$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21bb0458-625d-4892-a4e1-e544b849201a.roa File: 21bb0458-625d-4892-a4e1-e544b849201a.roa (raw, json) Hash identifier: HGCz1kR61zPp8R6c6wLBUAtUUh4YSwuqBikhCwSi0ks= Subject key identifier: 94:F6:FD:D6:CE:96:85:F1:13:33:9C:4D:CD:04:25:64:BA:FE:4D:8A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 196D9E262229C8A97253527A569FF07F16200DFD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21bb0458-625d-4892-a4e1-e544b849201a.roa Signing time: Mon 08 Sep 2025 15:31:27 +0000 ROA not before: Mon 08 Sep 2025 15:31:27 +0000 ROA not after: Mon 13 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 63.249.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 18 Sep 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:6d:9e:26:22:29:c8:a9:72:53:52:7a:56:9f:f0:7f:16:20:0d:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 8 15:31:27 2025 GMT Not After : Oct 13 23:59:59 2025 GMT Subject: serialNumber=bf098e3c1ee245b1e64948ffd6bb9860c7683b430bf54d6d1d876ddc91bce4aa, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:cd:21:5d:1f:17:7e:ad:bb:3a:b0:ca:c8:65: e6:42:e6:67:51:1f:f6:58:6e:f8:91:c6:1f:9a:42: 3a:3f:11:a8:34:c3:da:f9:71:78:35:7f:25:81:f4: c8:24:aa:35:24:1d:49:3c:a2:b7:22:50:00:a3:46: 11:85:ba:b5:e5:20:c6:ec:74:c1:c3:31:79:d9:6c: cc:52:f0:b4:1e:39:f1:ff:69:46:d4:d3:cb:66:6f: 4b:02:6c:b5:0c:8a:6e:c1:d0:d2:f1:be:71:28:30: e3:25:13:eb:b0:37:02:12:11:bb:f2:93:d6:32:6a: 37:89:76:3d:06:61:11:81:66:63:a0:9b:43:9a:e0: 9e:c1:e1:23:3e:e6:8f:7e:da:5f:6e:f9:c6:54:6b: e0:85:62:4e:1f:17:09:92:ca:c6:3b:57:0b:1b:7b: b7:6c:fd:e6:08:fc:00:47:e7:1d:e2:02:51:8b:d7: d7:f7:61:81:0e:32:86:fd:eb:31:51:c9:4c:4e:bd: c1:25:5f:32:65:c6:00:80:f7:d5:1a:79:7e:db:7c: d5:3c:62:e0:1d:b6:d9:22:bc:f2:86:fa:60:31:05: 28:98:88:03:e5:3f:65:67:80:af:ab:fa:a9:e3:aa: 4e:1e:cc:c8:0e:4e:3e:d3:b4:6e:8e:04:61:4a:80: 26:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:F6:FD:D6:CE:96:85:F1:13:33:9C:4D:CD:04:25:64:BA:FE:4D:8A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21bb0458-625d-4892-a4e1-e544b849201a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 63.249.128.0/17 Signature Algorithm: sha256WithRSAEncryption 61:11:22:2e:9c:bd:16:ce:1d:2c:23:54:af:1a:85:f4:8c:c8: 47:a0:ed:de:c6:12:72:23:6c:6b:67:60:1b:7d:25:c2:81:f4: 8a:78:f0:e7:f3:e9:0f:3a:84:d4:92:76:50:52:4d:de:02:9d: fa:5d:f6:1a:69:fe:d4:31:52:05:7f:d7:70:d2:bb:e6:cc:28: 4c:94:7b:45:a2:4b:ff:fa:23:4d:a0:4e:98:e3:9d:ac:a0:a6: 0c:e0:51:e3:f5:f7:34:09:ab:fa:6e:91:e9:b6:fc:f9:be:ff: 0f:1c:43:68:ef:55:7a:5a:a6:d0:41:a7:69:b8:0e:b4:03:ab: 93:70:d9:fb:07:ea:8f:26:b0:cb:3c:c3:15:7e:0a:63:a3:89: e3:0e:20:cb:f3:ff:f1:63:ff:ef:4a:04:64:cf:11:57:ec:81: 95:cd:7f:d1:0e:74:64:6c:ab:70:1c:ba:e7:70:33:4d:d1:fd: 69:ec:02:ce:f5:84:e4:b5:da:26:43:24:b0:e0:41:33:d8:b4: 95:af:15:cd:78:76:c7:38:00:28:10:0b:e3:3e:40:53:cc:b3: e8:b6:72:aa:5a:0d:80:66:00:90:d9:ff:35:17:83:64:43:dc: 6a:31:56:56:e9:51:0e:dd:1f:9d:c3:7a:e8:2e:19:69:e7:4c: 20:8d:3f:ca -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGW2eJiIpyKlyU1J6Vp/wfxYgDf0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA4MTUzMTI3WhcNMjUxMDEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BiZjA5OGUzYzFlZTI0NWIxZTY0OTQ4ZmZkNmJiOTg2MGM3 NjgzYjQzMGJmNTRkNmQxZDg3NmRkYzkxYmNlNGFhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCfzSFdHxd+rbs6sMrIZeZC5mdRH/ZYbviRxh+aQjo/Eag0 w9r5cXg1fyWB9MgkqjUkHUk8orciUACjRhGFurXlIMbsdMHDMXnZbMxS8LQeOfH/ aUbU08tmb0sCbLUMim7B0NLxvnEoMOMlE+uwNwISEbvyk9YyajeJdj0GYRGBZmOg m0Oa4J7B4SM+5o9+2l9u+cZUa+CFYk4fFwmSysY7Vwsbe7ds/eYI/ABH5x3iAlGL 19f3YYEOMob96zFRyUxOvcElXzJlxgCA99UaeX7bfNU8YuAdttkivPKG+mAxBSiY iAPlP2VngK+r+qnjqk4ezMgOTj7TtG6OBGFKgCabAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUlPb91s6WhfETM5xNzQQlZLr+TYowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIxYmIwNDU4LTYyNWQtNDg5Mi1hNGUxLWU1NDRiODQ5MjAxYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAc/+YAwDQYJKoZIhvcNAQELBQADggEBAGERIi6cvRbOHSwjVK8ahfSMyEeg 7d7GEnIjbGtnYBt9JcKB9Ip48Ofz6Q86hNSSdlBSTd4Cnfpd9hpp/tQxUgV/13DS u+bMKEyUe0WiS//6I02gTpjjnaygpgzgUeP19zQJq/pukem2/Pm+/w8cQ2jvVXpa ptBBp2m4DrQDq5Nw2fsH6o8msMs8wxV+CmOjieMOIMvz//Fj/+9KBGTPEVfsgZXN f9EOdGRsq3AcuudwM03R/WnsAs71hOS12iZDJLDgQTPYtJWvFc14dsc4ACgQC+M+ QFPMs+i2cqpaDYBmAJDZ/zUXg2RD3GoxVlbpUQ7dH53DeuguGWnnTCCNP8o= -----END CERTIFICATE-----Generated at Wed Sep 17 08:21:21 2025 by rpki-client