$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/24d921c1-9e96-4ec0-8d95-a45b8c083105.roa File: 24d921c1-9e96-4ec0-8d95-a45b8c083105.roa (raw, json) Hash identifier: cTImznG50URDTPpSG5l1gjFfrPtdqUPMZdH58kjA5WI= Subject key identifier: 83:DF:9A:81:AA:1E:FD:62:50:1C:7C:AD:D4:AE:2A:72:DB:80:F0:68 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: D195B4A1A3E1DDD92E947B2D0866364BF02E71 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/24d921c1-9e96-4ec0-8d95-a45b8c083105.roa Signing time: Wed 27 Aug 2025 00:51:08 +0000 ROA not before: Wed 27 Aug 2025 00:51:08 +0000 ROA not after: Wed 01 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 168.242.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: d1:95:b4:a1:a3:e1:dd:d9:2e:94:7b:2d:08:66:36:4b:f0:2e:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 27 00:51:08 2025 GMT Not After : Oct 1 23:59:59 2025 GMT Subject: serialNumber=79dc8c3a811dfa71263e7a5426205d9d833d5f0d9325f28b3c0f3398b9252c78, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:28:8a:48:5c:8d:f3:a1:c6:30:47:d1:48:33: 13:65:0f:8a:cf:6a:41:4a:cb:2d:00:2d:b3:ba:a7: f5:22:44:c8:2c:b6:f4:92:2f:ed:95:d5:10:4f:1e: b1:40:64:f8:6d:eb:96:2f:10:f8:80:3f:19:d6:f1: 20:68:67:e3:07:d0:1f:1f:15:0e:38:75:36:ed:f2: 53:99:df:1f:9c:1c:bd:f4:1f:0a:2c:b8:d2:e2:45: 51:54:c6:7d:ad:be:56:58:d8:e5:35:0e:14:0a:71: 37:07:33:0c:ef:cc:64:fd:13:c2:09:73:53:03:6c: bb:10:02:e6:0a:8e:63:6b:9e:66:0d:ec:cb:a2:ba: 8d:78:c1:de:e9:15:cc:17:98:5c:e0:5c:59:55:2a: 7d:ad:a0:d5:46:b6:bb:73:3e:15:95:a1:94:ca:4d: ee:ca:5c:53:ac:df:75:b7:c8:7e:70:50:c2:96:50: 3d:61:a8:01:fb:8e:75:12:15:df:70:99:aa:7b:0d: 45:bf:35:e7:f6:ec:4c:0d:c6:6d:50:0d:ed:42:08: c9:d0:ad:3d:d7:5d:4b:86:cc:95:21:ab:2e:a0:71: bf:83:2a:0b:36:26:44:9c:fc:b3:83:1c:c4:5d:6a: e4:b9:eb:55:e4:13:f6:36:60:d1:27:62:ac:e3:06: 2c:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:DF:9A:81:AA:1E:FD:62:50:1C:7C:AD:D4:AE:2A:72:DB:80:F0:68 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/24d921c1-9e96-4ec0-8d95-a45b8c083105.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 168.242.0.0/16 Signature Algorithm: sha256WithRSAEncryption 4d:e0:de:88:94:f3:5c:53:6b:ba:3f:df:36:e8:21:4c:52:fd: 7f:37:71:d1:14:38:5e:49:b4:59:40:b6:62:ba:a6:83:1c:c6: 38:32:de:f4:f1:dd:81:b4:45:e8:fb:20:b5:4f:17:56:91:eb: 06:53:16:dc:da:c9:23:a0:4a:68:ef:88:b2:2d:48:db:2f:ab: d4:f1:c9:0a:9c:4b:48:89:56:22:77:29:ec:18:5e:f8:91:a6: c1:1e:a5:3d:42:15:83:56:78:8a:39:cd:07:8f:51:b8:b1:b0: 18:19:c0:b7:e4:a2:62:5a:6f:b2:7d:6f:ff:99:48:28:83:f4: 57:2b:13:9b:b2:67:2f:c6:2f:4b:38:77:f6:18:42:5c:4d:bd: 3c:a6:f8:80:93:72:71:1f:3a:68:6d:a2:23:01:1d:4e:d9:2c: 94:49:ed:8b:e8:e6:86:45:50:81:b4:5b:19:b2:00:7c:15:35: 80:6d:da:af:7f:04:9e:51:22:4e:75:27:02:aa:15:1e:20:dc: 70:44:ea:86:23:1c:81:07:a1:48:87:19:82:9a:c6:d1:63:ce: ee:cf:fe:5a:43:79:a0:e1:d5:df:62:70:cc:91:7f:26:5d:f1: ff:03:3e:f5:9c:43:09:9c:8a:6e:d4:73:a6:59:2a:c3:ab:b9: 65:c5:01:49 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUANGVtKGj4d3ZLpR7LQhmNkvwLnEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI3MDA1MTA4WhcNMjUxMDAxMjM1OTU5 WjB6MUkwRwYDVQQFE0A3OWRjOGMzYTgxMWRmYTcxMjYzZTdhNTQyNjIwNWQ5ZDgz M2Q1ZjBkOTMyNWYyOGIzYzBmMzM5OGI5MjUyYzc4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCOKIpIXI3zocYwR9FIMxNlD4rPakFKyy0ALbO6p/UiRMgs tvSSL+2V1RBPHrFAZPht65YvEPiAPxnW8SBoZ+MH0B8fFQ44dTbt8lOZ3x+cHL30 HwosuNLiRVFUxn2tvlZY2OU1DhQKcTcHMwzvzGT9E8IJc1MDbLsQAuYKjmNrnmYN 7Muiuo14wd7pFcwXmFzgXFlVKn2toNVGtrtzPhWVoZTKTe7KXFOs33W3yH5wUMKW UD1hqAH7jnUSFd9wmap7DUW/Nef27EwNxm1QDe1CCMnQrT3XXUuGzJUhqy6gcb+D Kgs2JkSc/LODHMRdauS561XkE/Y2YNEnYqzjBiyNAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUg9+agaoe/WJQHHyt1K4qctuA8GgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI0ZDkyMWMxLTllOTYtNGVjMC04ZDk1LWE0NWI4YzA4MzEwNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCo8jANBgkqhkiG9w0BAQsFAAOCAQEATeDeiJTzXFNruj/fNughTFL9fzdx 0RQ4Xkm0WUC2YrqmgxzGODLe9PHdgbRF6PsgtU8XVpHrBlMW3NrJI6BKaO+Isi1I 2y+r1PHJCpxLSIlWIncp7Bhe+JGmwR6lPUIVg1Z4ijnNB49RuLGwGBnAt+SiYlpv sn1v/5lIKIP0VysTm7JnL8YvSzh39hhCXE29PKb4gJNycR86aG2iIwEdTtkslEnt i+jmhkVQgbRbGbIAfBU1gG3ar38EnlEiTnUnAqoVHiDccETqhiMcgQehSIcZgprG 0WPO7s/+WkN5oOHV32JwzJF/Jl3x/wM+9ZxDCZyKbtRzplkqw6u5ZcUBSQ== -----END CERTIFICATE-----Generated at Sat Sep 6 14:12:06 2025 by rpki-client