$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1961c89e-9444-43ce-a7aa-2c38d465b29d.roa File: 1961c89e-9444-43ce-a7aa-2c38d465b29d.roa (raw, json) Hash identifier: Zdg0LRVQKZGN8e/83aTD/HSSsuD0+Gy/Gqbmhy7loww= Subject key identifier: B0:43:53:64:EB:ED:20:C8:37:04:9E:6B:E7:D7:98:C8:F5:9D:99:50 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 02479532A5C938DEC2C45B054A9A892FCC31EAA0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1961c89e-9444-43ce-a7aa-2c38d465b29d.roa Signing time: Fri 29 Aug 2025 00:21:51 +0000 ROA not before: Fri 29 Aug 2025 00:21:51 +0000 ROA not after: Fri 03 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 23.22.74.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:47:95:32:a5:c9:38:de:c2:c4:5b:05:4a:9a:89:2f:cc:31:ea:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 29 00:21:51 2025 GMT Not After : Oct 3 23:59:59 2025 GMT Subject: serialNumber=7127d7d1d27f8aacb883f5956b28cb7a6672da18101b71102e03e67b0d3a06ba, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:a5:89:4d:a5:b4:4a:74:23:c2:9e:68:91:fb: d6:96:69:28:dd:e4:7b:d2:6b:a9:6a:36:87:c3:c6: e5:f1:0a:a8:c6:10:8f:89:08:e8:15:e2:0c:74:5f: 0f:a6:fe:aa:be:83:e0:fb:fb:22:7e:47:1e:3d:7d: 2e:2d:e8:60:de:2b:27:70:b7:4b:48:a9:80:91:fd: 51:76:f7:e5:8d:35:18:47:ec:a2:12:c0:ef:d8:6e: cc:67:00:f4:db:78:5c:d8:0b:57:fb:0d:e4:e9:3a: b8:e7:38:72:b5:15:ed:36:e3:93:9b:74:1a:5e:b1: fa:47:0d:39:88:7f:0f:1a:a2:b0:2e:f9:06:4e:3c: 63:89:e8:1b:28:55:cb:e7:7d:b9:0f:ba:b2:3f:c5: 6c:63:b7:51:60:71:13:2f:4c:47:b6:0d:02:cf:56: d9:cd:3e:87:77:5f:bf:f2:ba:86:1b:6a:e1:47:d1: 0f:db:e2:9f:50:4a:09:62:37:a2:83:77:92:4a:d9: 52:de:1b:21:77:e4:37:02:01:9c:11:29:f1:a9:24: 23:6c:7e:63:33:72:f8:ad:ee:21:80:63:09:c6:4d: cb:53:50:25:3f:15:35:5d:85:f6:5d:6d:4e:0b:c7: 5f:3d:6a:4e:27:d9:d3:66:c7:aa:15:20:0f:49:96: 62:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:43:53:64:EB:ED:20:C8:37:04:9E:6B:E7:D7:98:C8:F5:9D:99:50 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1961c89e-9444-43ce-a7aa-2c38d465b29d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.22.74.0/23 Signature Algorithm: sha256WithRSAEncryption 51:01:36:70:a4:77:fa:6f:cd:cc:cd:ea:b0:fe:5b:0f:f9:55: df:70:ec:a8:8d:c9:ee:3a:62:22:19:ae:0a:f8:65:97:65:5f: e9:97:6e:ec:9d:6d:76:39:c6:ad:3f:9c:9a:1c:46:06:d6:92: e8:e1:6b:f4:49:46:64:12:0e:f1:b7:dc:84:f1:51:12:bd:7b: 21:bf:9b:af:0c:e1:3a:0c:38:cd:3e:01:b0:cd:81:c8:a0:25: 46:27:8c:86:80:a0:d0:7a:aa:81:ab:00:ec:7b:cf:f3:cd:4d: 8d:ce:65:8e:00:7f:77:8f:e3:2f:1b:6f:df:2c:d0:da:e3:f7: cd:f9:57:2e:df:86:c5:18:31:47:e8:50:c0:c0:5f:a9:0a:e4: 8d:bc:49:d1:d7:fa:4a:86:0c:c3:c1:ac:1c:e3:fb:cf:78:7e: 49:05:00:fc:d8:46:3d:36:6c:8f:5c:66:9d:26:0e:86:b1:a7: 57:ec:28:5b:ae:f0:3f:5e:8a:24:e5:3a:04:38:db:12:8c:6b: 67:85:ec:e8:80:ac:92:44:2a:91:37:e4:63:cb:1b:4a:39:f2: d1:2f:6f:71:60:a4:82:c4:c9:19:ac:c3:cb:44:fb:5a:06:81: e0:d8:e1:9f:d0:73:8f:db:0d:d4:88:7f:be:57:0b:7b:64:4e: 90:dd:41:f0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAkeVMqXJON7CxFsFSpqJL8wx6qAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI5MDAyMTUxWhcNMjUxMDAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A3MTI3ZDdkMWQyN2Y4YWFjYjg4M2Y1OTU2YjI4Y2I3YTY2 NzJkYTE4MTAxYjcxMTAyZTAzZTY3YjBkM2EwNmJhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6pYlNpbRKdCPCnmiR+9aWaSjd5HvSa6lqNofDxuXxCqjG EI+JCOgV4gx0Xw+m/qq+g+D7+yJ+Rx49fS4t6GDeKydwt0tIqYCR/VF29+WNNRhH 7KISwO/YbsxnAPTbeFzYC1f7DeTpOrjnOHK1Fe0245ObdBpesfpHDTmIfw8aorAu +QZOPGOJ6BsoVcvnfbkPurI/xWxjt1FgcRMvTEe2DQLPVtnNPod3X7/yuoYbauFH 0Q/b4p9QSgliN6KDd5JK2VLeGyF35DcCAZwRKfGpJCNsfmMzcvit7iGAYwnGTctT UCU/FTVdhfZdbU4Lx189ak4n2dNmx6oVIA9JlmJdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUsENTZOvtIMg3BJ5r59eYyPWdmVAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE5NjFjODllLTk0NDQtNDNjZS1hN2FhLTJjMzhkNDY1YjI5ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEXFkowDQYJKoZIhvcNAQELBQADggEBAFEBNnCkd/pvzczN6rD+Ww/5Vd9w 7KiNye46YiIZrgr4ZZdlX+mXbuydbXY5xq0/nJocRgbWkujha/RJRmQSDvG33ITx URK9eyG/m68M4ToMOM0+AbDNgcigJUYnjIaAoNB6qoGrAOx7z/PNTY3OZY4Af3eP 4y8bb98s0Nrj9835Vy7fhsUYMUfoUMDAX6kK5I28SdHX+kqGDMPBrBzj+894fkkF APzYRj02bI9cZp0mDoaxp1fsKFuu8D9eiiTlOgQ42xKMa2eF7OiArJJEKpE35GPL G0o58tEvb3FgpILEyRmsw8tE+1oGgeDY4Z/Qc4/bDdSIf75XC3tkTpDdQfA= -----END CERTIFICATE-----Generated at Sat Sep 6 14:08:56 2025 by rpki-client