$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b64896ec-1eb6-4b13-9ee7-9ff591b892f9.roa File: b64896ec-1eb6-4b13-9ee7-9ff591b892f9.roa (raw, json) Hash identifier: xPHWyazqJr0WaVK9EjobSy5Bz7A0DjtbuHcWOBXMNNA= Subject key identifier: BF:BB:CE:00:FD:B2:6E:BB:BF:73:32:83:83:A6:64:96:68:D6:F2:24 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 409867EDA1C10C771B4D3BFC88496202AF1E8F24 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b64896ec-1eb6-4b13-9ee7-9ff591b892f9.roa Signing time: Fri 29 Aug 2025 15:11:28 +0000 ROA not before: Fri 29 Aug 2025 15:11:28 +0000 ROA not after: Fri 03 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.22.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:98:67:ed:a1:c1:0c:77:1b:4d:3b:fc:88:49:62:02:af:1e:8f:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 29 15:11:28 2025 GMT Not After : Oct 3 23:59:59 2025 GMT Subject: serialNumber=d25d27251a80ede1b9ec5bd5173ad0db7844fd6aa1e122f1de871536c4376c7e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:bd:10:73:3e:68:bd:e0:3a:b1:13:d7:05:11: 3a:e8:67:cf:bb:d9:01:8d:75:2a:fa:38:7e:bc:aa: b7:da:de:43:f9:97:c7:53:a5:2d:2f:ab:94:bc:f1: cc:f8:8f:f0:35:8b:47:ec:59:5e:44:69:9b:1a:9a: f1:9b:2e:92:8b:8b:83:bc:8a:bd:ea:0e:f6:eb:7d: d7:93:b0:27:3d:2e:39:b5:77:c5:26:81:75:e9:01: 5a:c0:e4:69:7a:85:f7:24:d7:42:7a:ed:5d:f7:2a: f0:84:af:af:7f:a2:d1:89:70:86:95:cb:18:d1:68: a9:ba:8f:80:e8:22:89:91:64:3a:3a:3a:c7:23:e2: ac:3c:f7:ed:36:b4:5e:6b:39:87:8e:1b:a5:8e:d3: d4:42:bc:3b:76:b5:ce:cd:2d:d7:e7:40:6f:86:ec: 37:dc:b3:fb:5a:b4:d8:6c:76:a0:37:49:04:e8:bd: 32:79:68:ad:0e:1c:ab:83:65:9a:17:ad:e2:49:2b: 75:d7:21:7a:cf:9c:44:d1:b6:11:f2:a9:56:52:9e: 94:5a:6e:47:f7:f2:6d:f2:50:48:87:a9:65:73:b3: f9:ef:d5:3b:8c:f5:3f:04:83:41:f2:f5:cf:59:a9: b1:1f:a0:30:4a:a7:ad:7b:96:da:e1:7a:7d:5d:f9: f8:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:BB:CE:00:FD:B2:6E:BB:BF:73:32:83:83:A6:64:96:68:D6:F2:24 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b64896ec-1eb6-4b13-9ee7-9ff591b892f9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.22.0.0/15 Signature Algorithm: sha256WithRSAEncryption 9c:72:6b:46:09:97:5a:15:1e:e7:1c:78:52:f0:bb:15:21:bd: c9:54:40:6a:26:c9:3a:67:8d:3e:e7:56:3a:31:e4:bc:05:95: dd:ea:75:12:cb:66:8d:c4:b3:46:e0:f7:35:79:b7:66:4d:00: 82:29:47:30:01:40:a2:73:a7:91:f9:61:83:65:33:f7:c3:67: f3:d0:e9:a8:a5:bb:67:39:f3:43:e6:cb:25:44:82:e3:b6:7b: b2:5f:b2:24:f3:23:da:eb:02:aa:cf:2b:77:b2:4b:68:8d:6f: 99:00:99:fd:d9:96:8a:b0:0f:d2:88:ac:4d:27:ee:e0:1b:07: 41:a4:45:a4:3e:51:13:56:48:a9:cf:a2:22:f0:9b:2e:96:38: 41:48:8b:89:88:19:06:e1:ae:33:7a:8b:6a:df:d7:9e:ef:f0: 44:5a:05:fd:a3:da:52:87:b2:40:53:20:e9:a7:e2:99:55:36: ba:f6:9d:54:79:ea:76:74:c2:42:3c:b7:ad:90:7d:4a:3d:62: b0:a9:c2:78:9d:7d:fc:be:1c:ab:0d:e8:45:d0:73:1e:c4:29: 62:c3:6d:1c:b5:a4:5f:0f:9f:68:2f:8d:4a:21:da:bc:7c:2e: 93:2a:4a:75:ec:12:14:63:da:3b:59:cb:98:50:97:74:9b:11: 73:c9:b2:ca -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUQJhn7aHBDHcbTTv8iEliAq8ejyQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI5MTUxMTI4WhcNMjUxMDAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BkMjVkMjcyNTFhODBlZGUxYjllYzViZDUxNzNhZDBkYjc4 NDRmZDZhYTFlMTIyZjFkZTg3MTUzNmM0Mzc2YzdlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCWvRBzPmi94DqxE9cFETroZ8+72QGNdSr6OH68qrfa3kP5 l8dTpS0vq5S88cz4j/A1i0fsWV5EaZsamvGbLpKLi4O8ir3qDvbrfdeTsCc9Ljm1 d8UmgXXpAVrA5Gl6hfck10J67V33KvCEr69/otGJcIaVyxjRaKm6j4DoIomRZDo6 Oscj4qw89+02tF5rOYeOG6WO09RCvDt2tc7NLdfnQG+G7Dfcs/tatNhsdqA3SQTo vTJ5aK0OHKuDZZoXreJJK3XXIXrPnETRthHyqVZSnpRabkf38m3yUEiHqWVzs/nv 1TuM9T8Eg0Hy9c9ZqbEfoDBKp617ltrhen1d+fjjAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUv7vOAP2ybru/czKDg6ZklmjW8iQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I2NDg5NmVjLTFlYjYtNGIxMy05ZWU3LTlmZjU5MWI4OTJmOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEXFjANBgkqhkiG9w0BAQsFAAOCAQEAnHJrRgmXWhUe5xx4UvC7FSG9yVRA aibJOmeNPudWOjHkvAWV3ep1EstmjcSzRuD3NXm3Zk0AgilHMAFAonOnkflhg2Uz 98Nn89DpqKW7ZznzQ+bLJUSC47Z7sl+yJPMj2usCqs8rd7JLaI1vmQCZ/dmWirAP 0oisTSfu4BsHQaRFpD5RE1ZIqc+iIvCbLpY4QUiLiYgZBuGuM3qLat/Xnu/wRFoF /aPaUoeyQFMg6afimVU2uvadVHnqdnTCQjy3rZB9Sj1isKnCeJ19/L4cqw3oRdBz HsQpYsNtHLWkXw+faC+NSiHavHwukypKdewSFGPaO1nLmFCXdJsRc8myyg== -----END CERTIFICATE-----Generated at Sat Sep 6 14:06:06 2025 by rpki-client