$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6fcd84a1-3134-4005-9224-b48d476c9564.roa File: 6fcd84a1-3134-4005-9224-b48d476c9564.roa (raw, json) Hash identifier: axCVzoRP1cuBcrBZhlULGawUFD7GipX/ZZMjDveARow= Subject key identifier: 1B:C9:C4:3C:E9:DD:E7:A5:3F:9F:F8:1C:FA:52:07:7C:63:8D:10:15 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 311A96A43F2A25363AB3838E97050CA382D415A0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6fcd84a1-3134-4005-9224-b48d476c9564.roa Signing time: Sat 06 Sep 2025 00:40:22 +0000 ROA not before: Sat 06 Sep 2025 00:40:22 +0000 ROA not after: Sat 11 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 64.252.113.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 19 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:1a:96:a4:3f:2a:25:36:3a:b3:83:8e:97:05:0c:a3:82:d4:15:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 6 00:40:22 2025 GMT Not After : Oct 11 23:59:59 2025 GMT Subject: serialNumber=6787785a70999d5d30624339bd300e79d1ab5dea96346d42499ddd3e43589140, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:0a:58:d9:db:a8:0f:47:61:40:1f:c0:79:43: a6:35:a7:64:a3:83:3f:44:bd:d1:5c:c6:98:18:08: 67:e0:89:4b:84:1a:2b:36:e5:61:30:d2:f6:2e:8c: bb:47:1d:a8:ed:d4:e2:06:ce:cf:fc:82:c5:c1:5e: be:df:d4:2e:83:d6:57:ee:da:e9:89:70:4d:30:31: ba:75:a5:06:d6:93:ab:f9:4e:41:a8:03:e4:a6:9e: 89:4d:db:52:3a:6f:9c:ce:f1:74:33:dc:3b:2b:1a: a1:e7:bf:1d:b2:6c:b0:e2:30:06:b8:da:a6:2e:5f: 46:a8:12:90:9f:ae:3a:91:29:69:27:78:0b:7c:3d: 88:78:02:9d:48:b2:78:b9:21:a9:37:1e:18:37:62: 82:8d:50:2a:c7:bb:7c:92:ec:97:b8:17:f8:99:35: df:00:16:87:d4:ec:1f:f6:cc:c2:bf:0f:b3:1f:d9: e0:fd:17:73:b1:55:c4:53:99:f2:6a:e3:21:3a:12: 9c:46:92:31:74:3b:b2:1c:4d:06:92:99:ae:9e:ec: 7f:63:4d:6c:bb:87:6c:6b:71:0c:2e:11:0f:18:99: 1a:9b:c3:53:80:4a:9c:61:bb:9b:67:97:c9:a1:98: 9b:49:dc:7c:43:0b:89:d6:0c:71:6e:30:a1:5f:46: 16:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:C9:C4:3C:E9:DD:E7:A5:3F:9F:F8:1C:FA:52:07:7C:63:8D:10:15 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6fcd84a1-3134-4005-9224-b48d476c9564.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.113.0/24 Signature Algorithm: sha256WithRSAEncryption d1:2a:3d:d5:e1:8a:68:81:40:a7:96:73:53:a1:f3:c0:27:f1: 36:a6:66:b8:71:18:c7:e2:bd:e5:2a:68:7b:4c:f5:fe:50:63: d1:77:e7:d2:cf:08:00:d4:ea:36:a6:0d:63:4f:92:3c:cb:c7: 05:f0:ad:62:f2:a1:3f:02:d0:ca:4c:3a:8b:fa:f2:34:67:18: 70:a5:60:ab:3c:03:34:32:77:49:7a:ff:59:35:54:e6:c6:72: 23:da:a3:25:72:33:a7:20:c4:ca:10:3d:0f:4d:86:3e:82:4b: e1:e0:64:ed:50:77:5c:4d:83:7a:cc:f1:91:b5:e1:4b:35:73: cc:60:2a:8a:53:29:80:b7:46:00:1d:a4:5e:6c:89:3c:4c:5b: d7:bc:66:d1:ca:87:e6:d5:ed:74:34:f3:fe:20:f7:fe:d8:24: a4:c3:49:ad:04:5c:e3:a9:d1:6c:6b:6d:de:ba:5e:08:f0:ad: e6:44:9c:44:ab:ae:97:d0:3e:95:a6:0f:b3:94:16:e0:27:68: 10:3f:ab:25:bb:fb:23:fa:1b:c4:70:60:db:55:f0:f5:b9:d0: 9e:94:01:49:c7:cf:6d:4a:7e:bf:8e:95:fd:0b:8e:46:08:1a: 21:76:47:1d:c2:fb:f7:a2:7c:b4:4e:4f:fe:4e:d1:23:3d:7a: fa:32:83:e0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMRqWpD8qJTY6s4OOlwUMo4LUFaAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA2MDA0MDIyWhcNMjUxMDExMjM1OTU5 WjB6MUkwRwYDVQQFE0A2Nzg3Nzg1YTcwOTk5ZDVkMzA2MjQzMzliZDMwMGU3OWQx YWI1ZGVhOTYzNDZkNDI0OTlkZGQzZTQzNTg5MTQwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBCljZ26gPR2FAH8B5Q6Y1p2Sjgz9EvdFcxpgYCGfgiUuE Gis25WEw0vYujLtHHajt1OIGzs/8gsXBXr7f1C6D1lfu2umJcE0wMbp1pQbWk6v5 TkGoA+SmnolN21I6b5zO8XQz3DsrGqHnvx2ybLDiMAa42qYuX0aoEpCfrjqRKWkn eAt8PYh4Ap1Isni5Iak3Hhg3YoKNUCrHu3yS7Je4F/iZNd8AFofU7B/2zMK/D7Mf 2eD9F3OxVcRTmfJq4yE6EpxGkjF0O7IcTQaSma6e7H9jTWy7h2xrcQwuEQ8YmRqb w1OASpxhu5tnl8mhmJtJ3HxDC4nWDHFuMKFfRhbbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUG8nEPOnd56U/n/gc+lIHfGONEBUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZmY2Q4NGExLTMxMzQtNDAwNS05MjI0LWI0OGQ0NzZjOTU2NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA/HEwDQYJKoZIhvcNAQELBQADggEBANEqPdXhimiBQKeWc1Oh88An8Tam ZrhxGMfiveUqaHtM9f5QY9F359LPCADU6jamDWNPkjzLxwXwrWLyoT8C0MpMOov6 8jRnGHClYKs8AzQyd0l6/1k1VObGciPaoyVyM6cgxMoQPQ9Nhj6CS+HgZO1Qd1xN g3rM8ZG14Us1c8xgKopTKYC3RgAdpF5siTxMW9e8ZtHKh+bV7XQ08/4g9/7YJKTD Sa0EXOOp0Wxrbd66XgjwreZEnESrrpfQPpWmD7OUFuAnaBA/qyW7+yP6G8RwYNtV 8PW50J6UAUnHz21Kfr+Olf0LjkYIGiF2Rx3C+/eifLROT/5O0SM9evoyg+A= -----END CERTIFICATE-----Generated at Thu Sep 18 14:26:11 2025 by rpki-client