$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6a62da10-7a91-4f00-8d90-807e784a45e8.roa File: 6a62da10-7a91-4f00-8d90-807e784a45e8.roa (raw, json) Hash identifier: kRWwnONBSS9hu5+TVhz4HQQtN81Ta6hZzDK0wWtDpzU= Subject key identifier: A7:32:4B:79:2F:3F:0F:35:13:DE:41:18:DC:CF:44:5E:FE:DD:A9:86 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 34F2F34B138E5818478451387C9094517D4A6623 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6a62da10-7a91-4f00-8d90-807e784a45e8.roa Signing time: Fri 29 Aug 2025 00:32:06 +0000 ROA not before: Fri 29 Aug 2025 00:32:06 +0000 ROA not after: Fri 03 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.23.96.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:f2:f3:4b:13:8e:58:18:47:84:51:38:7c:90:94:51:7d:4a:66:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 29 00:32:06 2025 GMT Not After : Oct 3 23:59:59 2025 GMT Subject: serialNumber=e358524aede2610933dc8b5c3bba54cc1c7161bb68843192a65d929887761275, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:2d:4d:06:9b:47:ea:19:e9:a6:61:54:da:c1: 84:41:d7:b7:50:a2:d9:4a:7b:ca:6b:29:ff:57:99: 48:fa:45:ca:41:24:1e:e8:d3:e2:b5:c3:ca:e5:24: dc:e8:00:7b:5f:97:bf:47:e4:0f:09:b1:53:cf:3a: 44:97:06:22:0f:14:28:2d:16:f8:8b:c8:3f:94:33: 52:eb:57:2b:87:4f:94:48:b1:b2:66:3e:1a:2b:e3: a1:6f:ed:18:63:90:d8:2f:4f:b7:89:ea:ad:36:6e: 29:5c:5d:75:70:19:86:30:08:aa:e2:19:36:62:8d: f1:ed:2d:2e:6a:24:c4:8c:53:53:9d:c1:fb:cb:13: e9:c1:90:6f:9d:47:67:4c:c8:7c:09:d6:f5:11:04: c8:33:64:0b:ca:af:a2:9b:2c:9f:ae:be:3a:23:8d: e2:d1:dc:9b:46:17:d2:da:22:2f:5a:bd:50:b6:d9: 36:92:55:e2:ba:71:82:7e:98:2b:d5:fe:4b:8f:22: 5c:2f:28:e0:2a:28:43:ab:db:ed:78:b0:20:bc:e2: e3:d0:93:7c:02:a1:75:c0:84:0a:c3:ea:72:df:fd: 59:49:e8:7c:7c:32:17:6d:6d:18:c6:8c:c9:7e:63: 7f:bb:c8:98:85:31:cc:ba:4f:58:1b:4b:67:cd:58: 43:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:32:4B:79:2F:3F:0F:35:13:DE:41:18:DC:CF:44:5E:FE:DD:A9:86 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6a62da10-7a91-4f00-8d90-807e784a45e8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.23.96.0/19 Signature Algorithm: sha256WithRSAEncryption 18:b3:8c:6e:42:8c:aa:01:33:bf:28:5a:2c:eb:f4:56:23:75: 14:78:25:76:23:ff:8e:2b:30:b9:0b:c2:93:75:d1:79:0c:0d: e3:6d:e4:38:0a:52:ff:c4:20:cd:24:b8:0c:8e:bc:cc:d7:91: 6b:3c:d9:7d:07:57:1f:2a:bd:a8:ca:5c:06:7e:11:cc:59:21: 8c:76:f1:75:cd:f3:ca:8e:55:c9:82:c0:38:d8:5c:39:c2:24: 0c:be:82:32:5d:b9:9b:de:95:de:34:1a:c4:b9:c6:47:47:df: c7:32:5f:f7:f3:c5:f2:02:1d:50:4e:96:6d:e5:fe:be:4c:3c: 02:cf:e5:65:6e:f0:93:bc:d7:d9:76:f0:0d:00:ae:64:8e:ac: 8d:76:c0:1e:f9:a4:93:cc:66:cc:ff:c2:d1:33:99:4f:65:9c: 4d:34:51:a4:1b:38:d3:35:bc:a4:8c:8b:cf:a4:97:37:1d:39: 27:90:aa:b7:a3:56:33:47:d3:b1:a9:2b:c8:b3:84:45:a6:d3: 67:68:ba:7e:a8:50:4a:9d:c9:69:67:a6:c1:ce:64:79:0a:2f: 87:e0:c4:dc:2b:ab:b5:74:a7:f9:f1:ca:57:d0:ed:b6:33:a0: 01:3c:ec:d7:12:32:64:2c:fb:7f:11:f7:f6:30:18:0c:08:d5: 73:96:35:0c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNPLzSxOOWBhHhFE4fJCUUX1KZiMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI5MDAzMjA2WhcNMjUxMDAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BlMzU4NTI0YWVkZTI2MTA5MzNkYzhiNWMzYmJhNTRjYzFj NzE2MWJiNjg4NDMxOTJhNjVkOTI5ODg3NzYxMjc1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCaLU0Gm0fqGemmYVTawYRB17dQotlKe8prKf9XmUj6RcpB JB7o0+K1w8rlJNzoAHtfl79H5A8JsVPPOkSXBiIPFCgtFviLyD+UM1LrVyuHT5RI sbJmPhor46Fv7RhjkNgvT7eJ6q02bilcXXVwGYYwCKriGTZijfHtLS5qJMSMU1Od wfvLE+nBkG+dR2dMyHwJ1vURBMgzZAvKr6KbLJ+uvjojjeLR3JtGF9LaIi9avVC2 2TaSVeK6cYJ+mCvV/kuPIlwvKOAqKEOr2+14sCC84uPQk3wCoXXAhArD6nLf/VlJ 6Hx8MhdtbRjGjMl+Y3+7yJiFMcy6T1gbS2fNWEOJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUpzJLeS8/DzUT3kEY3M9EXv7dqYYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZhNjJkYTEwLTdhOTEtNGYwMC04ZDkwLTgwN2U3ODRhNDVlOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUXF2AwDQYJKoZIhvcNAQELBQADggEBABizjG5CjKoBM78oWizr9FYjdRR4 JXYj/44rMLkLwpN10XkMDeNt5DgKUv/EIM0kuAyOvMzXkWs82X0HVx8qvajKXAZ+ EcxZIYx28XXN88qOVcmCwDjYXDnCJAy+gjJduZveld40GsS5xkdH38cyX/fzxfIC HVBOlm3l/r5MPALP5WVu8JO819l28A0ArmSOrI12wB75pJPMZsz/wtEzmU9lnE00 UaQbONM1vKSMi8+klzcdOSeQqrejVjNH07GpK8izhEWm02doun6oUEqdyWlnpsHO ZHkKL4fgxNwrq7V0p/nxylfQ7bYzoAE87NcSMmQs+38R9/YwGAwI1XOWNQw= -----END CERTIFICATE-----Generated at Sat Sep 6 14:19:35 2025 by rpki-client