$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2403d3e2-d51c-4024-837b-566d9deaa1d5.roa File: 2403d3e2-d51c-4024-837b-566d9deaa1d5.roa (raw, json) Hash identifier: FEhJuHGvxY8qMlovYEZoMJcgdZ5LSRJ58WVf+Olfxwg= Subject key identifier: D7:2C:9B:B2:67:C4:74:A2:9D:B1:EE:45:6C:91:FD:89:90:B0:01:2C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0D7844CE7524D3B94AE970CC7350EE6D649CE792 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2403d3e2-d51c-4024-837b-566d9deaa1d5.roa Signing time: Fri 29 Aug 2025 00:20:26 +0000 ROA not before: Fri 29 Aug 2025 00:20:26 +0000 ROA not after: Fri 03 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 204.236.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:78:44:ce:75:24:d3:b9:4a:e9:70:cc:73:50:ee:6d:64:9c:e7:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 29 00:20:26 2025 GMT Not After : Oct 3 23:59:59 2025 GMT Subject: serialNumber=d74760cb1e2a82069b4cf73a3ed1cfdc5d520c95c0d7c6df85c5c69aec1bc0a8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:c0:22:a6:d4:54:49:32:47:8d:db:1f:e0:a3: ad:41:14:8c:c1:92:ee:ca:53:7a:f1:e5:bf:ef:e0: 21:28:42:18:7f:11:41:bc:45:62:97:b2:b7:0b:26: a5:dc:c8:74:3d:e2:92:76:d2:e5:16:51:f9:97:85: c9:b8:f8:94:d5:f1:2b:ce:10:b1:59:9d:42:86:1a: 76:89:6f:bc:a8:cb:03:b8:c6:5c:b5:b1:48:32:4e: 40:23:59:84:30:8e:b4:89:20:b6:e4:00:f6:ee:37: 35:d5:63:77:8c:55:f7:a9:80:64:ef:99:1d:cb:87: f8:3e:b2:df:64:2f:c5:ae:4b:f5:d0:00:30:9b:25: 24:46:1c:e4:39:1b:46:2d:0b:ef:e6:f1:9f:39:aa: 5a:d0:e6:c2:f2:50:da:4d:63:25:c8:19:bf:aa:f1: a4:80:69:b8:ff:94:99:96:43:fc:2d:cb:a7:69:eb: e4:83:d1:4a:d0:6b:37:21:c9:1e:3e:7f:e3:c9:8e: d7:f9:7d:3e:df:78:a5:30:ba:e9:5d:35:0f:9d:c3: 4f:4f:81:3e:6d:25:56:66:4a:2a:27:82:65:85:c7: be:69:49:25:c7:0a:ee:56:27:bf:1f:06:64:31:0c: f1:04:ec:d0:d3:0d:f4:ef:22:4f:92:10:70:9f:17: a0:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:2C:9B:B2:67:C4:74:A2:9D:B1:EE:45:6C:91:FD:89:90:B0:01:2C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2403d3e2-d51c-4024-837b-566d9deaa1d5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.236.192.0/18 Signature Algorithm: sha256WithRSAEncryption 22:01:76:9e:8c:4a:01:c9:ad:48:ad:be:2b:16:4e:1b:1a:f6: b9:3a:ee:61:e5:b9:62:d4:e3:ec:1c:95:21:f7:8c:9f:69:0f: 73:22:a4:8c:c0:c0:14:d6:19:28:50:da:57:35:09:c1:01:92: a9:2e:84:c3:59:bf:11:b5:83:94:81:cf:ef:ad:19:ce:25:b9: 46:a3:78:d3:1a:c3:c7:ae:3d:41:4e:42:c9:a8:13:68:3a:b4: 7e:1d:17:e3:5b:1f:34:db:a5:69:58:df:aa:b9:fa:5a:85:0f: dc:b2:7d:85:05:5e:68:a8:ec:98:4b:e6:95:10:6c:de:d6:5c: e5:9f:8c:5d:f0:aa:19:d8:ff:59:b0:81:e3:b5:b5:0e:e0:59: 38:5f:96:8d:a8:de:fd:94:54:dc:35:23:94:79:ca:1c:33:eb: 0d:d1:29:be:71:ba:f2:02:96:2f:31:20:7d:41:b1:ea:01:5a: 45:c4:13:a5:45:bc:a0:96:c8:89:fb:39:ef:f6:e9:cf:de:aa: f1:46:6e:1c:92:7a:2d:94:49:35:93:7e:f5:44:c9:fc:3b:e3: c1:e8:9c:f7:db:0c:c1:52:5f:c9:4d:94:47:80:28:92:11:27: dc:b9:98:5d:2f:06:5e:e6:a4:73:d7:9a:0d:f8:96:8d:60:7a: 07:2c:1b:4c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDXhEznUk07lK6XDMc1DubWSc55IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI5MDAyMDI2WhcNMjUxMDAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BkNzQ3NjBjYjFlMmE4MjA2OWI0Y2Y3M2EzZWQxY2ZkYzVk NTIwYzk1YzBkN2M2ZGY4NWM1YzY5YWVjMWJjMGE4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCwCKm1FRJMkeN2x/go61BFIzBku7KU3rx5b/v4CEoQhh/ EUG8RWKXsrcLJqXcyHQ94pJ20uUWUfmXhcm4+JTV8SvOELFZnUKGGnaJb7yoywO4 xly1sUgyTkAjWYQwjrSJILbkAPbuNzXVY3eMVfepgGTvmR3Lh/g+st9kL8WuS/XQ ADCbJSRGHOQ5G0YtC+/m8Z85qlrQ5sLyUNpNYyXIGb+q8aSAabj/lJmWQ/wty6dp 6+SD0UrQazchyR4+f+PJjtf5fT7feKUwuuldNQ+dw09PgT5tJVZmSiongmWFx75p SSXHCu5WJ78fBmQxDPEE7NDTDfTvIk+SEHCfF6DnAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU1yybsmfEdKKdse5FbJH9iZCwASwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI0MDNkM2UyLWQ1MWMtNDAyNC04MzdiLTU2NmQ5ZGVhYTFkNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAbM7MAwDQYJKoZIhvcNAQELBQADggEBACIBdp6MSgHJrUitvisWThsa9rk6 7mHluWLU4+wclSH3jJ9pD3MipIzAwBTWGShQ2lc1CcEBkqkuhMNZvxG1g5SBz++t Gc4luUajeNMaw8euPUFOQsmoE2g6tH4dF+NbHzTbpWlY36q5+lqFD9yyfYUFXmio 7JhL5pUQbN7WXOWfjF3wqhnY/1mwgeO1tQ7gWThflo2o3v2UVNw1I5R5yhwz6w3R Kb5xuvICli8xIH1BseoBWkXEE6VFvKCWyIn7Oe/26c/eqvFGbhySei2USTWTfvVE yfw748HonPfbDMFSX8lNlEeAKJIRJ9y5mF0vBl7mpHPXmg34lo1gegcsG0w= -----END CERTIFICATE-----Generated at Sat Sep 6 14:18:29 2025 by rpki-client