$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c135327-ca35-4503-a212-cddd775338fc.roa File: 1c135327-ca35-4503-a212-cddd775338fc.roa (raw, json) Hash identifier: k0vIK5PnTnQJYboid5yruSvWcDW3pVscjdOO3/PbU3E= Subject key identifier: 53:E3:96:E3:03:B7:94:3B:B2:8A:A0:0B:6D:8C:C0:53:7A:BC:16:FA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 576DEBB94338369C6D228BCADEDE0A9824033ED2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c135327-ca35-4503-a212-cddd775338fc.roa Signing time: Sat 06 Sep 2025 00:41:38 +0000 ROA not before: Sat 06 Sep 2025 00:41:38 +0000 ROA not after: Sat 11 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 57.201.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Sep 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:6d:eb:b9:43:38:36:9c:6d:22:8b:ca:de:de:0a:98:24:03:3e:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 6 00:41:38 2025 GMT Not After : Oct 11 23:59:59 2025 GMT Subject: serialNumber=51e3c8e07b563af7e82ae28f718654d2caddd327d6f2df3b19900d5264920a8c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:2e:a5:1f:60:c0:37:8c:f3:cc:50:1e:96:e3: 74:58:1e:7c:40:92:e2:37:95:be:48:49:a5:5d:87: 25:c2:7b:78:0b:91:4f:11:01:a0:6f:43:e5:6e:6b: 1b:e4:7d:e8:6d:48:41:bb:46:b1:43:67:74:af:0b: 5a:7a:09:02:96:bb:ee:90:94:1c:76:0f:fb:07:f8: 32:24:b7:a8:43:10:46:f2:3d:2d:05:85:50:8e:a6: ef:7c:4d:d1:c3:4f:98:d5:e6:83:bc:45:df:5a:98: 7d:7d:62:41:b5:3d:75:da:0a:3e:2a:a4:b7:ca:3b: dd:41:6a:8a:6a:e2:88:e4:3c:29:9f:23:c8:4c:c0: 3c:d7:4c:f0:8f:0b:32:f9:c8:ab:c1:b4:5b:80:fb: da:dc:18:2e:33:56:25:1c:03:fd:8a:f4:8c:73:76: f3:b9:9c:e7:e2:f9:2a:86:19:1a:5e:6b:6e:bd:71: 2e:67:17:16:79:ac:63:16:40:23:b3:0d:04:30:1a: 31:58:77:d4:fc:c5:65:18:2a:8a:9a:91:7e:40:10: 0d:b6:23:29:48:b4:95:df:a9:be:c1:c8:de:5f:d7: 3e:0c:c7:55:61:c2:7e:a5:4b:c5:72:9a:2d:84:84: c7:b0:a4:89:01:a9:e4:cb:0b:38:5b:f8:bd:6f:2a: 86:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:E3:96:E3:03:B7:94:3B:B2:8A:A0:0B:6D:8C:C0:53:7A:BC:16:FA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c135327-ca35-4503-a212-cddd775338fc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 57.201.0.0/16 Signature Algorithm: sha256WithRSAEncryption d8:5c:83:33:8d:d8:81:a8:fb:72:46:e4:02:cd:63:b2:ed:81: 31:eb:9e:d1:48:a4:ab:b0:c0:36:b4:be:b4:68:e4:30:d9:54: 55:67:f5:d5:eb:07:e4:37:92:25:57:64:7d:27:b0:9a:97:08: fa:63:e3:0e:93:f9:1f:e8:c0:30:4f:15:49:c3:28:29:ca:81: ad:62:ca:53:7e:15:b4:a3:bc:1b:39:0c:93:a5:97:e6:36:7e: 2a:9b:9e:22:a2:eb:d5:b3:2d:49:db:46:0e:b5:de:74:a6:c5: 75:f0:30:85:cf:cb:18:e9:5a:f1:1b:95:f0:14:18:9d:4c:80: c7:23:10:91:2c:20:0c:32:c9:d2:ba:9e:11:19:a2:a6:96:2d: 55:1a:9c:fa:5f:46:78:33:0f:0c:30:22:17:f7:41:59:a4:a6: b3:ae:fb:51:f5:c6:49:4a:9c:72:74:c2:aa:f6:1e:e0:d4:19: 6a:be:8e:0f:04:da:1c:08:d8:e9:49:ed:37:3b:f3:60:c6:a2: 10:61:1b:b1:98:c3:14:92:7b:20:8c:82:9d:e7:46:1f:9e:85: 37:ed:01:45:bc:ed:f8:4c:6b:95:3c:75:b3:b7:ab:d4:31:34: 22:03:03:bb:d3:24:c5:a2:4c:0d:e5:9e:b0:73:45:8d:e4:23: 7c:42:c1:f2 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUV23ruUM4NpxtIovK3t4KmCQDPtIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA2MDA0MTM4WhcNMjUxMDExMjM1OTU5 WjB6MUkwRwYDVQQFE0A1MWUzYzhlMDdiNTYzYWY3ZTgyYWUyOGY3MTg2NTRkMmNh ZGRkMzI3ZDZmMmRmM2IxOTkwMGQ1MjY0OTIwYThjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6LqUfYMA3jPPMUB6W43RYHnxAkuI3lb5ISaVdhyXCe3gL kU8RAaBvQ+VuaxvkfehtSEG7RrFDZ3SvC1p6CQKWu+6QlBx2D/sH+DIkt6hDEEby PS0FhVCOpu98TdHDT5jV5oO8Rd9amH19YkG1PXXaCj4qpLfKO91Baopq4ojkPCmf I8hMwDzXTPCPCzL5yKvBtFuA+9rcGC4zViUcA/2K9IxzdvO5nOfi+SqGGRpea269 cS5nFxZ5rGMWQCOzDQQwGjFYd9T8xWUYKoqakX5AEA22IylItJXfqb7ByN5f1z4M x1Vhwn6lS8Vymi2EhMewpIkBqeTLCzhb+L1vKoaTAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUU+OW4wO3lDuyiqALbYzAU3q8FvowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFjMTM1MzI3LWNhMzUtNDUwMy1hMjEyLWNkZGQ3NzUzMzhmYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA5yTANBgkqhkiG9w0BAQsFAAOCAQEA2FyDM43Ygaj7ckbkAs1jsu2BMeue 0Uikq7DANrS+tGjkMNlUVWf11esH5DeSJVdkfSewmpcI+mPjDpP5H+jAME8VScMo KcqBrWLKU34VtKO8GzkMk6WX5jZ+KpueIqLr1bMtSdtGDrXedKbFdfAwhc/LGOla 8RuV8BQYnUyAxyMQkSwgDDLJ0rqeERmippYtVRqc+l9GeDMPDDAiF/dBWaSms677 UfXGSUqccnTCqvYe4NQZar6ODwTaHAjY6UntNzvzYMaiEGEbsZjDFJJ7IIyCnedG H56FN+0BRbzt+ExrlTx1s7er1DE0IgMDu9MkxaJMDeWesHNFjeQjfELB8g== -----END CERTIFICATE-----Generated at Fri Sep 19 13:18:59 2025 by rpki-client