$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22397cac-406e-4c89-85e5-b4a29edd8651.roa File: 22397cac-406e-4c89-85e5-b4a29edd8651.roa (raw, json) Hash identifier: 6aorUrGzoqOPrGCrLZhdVxJKK76eXSTVrL38oCnW1l8= Subject key identifier: 19:12:DA:B5:55:71:84:23:DD:4C:DA:9D:10:1B:DF:6E:07:7A:1F:DF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7368C234E83C07175ECEEEC379AAEC96CA0D2530 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22397cac-406e-4c89-85e5-b4a29edd8651.roa Signing time: Fri 29 Aug 2025 16:40:28 +0000 ROA not before: Fri 29 Aug 2025 16:40:28 +0000 ROA not after: Fri 03 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 54.25.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:68:c2:34:e8:3c:07:17:5e:ce:ee:c3:79:aa:ec:96:ca:0d:25:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 29 16:40:28 2025 GMT Not After : Oct 3 23:59:59 2025 GMT Subject: serialNumber=a6cb01f9674213adb2bd2c3f7ddcdbac3bda505c9dc635a1e7c34f3fbf0e11ee, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:5b:4f:7f:39:d9:ae:29:d2:70:73:bb:1f:c3: be:6e:0a:e7:90:ea:9d:2d:27:b2:e2:eb:b5:cc:a8: c1:8f:8c:c9:1c:01:6a:48:a4:c6:8d:fb:3b:60:76: ec:cc:7e:35:9e:f5:f6:9d:23:86:cd:50:5b:16:ec: b1:e1:d4:da:9a:b3:e1:2d:63:ad:e0:3d:6f:e4:ea: 5b:e5:09:4f:25:bc:8a:bc:85:ff:3a:bd:81:be:4a: fe:8c:5f:f9:3c:b2:15:49:f4:33:0e:c0:b3:02:a9: 89:ca:67:2a:a1:48:60:7f:96:94:b0:ca:65:1f:45: b1:66:94:db:c3:a4:cb:33:60:ae:3e:e5:47:90:d7: cf:a3:bb:50:01:d2:52:3f:5d:89:1b:29:b7:30:38: a0:fd:b8:48:03:a1:92:0c:38:db:09:00:70:d6:18: 4c:39:de:4d:bb:d4:7b:12:4f:36:99:b8:af:c2:93: ee:65:a4:3a:66:e4:47:c7:e4:ec:50:45:f5:35:16: 74:aa:10:61:c6:b9:a6:0b:b5:c8:0f:e6:2b:3e:ce: da:fd:de:4b:e7:77:8f:0a:62:d7:b1:f5:45:a8:a2: 61:ad:d8:41:df:89:c6:07:49:33:62:7a:6e:c0:cc: b8:9a:97:22:4b:c3:2a:37:6f:c2:2e:70:a9:c5:ca: ee:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:12:DA:B5:55:71:84:23:DD:4C:DA:9D:10:1B:DF:6E:07:7A:1F:DF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22397cac-406e-4c89-85e5-b4a29edd8651.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.25.15.0/24 Signature Algorithm: sha256WithRSAEncryption c0:e2:dc:09:f3:2b:c6:34:7a:b2:a7:b5:6e:79:7f:66:2b:79: 12:67:30:1e:b3:02:1d:65:ad:67:56:35:a3:1a:1b:68:55:2c: 3d:18:df:5c:04:ea:e8:18:ce:0a:22:c6:77:d0:81:a3:16:b5: 81:db:9f:21:9d:06:34:22:16:e0:08:fb:58:99:7e:c1:7d:c0: 06:96:39:b0:53:58:56:4a:77:30:53:2f:ac:03:e2:b6:42:10: e7:15:93:c2:be:a9:2f:a5:eb:74:bc:dd:00:3b:25:46:31:30: 89:18:53:8f:81:f8:15:7c:49:df:10:9e:73:21:a9:46:2b:c2: 52:a0:da:19:46:3d:48:a2:d8:13:d9:48:9f:11:35:8a:d6:b7: 4d:57:b8:cc:a6:44:6a:41:55:12:dd:c0:05:24:bd:1c:a9:49: 36:30:16:45:51:b3:08:50:38:a6:59:4e:e2:e8:3b:d4:01:5d: 6e:fe:cc:9a:9e:af:06:d5:70:f3:3a:53:0c:8e:28:f3:33:2d: 42:5a:0e:ba:48:ee:22:71:a7:38:23:ef:8c:bd:13:3f:5d:72: 82:67:cd:f2:c0:f4:08:56:82:93:d1:dd:5c:62:76:5d:40:16: d9:e6:fb:f5:9c:40:ea:c2:b5:c6:7a:06:b9:0b:c9:dc:29:35: 37:dc:02:b4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUc2jCNOg8Bxdezu7DearslsoNJTAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI5MTY0MDI4WhcNMjUxMDAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BhNmNiMDFmOTY3NDIxM2FkYjJiZDJjM2Y3ZGRjZGJhYzNi ZGE1MDVjOWRjNjM1YTFlN2MzNGYzZmJmMGUxMWVlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClW09/OdmuKdJwc7sfw75uCueQ6p0tJ7Li67XMqMGPjMkc AWpIpMaN+ztgduzMfjWe9fadI4bNUFsW7LHh1Nqas+EtY63gPW/k6lvlCU8lvIq8 hf86vYG+Sv6MX/k8shVJ9DMOwLMCqYnKZyqhSGB/lpSwymUfRbFmlNvDpMszYK4+ 5UeQ18+ju1AB0lI/XYkbKbcwOKD9uEgDoZIMONsJAHDWGEw53k271HsSTzaZuK/C k+5lpDpm5EfH5OxQRfU1FnSqEGHGuaYLtcgP5is+ztr93kvnd48KYtex9UWoomGt 2EHficYHSTNiem7AzLialyJLwyo3b8IucKnFyu57AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUGRLatVVxhCPdTNqdEBvfbgd6H98wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIyMzk3Y2FjLTQwNmUtNGM4OS04NWU1LWI0YTI5ZWRkODY1MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA2GQ8wDQYJKoZIhvcNAQELBQADggEBAMDi3AnzK8Y0erKntW55f2YreRJn MB6zAh1lrWdWNaMaG2hVLD0Y31wE6ugYzgoixnfQgaMWtYHbnyGdBjQiFuAI+1iZ fsF9wAaWObBTWFZKdzBTL6wD4rZCEOcVk8K+qS+l63S83QA7JUYxMIkYU4+B+BV8 Sd8QnnMhqUYrwlKg2hlGPUii2BPZSJ8RNYrWt01XuMymRGpBVRLdwAUkvRypSTYw FkVRswhQOKZZTuLoO9QBXW7+zJqerwbVcPM6UwyOKPMzLUJaDrpI7iJxpzgj74y9 Ez9dcoJnzfLA9AhWgpPR3Vxidl1AFtnm+/WcQOrCtcZ6BrkLydwpNTfcArQ= -----END CERTIFICATE-----Generated at Sat Sep 6 14:19:38 2025 by rpki-client