$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8adebea5-43f4-4b9b-8b13-f39f6e98a3ad.roa File: 8adebea5-43f4-4b9b-8b13-f39f6e98a3ad.roa (raw, json) Hash identifier: l4EzNn7KaBEGU8kk7cmJ0iDUCdEV4O5WhvDaGGIM3x4= Subject key identifier: 5E:A9:F1:8D:DD:42:27:40:06:AC:37:FE:7F:7B:72:12:A5:D0:1B:DA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3022F626710EE9E3684EC7108427A15E684B0199 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8adebea5-43f4-4b9b-8b13-f39f6e98a3ad.roa Signing time: Sat 30 Aug 2025 00:10:20 +0000 ROA not before: Sat 30 Aug 2025 00:10:20 +0000 ROA not after: Sat 04 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.87.29.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Sep 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:22:f6:26:71:0e:e9:e3:68:4e:c7:10:84:27:a1:5e:68:4b:01:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 30 00:10:20 2025 GMT Not After : Oct 4 23:59:59 2025 GMT Subject: serialNumber=468843d290ffec2b1332b5fd19a1c4679c433f9aa4518031cca3006dcb98eeb7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:83:bd:02:c9:b7:89:34:28:e5:f5:43:6b:59: 09:b3:c7:6a:b3:05:0a:ac:f1:21:d9:91:7b:65:2e: e4:72:74:6d:22:eb:a9:d0:90:59:9c:61:0b:35:6e: 9d:aa:24:2c:60:0a:07:44:f6:df:17:76:e1:9b:20: b8:4a:fb:a9:27:2c:22:20:40:6c:a0:11:62:90:40: 77:17:04:c0:37:a5:3e:4c:90:99:25:25:be:2b:8f: f4:11:3b:3f:db:6f:18:07:5f:87:bd:f0:ee:e4:36: 2f:80:bb:e7:b3:63:c9:42:36:3a:e8:8e:4d:2f:e3: 42:cd:6d:0c:bf:7a:e2:01:22:20:ae:bf:ae:d7:b9: ee:be:92:20:bf:bc:a2:25:23:5f:da:2c:02:ed:fd: b2:92:5f:14:e2:48:52:58:8b:0a:f2:25:93:fa:c0: f6:8f:c8:ce:b3:fc:0b:5c:e0:ba:ee:39:5c:1c:de: ad:ab:37:04:b0:23:5a:1b:61:9b:f0:fb:0d:e2:48: ad:1e:7e:8c:8a:66:14:3a:be:75:8b:74:5d:87:2f: 94:dd:31:49:79:92:4b:66:59:e6:08:da:77:03:2f: 7a:07:b2:f6:d2:5e:41:b0:cb:8d:8a:b1:b4:21:61: f1:96:b0:56:69:ef:14:f1:0e:79:bb:b9:dd:7a:a1: 65:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:A9:F1:8D:DD:42:27:40:06:AC:37:FE:7F:7B:72:12:A5:D0:1B:DA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8adebea5-43f4-4b9b-8b13-f39f6e98a3ad.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.87.29.0/24 Signature Algorithm: sha256WithRSAEncryption be:9b:de:9a:32:c9:aa:23:17:2e:f7:ef:58:2a:cc:7f:7a:fc: bb:a9:cb:b1:f1:3f:ce:94:cd:1f:95:2e:42:98:20:f1:5c:03: 58:9d:05:1b:17:46:07:3e:6f:60:31:49:35:01:a3:d7:6e:ec: 17:69:d9:db:9e:a6:2d:87:64:41:ea:03:37:45:6e:ad:fa:f8: d4:78:f8:56:04:3e:ac:b2:2e:d6:a5:39:e3:ca:10:0d:dc:6e: 9b:30:b6:17:16:93:99:db:cc:25:e2:96:9b:3a:2e:9e:33:fe: 42:3c:2a:2c:29:ce:17:8a:91:e4:b0:a2:9d:09:51:b8:89:25: db:a1:83:8d:b2:97:78:9b:b6:c5:af:29:d5:8d:e2:b1:aa:38: c3:f1:f8:68:60:52:09:92:55:03:a4:ee:d0:f4:95:38:6f:70: e2:9d:7d:9a:24:37:d0:1f:ff:9b:ae:d0:79:c4:1e:7f:96:c3: e1:2e:03:88:7d:d5:7c:f9:c1:d8:43:7c:bd:21:42:32:dc:f4: 90:84:9c:e2:cf:ad:d3:58:58:a3:34:c1:bb:fd:d2:4a:00:0c: e6:0c:89:05:98:75:f0:20:ce:d4:99:89:48:2a:37:31:28:17: 54:c0:b6:2d:fc:c8:fa:d2:a1:10:f3:51:a2:3f:fa:ac:de:f8: 7c:f9:56:9e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMCL2JnEO6eNoTscQhCehXmhLAZkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODMwMDAxMDIwWhcNMjUxMDA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0Njg4NDNkMjkwZmZlYzJiMTMzMmI1ZmQxOWExYzQ2Nzlj NDMzZjlhYTQ1MTgwMzFjY2EzMDA2ZGNiOThlZWI3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6g70CybeJNCjl9UNrWQmzx2qzBQqs8SHZkXtlLuRydG0i 66nQkFmcYQs1bp2qJCxgCgdE9t8XduGbILhK+6knLCIgQGygEWKQQHcXBMA3pT5M kJklJb4rj/QROz/bbxgHX4e98O7kNi+Au+ezY8lCNjrojk0v40LNbQy/euIBIiCu v67Xue6+kiC/vKIlI1/aLALt/bKSXxTiSFJYiwryJZP6wPaPyM6z/Atc4LruOVwc 3q2rNwSwI1obYZvw+w3iSK0efoyKZhQ6vnWLdF2HL5TdMUl5kktmWeYI2ncDL3oH svbSXkGwy42KsbQhYfGWsFZp7xTxDnm7ud16oWWTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUXqnxjd1CJ0AGrDf+f3tyEqXQG9owHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhhZGViZWE1LTQzZjQtNGI5Yi04YjEzLWYzOWY2ZTk4YTNhZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADYVx0wDQYJKoZIhvcNAQELBQADggEBAL6b3poyyaojFy7371gqzH96/Lup y7HxP86UzR+VLkKYIPFcA1idBRsXRgc+b2AxSTUBo9du7Bdp2duepi2HZEHqAzdF bq36+NR4+FYEPqyyLtalOePKEA3cbpswthcWk5nbzCXilps6Lp4z/kI8KiwpzheK keSwop0JUbiJJduhg42yl3ibtsWvKdWN4rGqOMPx+GhgUgmSVQOk7tD0lThvcOKd fZokN9Af/5uu0HnEHn+Ww+EuA4h91Xz5wdhDfL0hQjLc9JCEnOLPrdNYWKM0wbv9 0koADOYMiQWYdfAgztSZiUgqNzEoF1TAti38yPrSoRDzUaI/+qze+Hz5Vp4= -----END CERTIFICATE-----Generated at Sat Sep 6 16:40:03 2025 by rpki-client