$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2a25bcb3-ce57-48d7-9a9f-e68a5b2943a6.roa File: 2a25bcb3-ce57-48d7-9a9f-e68a5b2943a6.roa (raw, json) Hash identifier: NQr+lZ8QnIisz4Q741NYXO56p2xfxt5NhZBJN/W/Av0= Subject key identifier: CC:52:9E:77:8D:7D:1E:AD:1F:E1:8E:8E:A3:B0:3A:56:1F:E0:5A:16 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6E20DA17CF4010395A44E3AD0AB2BDF7AF2D1622 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2a25bcb3-ce57-48d7-9a9f-e68a5b2943a6.roa Signing time: Sat 30 Aug 2025 00:41:23 +0000 ROA not before: Sat 30 Aug 2025 00:41:23 +0000 ROA not after: Sat 04 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.63.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:20:da:17:cf:40:10:39:5a:44:e3:ad:0a:b2:bd:f7:af:2d:16:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 30 00:41:23 2025 GMT Not After : Oct 4 23:59:59 2025 GMT Subject: serialNumber=d89121e0801973b04ad45ed18d722a8b350dfa82dc3cb048548a7b841b6a47e4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:5b:7a:7b:e4:07:39:20:9e:52:35:f3:08:fc: 2f:a9:d6:68:70:b2:6c:70:57:88:84:87:53:3a:16: 45:75:c3:d2:c3:a2:f7:5f:9a:a8:52:2b:8a:6e:df: 9c:ff:f0:16:46:63:b3:3e:8c:55:6b:35:86:b0:07: d5:90:01:29:4c:88:cf:c5:12:cb:7b:88:1b:1a:3e: 30:c4:e3:bb:49:92:70:4b:16:f3:bf:3b:8e:d8:3e: 53:10:6c:2b:39:68:3c:9e:57:d1:ab:0f:77:9b:36: e0:0a:48:db:71:ae:1a:07:62:c2:6d:1a:ee:bc:90: b3:a3:af:52:fe:70:f8:85:b1:fe:df:a5:dd:15:e5: 4e:6c:2e:8b:41:08:42:8d:c2:d7:de:69:9a:97:59: 3d:fb:e1:55:c2:97:b3:63:ca:aa:43:08:b9:71:80: 08:e3:5b:e7:fd:87:b3:74:94:b1:0d:14:67:56:d0: 6d:5e:b7:be:16:14:70:4d:90:bd:63:84:d1:3a:98: f2:1b:f7:77:3e:a9:72:6f:25:b7:89:e8:90:59:88: 88:44:8b:ac:ce:f8:d7:83:fc:17:c3:79:8a:68:85: e1:ea:b5:d7:7c:19:71:37:0e:5e:dd:71:01:1d:fc: 14:8b:ed:ae:dd:62:12:77:71:f8:54:24:a6:c8:f0: 12:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:52:9E:77:8D:7D:1E:AD:1F:E1:8E:8E:A3:B0:3A:56:1F:E0:5A:16 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2a25bcb3-ce57-48d7-9a9f-e68a5b2943a6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.63.0.0/16 Signature Algorithm: sha256WithRSAEncryption a5:be:fd:c8:03:20:ea:5d:7a:c7:45:92:2e:c3:77:83:76:dc: 6d:cc:9f:80:6f:d3:a4:b1:c2:8c:d2:e7:98:43:a3:2a:df:b1: 51:39:35:82:a2:74:81:42:58:9c:6c:a4:69:52:f1:2b:16:29: 9f:c7:10:d9:28:75:52:55:65:cd:06:ed:c7:2d:77:09:20:e8: 05:76:65:b6:be:4b:c0:2d:d1:71:77:6a:ee:39:16:64:cf:02: 6e:0c:31:64:d6:b1:31:d5:d2:e4:8e:b4:3e:d0:b7:f5:49:45: 5e:c4:1b:f6:39:90:8b:86:8d:a6:43:72:df:fa:c7:65:cf:7b: 65:a0:6b:18:4c:1f:49:54:ed:60:50:83:12:90:27:c9:71:ab: 73:61:b9:39:d0:a9:ee:6f:e0:5b:73:32:3a:f4:0c:38:ef:55: 1e:92:1a:c6:eb:f8:57:44:36:cf:1f:a8:65:59:d1:68:7e:44: fd:6a:7e:6e:52:16:ec:0a:6a:71:39:e3:00:ba:c2:39:c7:99: ff:7b:f3:fe:a5:73:ab:56:66:5b:1c:aa:d5:45:e3:3a:92:78: 2a:90:b0:d4:21:e8:b8:a4:c7:69:a3:80:f9:bd:70:8f:a3:a2: 4c:5e:da:63:fe:e7:dc:18:ba:61:e4:30:cd:bb:57:dc:5a:b5: c1:37:7d:bb -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUbiDaF89AEDlaROOtCrK9968tFiIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODMwMDA0MTIzWhcNMjUxMDA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BkODkxMjFlMDgwMTk3M2IwNGFkNDVlZDE4ZDcyMmE4YjM1 MGRmYTgyZGMzY2IwNDg1NDhhN2I4NDFiNmE0N2U0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQW3p75Ac5IJ5SNfMI/C+p1mhwsmxwV4iEh1M6FkV1w9LD ovdfmqhSK4pu35z/8BZGY7M+jFVrNYawB9WQASlMiM/FEst7iBsaPjDE47tJknBL FvO/O47YPlMQbCs5aDyeV9GrD3ebNuAKSNtxrhoHYsJtGu68kLOjr1L+cPiFsf7f pd0V5U5sLotBCEKNwtfeaZqXWT374VXCl7NjyqpDCLlxgAjjW+f9h7N0lLENFGdW 0G1et74WFHBNkL1jhNE6mPIb93c+qXJvJbeJ6JBZiIhEi6zO+NeD/BfDeYpoheHq tdd8GXE3Dl7dcQEd/BSL7a7dYhJ3cfhUJKbI8BKtAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUzFKed419Hq0f4Y6Oo7A6Vh/gWhYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJhMjViY2IzLWNlNTctNDhkNy05YTlmLWU2OGE1YjI5NDNhNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4PzANBgkqhkiG9w0BAQsFAAOCAQEApb79yAMg6l16x0WSLsN3g3bcbcyf gG/TpLHCjNLnmEOjKt+xUTk1gqJ0gUJYnGykaVLxKxYpn8cQ2Sh1UlVlzQbtxy13 CSDoBXZltr5LwC3RcXdq7jkWZM8CbgwxZNaxMdXS5I60PtC39UlFXsQb9jmQi4aN pkNy3/rHZc97ZaBrGEwfSVTtYFCDEpAnyXGrc2G5OdCp7m/gW3MyOvQMOO9VHpIa xuv4V0Q2zx+oZVnRaH5E/Wp+blIW7ApqcTnjALrCOceZ/3vz/qVzq1ZmWxyq1UXj OpJ4KpCw1CHouKTHaaOA+b1wj6OiTF7aY/7n3Bi6YeQwzbtX3Fq1wTd9uw== -----END CERTIFICATE-----Generated at Sat Sep 6 14:08:45 2025 by rpki-client