$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9a8d5db4-e57a-43d4-b37b-f75971c4a85c.roa File: 9a8d5db4-e57a-43d4-b37b-f75971c4a85c.roa (raw, json) Hash identifier: F3gFLrSVQ11ihOnWiI0lQvbMYg1OwEaeEV63XuDrtTo= Subject key identifier: 2C:DD:17:05:79:48:A1:EC:E8:EC:9E:46:EC:BA:56:DE:BD:EE:71:74 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 540928C07D3988AB950662C57AC11DB79090DC6D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9a8d5db4-e57a-43d4-b37b-f75971c4a85c.roa Signing time: Tue 02 Sep 2025 00:21:34 +0000 ROA not before: Tue 02 Sep 2025 00:21:34 +0000 ROA not after: Tue 07 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 57.251.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:09:28:c0:7d:39:88:ab:95:06:62:c5:7a:c1:1d:b7:90:90:dc:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 2 00:21:34 2025 GMT Not After : Oct 7 23:59:59 2025 GMT Subject: serialNumber=b3830f3f773a8a63c9f4a8c08a43f79beb1be8e987063e707401f245b0c1084f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:82:63:2c:de:ea:34:84:6b:f1:c2:5c:ce:ff: fc:7d:dc:b8:45:da:28:b8:77:e2:40:f6:d7:01:10: 75:97:9d:57:60:ef:fe:ad:1c:98:a3:55:71:8f:94: 9a:17:c7:71:db:69:b0:0a:25:f6:1d:4b:87:15:b9: 9f:01:09:8d:1e:56:4b:34:b9:24:cf:5f:f8:61:5d: 22:0b:a9:6e:da:f0:d8:81:e6:93:a8:0a:bd:6e:0e: 33:0b:a2:fa:45:81:85:53:b3:18:8f:e0:5e:dd:98: 29:b9:c2:ab:29:85:a5:08:92:7a:8a:2c:fa:d1:63: 23:e6:76:7e:df:be:d5:cb:8c:a6:45:cc:18:1e:9d: cb:26:4e:4d:db:c2:eb:8c:1c:a3:3d:78:b6:a1:7e: db:31:b0:48:ab:ed:bf:40:7e:bf:60:e6:1b:af:df: 8c:53:80:68:ac:39:00:f1:c9:54:df:d6:dd:35:e6: cf:38:b4:8a:5b:9a:2c:83:0d:ff:1d:71:cd:22:bc: 3e:a6:78:60:3d:70:00:08:40:80:e2:22:0e:fe:3c: 3a:64:75:12:11:40:53:e8:f6:9f:0e:fc:f0:06:62: cc:b9:05:f5:67:b5:a3:c1:d4:d1:a4:b6:ba:ad:09: e6:17:59:37:3a:eb:bf:93:21:51:fa:84:16:af:1f: 72:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:DD:17:05:79:48:A1:EC:E8:EC:9E:46:EC:BA:56:DE:BD:EE:71:74 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9a8d5db4-e57a-43d4-b37b-f75971c4a85c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 57.251.0.0/16 Signature Algorithm: sha256WithRSAEncryption 07:a9:5f:db:6e:16:cc:2e:de:34:aa:d9:d9:1f:19:af:71:ba: 2b:64:d8:3f:77:4c:b9:20:52:96:0e:d6:ac:32:aa:09:71:9b: 67:2e:f4:38:5d:7b:ec:a8:07:5c:6c:b8:fa:12:0d:f5:ff:cd: c8:df:d3:6a:c7:a2:22:b1:1b:85:92:ff:19:0a:5f:3b:ac:f2: 61:bc:12:aa:c7:30:8a:6b:cf:26:3f:d3:f5:08:78:02:e1:99: f6:2e:48:ca:54:53:4b:d3:0c:6b:c2:e6:66:42:4a:61:13:f7: 5e:bf:28:c3:75:2b:97:2a:3f:4b:7c:e9:ee:b1:b0:31:5a:25: d8:e7:5b:81:4b:90:f3:1d:5c:8d:7e:b4:e0:cc:d5:c9:76:8a: a4:0f:42:da:58:6b:b5:b8:0c:11:cb:da:b9:83:cd:07:eb:fc: a2:9d:81:11:dd:09:9b:99:24:91:92:bc:af:fc:86:54:37:bd: cc:1c:dd:65:71:4b:fe:5e:1c:57:42:22:4f:d1:55:d7:0f:46: fd:43:d6:69:fb:2f:f7:e9:bb:9c:ac:53:61:37:4d:f1:de:75: a3:c2:6d:0b:c9:cc:af:8d:cc:a0:58:6f:69:f8:4c:06:fa:10: ec:35:f5:ef:6a:36:81:50:11:d2:16:6a:36:55:85:bf:cc:e9: 26:d6:a5:da -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUVAkowH05iKuVBmLFesEdt5CQ3G0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTAyMDAyMTM0WhcNMjUxMDA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMzgzMGYzZjc3M2E4YTYzYzlmNGE4YzA4YTQzZjc5YmVi MWJlOGU5ODcwNjNlNzA3NDAxZjI0NWIwYzEwODRmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDngmMs3uo0hGvxwlzO//x93LhF2ii4d+JA9tcBEHWXnVdg 7/6tHJijVXGPlJoXx3HbabAKJfYdS4cVuZ8BCY0eVks0uSTPX/hhXSILqW7a8NiB 5pOoCr1uDjMLovpFgYVTsxiP4F7dmCm5wqsphaUIknqKLPrRYyPmdn7fvtXLjKZF zBgencsmTk3bwuuMHKM9eLahftsxsEir7b9Afr9g5huv34xTgGisOQDxyVTf1t01 5s84tIpbmiyDDf8dcc0ivD6meGA9cAAIQIDiIg7+PDpkdRIRQFPo9p8O/PAGYsy5 BfVntaPB1NGktrqtCeYXWTc667+TIVH6hBavH3IHAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQULN0XBXlIoezo7J5G7LpW3r3ucXQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlhOGQ1ZGI0LWU1N2EtNDNkNC1iMzdiLWY3NTk3MWM0YTg1Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA5+zANBgkqhkiG9w0BAQsFAAOCAQEAB6lf224WzC7eNKrZ2R8Zr3G6K2TY P3dMuSBSlg7WrDKqCXGbZy70OF177KgHXGy4+hIN9f/NyN/TaseiIrEbhZL/GQpf O6zyYbwSqscwimvPJj/T9Qh4AuGZ9i5IylRTS9MMa8LmZkJKYRP3Xr8ow3Urlyo/ S3zp7rGwMVol2OdbgUuQ8x1cjX604MzVyXaKpA9C2lhrtbgMEcvauYPNB+v8op2B Ed0Jm5kkkZK8r/yGVDe9zBzdZXFL/l4cV0IiT9FV1w9G/UPWafsv9+m7nKxTYTdN 8d51o8JtC8nMr43MoFhvafhMBvoQ7DX172o2gVAR0hZqNlWFv8zpJtal2g== -----END CERTIFICATE-----Generated at Sat Sep 6 14:06:16 2025 by rpki-client