN3R0NwrZ0ggygbx crU9qM3MveToUB7pxEAr7ZHdheJ8VOwLPIaUsMCLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU9ephRCpwKn0hSs4eyj3F21O4znAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzEyYjYyMDFjLTlkMDItNDI3Ny04MzJkLTBmMWM3OWU5NjdjMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQXF1AwDQYJKoZIhvcNAQELBQADggEBAKtwYT34Jz77j/kvv6dV89CVYRX0 e4Ro381fqkqzCL4YLoWxo4STt8WB8CBxLRsSCv2PSCQL1a3rba7TUGEFzsnDUiLP 0YdTe4ESF9+BLSBULIb1QGKM/15r6EMTfy5YILukijwq3Hz4qB2dEqnRFy/H2rYf 7+ZKra0paXwsPTGKoEjRfzMqyZVBScScBPQaZluo7ooaiHdrpViyLbK2gsu5HK5I 7QmVt56h8BIYm2ykEE7R5fpdTjXrPpUdjqHkhaf1CAxzXuHdjMsmJWUOfaTbg7OC JOocn3zLvdCFXHh3oI9uoU/ESYj/v5PnVlLQd4K1wUfizDG0fQtcGdFA43A= -----END CERTIFICATE-----Generated at Sat Sep 6 14:06:12 2025 by rpki-client