$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9489bef2-0a21-4c24-8378-03322c296a7b.roa File: 9489bef2-0a21-4c24-8378-03322c296a7b.roa (raw, json) Hash identifier: wqE2lp3R8N4kdpQii1wLmaeOXOByOsK4xI/DQE3MOmA= Subject key identifier: 1E:35:ED:B7:08:27:3E:E7:0D:44:7C:CB:52:97:F7:47:E5:5B:FD:DF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7D5C53447505E728598DA808ECB7CFD5F7F0FC7F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9489bef2-0a21-4c24-8378-03322c296a7b.roa Signing time: Sat 30 Aug 2025 00:11:28 +0000 ROA not before: Sat 30 Aug 2025 00:11:28 +0000 ROA not after: Sat 04 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 207.21.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:5c:53:44:75:05:e7:28:59:8d:a8:08:ec:b7:cf:d5:f7:f0:fc:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 30 00:11:28 2025 GMT Not After : Oct 4 23:59:59 2025 GMT Subject: serialNumber=603e5645fde32e2d09c7eb72537aa8d13a95259279c843375ec019a82e39c393, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:44:cf:fb:3a:25:da:1c:59:48:c9:26:dc:89: 48:54:28:a4:17:7f:ab:55:37:55:49:f2:38:21:a1: 58:ce:20:09:3a:6a:03:9f:57:fa:da:5a:75:09:a8: 0c:a9:b5:65:2c:9f:d9:c8:f7:b0:f5:0c:df:9c:97: 2d:f0:e4:71:09:5f:b0:ea:f4:40:70:10:25:86:a7: 1e:89:e5:90:5e:18:e7:90:0c:1e:fa:fc:7a:bb:e5: 81:62:03:c4:9b:98:ab:12:a5:4c:a8:39:cb:22:5a: d2:e1:a7:f3:8a:ec:e4:4b:4e:e4:12:cb:2b:69:90: 53:ad:6e:e6:a5:8d:df:8f:f9:07:91:5c:d8:1d:83: e6:13:bc:21:8a:a0:cf:ed:a5:8d:30:32:de:e6:3c: 59:40:80:31:3e:74:e0:9a:96:cd:39:cb:97:a8:6e: 8f:24:bd:bf:c2:3b:27:06:2d:cb:a0:24:b3:60:bc: 75:4c:ed:7e:5c:c0:94:71:1c:c2:65:ae:77:ef:4e: 3d:2c:08:d9:83:f5:fc:44:72:4f:eb:b7:3d:43:63: b9:44:38:8b:64:7a:8a:03:1f:be:95:1d:89:b8:b3: 47:06:5e:a5:18:ba:da:0c:3d:f3:11:04:c8:23:48: ed:25:64:be:56:2c:82:de:b4:18:58:af:43:fa:48: 46:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:35:ED:B7:08:27:3E:E7:0D:44:7C:CB:52:97:F7:47:E5:5B:FD:DF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9489bef2-0a21-4c24-8378-03322c296a7b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 207.21.211.0/24 Signature Algorithm: sha256WithRSAEncryption bc:16:5e:5c:97:0a:bd:65:8d:2a:d3:eb:ea:62:7d:4f:eb:93: ac:91:cf:8a:36:de:be:d1:7b:50:18:19:c0:93:94:37:39:a8: 3c:86:77:d5:58:95:ce:27:9e:86:e3:f2:a1:87:0c:30:dc:a4: de:eb:bd:3b:78:ae:d8:09:bd:64:c0:2f:f9:30:e9:58:45:6d: 29:fc:bd:4f:a7:2f:c9:60:0d:b3:b0:8f:34:6a:e6:99:cb:2d: 28:99:8f:a3:5e:5b:c9:e9:e2:d5:dc:b1:ee:86:fb:79:16:a6: 10:27:f1:28:75:6e:73:cf:7b:39:9c:47:b3:0a:c7:65:71:9a: 4a:03:a1:00:03:69:cc:bd:28:8d:bd:25:98:4c:e5:08:ed:53: f2:81:49:0d:00:81:09:a5:29:47:a3:00:40:9d:92:88:78:21: 7c:eb:d1:47:50:f4:ba:c9:52:6a:d0:56:af:91:9f:9c:f5:17: 5f:58:8b:6c:a6:d8:fa:50:42:0e:08:ae:c3:e5:b0:4b:28:54: a7:33:4f:17:d2:d6:be:27:84:22:ad:ad:3e:ba:cf:11:ea:5a: 5c:34:d2:92:6d:6f:56:e4:9d:2a:03:ed:ce:63:61:49:cc:34: d4:a2:08:f5:53:52:c4:5c:b5:b0:61:5e:f4:22:a5:6b:c0:9b: 2a:6d:cb:fd -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfVxTRHUF5yhZjagI7LfP1ffw/H8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODMwMDAxMTI4WhcNMjUxMDA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A2MDNlNTY0NWZkZTMyZTJkMDljN2ViNzI1MzdhYThkMTNh OTUyNTkyNzljODQzMzc1ZWMwMTlhODJlMzljMzkzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+RM/7OiXaHFlIySbciUhUKKQXf6tVN1VJ8jghoVjOIAk6 agOfV/raWnUJqAyptWUsn9nI97D1DN+cly3w5HEJX7Dq9EBwECWGpx6J5ZBeGOeQ DB76/Hq75YFiA8SbmKsSpUyoOcsiWtLhp/OK7ORLTuQSyytpkFOtbualjd+P+QeR XNgdg+YTvCGKoM/tpY0wMt7mPFlAgDE+dOCals05y5eobo8kvb/COycGLcugJLNg vHVM7X5cwJRxHMJlrnfvTj0sCNmD9fxEck/rtz1DY7lEOItkeooDH76VHYm4s0cG XqUYutoMPfMRBMgjSO0lZL5WLILetBhYr0P6SEYDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUHjXttwgnPucNRHzLUpf3R+Vb/d8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk0ODliZWYyLTBhMjEtNGMyNC04Mzc4LTAzMzIyYzI5NmE3Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADPFdMwDQYJKoZIhvcNAQELBQADggEBALwWXlyXCr1ljSrT6+pifU/rk6yR z4o23r7Re1AYGcCTlDc5qDyGd9VYlc4nnobj8qGHDDDcpN7rvTt4rtgJvWTAL/kw 6VhFbSn8vU+nL8lgDbOwjzRq5pnLLSiZj6NeW8np4tXcse6G+3kWphAn8Sh1bnPP ezmcR7MKx2VxmkoDoQADacy9KI29JZhM5QjtU/KBSQ0AgQmlKUejAECdkoh4IXzr 0UdQ9LrJUmrQVq+Rn5z1F19Yi2ym2PpQQg4IrsPlsEsoVKczTxfS1r4nhCKtrT66 zxHqWlw00pJtb1bknSoD7c5jYUnMNNSiCPVTUsRctbBhXvQipWvAmypty/0= -----END CERTIFICATE-----Generated at Sat Sep 6 14:14:37 2025 by rpki-client