$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/314c7065-54b1-44ae-a830-288d71b28af0.roa File: 314c7065-54b1-44ae-a830-288d71b28af0.roa (raw, json) Hash identifier: lTFs1u9IFmq/+HI7AN2IaacwTUWNL1bxoLtBUrtD1LU= Subject key identifier: 13:FC:C3:9C:DD:B0:0B:92:7E:C7:BA:96:CB:87:1C:01:4F:34:E2:50 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 333A054E880DA0611CAB4F6608781B6F836997D8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/314c7065-54b1-44ae-a830-288d71b28af0.roa Signing time: Fri 29 Aug 2025 16:41:32 +0000 ROA not before: Fri 29 Aug 2025 16:41:32 +0000 ROA not after: Fri 03 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.25.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:3a:05:4e:88:0d:a0:61:1c:ab:4f:66:08:78:1b:6f:83:69:97:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 29 16:41:32 2025 GMT Not After : Oct 3 23:59:59 2025 GMT Subject: serialNumber=9a9f060b3ede81e79fe1245e84ebc17e49638bee4466ad2d7931864475e85b40, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:33:9b:06:b3:2e:55:a2:e4:e8:d2:90:77:64: 32:23:61:93:86:76:f2:ec:de:dc:4b:8c:8f:2f:84: fd:70:91:78:7f:02:48:13:ba:62:84:17:05:93:eb: a9:ac:11:9d:eb:dd:0d:a5:cc:61:47:ee:54:4c:c2: 8e:cf:07:c0:51:c8:6f:35:79:39:2e:4d:dd:14:52: 09:d9:57:2b:4b:53:f3:50:1c:ba:9f:e4:9f:9b:11: d8:b2:e4:d9:05:cf:e8:d8:40:ec:5e:dd:2e:41:02: 78:cf:e3:c9:f4:39:5b:f2:ee:2c:d0:f0:04:24:94: 9c:cb:1c:0b:89:c7:de:c6:63:a3:c9:b8:ad:cd:39: c0:22:4b:bb:89:3a:f4:55:d7:37:ed:8f:3b:d1:66: 80:7a:16:3b:44:d6:e2:58:d4:de:0e:d3:36:ce:12: 44:56:7d:e1:12:8a:c4:e8:16:1a:69:fb:f5:bd:e0: 83:2f:a2:b0:ed:a5:87:65:9b:b3:54:0c:96:cd:61: f8:89:7b:8b:5a:75:1d:d4:0d:09:99:65:81:a9:fd: ae:f1:52:af:19:c7:d6:12:a5:b8:46:33:54:79:6a: dc:dd:d1:1f:36:2d:46:e3:90:52:a4:df:ff:73:ab: 6b:5b:0f:81:c2:85:cd:bb:f4:45:a5:b2:d8:fa:de: 02:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:FC:C3:9C:DD:B0:0B:92:7E:C7:BA:96:CB:87:1C:01:4F:34:E2:50 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/314c7065-54b1-44ae-a830-288d71b28af0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.25.67.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:5a:e0:26:64:c9:39:bf:f5:8e:7f:f8:1a:cf:77:9e:4e:f7: fe:8f:8b:26:87:5d:5e:36:f6:17:d8:ba:c8:64:45:e6:d7:5c: c1:21:ea:2e:a6:83:4a:16:b5:fd:de:9e:e5:3e:57:1c:5d:f4: a5:48:04:f6:34:16:f8:28:fa:e8:00:f9:ef:da:db:2f:da:f7: f6:f6:02:da:7a:87:dc:c8:a3:62:c5:21:ce:ad:15:62:90:46: 4a:b3:60:61:0f:59:b6:48:eb:77:fd:ab:3b:5f:03:0d:42:15: 67:c0:fe:2b:88:fa:76:76:af:e2:57:58:6c:24:97:66:a2:87: dd:db:38:d5:2f:39:98:89:c2:b6:a1:95:06:a9:1b:62:25:18: 62:fc:d2:cf:fe:30:6f:42:69:3a:90:52:81:68:50:ff:79:48: 82:2e:ac:2b:f6:95:5c:32:10:3f:af:72:b3:ea:77:09:6d:5e: 86:66:d1:64:3f:45:ae:fd:38:c3:02:5a:62:8d:96:e2:65:9c: 79:a8:cd:d5:8c:e2:f3:b6:1e:14:a2:1f:1a:39:18:dc:0b:17: 6d:4e:fb:b4:14:89:fd:8d:33:8c:79:56:b0:ae:3c:d5:ff:5d: 52:cf:33:31:be:59:32:4c:1d:ed:f1:61:25:d4:cc:d2:19:3e: de:17:0d:2f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMzoFTogNoGEcq09mCHgbb4Npl9gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI5MTY0MTMyWhcNMjUxMDAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A5YTlmMDYwYjNlZGU4MWU3OWZlMTI0NWU4NGViYzE3ZTQ5 NjM4YmVlNDQ2NmFkMmQ3OTMxODY0NDc1ZTg1YjQwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsM5sGsy5VouTo0pB3ZDIjYZOGdvLs3txLjI8vhP1wkXh/ AkgTumKEFwWT66msEZ3r3Q2lzGFH7lRMwo7PB8BRyG81eTkuTd0UUgnZVytLU/NQ HLqf5J+bEdiy5NkFz+jYQOxe3S5BAnjP48n0OVvy7izQ8AQklJzLHAuJx97GY6PJ uK3NOcAiS7uJOvRV1zftjzvRZoB6FjtE1uJY1N4O0zbOEkRWfeESisToFhpp+/W9 4IMvorDtpYdlm7NUDJbNYfiJe4tadR3UDQmZZYGp/a7xUq8Zx9YSpbhGM1R5atzd 0R82LUbjkFKk3/9zq2tbD4HChc279EWlstj63gKlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUE/zDnN2wC5J+x7qWy4ccAU804lAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzMxNGM3MDY1LTU0YjEtNDRhZS1hODMwLTI4OGQ3MWIyOGFmMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA2GUMwDQYJKoZIhvcNAQELBQADggEBAB1a4CZkyTm/9Y5/+BrPd55O9/6P iyaHXV429hfYushkRebXXMEh6i6mg0oWtf3enuU+Vxxd9KVIBPY0Fvgo+ugA+e/a 2y/a9/b2Atp6h9zIo2LFIc6tFWKQRkqzYGEPWbZI63f9qztfAw1CFWfA/iuI+nZ2 r+JXWGwkl2aih93bONUvOZiJwrahlQapG2IlGGL80s/+MG9CaTqQUoFoUP95SIIu rCv2lVwyED+vcrPqdwltXoZm0WQ/Ra79OMMCWmKNluJlnHmozdWM4vO2HhSiHxo5 GNwLF21O+7QUif2NM4x5VrCuPNX/XVLPMzG+WTJMHe3xYSXUzNIZPt4XDS8= -----END CERTIFICATE-----Generated at Sat Sep 6 14:19:24 2025 by rpki-client