$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/86854fd8-2d2b-4d47-96ba-9c104a4b28a8.roa File: 86854fd8-2d2b-4d47-96ba-9c104a4b28a8.roa (raw, json) Hash identifier: Q3RJfwz6o/ZXSHtZXhdA/1D8djbu92Ovv8vjfmiE4fM= Subject key identifier: E3:36:71:EB:DC:FD:9F:20:B3:1B:75:65:C1:B4:FA:15:95:2D:B4:E8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 58469182712BBE87A6FA06E8E830E852D1EBEF2F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/86854fd8-2d2b-4d47-96ba-9c104a4b28a8.roa Signing time: Fri 29 Aug 2025 00:32:13 +0000 ROA not before: Fri 29 Aug 2025 00:32:13 +0000 ROA not after: Fri 03 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 23.21.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Sep 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:46:91:82:71:2b:be:87:a6:fa:06:e8:e8:30:e8:52:d1:eb:ef:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 29 00:32:13 2025 GMT Not After : Oct 3 23:59:59 2025 GMT Subject: serialNumber=12117e58be3a1ac13e38fb06545eefc3b92be7c5f5fdcf11559c7d80f97a8385, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:9a:c9:13:16:59:c3:10:eb:e6:91:f8:15:64: ef:e1:22:91:df:51:fc:68:ad:91:92:a0:1c:18:7c: 69:cd:90:3a:6c:b9:1d:d9:11:f7:47:c3:52:7b:91: 01:ed:0a:0a:df:08:ee:2e:ec:5f:8b:45:4d:70:56: 9d:56:5a:ab:17:5c:12:1a:b4:48:34:5a:e0:e6:fe: c1:6e:aa:1b:2c:96:6b:8b:65:28:5c:9f:17:23:b6: 24:30:77:3a:5b:e4:21:f4:42:77:a3:6f:a3:b7:d4: 80:7a:26:74:af:54:49:2d:35:5f:5d:13:a1:69:77: 26:c5:de:63:79:48:b1:15:35:3a:b0:1c:ff:42:2a: 2d:c1:18:72:48:13:30:a0:21:b3:91:9a:8b:18:6f: 35:88:b1:49:2a:9f:8d:27:17:44:ea:09:f2:05:f2: 75:18:f4:29:a5:a2:6a:3c:05:68:4e:06:08:1d:58: 4f:ea:f6:94:e6:69:51:57:fc:f3:dc:f3:5a:98:3b: 64:98:ef:a6:31:fb:95:ef:b6:05:a3:6c:a9:b9:b3: 4e:21:70:a3:63:2d:81:b9:b3:c8:b3:dd:49:65:5c: be:16:e3:e1:6a:aa:f2:e2:f2:ba:31:2c:4e:05:3d: d2:4f:26:f2:47:58:69:66:18:ab:2d:7d:37:c3:79: cd:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:36:71:EB:DC:FD:9F:20:B3:1B:75:65:C1:B4:FA:15:95:2D:B4:E8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/86854fd8-2d2b-4d47-96ba-9c104a4b28a8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.21.64.0/18 Signature Algorithm: sha256WithRSAEncryption 6b:64:51:2e:b4:1a:0f:ba:31:ec:18:a0:28:a7:82:48:ca:80: 06:8e:c1:1f:3a:f6:a9:1e:90:8e:16:a2:56:e5:78:4b:ce:36: ab:cb:11:7c:7e:e9:ff:f8:18:5a:35:46:1a:39:47:ac:3d:13: 8c:1d:f4:6c:07:37:3c:0d:2f:8a:55:1e:60:be:a0:78:06:d1: 93:6f:9e:57:be:0d:56:2f:12:81:78:a8:bf:8a:89:bc:1e:34: 32:6b:62:c1:c6:68:51:3a:19:2d:9f:52:99:05:4a:59:82:30: c0:87:08:5e:b0:ae:c8:60:c9:5a:76:52:5d:9e:19:26:1c:e9: eb:33:d0:35:60:e1:2d:0b:f2:de:92:8f:17:24:f8:f2:77:4a: f1:6c:16:28:4f:36:dc:f1:52:37:e8:f1:f0:b4:6a:86:fb:b5: fe:e4:4f:c5:0a:4a:f4:6e:81:2d:ff:0f:ae:42:5c:11:c0:17: 2a:be:88:d9:7f:b2:9b:4d:88:d0:74:bb:de:f0:cb:cd:f1:3a: 7c:7f:de:26:5d:19:f5:a5:d9:d5:06:10:af:7e:6e:2a:eb:d0: bd:25:fe:77:6a:11:eb:85:76:ea:7d:51:08:ae:b9:7b:05:90: 41:a5:4f:c9:4e:3e:41:da:df:21:64:ca:d7:e1:b1:2f:e9:64: 7e:06:e7:6d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWEaRgnErvoem+gbo6DDoUtHr7y8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI5MDAzMjEzWhcNMjUxMDAzMjM1OTU5 WjB6MUkwRwYDVQQFE0AxMjExN2U1OGJlM2ExYWMxM2UzOGZiMDY1NDVlZWZjM2I5 MmJlN2M1ZjVmZGNmMTE1NTljN2Q4MGY5N2E4Mzg1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+mskTFlnDEOvmkfgVZO/hIpHfUfxorZGSoBwYfGnNkDps uR3ZEfdHw1J7kQHtCgrfCO4u7F+LRU1wVp1WWqsXXBIatEg0WuDm/sFuqhsslmuL ZShcnxcjtiQwdzpb5CH0Qnejb6O31IB6JnSvVEktNV9dE6FpdybF3mN5SLEVNTqw HP9CKi3BGHJIEzCgIbORmosYbzWIsUkqn40nF0TqCfIF8nUY9Cmlomo8BWhOBggd WE/q9pTmaVFX/PPc81qYO2SY76Yx+5XvtgWjbKm5s04hcKNjLYG5s8iz3UllXL4W 4+FqqvLi8roxLE4FPdJPJvJHWGlmGKstfTfDec1pAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU4zZx69z9nyCzG3VlwbT6FZUttOgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg2ODU0ZmQ4LTJkMmItNGQ0Ny05NmJhLTljMTA0YTRiMjhhOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYXFUAwDQYJKoZIhvcNAQELBQADggEBAGtkUS60Gg+6MewYoCingkjKgAaO wR869qkekI4WolbleEvONqvLEXx+6f/4GFo1Rho5R6w9E4wd9GwHNzwNL4pVHmC+ oHgG0ZNvnle+DVYvEoF4qL+KibweNDJrYsHGaFE6GS2fUpkFSlmCMMCHCF6wrshg yVp2Ul2eGSYc6esz0DVg4S0L8t6Sjxck+PJ3SvFsFihPNtzxUjfo8fC0aob7tf7k T8UKSvRugS3/D65CXBHAFyq+iNl/sptNiNB0u97wy83xOnx/3iZdGfWl2dUGEK9+ birr0L0l/ndqEeuFdup9UQiuuXsFkEGlT8lOPkHa3yFkytfhsS/pZH4G520= -----END CERTIFICATE-----Generated at Sat Sep 6 16:54:35 2025 by rpki-client