$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1adf4d9d-eda9-4fe8-8f93-4b6c05e8aba4.roa File: 1adf4d9d-eda9-4fe8-8f93-4b6c05e8aba4.roa (raw, json) Hash identifier: VbPnkwDUpeL16+E+DLuKbakCyIfKEBE+pRBNcnGPhtA= Subject key identifier: 86:FA:02:6F:28:8E:65:67:0D:A1:FA:42:5B:A1:2D:DF:6E:96:7F:18 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2571F8F572728CFC90F28EB1BF0ACB91AD51984B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1adf4d9d-eda9-4fe8-8f93-4b6c05e8aba4.roa Signing time: Sat 30 Aug 2025 00:11:16 +0000 ROA not before: Sat 30 Aug 2025 00:11:16 +0000 ROA not after: Sat 04 Oct 2025 23:59:59 +0000 asID: 26982 IP address blocks: 192.31.212.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:71:f8:f5:72:72:8c:fc:90:f2:8e:b1:bf:0a:cb:91:ad:51:98:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 30 00:11:16 2025 GMT Not After : Oct 4 23:59:59 2025 GMT Subject: serialNumber=530bfec7639964365313f5002b5f6463c728b3b23415e3e97bf9cb5e9a60c766, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:73:b7:d1:c5:41:41:e6:28:c8:c3:d4:6f:51: 9d:5c:a3:10:fd:5b:cd:cf:54:d6:c5:ee:fd:5c:c6: 0f:31:f0:ca:32:c8:d1:1e:78:a6:44:15:7f:12:2d: 90:50:fe:5a:40:ea:e4:11:db:67:42:44:c6:87:c8: 01:7c:2d:3a:66:ef:15:18:6c:13:5c:ed:5e:d5:fb: d5:c0:00:be:ac:f8:4b:51:ac:6c:90:e3:44:d6:2c: a2:12:1b:2d:5b:f5:1e:bf:bc:66:cc:c5:78:f0:e9: a0:2f:6c:46:b8:1c:a0:c9:2f:1c:9d:06:04:e4:17: 0a:e8:14:20:ff:85:8b:5b:a3:f7:0b:89:25:06:11: 78:bc:ad:a1:a0:05:99:53:6c:e4:99:49:3e:25:db: 05:7d:f7:99:87:3d:aa:ab:8a:e9:31:d6:b3:9b:73: e4:78:5d:23:ff:25:ea:ff:cc:f3:4a:45:67:97:dd: 31:bc:58:20:fc:b1:9b:d4:4e:cd:48:7d:14:f6:84: 7a:8e:b0:97:34:34:41:c2:01:7d:bc:92:5b:ff:75: a5:bd:7a:9b:d2:25:6c:03:34:ce:de:37:11:92:df: a6:75:9c:af:67:48:6a:6a:a5:d8:01:f1:1a:88:4a: 70:e5:43:c8:46:cb:19:96:36:be:a4:59:57:a9:eb: e8:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:FA:02:6F:28:8E:65:67:0D:A1:FA:42:5B:A1:2D:DF:6E:96:7F:18 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1adf4d9d-eda9-4fe8-8f93-4b6c05e8aba4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.31.212.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:b7:68:78:89:ea:57:e4:db:e6:0f:de:54:9a:43:a7:4c:1a: d0:1a:34:f6:57:f8:02:a1:b5:90:65:8e:f6:e6:6f:4c:1c:0b: df:39:06:ce:5f:7c:3f:7f:fa:10:af:f6:79:15:80:b0:c6:da: bb:7f:7a:f3:b8:9c:fd:b1:ca:2a:6f:52:8a:a6:9f:3b:c5:9a: 3e:c6:69:79:96:f7:6a:88:d8:63:0d:e3:01:06:ed:11:c4:3d: 23:91:fb:a5:f6:ef:89:b9:87:47:72:46:be:14:ae:4c:e8:cf: 5b:fc:54:98:8b:9a:c5:e6:6e:b4:db:a2:5f:20:ff:f7:10:6f: 51:b2:f8:fc:ca:8a:ee:7e:51:92:ee:c7:53:fb:68:29:ec:0e: 99:34:9d:90:bd:98:11:ab:47:5b:55:c5:82:70:1f:fb:17:4a: 3a:a2:7f:56:e1:78:c9:33:f6:1e:1e:71:89:5d:45:4b:73:c8: ac:2d:2c:70:6c:af:98:eb:a6:a7:04:bf:a3:58:0d:d7:f9:a8: 63:5c:aa:d1:85:0d:f6:bb:cb:e7:f3:fd:fc:09:61:8e:44:ac: 7c:da:54:01:58:f7:67:8b:cd:20:bb:1e:ce:da:d1:6a:36:b4: 17:a2:e1:d1:56:23:b6:20:ab:ea:99:63:09:92:37:b7:83:f8: 02:48:27:e5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJXH49XJyjPyQ8o6xvwrLka1RmEswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODMwMDAxMTE2WhcNMjUxMDA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A1MzBiZmVjNzYzOTk2NDM2NTMxM2Y1MDAyYjVmNjQ2M2M3 MjhiM2IyMzQxNWUzZTk3YmY5Y2I1ZTlhNjBjNzY2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDVc7fRxUFB5ijIw9RvUZ1coxD9W83PVNbF7v1cxg8x8Moy yNEeeKZEFX8SLZBQ/lpA6uQR22dCRMaHyAF8LTpm7xUYbBNc7V7V+9XAAL6s+EtR rGyQ40TWLKISGy1b9R6/vGbMxXjw6aAvbEa4HKDJLxydBgTkFwroFCD/hYtbo/cL iSUGEXi8raGgBZlTbOSZST4l2wV995mHPaqriukx1rObc+R4XSP/Jer/zPNKRWeX 3TG8WCD8sZvUTs1IfRT2hHqOsJc0NEHCAX28klv/daW9epvSJWwDNM7eNxGS36Z1 nK9nSGpqpdgB8RqISnDlQ8hGyxmWNr6kWVep6+hnAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUhvoCbyiOZWcNofpCW6Et326WfxgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFhZGY0ZDlkLWVkYTktNGZlOC04ZjkzLTRiNmMwNWU4YWJhNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADAH9QwDQYJKoZIhvcNAQELBQADggEBAHu3aHiJ6lfk2+YP3lSaQ6dMGtAa NPZX+AKhtZBljvbmb0wcC985Bs5ffD9/+hCv9nkVgLDG2rt/evO4nP2xyipvUoqm nzvFmj7GaXmW92qI2GMN4wEG7RHEPSOR+6X274m5h0dyRr4Urkzoz1v8VJiLmsXm brTbol8g//cQb1Gy+PzKiu5+UZLux1P7aCnsDpk0nZC9mBGrR1tVxYJwH/sXSjqi f1bheMkz9h4ecYldRUtzyKwtLHBsr5jrpqcEv6NYDdf5qGNcqtGFDfa7y+fz/fwJ YY5ErHzaVAFY92eLzSC7Hs7a0Wo2tBei4dFWI7Ygq+qZYwmSN7eD+AJIJ+U= -----END CERTIFICATE-----Generated at Sat Sep 6 14:08:20 2025 by rpki-client