$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5238a6c5-a106-4b94-9f46-2c619db863c6.roa File: 5238a6c5-a106-4b94-9f46-2c619db863c6.roa (raw, json) Hash identifier: DJpVoBvAElriNOG7ZU+b6H9ojiXem9VrQFNA6R3gjLc= Subject key identifier: D2:03:44:91:41:DC:57:53:E9:8E:E2:98:78:9E:21:C5:0C:FC:5C:36 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3B67E156FB77045E93A704A21018BCCC364E019C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5238a6c5-a106-4b94-9f46-2c619db863c6.roa Signing time: Fri 29 Aug 2025 00:10:24 +0000 ROA not before: Fri 29 Aug 2025 00:10:24 +0000 ROA not after: Fri 03 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 107.150.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:67:e1:56:fb:77:04:5e:93:a7:04:a2:10:18:bc:cc:36:4e:01:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 29 00:10:24 2025 GMT Not After : Oct 3 23:59:59 2025 GMT Subject: serialNumber=4921ea88cdcd393c6d7140ad260e0a3c83266bcb91bdcedb8d717234998ef141, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:b9:ef:5a:23:8b:ea:e4:4c:12:da:7e:ab:cd: 6c:3a:b1:49:bb:87:f4:4a:dc:a7:c3:69:5d:79:2b: 41:ef:af:a0:56:bc:43:46:37:6f:aa:8c:69:a5:c5: 10:10:14:bc:ea:2c:3d:82:2b:a7:ce:02:05:e3:cf: fe:3e:4f:30:69:b0:25:b5:20:8e:56:c9:0b:8f:f9: d4:b6:9f:31:54:1b:c0:b5:c3:ff:c0:bd:09:ab:a9: b2:50:3a:38:56:91:52:1a:30:9c:16:98:bc:13:27: 28:0c:e6:c1:71:c2:97:39:fc:6b:6a:42:43:ee:5e: 35:41:40:4e:4c:a3:5e:ad:91:ff:31:86:c7:9e:03: a1:51:19:28:40:48:2d:17:3c:c8:ec:49:ad:cf:4f: a5:72:58:16:37:3b:eb:a5:b1:fa:fd:66:41:4c:0a: e3:57:e0:bb:02:30:79:f5:42:41:bf:a0:f9:e7:fa: 19:a3:04:a2:b1:68:11:28:91:34:9a:07:72:cf:bc: 0e:c3:3f:27:7e:37:7e:00:50:b6:1e:37:3f:77:7c: 64:e9:ef:05:e4:2c:7c:5a:5e:b3:8d:56:8c:d4:22: 36:3b:01:07:9c:3c:c3:bc:bc:a6:e2:ca:05:be:df: 2f:c6:bb:4d:f8:81:82:70:f4:d7:58:46:e9:69:0b: 6d:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:03:44:91:41:DC:57:53:E9:8E:E2:98:78:9E:21:C5:0C:FC:5C:36 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5238a6c5-a106-4b94-9f46-2c619db863c6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.150.192.0/19 Signature Algorithm: sha256WithRSAEncryption 8c:6d:fb:02:84:69:5d:34:15:d5:23:2f:da:d5:70:7a:d1:86: 31:99:b8:0d:07:b4:b2:cb:e1:02:50:8b:88:8e:b8:b5:25:34: 0f:d2:e7:5d:8b:ed:8e:d9:33:21:69:69:30:95:8f:e2:59:ae: d1:dc:f9:df:11:ea:a8:38:6f:6f:4a:e4:d1:35:f5:40:2e:57: 84:18:84:ff:da:3d:57:81:51:9b:69:80:55:6d:dc:7e:e5:b4: 27:a0:6e:7f:a6:44:db:2c:19:a8:21:b4:b4:86:fa:c3:0a:41: 2e:b5:90:6e:01:11:f6:51:73:d9:30:10:18:a5:80:a7:0e:08: 39:16:55:da:43:c5:ec:50:f5:6b:7d:4b:82:32:ea:3d:f7:ab: 33:7e:be:bd:66:7f:c6:a9:b9:25:7a:28:70:67:b2:36:92:00: 71:c2:2f:f0:cd:1c:9f:50:3f:0c:52:ce:83:a3:dd:ff:d1:da: 79:97:22:90:40:20:a5:3b:7e:d3:93:f4:28:34:58:e9:c1:f9: a4:ac:1e:85:df:40:6b:78:4c:be:25:e9:83:7e:d7:c8:e6:df: 4c:fd:3f:b6:93:51:af:6c:31:a7:90:36:86:a4:53:2c:2a:cd: a0:24:84:46:c8:40:a5:94:f4:8c:0d:af:f6:ae:0b:de:30:9f: 03:b4:dd:91 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUO2fhVvt3BF6TpwSiEBi8zDZOAZwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI5MDAxMDI0WhcNMjUxMDAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A0OTIxZWE4OGNkY2QzOTNjNmQ3MTQwYWQyNjBlMGEzYzgz MjY2YmNiOTFiZGNlZGI4ZDcxNzIzNDk5OGVmMTQxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsue9aI4vq5EwS2n6rzWw6sUm7h/RK3KfDaV15K0Hvr6BW vENGN2+qjGmlxRAQFLzqLD2CK6fOAgXjz/4+TzBpsCW1II5WyQuP+dS2nzFUG8C1 w//AvQmrqbJQOjhWkVIaMJwWmLwTJygM5sFxwpc5/GtqQkPuXjVBQE5Mo16tkf8x hseeA6FRGShASC0XPMjsSa3PT6VyWBY3O+ulsfr9ZkFMCuNX4LsCMHn1QkG/oPnn +hmjBKKxaBEokTSaB3LPvA7DPyd+N34AULYeNz93fGTp7wXkLHxaXrONVozUIjY7 AQecPMO8vKbiygW+3y/Gu034gYJw9NdYRulpC20RAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU0gNEkUHcV1PpjuKYeJ4hxQz8XDYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUyMzhhNmM1LWExMDYtNGI5NC05ZjQ2LTJjNjE5ZGI4NjNjNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVrlsAwDQYJKoZIhvcNAQELBQADggEBAIxt+wKEaV00FdUjL9rVcHrRhjGZ uA0HtLLL4QJQi4iOuLUlNA/S512L7Y7ZMyFpaTCVj+JZrtHc+d8R6qg4b29K5NE1 9UAuV4QYhP/aPVeBUZtpgFVt3H7ltCegbn+mRNssGaghtLSG+sMKQS61kG4BEfZR c9kwEBilgKcOCDkWVdpDxexQ9Wt9S4Iy6j33qzN+vr1mf8apuSV6KHBnsjaSAHHC L/DNHJ9QPwxSzoOj3f/R2nmXIpBAIKU7ftOT9Cg0WOnB+aSsHoXfQGt4TL4l6YN+ 18jm30z9P7aTUa9sMaeQNoakUywqzaAkhEbIQKWU9IwNr/auC94wnwO03ZE= -----END CERTIFICATE-----Generated at Sat Sep 6 14:19:53 2025 by rpki-client