$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/482e401f-8bd4-49bd-aa37-5a143d94fa53.roa File: 482e401f-8bd4-49bd-aa37-5a143d94fa53.roa (raw, json) Hash identifier: YZeOX/4ul32Pw6dQImKaD/Dv3QXI1pj5SGjytOyOOv0= Subject key identifier: 84:50:2A:2C:22:D2:BE:6F:8D:C5:69:44:80:75:7F:E3:E9:DF:9C:94 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0F3FF9FB35A60F54673E04E9FE88EAAF83FE6028 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/482e401f-8bd4-49bd-aa37-5a143d94fa53.roa Signing time: Sat 06 Sep 2025 00:40:23 +0000 ROA not before: Sat 06 Sep 2025 00:40:23 +0000 ROA not after: Sat 11 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 64.252.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:3f:f9:fb:35:a6:0f:54:67:3e:04:e9:fe:88:ea:af:83:fe:60:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 6 00:40:23 2025 GMT Not After : Oct 11 23:59:59 2025 GMT Subject: serialNumber=ba893aa659bf51cfd1ac780b79a12c44819659b1a75fa487e46dd4207102af3e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:84:d0:02:88:1f:40:ac:b6:dc:0c:17:35:f1: 18:37:23:03:3c:19:30:48:bc:c7:1a:ad:0f:5e:38: 1c:ae:12:7d:e7:57:8f:d0:d0:20:8b:d2:e2:94:89: a5:61:31:b0:30:d0:52:9f:be:2b:4c:cc:61:b1:cf: 01:25:ee:b4:53:34:0a:71:f1:8a:4a:78:a3:5a:ed: 31:a1:8b:e0:b7:ec:83:73:1a:2f:80:66:d5:5d:27: 1a:be:04:4c:53:ec:29:bc:6f:09:ef:29:83:8e:a1: 5c:ea:63:a4:5b:e8:01:9d:47:57:c6:15:fe:73:39: 79:56:b8:26:f8:64:40:1d:d7:38:4c:dc:a2:b7:2a: f1:c8:a8:54:df:40:58:bc:1e:b6:65:11:9f:6d:b4: 1c:9f:0d:63:1e:a1:8e:ac:26:18:ad:e3:03:e4:55: 87:fd:0c:65:53:d6:24:12:c6:22:0b:d1:14:53:78: 06:cc:cf:09:b7:58:75:00:94:6e:36:3d:01:b6:a4: db:62:2e:e7:2c:f4:b4:21:bc:47:24:9d:de:86:ad: 4a:92:8c:aa:eb:46:75:24:1e:91:56:01:d5:27:9e: 7e:4e:63:d1:2b:bd:cf:a9:6e:65:7b:24:e1:7c:5b: 0a:a4:d5:86:cb:4d:cb:0d:44:91:66:5a:56:85:b1: 4e:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:50:2A:2C:22:D2:BE:6F:8D:C5:69:44:80:75:7F:E3:E9:DF:9C:94 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/482e401f-8bd4-49bd-aa37-5a143d94fa53.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.108.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:52:fc:25:a8:45:4b:14:36:79:38:0f:d9:ad:2d:41:c1:14: eb:10:c3:85:1d:46:cd:bb:1d:e1:e7:96:a5:7e:1e:3e:6c:94: c1:58:e1:82:0d:e0:7a:8f:00:b1:a3:9b:b7:fe:dd:11:a0:c1: ec:97:58:ac:32:2b:86:8d:60:cf:31:d8:20:f5:c5:74:8e:97: 7c:70:38:ab:57:13:28:50:7c:60:6f:b6:dd:2c:ee:06:d4:07: 8a:05:ea:78:84:b3:47:3a:97:ad:07:db:23:03:51:23:ce:f1: 67:68:fe:f9:8e:20:8d:a2:34:57:9e:bd:ee:d3:e3:ad:48:b3: 2d:06:bd:e3:fd:e5:b2:58:12:60:d0:ff:31:07:57:a1:87:0d: d3:cd:fc:46:96:57:8b:90:08:f9:b0:bc:e5:e5:e1:08:3b:55: 2a:4b:da:2e:8d:ac:f1:c8:c3:51:9d:d7:98:b4:83:20:8f:e1: 67:90:5d:09:34:82:36:c1:bd:f7:ac:36:b8:06:8e:76:01:31: 27:b4:0e:9f:56:86:01:ac:1b:c8:25:e5:93:85:55:12:3b:86: b5:81:ae:b9:5b:f1:2d:f0:e1:69:a9:34:06:6a:c3:87:b1:ae: 64:98:35:89:02:62:79:f8:ae:d5:2e:86:26:cb:09:fd:4e:6e: a8:0a:44:e7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDz/5+zWmD1RnPgTp/ojqr4P+YCgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA2MDA0MDIzWhcNMjUxMDExMjM1OTU5 WjB6MUkwRwYDVQQFE0BiYTg5M2FhNjU5YmY1MWNmZDFhYzc4MGI3OWExMmM0NDgx OTY1OWIxYTc1ZmE0ODdlNDZkZDQyMDcxMDJhZjNlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDzhNACiB9ArLbcDBc18Rg3IwM8GTBIvMcarQ9eOByuEn3n V4/Q0CCL0uKUiaVhMbAw0FKfvitMzGGxzwEl7rRTNApx8YpKeKNa7TGhi+C37INz Gi+AZtVdJxq+BExT7Cm8bwnvKYOOoVzqY6Rb6AGdR1fGFf5zOXlWuCb4ZEAd1zhM 3KK3KvHIqFTfQFi8HrZlEZ9ttByfDWMeoY6sJhit4wPkVYf9DGVT1iQSxiIL0RRT eAbMzwm3WHUAlG42PQG2pNtiLucs9LQhvEcknd6GrUqSjKrrRnUkHpFWAdUnnn5O Y9Ervc+pbmV7JOF8Wwqk1YbLTcsNRJFmWlaFsU7VAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUhFAqLCLSvm+NxWlEgHV/4+nfnJQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ4MmU0MDFmLThiZDQtNDliZC1hYTM3LTVhMTQzZDk0ZmE1My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA/GwwDQYJKoZIhvcNAQELBQADggEBAA9S/CWoRUsUNnk4D9mtLUHBFOsQ w4UdRs27HeHnlqV+Hj5slMFY4YIN4HqPALGjm7f+3RGgweyXWKwyK4aNYM8x2CD1 xXSOl3xwOKtXEyhQfGBvtt0s7gbUB4oF6niEs0c6l60H2yMDUSPO8Wdo/vmOII2i NFeeve7T461Isy0GveP95bJYEmDQ/zEHV6GHDdPN/EaWV4uQCPmwvOXl4Qg7VSpL 2i6NrPHIw1Gd15i0gyCP4WeQXQk0gjbBvfesNrgGjnYBMSe0Dp9WhgGsG8gl5ZOF VRI7hrWBrrlb8S3w4WmpNAZqw4exrmSYNYkCYnn4rtUuhibLCf1ObqgKROc= -----END CERTIFICATE-----Generated at Sat Sep 6 14:13:55 2025 by rpki-client