$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2ef29466-00b2-4064-829f-9e52620573d7.roa File: 2ef29466-00b2-4064-829f-9e52620573d7.roa (raw, json) Hash identifier: arKSvDy4MlEg2UmTYDGRGhiBkkgm8K9/yta5tqONuxQ= Subject key identifier: 56:1B:FD:14:86:49:18:18:4B:74:38:0F:80:A1:BE:7F:AE:3D:18:7D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 06C254C85377A4BB9A2E6F828556975A480A1DD5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2ef29466-00b2-4064-829f-9e52620573d7.roa Signing time: Wed 13 Aug 2025 00:41:25 +0000 ROA not before: Wed 13 Aug 2025 00:41:25 +0000 ROA not after: Wed 17 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 96.0.12.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:c2:54:c8:53:77:a4:bb:9a:2e:6f:82:85:56:97:5a:48:0a:1d:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 13 00:41:25 2025 GMT Not After : Sep 17 23:59:59 2025 GMT Subject: serialNumber=ef7116f7863cea8d59a38ccacc30d7e2bd2cd462dd5bb4e558a7cc84eba971aa, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:f2:3a:c6:39:0a:b6:89:38:c1:89:df:09:e9: a3:ad:5b:5b:40:b8:fe:ab:05:bc:79:d5:65:bf:cc: c6:dd:83:22:4c:0c:d2:7e:66:cc:c8:0f:57:a1:db: 3c:6f:58:0b:82:37:d3:1f:da:f3:30:bd:38:1f:a5: d2:65:f9:83:e8:d3:73:19:7f:e3:32:9e:a0:36:e4: 09:1d:ed:68:3a:54:9f:b5:60:4f:f5:35:f9:f2:df: 15:2a:81:fe:ef:65:c6:46:eb:39:7c:36:0c:63:f9: ee:ab:64:56:e4:b2:08:5c:45:38:be:51:a6:56:00: d0:2b:e9:0a:e9:83:92:02:92:10:1e:44:bb:c5:f1: 5b:ae:81:b2:d8:02:e9:bb:84:5a:e3:64:43:af:83: 6f:3b:68:86:d5:17:41:bf:f6:79:14:6f:a6:da:5c: 85:69:ea:c4:be:f9:fb:b9:1a:73:04:26:1c:b2:2c: c8:6c:27:39:59:94:a8:f0:ea:2f:70:40:5e:24:10: e5:f2:db:42:bd:20:28:23:7c:af:97:8d:15:39:8f: 50:fe:57:7d:7d:7b:94:7d:c7:11:26:4d:46:de:34: d4:69:3b:d3:86:df:91:06:9e:c3:ed:35:e5:9b:d1: 38:f8:c5:9b:81:ec:34:0b:db:f3:7b:92:4e:99:26: a1:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:1B:FD:14:86:49:18:18:4B:74:38:0F:80:A1:BE:7F:AE:3D:18:7D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2ef29466-00b2-4064-829f-9e52620573d7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.0.12.0/22 Signature Algorithm: sha256WithRSAEncryption 35:31:0c:ff:9d:22:64:6a:8c:fc:e5:a7:1d:72:bb:3f:55:27: 3a:6f:82:b8:7f:59:44:2d:72:47:b3:31:15:b5:e3:f8:50:24: 23:3d:7f:6d:3b:9e:d4:74:a3:84:54:f7:ec:40:0f:06:6a:10: c8:43:6e:f0:a0:61:c5:ea:f0:2d:1f:2a:cd:5b:44:e3:8f:e8: d3:a2:8f:0b:bb:f1:02:53:e4:26:d5:fc:f7:b4:44:d2:4e:bf: 74:40:df:a3:ff:d6:a3:9f:c9:96:67:82:4b:b6:fa:df:01:52: 40:b2:b0:80:de:b5:01:29:0b:09:f7:af:b1:1a:e8:88:ea:5e: 08:23:a9:55:cd:ea:7e:ef:2b:a4:7a:c5:92:f6:a4:97:b2:4d: 33:50:d2:76:eb:14:7e:7b:e6:3c:c7:9f:55:42:ba:8d:eb:13: d4:fb:09:c3:43:11:46:6d:29:9a:62:18:35:57:06:81:e3:e5: 14:10:51:48:7c:0f:75:56:44:11:c7:98:23:42:47:52:6b:c8: e1:11:db:f6:1d:b4:0b:f1:40:48:d7:86:f0:9d:04:09:74:a6: 50:09:c4:34:ab:1c:2b:61:b3:da:a0:48:e9:fc:95:9e:60:71: 8f:cb:b5:ca:3e:23:dd:94:5a:ab:e6:84:bf:90:8b:3e:87:fb: 9e:1b:12:5a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBsJUyFN3pLuaLm+ChVaXWkgKHdUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEzMDA0MTI1WhcNMjUwOTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlZjcxMTZmNzg2M2NlYThkNTlhMzhjY2FjYzMwZDdlMmJk MmNkNDYyZGQ1YmI0ZTU1OGE3Y2M4NGViYTk3MWFhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDY8jrGOQq2iTjBid8J6aOtW1tAuP6rBbx51WW/zMbdgyJM DNJ+ZszID1eh2zxvWAuCN9Mf2vMwvTgfpdJl+YPo03MZf+MynqA25Akd7Wg6VJ+1 YE/1Nfny3xUqgf7vZcZG6zl8Ngxj+e6rZFbksghcRTi+UaZWANAr6Qrpg5ICkhAe RLvF8VuugbLYAum7hFrjZEOvg287aIbVF0G/9nkUb6baXIVp6sS++fu5GnMEJhyy LMhsJzlZlKjw6i9wQF4kEOXy20K9ICgjfK+XjRU5j1D+V319e5R9xxEmTUbeNNRp O9OG35EGnsPtNeWb0Tj4xZuB7DQL2/N7kk6ZJqEdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUVhv9FIZJGBhLdDgPgKG+f649GH0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJlZjI5NDY2LTAwYjItNDA2NC04MjlmLTllNTI2MjA1NzNkNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJgAAwwDQYJKoZIhvcNAQELBQADggEBADUxDP+dImRqjPzlpx1yuz9VJzpv grh/WUQtckezMRW14/hQJCM9f207ntR0o4RU9+xADwZqEMhDbvCgYcXq8C0fKs1b ROOP6NOijwu78QJT5CbV/Pe0RNJOv3RA36P/1qOfyZZngku2+t8BUkCysIDetQEp Cwn3r7Ea6IjqXggjqVXN6n7vK6R6xZL2pJeyTTNQ0nbrFH575jzHn1VCuo3rE9T7 CcNDEUZtKZpiGDVXBoHj5RQQUUh8D3VWRBHHmCNCR1JryOER2/YdtAvxQEjXhvCd BAl0plAJxDSrHCths9qgSOn8lZ5gcY/Ltco+I92UWqvmhL+Qiz6H+54bElo= -----END CERTIFICATE-----Generated at Wed Aug 20 13:19:29 2025 by rpki-client