$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c20e65cd-dd62-4a78-9013-23e4aa3663dd.roa File: c20e65cd-dd62-4a78-9013-23e4aa3663dd.roa (raw, json) Hash identifier: 9ZSRLuyCC72PFm/WeV9aPPqVmeM94Iyq8rHIilUZT9Q= Subject key identifier: 16:56:FA:9B:79:AA:FE:34:EC:5E:E1:38:04:01:6F:4E:F5:7E:EF:43 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5A2940D106C368B5DB0E2EAF26C5D74943DBB02A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c20e65cd-dd62-4a78-9013-23e4aa3663dd.roa Signing time: Fri 29 Aug 2025 16:31:06 +0000 ROA not before: Fri 29 Aug 2025 16:31:06 +0000 ROA not after: Fri 03 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 40.227.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:29:40:d1:06:c3:68:b5:db:0e:2e:af:26:c5:d7:49:43:db:b0:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 29 16:31:06 2025 GMT Not After : Oct 3 23:59:59 2025 GMT Subject: serialNumber=4fa6587b2f30108c80e795a0f9e2f4b3946b05f75aa68b2c991a97ceb61d51a3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:2d:7e:5a:e3:0b:a4:8e:61:c1:db:08:31:5f: 45:3c:b5:64:49:3c:de:8f:cf:e6:64:78:81:a1:e4: 6a:fb:20:28:51:23:e1:1b:bd:69:0b:98:db:07:57: 18:d1:9b:bf:8d:ce:93:e2:77:7a:c6:db:7d:7d:f9: 31:c8:2c:63:2d:67:18:17:0e:32:b3:57:2b:80:9d: 4b:21:38:af:6a:c6:34:e2:eb:2e:9f:d8:9f:e4:f0: 6b:87:95:f7:60:b5:95:b8:d4:04:ec:23:e3:5d:4b: 39:25:4d:a9:34:04:9a:4d:d8:e4:9e:9c:54:a9:a7: fd:53:ba:ba:f0:fa:29:fe:10:8f:0a:b2:48:1d:c5: a6:e5:2a:b2:56:a6:1c:4c:f6:73:d2:ff:c5:da:c4: 7a:93:a2:9b:3a:ba:28:77:37:9d:8c:e1:f2:23:93: a6:e9:61:4e:f0:75:a4:02:9a:ea:77:76:3e:05:a8: ed:11:44:d6:ec:f2:88:c8:2b:9f:06:19:2f:f4:75: cd:b4:c5:7d:8b:28:66:4e:71:21:ea:72:60:02:f3: 93:e3:c0:ee:34:7d:4b:42:ba:ea:6d:99:22:ff:72: 5e:af:26:a1:56:54:9e:0c:80:46:69:9b:d5:d2:92: 60:47:47:76:a9:55:30:52:a4:26:93:db:62:b1:e8: 27:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:56:FA:9B:79:AA:FE:34:EC:5E:E1:38:04:01:6F:4E:F5:7E:EF:43 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c20e65cd-dd62-4a78-9013-23e4aa3663dd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.227.0.0/16 Signature Algorithm: sha256WithRSAEncryption 32:5f:1b:a3:b9:b3:d7:12:a0:fc:64:bc:44:94:8b:17:36:91: 48:b3:5a:7b:02:b5:2e:3d:b2:38:5f:38:17:8b:db:86:a9:87: b2:1b:f5:ec:b4:2f:d8:13:2d:ca:be:47:58:9f:d8:44:1e:f0: b5:7d:75:9a:26:b8:c4:6f:dc:93:13:8b:3d:21:e1:3a:50:b0: d1:3e:0e:47:a3:ab:43:18:b5:93:97:bb:68:7a:69:e7:78:27: 45:1f:96:1a:65:79:0d:05:67:16:60:f5:09:f3:bb:7c:bb:4f: 66:d9:7f:56:a0:35:b2:4e:31:67:62:12:4d:fd:4c:76:17:3e: 95:be:36:76:35:46:fd:c3:8f:96:ff:cf:4c:3d:28:22:7b:4f: cf:ad:74:6e:96:2e:e2:8c:d6:06:6d:8f:1e:bc:e2:e3:3f:08: a2:2b:2c:81:5e:63:68:10:b2:90:b1:bc:60:31:6e:66:78:c9: 63:c7:f8:90:a2:cb:40:a5:53:b7:4d:fd:f8:51:6e:0b:e2:ff: 01:68:6d:91:e5:d6:a9:96:45:28:3a:14:96:4e:23:07:23:8c: f5:d8:0b:3b:a6:d9:4e:34:46:c0:cc:a1:08:ad:68:00:56:2d: 29:b7:60:38:16:69:bc:86:31:d2:e4:1b:2d:dd:95:ce:34:cf: 65:26:9d:ac -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUWilA0QbDaLXbDi6vJsXXSUPbsCowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI5MTYzMTA2WhcNMjUxMDAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZmE2NTg3YjJmMzAxMDhjODBlNzk1YTBmOWUyZjRiMzk0 NmIwNWY3NWFhNjhiMmM5OTFhOTdjZWI2MWQ1MWEzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgLX5a4wukjmHB2wgxX0U8tWRJPN6Pz+ZkeIGh5Gr7IChR I+EbvWkLmNsHVxjRm7+NzpPid3rG2319+THILGMtZxgXDjKzVyuAnUshOK9qxjTi 6y6f2J/k8GuHlfdgtZW41ATsI+NdSzklTak0BJpN2OSenFSpp/1Turrw+in+EI8K skgdxablKrJWphxM9nPS/8XaxHqTops6uih3N52M4fIjk6bpYU7wdaQCmup3dj4F qO0RRNbs8ojIK58GGS/0dc20xX2LKGZOcSHqcmAC85PjwO40fUtCuuptmSL/cl6v JqFWVJ4MgEZpm9XSkmBHR3apVTBSpCaT22Kx6CfhAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUFlb6m3mq/jTsXuE4BAFvTvV+70MwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MyMGU2NWNkLWRkNjItNGE3OC05MDEzLTIzZTRhYTM2NjNkZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAo4zANBgkqhkiG9w0BAQsFAAOCAQEAMl8bo7mz1xKg/GS8RJSLFzaRSLNa ewK1Lj2yOF84F4vbhqmHshv17LQv2BMtyr5HWJ/YRB7wtX11mia4xG/ckxOLPSHh OlCw0T4OR6OrQxi1k5e7aHpp53gnRR+WGmV5DQVnFmD1CfO7fLtPZtl/VqA1sk4x Z2ISTf1Mdhc+lb42djVG/cOPlv/PTD0oIntPz610bpYu4ozWBm2PHrzi4z8Ioiss gV5jaBCykLG8YDFuZnjJY8f4kKLLQKVTt039+FFuC+L/AWhtkeXWqZZFKDoUlk4j ByOM9dgLO6bZTjRGwMyhCK1oAFYtKbdgOBZpvIYx0uQbLd2VzjTPZSadrA== -----END CERTIFICATE-----Generated at Sat Sep 6 14:08:28 2025 by rpki-client