$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c52ef999-1380-4105-b9d4-1133b6115804.roa File: c52ef999-1380-4105-b9d4-1133b6115804.roa (raw, json) Hash identifier: lJ5Of/yFGX5KAauaLPx6nWBlT+p+e/fvtBrnQ/2vnKw= Subject key identifier: 8C:52:51:A0:BA:2A:E8:2A:13:BF:BA:0A:3D:83:F7:4E:89:53:A8:DB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 245EE4370FC6C8726564766F1C2F3C8C3B01F316 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c52ef999-1380-4105-b9d4-1133b6115804.roa Signing time: Mon 01 Sep 2025 15:40:18 +0000 ROA not before: Mon 01 Sep 2025 15:40:18 +0000 ROA not after: Mon 06 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 71.143.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 16 Sep 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:5e:e4:37:0f:c6:c8:72:65:64:76:6f:1c:2f:3c:8c:3b:01:f3:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 1 15:40:18 2025 GMT Not After : Oct 6 23:59:59 2025 GMT Subject: serialNumber=f2b805ec4c1818b5645a545d9fad6bff138a282cd883348ca0176cab9df5b9ee, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:51:50:09:88:04:39:52:23:94:10:00:a7:7e: 6a:5f:bb:09:5b:57:0e:0e:24:f5:9d:48:f8:6a:03: 7f:f4:26:c8:fc:bf:e0:a6:2e:42:f2:89:a3:05:60: 71:2a:40:4b:4b:3b:f1:b4:38:27:e2:0e:98:ae:22: e2:8b:52:52:70:57:0c:9b:6a:84:10:48:f9:d5:55: c1:b2:80:36:d9:24:67:be:b7:7b:8e:e1:f8:cc:18: bd:91:3f:25:4c:4f:4b:e0:5a:3c:e3:5a:16:a4:86: e9:5e:45:ae:78:59:f4:9a:0d:d1:4b:40:24:37:ce: af:1e:7b:97:31:6b:a1:40:ec:11:29:29:fd:ee:48: 83:11:6f:4c:58:ca:df:90:34:f0:9c:6d:06:40:4a: ff:28:ea:82:65:04:3c:bd:04:86:45:05:09:54:3f: 3d:93:e1:92:f5:3f:ec:3e:73:17:88:ed:8a:0f:6e: ca:fd:9a:16:c8:fc:c7:f1:77:96:92:c9:75:ff:88: 3a:b4:1f:1e:78:3f:a5:88:71:92:d2:91:e3:8a:88: 1f:01:88:6b:5e:8e:df:2b:a1:68:60:4c:53:85:64: 85:3a:71:12:41:84:6c:77:df:a0:b4:d1:80:89:94: 79:ac:0e:a5:86:7e:93:30:8b:28:0b:f5:5f:15:de: d0:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:52:51:A0:BA:2A:E8:2A:13:BF:BA:0A:3D:83:F7:4E:89:53:A8:DB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c52ef999-1380-4105-b9d4-1133b6115804.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 71.143.0.0/18 Signature Algorithm: sha256WithRSAEncryption c7:ab:62:0e:ce:57:9c:ed:21:fc:3c:f2:c5:a7:af:f9:1d:92: 27:bd:20:d9:75:3c:34:60:a9:9e:b1:5a:cd:c3:8b:64:80:ed: af:df:03:49:ce:30:22:78:b7:67:3d:0a:5f:7b:17:c2:e7:e4: 7a:5a:d6:a8:77:97:94:9f:5d:d7:e0:62:7f:44:f6:41:d9:ca: a4:8a:33:59:be:ef:f7:4f:3e:ca:41:fc:57:33:92:1f:e8:0e: ed:eb:2f:4c:d0:54:d5:0d:c7:85:59:2c:a0:76:bd:4c:43:24: 2a:9f:5f:0d:a1:90:24:8b:a9:6c:f8:6d:0e:6e:28:f0:4b:3a: 06:7a:4a:82:b8:1e:b1:b9:a4:f1:bb:dd:e9:78:11:04:32:d7: 24:6f:4b:fa:94:98:f1:4f:b3:53:da:ea:ef:49:2c:8e:f3:3c: e7:a2:9b:2e:27:9d:07:03:17:39:e8:88:7a:bd:5c:e0:60:b9: d9:87:5f:74:a3:d0:23:d0:8d:36:37:b0:78:31:7f:7e:18:aa: 22:6e:12:8d:49:15:dc:85:90:66:bb:a2:60:bf:13:0b:25:69: 52:27:a3:f8:b4:65:df:4f:66:17:db:f1:7d:55:b7:74:0e:02: ef:de:86:35:4a:fe:85:14:69:16:e5:01:3e:1a:92:7e:de:d7: c0:bc:2f:4f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJF7kNw/GyHJlZHZvHC88jDsB8xYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTAxMTU0MDE4WhcNMjUxMDA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMmI4MDVlYzRjMTgxOGI1NjQ1YTU0NWQ5ZmFkNmJmZjEz OGEyODJjZDg4MzM0OGNhMDE3NmNhYjlkZjViOWVlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLUVAJiAQ5UiOUEACnfmpfuwlbVw4OJPWdSPhqA3/0Jsj8 v+CmLkLyiaMFYHEqQEtLO/G0OCfiDpiuIuKLUlJwVwybaoQQSPnVVcGygDbZJGe+ t3uO4fjMGL2RPyVMT0vgWjzjWhakhuleRa54WfSaDdFLQCQ3zq8ee5cxa6FA7BEp Kf3uSIMRb0xYyt+QNPCcbQZASv8o6oJlBDy9BIZFBQlUPz2T4ZL1P+w+cxeI7YoP bsr9mhbI/Mfxd5aSyXX/iDq0Hx54P6WIcZLSkeOKiB8BiGtejt8roWhgTFOFZIU6 cRJBhGx336C00YCJlHmsDqWGfpMwiygL9V8V3tBVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUjFJRoLoq6CoTv7oKPYP3TolTqNswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M1MmVmOTk5LTEzODAtNDEwNS1iOWQ0LTExMzNiNjExNTgwNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZHjwAwDQYJKoZIhvcNAQELBQADggEBAMerYg7OV5ztIfw88sWnr/kdkie9 INl1PDRgqZ6xWs3Di2SA7a/fA0nOMCJ4t2c9Cl97F8Ln5Hpa1qh3l5SfXdfgYn9E 9kHZyqSKM1m+7/dPPspB/Fczkh/oDu3rL0zQVNUNx4VZLKB2vUxDJCqfXw2hkCSL qWz4bQ5uKPBLOgZ6SoK4HrG5pPG73el4EQQy1yRvS/qUmPFPs1Pa6u9JLI7zPOei my4nnQcDFznoiHq9XOBgudmHX3Sj0CPQjTY3sHgxf34YqiJuEo1JFdyFkGa7omC/ EwslaVIno/i0Zd9PZhfb8X1Vt3QOAu/ehjVK/oUUaRblAT4akn7e18C8L08= -----END CERTIFICATE-----Generated at Mon Sep 15 12:01:14 2025 by rpki-client