$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ac5a06c6-e178-437c-bf99-638b8a909fef.roa File: ac5a06c6-e178-437c-bf99-638b8a909fef.roa (raw, json) Hash identifier: z3xItSKXZ6dccjua6cKSj1xzt1m4mm3qG7W711gZvIA= Subject key identifier: 48:D2:93:33:CB:38:36:B5:4C:65:34:BA:C8:D1:DA:30:FF:9D:8C:12 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6EF83F057533764047B3BAC1BEC10D182B39F9B0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ac5a06c6-e178-437c-bf99-638b8a909fef.roa Signing time: Wed 27 Aug 2025 00:21:06 +0000 ROA not before: Wed 27 Aug 2025 00:21:06 +0000 ROA not after: Wed 01 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 107.20.160.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:f8:3f:05:75:33:76:40:47:b3:ba:c1:be:c1:0d:18:2b:39:f9:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 27 00:21:06 2025 GMT Not After : Oct 1 23:59:59 2025 GMT Subject: serialNumber=174219833c588488524f7d67768a67e82ae8983d63cc2cf8957095e9b89e50e6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:cf:4e:00:0e:77:cf:d6:c9:17:cd:d8:7f:37: c9:b5:f6:0d:d2:4a:bc:08:d9:67:58:68:b9:26:ca: d9:2a:4a:de:c5:b3:7e:ec:58:4a:94:80:f2:c8:a6: 4a:03:51:5b:1b:75:2b:85:cb:40:9b:6b:08:6c:f8: 23:6c:bb:9e:16:12:86:b6:68:d5:2c:9c:76:29:5a: 5b:a8:2f:fa:b5:a3:45:18:6a:94:66:58:6e:da:8d: f5:c4:9c:de:1b:ca:d4:9e:cb:e3:9c:c6:51:22:85: f2:3d:0c:1d:c4:60:61:44:cb:3e:77:22:69:62:c8: 9d:6d:2c:de:c2:bc:17:3c:95:81:fe:4e:19:a8:53: ac:f1:c2:94:f9:1a:c4:f2:a1:d1:e9:fe:c8:7e:6e: 67:94:20:e3:d5:9e:73:3f:b9:75:fb:d0:02:89:34: 59:8a:4a:0e:3a:60:bd:fc:74:9b:e3:c4:19:b0:39: b6:5b:bb:63:7e:da:1e:b0:2c:f7:c2:e6:57:e4:2f: 9e:b6:c7:bd:c7:70:a2:e2:db:b8:e2:f5:07:47:a2: e3:4e:99:05:67:7c:fc:b7:78:ae:39:c2:d6:a1:71: f1:c0:4b:31:28:ce:2c:a7:39:3d:e9:27:c4:37:35: 91:12:fc:ae:43:fd:06:d3:dc:6c:48:11:9d:c4:59: dd:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:D2:93:33:CB:38:36:B5:4C:65:34:BA:C8:D1:DA:30:FF:9D:8C:12 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ac5a06c6-e178-437c-bf99-638b8a909fef.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.20.160.0/19 Signature Algorithm: sha256WithRSAEncryption ad:7c:b4:dd:f1:ba:de:cd:15:65:3c:6e:c0:02:21:32:c5:79: 1b:b9:9a:ed:e9:d6:c8:eb:f6:d2:d3:12:c8:20:bd:63:2d:5b: c8:66:8b:08:be:7c:5f:0f:38:83:a0:cf:81:bf:4a:41:29:39: 03:65:e3:6f:9e:7c:b8:7a:e1:c0:9b:ac:f1:1b:91:eb:bd:2f: a4:95:20:83:dd:bf:bc:8c:e6:70:fa:b3:a3:d4:74:4e:58:61: 72:7d:09:20:a0:9b:80:ce:61:c5:97:a6:2f:55:1a:ee:d0:02: dc:ac:60:f9:14:11:1e:34:d6:f8:7d:9c:ae:d4:f1:37:af:46: f8:6a:a4:ec:fc:10:93:11:58:8a:37:3e:f5:39:30:29:b2:c0: d0:f2:26:08:66:9c:db:8a:ec:ba:6c:fa:07:b9:b6:f7:a8:58: cd:27:34:50:1f:18:a8:fd:03:69:31:9a:af:cd:3b:18:8d:a9: d6:a7:5d:11:c5:28:8b:d6:b2:1b:0e:e6:7d:ce:92:93:e9:18: cf:52:8d:c8:1e:6d:24:82:0f:56:e8:0c:1d:ea:db:59:e4:60: 2e:d4:48:11:30:87:e0:27:d9:4f:c0:e1:6d:7c:13:ca:31:52: 7b:be:7a:ac:9b:50:ec:78:09:c4:a9:44:c1:18:c5:63:18:c5: a7:71:53:33 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbvg/BXUzdkBHs7rBvsENGCs5+bAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI3MDAyMTA2WhcNMjUxMDAxMjM1OTU5 WjB6MUkwRwYDVQQFE0AxNzQyMTk4MzNjNTg4NDg4NTI0ZjdkNjc3NjhhNjdlODJh ZTg5ODNkNjNjYzJjZjg5NTcwOTVlOWI4OWU1MGU2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3z04ADnfP1skXzdh/N8m19g3SSrwI2WdYaLkmytkqSt7F s37sWEqUgPLIpkoDUVsbdSuFy0Cbawhs+CNsu54WEoa2aNUsnHYpWluoL/q1o0UY apRmWG7ajfXEnN4bytSey+OcxlEihfI9DB3EYGFEyz53ImliyJ1tLN7CvBc8lYH+ ThmoU6zxwpT5GsTyodHp/sh+bmeUIOPVnnM/uXX70AKJNFmKSg46YL38dJvjxBmw ObZbu2N+2h6wLPfC5lfkL562x73HcKLi27ji9QdHouNOmQVnfPy3eK45wtahcfHA SzEoziynOT3pJ8Q3NZES/K5D/QbT3GxIEZ3EWd09AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUSNKTM8s4NrVMZTS6yNHaMP+djBIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FjNWEwNmM2LWUxNzgtNDM3Yy1iZjk5LTYzOGI4YTkwOWZlZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVrFKAwDQYJKoZIhvcNAQELBQADggEBAK18tN3xut7NFWU8bsACITLFeRu5 mu3p1sjr9tLTEsggvWMtW8hmiwi+fF8POIOgz4G/SkEpOQNl42+efLh64cCbrPEb keu9L6SVIIPdv7yM5nD6s6PUdE5YYXJ9CSCgm4DOYcWXpi9VGu7QAtysYPkUER40 1vh9nK7U8TevRvhqpOz8EJMRWIo3PvU5MCmywNDyJghmnNuK7Lps+ge5tveoWM0n NFAfGKj9A2kxmq/NOxiNqdanXRHFKIvWshsO5n3OkpPpGM9SjcgebSSCD1boDB3q 21nkYC7USBEwh+An2U/A4W18E8oxUnu+eqybUOx4CcSpRMEYxWMYxadxUzM= -----END CERTIFICATE-----Generated at Sat Sep 6 14:11:28 2025 by rpki-client