$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5d484a06-5c86-4f33-a91d-70e2aa3e89a5.roa File: 5d484a06-5c86-4f33-a91d-70e2aa3e89a5.roa (raw, json) Hash identifier: EJRm5Vn0c7AT6Hxrafy+xb79G9z1JOYibe8wTWORFk0= Subject key identifier: 5D:CF:08:CB:8A:5D:67:5F:34:DF:D2:B0:56:9D:60:FE:03:9D:87:1E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 63114BA9390B410220F4930400BABE28F33F6C47 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5d484a06-5c86-4f33-a91d-70e2aa3e89a5.roa Signing time: Sat 06 Sep 2025 00:31:32 +0000 ROA not before: Sat 06 Sep 2025 00:31:32 +0000 ROA not after: Sat 11 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.233.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:11:4b:a9:39:0b:41:02:20:f4:93:04:00:ba:be:28:f3:3f:6c:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 6 00:31:32 2025 GMT Not After : Oct 11 23:59:59 2025 GMT Subject: serialNumber=5c857bef358f2043bc4bde5cda4854015bfa5ba80042cc2f8ac27d0c0c9529ba, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:af:b4:1a:63:77:62:19:3c:22:df:47:4d:1d: 0d:cf:10:ca:a8:0f:24:d8:12:6d:bc:e8:88:2d:29: f1:cc:a5:2d:df:d0:78:e9:d8:6a:a3:64:e9:d7:14: a0:6a:ed:8e:35:17:26:63:72:2f:a3:89:9b:b6:66: 5e:43:c3:57:a3:d7:22:58:3e:e9:b0:0f:dc:b2:b8: c6:7b:d3:36:20:d0:c7:84:51:88:87:b6:f0:47:db: 2d:af:aa:a4:d4:a5:88:5b:79:79:50:27:33:e7:4b: 94:01:90:e8:d4:54:ce:ec:b2:1a:5c:f8:24:cc:61: c8:93:0c:8d:8d:6c:08:30:a1:12:11:8f:42:9f:9a: 7f:20:70:e5:35:65:c3:66:3b:f5:b1:3e:bb:36:ab: e8:6b:49:61:50:ce:09:1b:7c:aa:f7:83:70:f6:0a: 61:23:9a:53:be:f2:82:91:b6:b9:a6:5a:d3:89:39: c4:57:a2:ed:c4:f0:9a:e1:67:65:7e:bc:77:31:41: c5:91:a6:47:b3:d4:1e:a3:53:a1:a0:d2:4a:6b:d1: 8f:c0:eb:b1:e5:75:38:33:65:25:5a:ca:71:1a:bb: f4:6e:e4:dc:a7:06:23:a9:26:30:74:ad:54:d1:6e: ef:50:02:71:3a:6c:c5:d6:97:f8:ea:e3:0a:6c:2d: f1:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:CF:08:CB:8A:5D:67:5F:34:DF:D2:B0:56:9D:60:FE:03:9D:87:1E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5d484a06-5c86-4f33-a91d-70e2aa3e89a5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.233.0.0/16 Signature Algorithm: sha256WithRSAEncryption 12:bb:64:b8:a4:9d:ee:74:a6:d4:63:83:23:25:15:6e:47:76: 84:52:9e:88:a5:cc:c5:dc:1f:59:33:eb:ae:d5:96:7d:a6:46: 6a:4f:11:33:85:10:42:82:f3:19:52:89:b1:68:f6:3e:ea:f9: 39:16:41:c0:63:8e:3e:74:c2:4e:88:15:f9:08:28:db:30:79: 32:da:1a:d1:a7:11:97:63:74:1f:5f:c3:d3:ad:eb:ea:a1:43: 75:82:56:85:b7:2a:56:67:0b:60:11:d0:d6:aa:4f:3d:2c:30: 96:41:f7:21:79:30:d2:f2:8c:67:19:a9:a0:fa:07:e2:62:a5: 6d:dd:3a:a0:af:af:cf:1d:5a:61:4f:76:05:61:06:68:b2:e6: 37:41:ee:96:4f:e0:38:65:bd:29:5e:93:93:7a:a7:6e:ee:9f: 7c:0c:e0:b9:37:a3:8f:73:be:69:5b:06:b0:ae:f9:33:34:b1: 7d:0f:08:81:f7:9e:76:58:c5:39:13:2c:1b:1b:a5:5c:94:0e: a9:99:d5:91:dd:06:88:74:f0:2e:c2:6d:6d:47:77:53:af:f0: e4:ff:f0:9c:d8:6c:9a:b5:0d:b9:4a:15:3e:27:ca:ba:20:e9: 61:6c:1d:31:f9:6a:26:e1:02:da:c3:54:b2:79:59:18:97:bf: 40:d2:4d:9e -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUYxFLqTkLQQIg9JMEALq+KPM/bEcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA2MDAzMTMyWhcNMjUxMDExMjM1OTU5 WjB6MUkwRwYDVQQFE0A1Yzg1N2JlZjM1OGYyMDQzYmM0YmRlNWNkYTQ4NTQwMTVi ZmE1YmE4MDA0MmNjMmY4YWMyN2QwYzBjOTUyOWJhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqr7QaY3diGTwi30dNHQ3PEMqoDyTYEm286IgtKfHMpS3f 0Hjp2GqjZOnXFKBq7Y41FyZjci+jiZu2Zl5Dw1ej1yJYPumwD9yyuMZ70zYg0MeE UYiHtvBH2y2vqqTUpYhbeXlQJzPnS5QBkOjUVM7sshpc+CTMYciTDI2NbAgwoRIR j0Kfmn8gcOU1ZcNmO/WxPrs2q+hrSWFQzgkbfKr3g3D2CmEjmlO+8oKRtrmmWtOJ OcRXou3E8JrhZ2V+vHcxQcWRpkez1B6jU6Gg0kpr0Y/A67HldTgzZSVaynEau/Ru 5NynBiOpJjB0rVTRbu9QAnE6bMXWl/jq4wpsLfHFAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUXc8Iy4pdZ18039KwVp1g/gOdhx4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVkNDg0YTA2LTVjODYtNGYzMy1hOTFkLTcwZTJhYTNlODlhNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA46TANBgkqhkiG9w0BAQsFAAOCAQEAErtkuKSd7nSm1GODIyUVbkd2hFKe iKXMxdwfWTPrrtWWfaZGak8RM4UQQoLzGVKJsWj2Pur5ORZBwGOOPnTCTogV+Qgo 2zB5Mtoa0acRl2N0H1/D063r6qFDdYJWhbcqVmcLYBHQ1qpPPSwwlkH3IXkw0vKM ZxmpoPoH4mKlbd06oK+vzx1aYU92BWEGaLLmN0Hulk/gOGW9KV6Tk3qnbu6ffAzg uTejj3O+aVsGsK75MzSxfQ8IgfeedljFORMsGxulXJQOqZnVkd0GiHTwLsJtbUd3 U6/w5P/wnNhsmrUNuUoVPifKuiDpYWwdMflqJuEC2sNUsnlZGJe/QNJNng== -----END CERTIFICATE-----Generated at Sat Sep 6 14:18:52 2025 by rpki-client