$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/241bc0fc-15e3-4833-b71c-3aee42a3a927.roa File: 241bc0fc-15e3-4833-b71c-3aee42a3a927.roa (raw, json) Hash identifier: st/zD2CKNbf1U8g+36XLTl9Ts3jH/FYkD7IbmLLnils= Subject key identifier: B3:77:4F:A0:F1:E7:80:44:55:F7:64:9E:A7:64:D5:56:31:BB:B3:16 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 12164D5335B9B264EDBC41040D9BD02EE29D1AF8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/241bc0fc-15e3-4833-b71c-3aee42a3a927.roa Signing time: Sat 06 Sep 2025 00:41:39 +0000 ROA not before: Sat 06 Sep 2025 00:41:39 +0000 ROA not after: Sat 11 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 57.248.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:16:4d:53:35:b9:b2:64:ed:bc:41:04:0d:9b:d0:2e:e2:9d:1a:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 6 00:41:39 2025 GMT Not After : Oct 11 23:59:59 2025 GMT Subject: serialNumber=a34160e6ab507915b24a49fb9fa28b8c2fe51cc05f663b0cddbb10716e8fb298, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:45:4b:2a:9e:8f:01:60:c8:7d:d8:cd:ac:a0: cf:7c:83:08:9e:cf:96:76:c0:2b:a9:d7:b7:94:a9: d1:d1:12:5b:f8:20:56:82:aa:c3:82:fa:b1:9f:bf: 29:b8:c7:50:35:3c:43:49:41:18:08:d5:b1:fe:18: e4:d3:45:ff:d7:19:db:ba:20:0d:a7:15:7c:78:6b: 14:1a:dc:c6:a0:5d:fb:bd:ac:4c:e0:ac:ef:aa:e2: 47:af:30:6a:d6:92:da:0c:4a:8e:34:d3:9e:0f:ed: a5:0d:4e:df:2a:55:4a:b4:f6:55:ff:cf:55:bb:70: 9c:a6:33:a4:46:c5:28:43:20:ff:f2:b0:a7:1e:4a: 6d:66:61:ed:50:2a:be:e9:8a:ed:da:a7:55:23:89: 18:96:42:65:9a:4e:3a:6f:2f:46:77:ab:52:a3:e6: 5a:f0:b6:a8:e4:9c:ef:42:fa:a8:be:fd:f2:0e:6d: 5d:f5:ae:b5:00:93:84:37:59:28:eb:db:8b:4f:c7: b8:a0:22:76:9c:c3:75:19:2f:80:3c:4e:23:a7:32: 8e:03:f9:a3:85:2d:ee:f5:8c:85:85:14:83:5f:bd: 29:6d:bb:3b:d9:97:49:08:de:32:f0:75:a6:7e:06: e4:f4:41:a5:31:ea:da:e4:fb:e9:14:b3:2b:5b:fe: b6:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:77:4F:A0:F1:E7:80:44:55:F7:64:9E:A7:64:D5:56:31:BB:B3:16 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/241bc0fc-15e3-4833-b71c-3aee42a3a927.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 57.248.0.0/16 Signature Algorithm: sha256WithRSAEncryption 8e:ea:77:d7:42:b6:27:d9:80:6b:d3:a0:d4:4f:7e:eb:1c:77: ef:4c:a5:ba:4c:f9:fa:58:7b:d4:52:5b:69:0b:db:b2:7f:6c: 89:d6:51:a8:ac:29:cf:d3:52:f9:4a:aa:9b:e6:b3:b5:9e:8e: e2:99:c6:09:9a:36:d7:e2:f4:6e:d5:c4:26:58:0e:ad:ff:98: 63:9e:80:5d:db:43:75:09:0c:8c:2c:34:4c:a6:b8:4b:cd:32: 9e:41:36:f8:47:0d:0d:e0:a5:d6:50:2c:90:c5:89:e1:ae:86: 90:fc:fb:3d:8d:84:79:93:92:62:7f:be:4d:ca:f9:2d:15:67: 08:a1:10:68:fd:4f:4f:3d:c0:ee:4f:8d:de:5b:8a:36:78:cc: fa:4e:21:6a:65:59:ab:f2:f6:18:9e:1f:6e:77:43:5e:16:95: 49:43:26:0f:b1:1d:65:14:b2:a6:d1:27:bf:3d:10:a7:1f:0e: df:cb:fc:0a:aa:f9:c2:ae:fd:18:24:bd:c3:59:d0:d4:1f:21: 25:9a:dd:d3:6b:ee:a2:65:99:c2:2a:da:8a:6a:f9:f6:c0:5c: 61:bb:89:50:2c:e9:2d:83:d5:77:23:9c:09:e4:e4:6c:20:a7: bf:fe:10:4e:63:40:89:3d:8b:ca:74:de:18:87:8e:bc:8c:a7: f0:76:b7:3e -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUEhZNUzW5smTtvEEEDZvQLuKdGvgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA2MDA0MTM5WhcNMjUxMDExMjM1OTU5 WjB6MUkwRwYDVQQFE0BhMzQxNjBlNmFiNTA3OTE1YjI0YTQ5ZmI5ZmEyOGI4YzJm ZTUxY2MwNWY2NjNiMGNkZGJiMTA3MTZlOGZiMjk4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDSRUsqno8BYMh92M2soM98gwiez5Z2wCup17eUqdHRElv4 IFaCqsOC+rGfvym4x1A1PENJQRgI1bH+GOTTRf/XGdu6IA2nFXx4axQa3MagXfu9 rEzgrO+q4kevMGrWktoMSo40054P7aUNTt8qVUq09lX/z1W7cJymM6RGxShDIP/y sKceSm1mYe1QKr7piu3ap1UjiRiWQmWaTjpvL0Z3q1Kj5lrwtqjknO9C+qi+/fIO bV31rrUAk4Q3WSjr24tPx7igInacw3UZL4A8TiOnMo4D+aOFLe71jIWFFINfvSlt uzvZl0kI3jLwdaZ+BuT0QaUx6trk++kUsytb/rYbAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUs3dPoPHngERV92Sep2TVVjG7sxYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI0MWJjMGZjLTE1ZTMtNDgzMy1iNzFjLTNhZWU0MmEzYTkyNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA5+DANBgkqhkiG9w0BAQsFAAOCAQEAjup310K2J9mAa9Og1E9+6xx370yl ukz5+lh71FJbaQvbsn9sidZRqKwpz9NS+Uqqm+aztZ6O4pnGCZo21+L0btXEJlgO rf+YY56AXdtDdQkMjCw0TKa4S80ynkE2+EcNDeCl1lAskMWJ4a6GkPz7PY2EeZOS Yn++Tcr5LRVnCKEQaP1PTz3A7k+N3luKNnjM+k4hamVZq/L2GJ4fbndDXhaVSUMm D7EdZRSyptEnvz0Qpx8O38v8Cqr5wq79GCS9w1nQ1B8hJZrd02vuomWZwiraimr5 9sBcYbuJUCzpLYPVdyOcCeTkbCCnv/4QTmNAiT2LynTeGIeOvIyn8Ha3Pg== -----END CERTIFICATE-----Generated at Sat Sep 6 14:05:59 2025 by rpki-client