$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bc6ddae6-c083-44d5-b58d-6cc438cf4d59.roa File: bc6ddae6-c083-44d5-b58d-6cc438cf4d59.roa (raw, json) Hash identifier: uLcgBSUaHA+7oN3Ag9dC+5iwXZ28I3xVHjn60jInWR4= Subject key identifier: 3E:D9:2D:23:53:F4:07:04:8C:D7:5B:60:0C:C4:3C:E3:81:1F:EC:6B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1B87B6209E934860F490542BD7B1DE0A2CCB74D9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bc6ddae6-c083-44d5-b58d-6cc438cf4d59.roa Signing time: Wed 27 Aug 2025 00:10:11 +0000 ROA not before: Wed 27 Aug 2025 00:10:11 +0000 ROA not after: Wed 01 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 107.22.156.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:87:b6:20:9e:93:48:60:f4:90:54:2b:d7:b1:de:0a:2c:cb:74:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 27 00:10:11 2025 GMT Not After : Oct 1 23:59:59 2025 GMT Subject: serialNumber=1384e1450306ae5aa5f407a20d271c5fef8e678921832463060ab1920ec61ec4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:bf:ac:54:66:8c:a1:85:6a:ad:68:8c:22:68: a4:32:8c:80:b4:67:28:f8:1d:bc:cc:1a:04:df:dc: 01:d2:f4:f3:77:87:c5:27:8f:d8:3b:cf:d3:66:8c: 0f:7c:51:40:36:d1:65:2c:6a:29:22:de:67:09:e5: 72:91:a9:70:8e:b7:d0:7e:04:82:bd:ad:57:f4:1e: d0:4b:a4:fb:39:74:e7:9a:f5:e5:25:a5:80:77:75: ef:d4:f9:3d:8d:7c:1b:84:53:a5:e6:b0:9e:a2:ec: 9c:74:e5:ea:48:d9:78:a2:51:a4:94:d6:0f:69:f9: e8:2e:1e:7c:23:7b:e1:10:a5:e3:3b:a4:5f:7c:48: 83:db:02:b4:ce:8d:ed:03:cf:0b:8f:2f:6b:f5:e6: 16:eb:54:4a:d3:a0:ca:b6:d6:57:32:f4:ff:28:f0: 20:26:a3:9c:20:f2:cd:01:ee:16:a1:8c:de:a5:9d: 9d:53:2a:70:33:8a:c0:60:e3:60:fa:41:7d:47:fd: f1:bb:02:4a:c8:be:45:7f:be:26:8d:4b:3b:8d:58: 3e:17:46:fa:91:79:48:d4:e2:1f:4f:3d:24:ce:d5: 5c:13:ee:99:f7:f5:59:70:b1:c2:22:c0:dc:c3:63: da:43:19:b4:7c:ea:db:5e:98:41:5b:da:94:49:79: 5e:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:D9:2D:23:53:F4:07:04:8C:D7:5B:60:0C:C4:3C:E3:81:1F:EC:6B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bc6ddae6-c083-44d5-b58d-6cc438cf4d59.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.22.156.0/23 Signature Algorithm: sha256WithRSAEncryption 90:3e:ee:d5:6e:72:6e:dd:81:36:ba:56:19:6b:ea:ae:ec:45: a4:ac:90:e7:8f:4b:ce:6d:49:e8:5c:79:7c:c0:56:d6:c8:b1: df:55:0d:a4:3a:b9:f0:9d:5a:99:fc:90:6f:0d:1a:2f:55:fe: 83:ae:6e:1e:f3:56:e6:e1:31:79:37:42:8e:37:99:d3:7a:87: ce:be:8d:22:6a:e5:14:be:a4:8d:35:b9:23:7f:ed:4a:5a:27: e8:a3:3e:9e:9e:ae:a7:ca:22:c4:21:10:c7:46:4d:b5:94:1c: 92:0d:76:01:80:74:3d:41:6b:63:07:b4:85:de:67:f2:76:9c: 64:8b:bf:f3:2b:f1:40:07:f7:72:1c:92:46:1b:cc:bd:6e:6f: 07:eb:5a:e5:07:4b:b1:dd:b5:d7:5b:e7:42:f0:92:8b:d3:5b: 7e:29:8b:b7:31:9d:6f:b0:68:cf:56:3d:c3:6e:b4:03:a9:11: 4d:c7:1b:5d:e1:08:8b:e3:5b:d7:f8:80:cc:92:be:82:9d:f9: af:9b:64:ce:5d:58:9a:93:76:2e:eb:af:8e:f6:51:3a:7d:7a: 9e:fa:dd:7e:ed:ae:9f:2e:b1:20:da:25:6c:0b:94:31:2f:71: 89:6f:34:c7:6d:89:4d:2b:24:13:7e:25:10:93:f5:7e:35:3b: 3f:94:b7:18 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUG4e2IJ6TSGD0kFQr17HeCizLdNkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI3MDAxMDExWhcNMjUxMDAxMjM1OTU5 WjB6MUkwRwYDVQQFE0AxMzg0ZTE0NTAzMDZhZTVhYTVmNDA3YTIwZDI3MWM1ZmVm OGU2Nzg5MjE4MzI0NjMwNjBhYjE5MjBlYzYxZWM0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDWv6xUZoyhhWqtaIwiaKQyjIC0Zyj4HbzMGgTf3AHS9PN3 h8Unj9g7z9NmjA98UUA20WUsaiki3mcJ5XKRqXCOt9B+BIK9rVf0HtBLpPs5dOea 9eUlpYB3de/U+T2NfBuEU6XmsJ6i7Jx05epI2XiiUaSU1g9p+eguHnwje+EQpeM7 pF98SIPbArTOje0DzwuPL2v15hbrVErToMq21lcy9P8o8CAmo5wg8s0B7hahjN6l nZ1TKnAzisBg42D6QX1H/fG7AkrIvkV/viaNSzuNWD4XRvqReUjU4h9PPSTO1VwT 7pn39VlwscIiwNzDY9pDGbR86ttemEFb2pRJeV45AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUPtktI1P0BwSM11tgDMQ844Ef7GswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JjNmRkYWU2LWMwODMtNDRkNS1iNThkLTZjYzQzOGNmNGQ1OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFrFpwwDQYJKoZIhvcNAQELBQADggEBAJA+7tVucm7dgTa6Vhlr6q7sRaSs kOePS85tSehceXzAVtbIsd9VDaQ6ufCdWpn8kG8NGi9V/oOubh7zVubhMXk3Qo43 mdN6h86+jSJq5RS+pI01uSN/7UpaJ+ijPp6erqfKIsQhEMdGTbWUHJINdgGAdD1B a2MHtIXeZ/J2nGSLv/Mr8UAH93IckkYbzL1ubwfrWuUHS7Hdtddb50LwkovTW34p i7cxnW+waM9WPcNutAOpEU3HG13hCIvjW9f4gMySvoKd+a+bZM5dWJqTdi7rr472 UTp9ep763X7trp8usSDaJWwLlDEvcYlvNMdtiU0rJBN+JRCT9X41Oz+Utxg= -----END CERTIFICATE-----Generated at Sat Sep 6 14:18:40 2025 by rpki-client