$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/94d91aaa-a302-47ac-9ff3-22b5494654b8.roa File: 94d91aaa-a302-47ac-9ff3-22b5494654b8.roa (raw, json) Hash identifier: X6hzrE/WaABPLi1EHK9YQUghP/KPEH76sI1f/LYqI/U= Subject key identifier: 0F:72:B9:28:E9:F4:83:9C:45:61:DB:C1:35:E3:56:9C:39:28:41:76 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 210D2B73CF99E72254E16C108A582DA5505A846B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/94d91aaa-a302-47ac-9ff3-22b5494654b8.roa Signing time: Sat 06 Sep 2025 00:40:21 +0000 ROA not before: Sat 06 Sep 2025 00:40:21 +0000 ROA not after: Sat 11 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 64.252.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 19 Sep 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:0d:2b:73:cf:99:e7:22:54:e1:6c:10:8a:58:2d:a5:50:5a:84:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 6 00:40:21 2025 GMT Not After : Oct 11 23:59:59 2025 GMT Subject: serialNumber=67c14d20d1f3680075bae134b653b7ea0432ef0cdb10e1675794751186199bdc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:b8:7f:45:36:38:cb:7f:ba:6c:0e:8b:bf:ad: 6b:fa:72:c8:79:ab:a9:80:39:0e:8f:49:b0:ad:e2: 76:2d:16:af:e4:97:87:16:fe:c8:02:17:cc:40:8f: f4:b1:29:c5:8a:ee:b1:a2:eb:4d:2d:57:76:16:e2: e1:44:2e:a0:31:20:96:21:94:88:76:22:db:21:9a: c5:06:4a:5b:3b:8b:99:12:e1:2f:8d:64:6e:1c:e4: 68:ef:6f:14:68:2d:9a:89:bf:26:4f:9a:1c:01:3e: f1:ef:ad:de:e5:a7:ac:1b:a4:67:ad:7c:a6:68:63: 1a:54:1e:3e:2e:9c:da:a0:36:6b:de:9e:62:8f:43: 84:53:ff:bf:8a:2f:0d:f9:06:73:3c:02:c8:4c:cf: 33:84:e0:07:72:8e:0b:dc:45:6d:fd:a3:7d:36:fe: 07:a3:80:2d:b2:d4:43:26:8a:65:56:56:3c:3f:b7: 4a:f7:1c:20:35:d1:28:68:17:8a:45:cd:15:fc:77: 83:be:26:3e:c3:8c:f4:bd:86:ec:9d:25:49:7d:53: c5:6b:cb:a0:1d:7e:e5:80:a2:7f:60:44:57:51:8b: fc:98:cc:3c:4b:55:ff:15:57:15:79:80:e0:4e:2c: 88:cb:96:9a:57:1f:8c:cf:6f:fc:9e:69:56:76:40: a0:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:72:B9:28:E9:F4:83:9C:45:61:DB:C1:35:E3:56:9C:39:28:41:76 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/94d91aaa-a302-47ac-9ff3-22b5494654b8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.115.0/24 Signature Algorithm: sha256WithRSAEncryption 85:9f:1b:90:8d:ff:09:9c:bc:6b:7e:47:02:40:66:1d:93:b1: 2a:d6:7a:fb:5c:58:ae:e0:33:57:86:c1:0c:cb:7c:6c:74:30: c3:12:67:e0:70:8e:5e:a5:44:b8:e7:fd:ca:18:ed:7e:b4:cb: 9c:0e:be:75:8f:4b:bd:e6:e9:ba:3f:f8:a2:40:c9:4c:5f:18: 9b:06:2e:22:f8:53:44:22:ba:64:17:d4:4e:f0:d8:f4:ec:22: c3:a7:be:11:33:df:4b:70:b4:63:ab:ee:ae:9c:2b:94:93:6f: 7a:68:b8:64:23:7e:1f:59:de:3e:d0:00:d2:83:9c:ae:2f:1a: 73:ef:e4:7a:f0:7a:48:6a:72:b2:50:6c:0b:d3:e6:e9:f2:38: 4f:e7:57:ff:25:41:c3:ce:e9:aa:f2:87:e2:c3:1a:2b:4c:54: 15:a2:14:da:20:80:f2:52:88:dc:10:9f:90:04:cc:87:7e:6a: ad:b0:78:e6:b4:7d:d8:c5:71:d9:82:4a:e7:03:f5:15:e7:76: 79:98:ec:9e:72:fd:f7:fe:f6:9a:a1:46:0d:21:6a:ba:bd:50: f0:7b:3e:5c:66:c1:70:8c:26:3d:57:66:ee:33:2f:1c:59:3d: e1:26:f3:7d:18:66:74:e7:90:76:52:39:62:f7:db:c4:d8:84: ae:1e:b6:f8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIQ0rc8+Z5yJU4WwQilgtpVBahGswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA2MDA0MDIxWhcNMjUxMDExMjM1OTU5 WjB6MUkwRwYDVQQFE0A2N2MxNGQyMGQxZjM2ODAwNzViYWUxMzRiNjUzYjdlYTA0 MzJlZjBjZGIxMGUxNjc1Nzk0NzUxMTg2MTk5YmRjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDXuH9FNjjLf7psDou/rWv6csh5q6mAOQ6PSbCt4nYtFq/k l4cW/sgCF8xAj/SxKcWK7rGi600tV3YW4uFELqAxIJYhlIh2ItshmsUGSls7i5kS 4S+NZG4c5GjvbxRoLZqJvyZPmhwBPvHvrd7lp6wbpGetfKZoYxpUHj4unNqgNmve nmKPQ4RT/7+KLw35BnM8AshMzzOE4AdyjgvcRW39o302/gejgC2y1EMmimVWVjw/ t0r3HCA10ShoF4pFzRX8d4O+Jj7DjPS9huydJUl9U8Vry6AdfuWAon9gRFdRi/yY zDxLVf8VVxV5gOBOLIjLlppXH4zPb/yeaVZ2QKAXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUD3K5KOn0g5xFYdvBNeNWnDkoQXYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk0ZDkxYWFhLWEzMDItNDdhYy05ZmYzLTIyYjU0OTQ2NTRiOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA/HMwDQYJKoZIhvcNAQELBQADggEBAIWfG5CN/wmcvGt+RwJAZh2TsSrW evtcWK7gM1eGwQzLfGx0MMMSZ+Bwjl6lRLjn/coY7X60y5wOvnWPS73m6bo/+KJA yUxfGJsGLiL4U0QiumQX1E7w2PTsIsOnvhEz30twtGOr7q6cK5STb3pouGQjfh9Z 3j7QANKDnK4vGnPv5HrwekhqcrJQbAvT5unyOE/nV/8lQcPO6aryh+LDGitMVBWi FNoggPJSiNwQn5AEzId+aq2weOa0fdjFcdmCSucD9RXndnmY7J5y/ff+9pqhRg0h arq9UPB7PlxmwXCMJj1XZu4zLxxZPeEm830YZnTnkHZSOWL328TYhK4etvg= -----END CERTIFICATE-----Generated at Wed Sep 17 21:51:37 2025 by rpki-client