$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2309db7a-9533-458b-bc2b-77dd1708ae8a.roa File: 2309db7a-9533-458b-bc2b-77dd1708ae8a.roa (raw, json) Hash identifier: Q1X7Scu0cmvusCEPQm9xkJz4raypWx6ZMxSNGgw7oPs= Subject key identifier: 2D:75:44:29:5F:09:4A:E9:8B:EF:1A:94:00:2A:4E:96:9E:A7:AF:B6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 248DAFDE9B0703D71E1C986CF1A46817B0A32013 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2309db7a-9533-458b-bc2b-77dd1708ae8a.roa Signing time: Tue 12 Aug 2025 00:41:20 +0000 ROA not before: Tue 12 Aug 2025 00:41:20 +0000 ROA not after: Tue 16 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 64.252.105.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:8d:af:de:9b:07:03:d7:1e:1c:98:6c:f1:a4:68:17:b0:a3:20:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 12 00:41:20 2025 GMT Not After : Sep 16 23:59:59 2025 GMT Subject: serialNumber=22ab3f82f820d32094100eccb83cd54440af1b0cb8702fdb35f0b29706bc70b9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:87:83:42:7f:18:b4:9c:de:ee:06:88:c8:3f: 77:86:44:40:1a:8e:f6:35:31:89:44:f2:aa:d6:fa: 3e:b6:b7:2e:3d:e5:39:f6:70:b0:a4:1d:4b:e8:c2: 6f:44:07:fa:1b:b2:3c:8b:14:69:d7:77:b1:2b:86: 6a:c8:0d:90:5b:67:e3:5b:7d:4c:96:77:26:60:22: ed:2b:e7:67:a6:11:79:08:8c:99:04:1f:15:8d:a6: 8e:b2:6a:9b:84:5e:b7:71:e4:c9:fa:36:14:04:66: 96:45:46:dd:16:df:57:97:5d:fb:f8:8b:89:a3:db: 95:37:66:b8:a6:a0:03:7c:7b:a1:d6:1f:76:1e:69: c2:c2:39:df:d1:5b:87:ee:0a:f1:26:4a:8a:e9:3c: b8:dd:53:ef:e1:3e:77:9d:b9:4e:d0:c5:bb:24:4b: 8a:e8:9d:21:e7:e6:a3:31:ad:7f:80:71:d3:91:00: dd:b0:e5:b9:84:eb:1a:dd:26:2b:e8:95:81:fa:f3: ac:e8:ca:da:58:42:6b:13:04:f5:ed:be:26:98:c2: 9a:49:a9:28:2e:66:35:ff:70:d0:e7:34:b2:63:5c: 61:ce:84:37:0a:a1:de:83:03:6d:30:00:a6:e4:03: cb:c8:9d:14:2e:84:c4:bf:95:3c:f4:73:05:a2:b1: 12:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:75:44:29:5F:09:4A:E9:8B:EF:1A:94:00:2A:4E:96:9E:A7:AF:B6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2309db7a-9533-458b-bc2b-77dd1708ae8a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.105.0/24 Signature Algorithm: sha256WithRSAEncryption 18:c8:d5:12:c8:a4:ca:38:48:29:d3:73:95:d3:bd:a5:51:a1: d7:b6:50:78:81:0e:d2:30:59:33:5d:3d:5a:2c:e2:1b:63:5b: ae:69:fd:c5:79:7f:ad:38:fa:8b:92:fa:6b:60:1a:a5:b8:6a: 76:9a:76:87:45:e6:00:62:1d:3c:5f:89:f1:e5:69:84:e8:2d: 83:ea:81:3a:87:6a:31:4e:21:52:74:37:d4:48:ab:8c:9b:74: 11:34:de:00:f0:cb:77:9b:59:1f:55:db:ee:5c:6d:cb:9f:36: 33:14:53:a6:3d:10:43:c8:77:56:3f:16:82:54:70:fd:3c:cd: 2c:b0:0f:57:da:a0:cc:9a:89:78:aa:59:25:eb:b7:7a:62:c5: 3d:dc:b5:c3:04:d9:02:67:66:50:64:97:19:1a:ea:7c:8f:da: 4e:78:df:2b:ae:9c:29:f0:ff:13:03:53:b9:d6:3c:36:1b:cf: b9:68:89:0d:a1:9e:a7:f4:71:23:6e:82:20:d1:59:39:83:e3: 6c:4f:31:95:e3:bc:b5:54:d5:94:cf:b7:60:92:76:5b:1d:c7: da:59:6a:07:cb:2a:f3:ee:4e:fc:a1:45:24:91:47:cc:55:5e: 1c:e4:f4:0e:ff:3d:73:b2:99:dd:e0:cd:c8:cd:28:e4:77:22: 08:8e:13:19 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJI2v3psHA9ceHJhs8aRoF7CjIBMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEyMDA0MTIwWhcNMjUwOTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMmFiM2Y4MmY4MjBkMzIwOTQxMDBlY2NiODNjZDU0NDQw YWYxYjBjYjg3MDJmZGIzNWYwYjI5NzA2YmM3MGI5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyh4NCfxi0nN7uBojIP3eGREAajvY1MYlE8qrW+j62ty49 5Tn2cLCkHUvowm9EB/obsjyLFGnXd7ErhmrIDZBbZ+NbfUyWdyZgIu0r52emEXkI jJkEHxWNpo6yapuEXrdx5Mn6NhQEZpZFRt0W31eXXfv4i4mj25U3ZrimoAN8e6HW H3YeacLCOd/RW4fuCvEmSorpPLjdU+/hPneduU7QxbskS4ronSHn5qMxrX+AcdOR AN2w5bmE6xrdJivolYH686zoytpYQmsTBPXtviaYwppJqSguZjX/cNDnNLJjXGHO hDcKod6DA20wAKbkA8vInRQuhMS/lTz0cwWisRKBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQULXVEKV8JSumL7xqUACpOlp6nr7YwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIzMDlkYjdhLTk1MzMtNDU4Yi1iYzJiLTc3ZGQxNzA4YWU4YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA/GkwDQYJKoZIhvcNAQELBQADggEBABjI1RLIpMo4SCnTc5XTvaVRode2 UHiBDtIwWTNdPVos4htjW65p/cV5f604+ouS+mtgGqW4anaadodF5gBiHTxfifHl aYToLYPqgTqHajFOIVJ0N9RIq4ybdBE03gDwy3ebWR9V2+5cbcufNjMUU6Y9EEPI d1Y/FoJUcP08zSywD1faoMyaiXiqWSXrt3pixT3ctcME2QJnZlBklxka6nyP2k54 3yuunCnw/xMDU7nWPDYbz7loiQ2hnqf0cSNugiDRWTmD42xPMZXjvLVU1ZTPt2CS dlsdx9pZagfLKvPuTvyhRSSRR8xVXhzk9A7/PXOymd3gzcjNKOR3IgiOExk= -----END CERTIFICATE-----Generated at Wed Aug 20 10:48:39 2025 by rpki-client