$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/af447631-2ee0-48e3-99c1-aabf4304ee15.roa File: af447631-2ee0-48e3-99c1-aabf4304ee15.roa (raw, json) Hash identifier: txeIVtXm/nwXz17PmQ5vYONNRlAY2XqVDuC0JyH2zTw= Subject key identifier: 59:61:9B:64:5A:BA:61:21:32:26:74:BA:A5:A9:A2:11:71:CD:7B:2A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5EF0BB1C5BFA6D0317C75F35FA4DBCF50DF9528E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/af447631-2ee0-48e3-99c1-aabf4304ee15.roa Signing time: Wed 27 Aug 2025 00:20:21 +0000 ROA not before: Wed 27 Aug 2025 00:20:21 +0000 ROA not after: Wed 01 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 107.20.144.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:f0:bb:1c:5b:fa:6d:03:17:c7:5f:35:fa:4d:bc:f5:0d:f9:52:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 27 00:20:21 2025 GMT Not After : Oct 1 23:59:59 2025 GMT Subject: serialNumber=af3a045107046a9dd45f7b015c900c15d69affc27c3f119c83e6c3726c72cd9a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:5e:b7:56:93:fa:a9:a9:71:cc:46:0b:7b:f6: e5:e4:79:2a:6b:37:97:7f:eb:25:8a:93:59:59:1c: 41:b5:1c:e0:8a:e6:38:da:68:8f:7f:59:0e:e5:b3: fd:03:37:9f:96:10:0b:ac:69:d5:95:63:4b:9e:65: be:9e:d2:de:a6:08:7e:62:8e:45:c5:b8:af:60:32: f2:0f:f1:17:41:b0:0a:fe:36:23:43:b7:bb:db:5f: 51:b5:32:6b:28:bb:91:1c:e4:69:ae:d7:a6:c5:2f: 45:c5:57:f9:30:59:22:7e:5e:30:32:a4:12:55:e5: b9:56:70:3f:7c:f9:61:86:33:32:5e:11:93:1f:d2: 32:a8:35:b8:43:78:ab:23:85:f0:09:18:75:a1:0a: 6f:58:5b:86:0b:12:f3:6b:94:98:c9:fc:6b:21:44: 27:ce:8a:90:12:9e:55:60:38:f8:93:df:80:dc:02: 28:2b:36:ad:b7:40:c7:f3:c2:6d:e3:f1:8e:5d:2c: dc:a1:aa:c3:95:a3:6b:d0:41:da:10:ae:31:4d:91: d6:80:8e:dd:a5:f9:bd:0c:52:c6:6e:86:05:9a:73: 3b:db:80:2f:9b:10:f5:36:bc:ab:c3:af:1c:6e:b5: 20:4c:c9:b2:5f:30:71:1e:b8:fa:68:cf:e3:3d:7e: 24:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:61:9B:64:5A:BA:61:21:32:26:74:BA:A5:A9:A2:11:71:CD:7B:2A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/af447631-2ee0-48e3-99c1-aabf4304ee15.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.20.144.0/20 Signature Algorithm: sha256WithRSAEncryption 50:65:c1:cc:83:c5:17:ee:c7:89:be:7b:c4:f0:14:4c:72:9a: 2a:2f:8b:9c:9a:ab:81:39:5d:fd:e3:3d:1e:05:f9:43:84:10: 75:89:9e:35:03:cd:da:a0:1a:47:49:9d:a3:7a:09:16:03:c5: 84:b2:52:3a:8f:c6:37:be:1c:41:56:b7:84:76:a0:41:80:3d: 0b:54:0a:08:c0:74:a8:81:6f:6d:32:52:86:6f:e6:31:4d:28: 7d:cf:ac:54:11:f4:0d:dc:6a:67:61:7d:b0:7d:28:b6:e8:97: 17:1a:ae:51:81:c1:ab:9a:bd:7d:78:74:bc:21:c1:62:26:ea: 66:7a:8c:42:f3:42:9e:ee:39:ce:4f:dd:54:1d:6a:97:e1:9a: de:b1:d2:bd:8d:0c:a2:10:c4:98:a3:8c:6c:43:f7:30:8e:81: 1e:3c:ea:32:3e:b4:ab:27:d1:19:d3:0f:78:3a:32:a8:61:dc: 5e:14:2a:5c:0b:21:21:8a:81:14:47:f3:e8:5c:6a:e7:9e:4b: eb:ee:9f:ac:d1:a0:ca:19:40:ad:08:84:44:20:46:39:9d:7f: b1:d9:9d:70:b1:19:a1:b8:c0:7f:48:73:c2:e8:aa:eb:39:3a: 44:0d:37:9e:5f:17:89:bf:3b:1c:b7:5d:84:0f:23:60:f1:59: bf:56:1c:80 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXvC7HFv6bQMXx181+k289Q35Uo4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI3MDAyMDIxWhcNMjUxMDAxMjM1OTU5 WjB6MUkwRwYDVQQFE0BhZjNhMDQ1MTA3MDQ2YTlkZDQ1ZjdiMDE1YzkwMGMxNWQ2 OWFmZmMyN2MzZjExOWM4M2U2YzM3MjZjNzJjZDlhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCPXrdWk/qpqXHMRgt79uXkeSprN5d/6yWKk1lZHEG1HOCK 5jjaaI9/WQ7ls/0DN5+WEAusadWVY0ueZb6e0t6mCH5ijkXFuK9gMvIP8RdBsAr+ NiNDt7vbX1G1Mmsou5Ec5Gmu16bFL0XFV/kwWSJ+XjAypBJV5blWcD98+WGGMzJe EZMf0jKoNbhDeKsjhfAJGHWhCm9YW4YLEvNrlJjJ/GshRCfOipASnlVgOPiT34Dc AigrNq23QMfzwm3j8Y5dLNyhqsOVo2vQQdoQrjFNkdaAjt2l+b0MUsZuhgWaczvb gC+bEPU2vKvDrxxutSBMybJfMHEeuPpoz+M9fiTRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUWWGbZFq6YSEyJnS6pamiEXHNeyowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FmNDQ3NjMxLTJlZTAtNDhlMy05OWMxLWFhYmY0MzA0ZWUxNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARrFJAwDQYJKoZIhvcNAQELBQADggEBAFBlwcyDxRfux4m+e8TwFExymiov i5yaq4E5Xf3jPR4F+UOEEHWJnjUDzdqgGkdJnaN6CRYDxYSyUjqPxje+HEFWt4R2 oEGAPQtUCgjAdKiBb20yUoZv5jFNKH3PrFQR9A3camdhfbB9KLbolxcarlGBwaua vX14dLwhwWIm6mZ6jELzQp7uOc5P3VQdapfhmt6x0r2NDKIQxJijjGxD9zCOgR48 6jI+tKsn0RnTD3g6Mqhh3F4UKlwLISGKgRRH8+hcaueeS+vun6zRoMoZQK0IhEQg Rjmdf7HZnXCxGaG4wH9Ic8Loqus5OkQNN55fF4m/Oxy3XYQPI2DxWb9WHIA= -----END CERTIFICATE-----Generated at Sat Sep 6 14:11:06 2025 by rpki-client