$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1fc5eba9-ba1e-4271-a295-a0083fa60075.roa File: 1fc5eba9-ba1e-4271-a295-a0083fa60075.roa (raw, json) Hash identifier: JOHYmBQ7GdiyTIekx/0DR8e1aivF+2iYnGZSc3Lu884= Subject key identifier: 73:F3:12:DD:7F:C0:4E:2E:A4:DB:F3:6D:84:D5:60:DC:06:15:98:EF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 665A9E465DD54B7D142B2CBC7074150245C300B9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1fc5eba9-ba1e-4271-a295-a0083fa60075.roa Signing time: Sat 06 Sep 2025 00:01:43 +0000 ROA not before: Sat 06 Sep 2025 00:01:43 +0000 ROA not after: Sat 11 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 206.131.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:5a:9e:46:5d:d5:4b:7d:14:2b:2c:bc:70:74:15:02:45:c3:00:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 6 00:01:43 2025 GMT Not After : Oct 11 23:59:59 2025 GMT Subject: serialNumber=e52b79bb1609dea35c87448ff36cab6bd3364b9fab10448442cbc9713f520d6d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:64:9d:fa:6a:91:23:67:ed:11:57:c9:1c:9b: 08:67:80:1c:f8:8b:b4:c4:fa:6c:c3:6a:a9:3b:81: 3f:16:74:7f:be:3f:5f:f9:4b:38:40:7a:09:50:75: d2:9a:44:7b:f3:c8:42:48:e0:ed:7c:39:d8:59:b7: 63:7a:66:19:55:fd:85:94:d9:f7:42:6a:5b:31:8c: 69:ea:a0:b8:a6:eb:6a:0b:7b:06:06:c9:06:4e:c9: 91:2e:d7:2b:f1:1a:b4:d0:71:bb:68:6c:17:fd:64: 8a:75:4e:9a:f3:86:ed:c5:00:ef:e0:19:68:b1:cd: 2c:b1:3f:7d:b0:cf:39:24:cd:38:47:65:50:b3:5b: 58:37:f8:fe:47:ff:1e:d9:3c:9c:4a:c7:28:24:24: 6f:ac:74:54:f7:8c:22:04:7d:b4:2e:ba:d3:7a:dc: 54:ae:b9:be:81:99:16:86:6b:af:60:06:f7:fe:09: 09:d9:f1:1d:e3:b9:28:35:a5:96:f1:8c:e0:2a:76: 81:81:bc:ae:58:0f:2b:cf:f8:bb:45:7f:ac:07:7c: d3:03:8a:7f:d9:10:26:57:b8:8b:dd:a8:76:25:93: 11:d4:b7:dc:85:df:b1:3e:27:60:82:bf:ce:bc:c5: 65:7d:6b:e8:ac:1d:ea:db:f6:5a:c1:67:d1:2c:17: 26:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:F3:12:DD:7F:C0:4E:2E:A4:DB:F3:6D:84:D5:60:DC:06:15:98:EF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1fc5eba9-ba1e-4271-a295-a0083fa60075.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 206.131.128.0/19 Signature Algorithm: sha256WithRSAEncryption 85:5e:f2:d6:51:4b:6c:36:de:78:c1:4f:88:50:0b:79:e5:e3: 3c:05:38:a8:6f:3c:41:e0:0e:2f:d7:0b:0c:70:d7:8b:a8:bb: 66:77:53:59:4b:7a:36:a5:13:72:37:7f:92:08:5e:ef:35:f6: da:8e:51:cd:1a:0c:78:c5:be:17:50:79:0c:9f:32:f2:df:6c: 3b:7c:cd:fb:6a:f5:45:57:42:68:c3:87:7c:40:f6:a5:82:e2: 90:b0:ac:d8:85:ae:c4:53:79:d8:68:de:c2:81:16:e6:3f:18: d8:d4:a0:4f:7d:0e:dc:46:44:5c:92:a6:7b:fd:5a:06:a2:03: b4:86:a5:e9:cf:1d:3a:68:41:8d:4d:f3:ad:d3:22:54:7a:10: b6:1e:93:38:db:a4:26:24:c8:5f:7c:a9:7b:e1:a2:90:22:36: 41:30:98:a8:fb:15:1e:a9:9c:22:7e:b8:e1:a3:41:ff:69:4d: a4:08:af:0e:90:2c:67:fa:c1:37:14:03:d8:45:fe:56:4c:af: 5b:84:1e:ab:fe:dc:7b:a4:b5:7c:44:9d:75:3b:64:74:32:11: e9:02:8f:75:36:c8:eb:e0:7c:2c:e8:0c:b6:a1:d7:5c:5f:c6: 14:0e:3c:ea:9c:27:4a:9c:21:00:ea:df:97:93:0b:ad:65:98: f6:e2:02:24 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZlqeRl3VS30UKyy8cHQVAkXDALkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA2MDAwMTQzWhcNMjUxMDExMjM1OTU5 WjB6MUkwRwYDVQQFE0BlNTJiNzliYjE2MDlkZWEzNWM4NzQ0OGZmMzZjYWI2YmQz MzY0YjlmYWIxMDQ0ODQ0MmNiYzk3MTNmNTIwZDZkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDbZJ36apEjZ+0RV8kcmwhngBz4i7TE+mzDaqk7gT8WdH++ P1/5SzhAeglQddKaRHvzyEJI4O18OdhZt2N6ZhlV/YWU2fdCalsxjGnqoLim62oL ewYGyQZOyZEu1yvxGrTQcbtobBf9ZIp1Tprzhu3FAO/gGWixzSyxP32wzzkkzThH ZVCzW1g3+P5H/x7ZPJxKxygkJG+sdFT3jCIEfbQuutN63FSuub6BmRaGa69gBvf+ CQnZ8R3juSg1pZbxjOAqdoGBvK5YDyvP+LtFf6wHfNMDin/ZECZXuIvdqHYlkxHU t9yF37E+J2CCv868xWV9a+isHerb9lrBZ9EsFyb3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUc/MS3X/ATi6k2/NthNVg3AYVmO8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFmYzVlYmE5LWJhMWUtNDI3MS1hMjk1LWEwMDgzZmE2MDA3NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXOg4AwDQYJKoZIhvcNAQELBQADggEBAIVe8tZRS2w23njBT4hQC3nl4zwF OKhvPEHgDi/XCwxw14uou2Z3U1lLejalE3I3f5IIXu819tqOUc0aDHjFvhdQeQyf MvLfbDt8zftq9UVXQmjDh3xA9qWC4pCwrNiFrsRTedho3sKBFuY/GNjUoE99DtxG RFySpnv9WgaiA7SGpenPHTpoQY1N863TIlR6ELYekzjbpCYkyF98qXvhopAiNkEw mKj7FR6pnCJ+uOGjQf9pTaQIrw6QLGf6wTcUA9hF/lZMr1uEHqv+3HuktXxEnXU7 ZHQyEekCj3U2yOvgfCzoDLah11xfxhQOPOqcJ0qcIQDq35eTC61lmPbiAiQ= -----END CERTIFICATE-----Generated at Sat Sep 6 14:08:52 2025 by rpki-client