$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/552b517a-5218-4ed2-a892-21426274eafb.roa File: 552b517a-5218-4ed2-a892-21426274eafb.roa (raw, json) Hash identifier: DjRVwVDWzf+4y1Bh6XX5uD/u2itydQFkkFNls1uK5CE= Subject key identifier: BE:0A:4E:3A:F3:4F:93:52:8B:DD:FF:E5:8E:40:F9:F2:C2:8D:7D:33 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 353B13575C44724826B4A8CECAE79E6B890EFC84 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/552b517a-5218-4ed2-a892-21426274eafb.roa Signing time: Fri 29 Aug 2025 16:41:05 +0000 ROA not before: Fri 29 Aug 2025 16:41:05 +0000 ROA not after: Fri 03 Oct 2025 23:59:59 +0000 asID: 7224 IP address blocks: 69.210.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:3b:13:57:5c:44:72:48:26:b4:a8:ce:ca:e7:9e:6b:89:0e:fc:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 29 16:41:05 2025 GMT Not After : Oct 3 23:59:59 2025 GMT Subject: serialNumber=15eba189b8c54b228e64bf9217f71771de6683fbac8168f30ad5508340b08a35, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:08:0c:0a:17:7a:3b:96:23:dc:e1:91:d5:78: 5f:67:07:c6:e1:ab:df:7b:7b:4a:87:1e:3c:fe:36: 5e:9f:b1:fd:69:40:9c:8a:7c:05:ee:e2:65:93:c9: ab:b1:38:e7:50:84:d8:f8:06:e6:f7:83:53:9a:f0: b4:2d:78:e2:54:e5:f0:81:61:28:e9:ad:ae:76:0c: bb:c8:bc:44:fe:24:93:47:ec:1e:30:98:6a:74:b9: 8c:10:1c:b6:ce:b2:e5:af:3e:86:cf:a0:cc:bb:75: d3:7e:6d:85:95:5e:b4:f1:3a:ea:85:d3:30:3b:9b: 0e:3f:7e:85:45:94:fe:ef:a9:79:1a:7b:74:63:f8: b6:37:14:39:1f:f4:d8:bc:e2:6c:49:c4:39:c4:d8: a7:2a:51:cd:98:97:6d:0c:53:17:fb:c7:1f:48:0a: a0:31:a2:64:29:b6:82:26:47:ca:5c:07:f5:93:79: 69:70:c5:79:bf:0a:cf:76:93:06:87:73:ff:81:30: 79:4a:fe:3b:41:44:62:f8:23:7a:50:31:34:53:ad: f1:a6:a9:72:ca:b8:51:14:68:73:6c:3f:9f:9b:54: 34:2e:8b:b0:f0:2a:ca:6e:c6:e7:0c:d8:12:b2:32: 4a:2b:17:0e:6b:71:95:31:fb:be:12:bf:e6:f0:92: 0d:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:0A:4E:3A:F3:4F:93:52:8B:DD:FF:E5:8E:40:F9:F2:C2:8D:7D:33 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/552b517a-5218-4ed2-a892-21426274eafb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.210.64.0/18 Signature Algorithm: sha256WithRSAEncryption 16:93:78:d0:04:c9:a9:d4:8a:42:64:7d:a9:97:ea:04:3c:d7: f6:a0:18:97:99:b9:62:1a:dc:bd:fd:93:14:b8:aa:37:a1:38: fb:73:7f:ae:3c:ff:dc:32:27:2d:1e:46:9f:df:3e:a3:51:db: 23:2f:e8:2a:1d:7a:3b:ac:c0:e3:ea:31:1d:5a:88:91:9e:a9: f4:93:91:19:c3:54:d8:b9:10:72:0f:90:2c:6d:47:e2:28:bd: 6d:20:74:42:0b:8f:91:8b:57:88:b3:36:c4:5d:b0:b8:a6:fc: 58:00:97:f9:0f:84:bc:a7:2b:55:3c:91:4f:a4:90:a1:06:c2: f2:d6:8c:67:65:60:b3:56:13:f7:0d:06:6a:9f:61:e3:8d:aa: a3:59:10:ae:9e:11:d8:6e:a3:5f:6b:3d:c2:19:bf:34:30:6e: 80:3f:16:0c:95:89:bf:19:98:41:97:df:3d:e8:47:13:30:ba: 1c:7e:81:02:fa:b4:fc:78:db:1e:f9:bc:1e:46:91:93:b1:2a: 19:b4:6a:21:cf:01:bd:54:ed:8f:a6:3b:6e:5a:03:e0:2f:07: db:3e:6e:f3:2e:80:98:04:63:6c:d5:8a:bd:c0:19:21:4e:34: a4:81:c0:c9:3d:f2:9a:79:4e:ca:b3:01:00:28:52:fd:ef:55: f4:e6:02:de -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNTsTV1xEckgmtKjOyueea4kO/IQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI5MTY0MTA1WhcNMjUxMDAzMjM1OTU5 WjB6MUkwRwYDVQQFE0AxNWViYTE4OWI4YzU0YjIyOGU2NGJmOTIxN2Y3MTc3MWRl NjY4M2ZiYWM4MTY4ZjMwYWQ1NTA4MzQwYjA4YTM1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClCAwKF3o7liPc4ZHVeF9nB8bhq997e0qHHjz+Nl6fsf1p QJyKfAXu4mWTyauxOOdQhNj4Bub3g1Oa8LQteOJU5fCBYSjpra52DLvIvET+JJNH 7B4wmGp0uYwQHLbOsuWvPobPoMy7ddN+bYWVXrTxOuqF0zA7mw4/foVFlP7vqXka e3Rj+LY3FDkf9Ni84mxJxDnE2KcqUc2Yl20MUxf7xx9ICqAxomQptoImR8pcB/WT eWlwxXm/Cs92kwaHc/+BMHlK/jtBRGL4I3pQMTRTrfGmqXLKuFEUaHNsP5+bVDQu i7DwKspuxucM2BKyMkorFw5rcZUx+74Sv+bwkg0nAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUvgpOOvNPk1KL3f/ljkD58sKNfTMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU1MmI1MTdhLTUyMTgtNGVkMi1hODkyLTIxNDI2Mjc0ZWFmYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZF0kAwDQYJKoZIhvcNAQELBQADggEBABaTeNAEyanUikJkfamX6gQ81/ag GJeZuWIa3L39kxS4qjehOPtzf648/9wyJy0eRp/fPqNR2yMv6CodejuswOPqMR1a iJGeqfSTkRnDVNi5EHIPkCxtR+IovW0gdEILj5GLV4izNsRdsLim/FgAl/kPhLyn K1U8kU+kkKEGwvLWjGdlYLNWE/cNBmqfYeONqqNZEK6eEdhuo19rPcIZvzQwboA/ FgyVib8ZmEGX3z3oRxMwuhx+gQL6tPx42x75vB5GkZOxKhm0aiHPAb1U7Y+mO25a A+AvB9s+bvMugJgEY2zVir3AGSFONKSBwMk98pp5TsqzAQAoUv3vVfTmAt4= -----END CERTIFICATE-----Generated at Sat Sep 6 14:19:30 2025 by rpki-client