$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/24f8a6f4-9cf8-4839-a98d-4a5fd83b3cb0.roa File: 24f8a6f4-9cf8-4839-a98d-4a5fd83b3cb0.roa (raw, json) Hash identifier: Xxyg6ke7rPG+zhb+lL99e2MhalbnZwpHH+uaR3cKPLM= Subject key identifier: 2B:05:83:2D:D7:7C:BC:2F:6F:14:A4:AE:BB:00:BC:A2:FB:B0:9B:E9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0320AFD3273293EE4723F2038FAC2BB14827413F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/24f8a6f4-9cf8-4839-a98d-4a5fd83b3cb0.roa Signing time: Sat 09 Aug 2025 00:00:49 +0000 ROA not before: Sat 09 Aug 2025 00:00:49 +0000 ROA not after: Sat 13 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 130.31.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:20:af:d3:27:32:93:ee:47:23:f2:03:8f:ac:2b:b1:48:27:41:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 9 00:00:49 2025 GMT Not After : Sep 13 23:59:59 2025 GMT Subject: serialNumber=8932ee52d82db65e2f57e96d4f5a7238adc1d3688318d92f6dc8ebf3108fdd00, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:33:e8:b7:98:0f:49:f8:31:3b:d6:19:69:79: bf:a9:e3:ac:8e:92:5a:ae:58:70:f5:56:c5:3d:54: ad:97:ff:2e:71:5d:69:85:ae:f4:e6:4e:b6:3e:5b: 5a:cc:b1:b5:4a:9c:58:6c:05:ee:4b:9e:e4:6a:d0: 3f:1b:4b:c0:0f:6d:00:85:80:d6:d2:c4:8a:b5:63: 61:d2:ca:fc:2d:2c:ea:02:b4:54:a0:07:c9:14:33: c4:a2:67:40:d8:6b:b2:a9:68:c7:ed:9e:dc:44:13: de:fc:ec:83:e9:f4:0c:5d:3f:e5:38:b6:25:62:2c: 7c:b7:02:c9:86:cb:53:7e:74:1a:8e:4d:0f:2d:bd: 73:ec:a9:7c:31:72:0c:2c:7b:e7:ab:a2:10:0a:4b: 9c:99:fa:44:42:82:f2:cb:8c:01:2d:5f:a5:d7:c8: 95:5a:42:e8:dd:af:cd:71:9c:9b:c4:02:3f:c2:ad: 94:a0:4d:1f:f6:5e:f5:44:06:65:61:07:f0:77:bf: df:65:cb:da:b8:0c:85:4a:50:a3:f9:10:c9:96:53: 33:4b:73:18:4c:e9:24:9a:0d:81:b8:e6:15:a0:d9: 35:2c:9d:b6:5c:96:03:5d:03:77:91:a3:f4:1b:39: 9f:d3:e7:31:cb:2d:5e:25:74:ea:9a:55:1c:4e:b5: 73:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:05:83:2D:D7:7C:BC:2F:6F:14:A4:AE:BB:00:BC:A2:FB:B0:9B:E9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/24f8a6f4-9cf8-4839-a98d-4a5fd83b3cb0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 130.31.0.0/16 Signature Algorithm: sha256WithRSAEncryption 9c:2f:79:fe:7b:0b:fc:48:e7:83:34:33:59:37:71:1e:ab:a6: 6e:4f:e3:9c:55:52:ab:1c:ef:4c:69:e4:86:10:09:9b:03:b2: c2:2e:06:cf:75:9e:ab:40:99:72:4c:60:0b:cf:ed:c7:80:97: 3d:f4:d6:57:fe:23:41:a9:4f:5c:2f:e1:07:fa:3b:28:9a:b6: 04:87:67:96:ed:78:04:28:30:11:7f:5d:aa:28:39:3d:9d:d7: ff:bb:31:2c:2a:a2:09:60:bb:64:55:9c:bb:f8:aa:b9:75:f0: 23:c9:f2:49:2e:40:72:1f:e4:03:2f:25:b6:5c:65:07:71:61: 19:ed:f3:79:1d:98:21:a6:7c:b4:d9:11:f4:6e:0c:ae:3f:e0: c7:1d:ab:47:22:40:06:cd:c8:3b:07:8f:81:db:af:4f:94:86: 40:31:a8:ac:30:39:63:ec:a0:d1:1e:0d:7c:19:ed:83:52:9d: b1:bc:bd:ae:8b:a0:e2:9e:11:16:eb:df:85:30:44:3f:fa:3b: 05:2f:c9:41:4a:e4:78:9c:60:69:bb:a3:27:36:3b:19:3a:71: 1f:50:bd:e6:07:ac:87:de:ec:e1:f7:13:8d:48:14:66:ff:ed: 5c:3b:d1:2b:89:ad:4f:20:af:d8:97:82:87:b8:2c:6c:74:3b: d3:b3:99:a3 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUAyCv0ycyk+5HI/IDj6wrsUgnQT8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA5MDAwMDQ5WhcNMjUwOTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A4OTMyZWU1MmQ4MmRiNjVlMmY1N2U5NmQ0ZjVhNzIzOGFk YzFkMzY4ODMxOGQ5MmY2ZGM4ZWJmMzEwOGZkZDAwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkM+i3mA9J+DE71hlpeb+p46yOklquWHD1VsU9VK2X/y5x XWmFrvTmTrY+W1rMsbVKnFhsBe5LnuRq0D8bS8APbQCFgNbSxIq1Y2HSyvwtLOoC tFSgB8kUM8SiZ0DYa7KpaMftntxEE9787IPp9AxdP+U4tiViLHy3AsmGy1N+dBqO TQ8tvXPsqXwxcgwse+erohAKS5yZ+kRCgvLLjAEtX6XXyJVaQujdr81xnJvEAj/C rZSgTR/2XvVEBmVhB/B3v99ly9q4DIVKUKP5EMmWUzNLcxhM6SSaDYG45hWg2TUs nbZclgNdA3eRo/QbOZ/T5zHLLV4ldOqaVRxOtXP1AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUKwWDLdd8vC9vFKSuuwC8ovuwm+kwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI0ZjhhNmY0LTljZjgtNDgzOS1hOThkLTRhNWZkODNiM2NiMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCCHzANBgkqhkiG9w0BAQsFAAOCAQEAnC95/nsL/EjngzQzWTdxHqumbk/j nFVSqxzvTGnkhhAJmwOywi4Gz3Weq0CZckxgC8/tx4CXPfTWV/4jQalPXC/hB/o7 KJq2BIdnlu14BCgwEX9dqig5PZ3X/7sxLCqiCWC7ZFWcu/iquXXwI8nySS5Ach/k Ay8ltlxlB3FhGe3zeR2YIaZ8tNkR9G4Mrj/gxx2rRyJABs3IOwePgduvT5SGQDGo rDA5Y+yg0R4NfBntg1Kdsby9roug4p4RFuvfhTBEP/o7BS/JQUrkeJxgabujJzY7 GTpxH1C95gesh97s4fcTjUgUZv/tXDvRK4mtTyCv2JeCh7gsbHQ707OZow== -----END CERTIFICATE-----Generated at Wed Aug 20 10:42:37 2025 by rpki-client