$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a1b30fd3-2d79-49fc-98d4-3015577eaba9.roa File: a1b30fd3-2d79-49fc-98d4-3015577eaba9.roa (raw, json) Hash identifier: zlYB33HDgDAA90FmBdYygujQlKbVcuN0YEJc+mkECYQ= Subject key identifier: 7F:E8:FD:DE:26:58:B0:64:BD:03:BD:12:C0:3F:91:57:9D:38:C7:2C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0674E8F5F4DE876655769DDF0FB47453AB84B862 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a1b30fd3-2d79-49fc-98d4-3015577eaba9.roa Signing time: Wed 27 Aug 2025 00:51:32 +0000 ROA not before: Wed 27 Aug 2025 00:51:32 +0000 ROA not after: Wed 01 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 204.236.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:74:e8:f5:f4:de:87:66:55:76:9d:df:0f:b4:74:53:ab:84:b8:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 27 00:51:32 2025 GMT Not After : Oct 1 23:59:59 2025 GMT Subject: serialNumber=b2d3ba94db27bbdb816bebcf02df14917d1d9eae636647fbde632172be5b951b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:c6:a5:a0:ce:c5:eb:c5:ef:2f:b5:12:42:1c: 55:03:47:cf:bc:78:16:02:a3:e1:4f:1c:69:26:f9: 5c:94:c9:95:3e:75:c3:52:89:70:71:cc:98:00:b0: aa:fe:79:76:0d:c5:4f:cb:ce:1d:3d:c7:02:79:ee: 28:2c:27:22:f6:3c:f3:c9:a6:c6:62:a3:84:0c:ef: 88:d0:de:a3:7b:54:a7:1f:be:27:2c:d4:62:90:cf: f7:fe:da:07:ca:fb:d8:40:7e:35:6a:34:2d:29:e4: e7:1d:3c:3e:8b:8b:5e:82:9f:6c:5f:f3:7f:05:6c: ad:ab:56:57:20:bd:a3:29:0d:61:97:de:82:d0:e2: 04:40:88:46:51:2f:60:ba:ba:1d:9b:3a:3d:ce:06: 8e:24:cb:dc:6c:bb:32:1b:5b:b4:30:03:38:34:ab: 5a:77:15:15:ec:1b:69:f3:b7:e3:e4:b1:b6:88:5b: 36:8a:7e:42:e6:da:aa:4e:48:83:10:52:12:57:55: 9c:0f:85:e2:95:e8:51:f5:92:af:f1:ba:cd:3e:58: f2:6e:7f:e7:9a:90:e5:d5:9f:6e:5a:6e:cb:70:6d: 60:f5:0c:0c:4f:e2:c1:d3:cb:97:e5:57:83:1c:94: a3:84:b8:87:3c:77:6c:f2:f3:36:ea:8e:a8:6a:50: 3f:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:E8:FD:DE:26:58:B0:64:BD:03:BD:12:C0:3F:91:57:9D:38:C7:2C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a1b30fd3-2d79-49fc-98d4-3015577eaba9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.236.217.0/24 Signature Algorithm: sha256WithRSAEncryption b1:9a:54:a9:4e:b7:a4:1b:1d:f7:b5:fc:b1:a2:e3:37:71:ad: 21:b9:bd:75:0d:17:3c:b3:1b:45:ce:3d:ad:3d:06:a0:9b:93: c9:ef:a6:f6:af:80:97:25:70:84:98:3c:34:cc:20:71:30:3f: 6e:d5:8c:3b:0a:ee:1d:4d:9c:98:72:91:fb:8f:d0:a6:55:d4: a0:73:e1:87:59:0b:5a:97:08:7c:9a:68:7e:9d:6f:81:a3:6e: 81:dc:5f:ac:ab:24:dd:a9:af:9b:3a:99:da:05:2c:1c:53:42: 78:5c:63:32:7f:b3:11:9a:95:8b:b8:11:58:ad:4a:8e:77:95: 9f:f1:ef:03:39:0d:81:d3:f4:80:8c:18:7f:a8:cb:04:9f:a5: d6:b6:89:b6:57:95:36:83:a8:0b:ac:30:aa:d2:fe:24:63:f8: de:74:72:39:b9:0a:f0:4b:dc:b2:cc:eb:8a:32:fa:9b:dc:db: f9:82:35:9b:f1:9e:ae:ca:ff:d1:f2:68:54:33:a8:79:30:3b: e9:a5:1a:46:6c:a5:40:85:33:cf:4e:25:ee:be:6f:56:78:92: ad:a7:d7:63:24:8f:c0:46:49:0d:df:90:08:54:cb:26:bb:ce: d2:ec:1e:3f:4d:0c:82:09:64:8c:b7:73:c7:99:22:36:58:f0: 4d:4a:3f:c2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBnTo9fTeh2ZVdp3fD7R0U6uEuGIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI3MDA1MTMyWhcNMjUxMDAxMjM1OTU5 WjB6MUkwRwYDVQQFE0BiMmQzYmE5NGRiMjdiYmRiODE2YmViY2YwMmRmMTQ5MTdk MWQ5ZWFlNjM2NjQ3ZmJkZTYzMjE3MmJlNWI5NTFiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDjxqWgzsXrxe8vtRJCHFUDR8+8eBYCo+FPHGkm+VyUyZU+ dcNSiXBxzJgAsKr+eXYNxU/Lzh09xwJ57igsJyL2PPPJpsZio4QM74jQ3qN7VKcf vics1GKQz/f+2gfK+9hAfjVqNC0p5OcdPD6Li16Cn2xf838FbK2rVlcgvaMpDWGX 3oLQ4gRAiEZRL2C6uh2bOj3OBo4ky9xsuzIbW7QwAzg0q1p3FRXsG2nzt+PksbaI WzaKfkLm2qpOSIMQUhJXVZwPheKV6FH1kq/xus0+WPJuf+eakOXVn25abstwbWD1 DAxP4sHTy5flV4MclKOEuIc8d2zy8zbqjqhqUD83AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUf+j93iZYsGS9A70SwD+RV504xywwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ExYjMwZmQzLTJkNzktNDlmYy05OGQ0LTMwMTU1NzdlYWJhOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADM7NkwDQYJKoZIhvcNAQELBQADggEBALGaVKlOt6QbHfe1/LGi4zdxrSG5 vXUNFzyzG0XOPa09BqCbk8nvpvavgJclcISYPDTMIHEwP27VjDsK7h1NnJhykfuP 0KZV1KBz4YdZC1qXCHyaaH6db4GjboHcX6yrJN2pr5s6mdoFLBxTQnhcYzJ/sxGa lYu4EVitSo53lZ/x7wM5DYHT9ICMGH+oywSfpda2ibZXlTaDqAusMKrS/iRj+N50 cjm5CvBL3LLM64oy+pvc2/mCNZvxnq7K/9HyaFQzqHkwO+mlGkZspUCFM89OJe6+ b1Z4kq2n12Mkj8BGSQ3fkAhUyya7ztLsHj9NDIIJZIy3c8eZIjZY8E1KP8I= -----END CERTIFICATE-----Generated at Sat Sep 6 14:12:12 2025 by rpki-client