$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c53a0576-1e08-4fba-a734-2cef153c43cb.roa File: c53a0576-1e08-4fba-a734-2cef153c43cb.roa (raw, json) Hash identifier: 4exfuLih0rn8KGK+qCpe4EkqNblJuOrZ0iRTsU7Uyqc= Subject key identifier: B0:DC:81:C2:B0:57:D7:19:A4:DF:45:1C:B3:F7:B6:28:BE:1A:8D:7F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 35C1B9D734A6B74F3E95ACC8BFBB9D4B0D8E418D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c53a0576-1e08-4fba-a734-2cef153c43cb.roa Signing time: Sat 06 Sep 2025 00:01:44 +0000 ROA not before: Sat 06 Sep 2025 00:01:44 +0000 ROA not after: Sat 11 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 206.133.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:c1:b9:d7:34:a6:b7:4f:3e:95:ac:c8:bf:bb:9d:4b:0d:8e:41:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 6 00:01:44 2025 GMT Not After : Oct 11 23:59:59 2025 GMT Subject: serialNumber=7f44289cf90752478e191df693bb8cceaa3acc8ea32650b6e8f8fb6c34db8a0c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:d8:83:e9:85:c9:74:1d:12:6a:2e:03:4b:ce: 94:05:5c:e4:ee:75:6a:c6:75:16:26:3b:74:bc:08: 68:03:61:b4:d2:29:8b:bb:55:c2:73:8c:17:30:02: 7a:da:c7:25:1c:6a:97:cd:9c:f8:82:6f:4a:c7:4a: 9e:86:f7:92:6b:69:03:6b:5d:65:88:3b:d1:43:d0: 69:f2:4e:9a:cd:6d:c7:1e:6b:4e:1b:26:ec:3a:13: 67:60:5c:fd:2d:2d:e3:01:b2:a0:86:a8:88:f5:07: 19:38:f0:2e:45:c6:73:15:1a:0c:f6:95:8a:45:41: c1:9f:f6:96:2c:04:46:98:c9:4b:bb:a4:13:81:3d: 67:80:41:9b:a1:84:cd:c2:eb:b9:57:05:a2:f2:c0: 65:1d:ce:f1:09:33:1f:9e:c2:2f:5a:bd:53:70:7e: 05:a3:3f:b5:44:6d:4d:ac:95:3f:86:ca:5a:ef:b2: 67:1d:52:56:70:a8:f9:9d:9f:17:38:d5:0b:ca:8a: ef:66:28:2d:15:2f:5b:03:dc:00:c0:1d:77:4e:2d: 18:70:6c:fd:e5:da:70:3e:cd:6b:d1:86:c3:e1:e6: 73:80:88:22:8b:da:7b:54:3e:22:8a:b3:5c:89:2b: 6c:cf:19:47:e6:8f:31:64:a5:a3:d0:76:69:e1:33: 21:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:DC:81:C2:B0:57:D7:19:A4:DF:45:1C:B3:F7:B6:28:BE:1A:8D:7F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c53a0576-1e08-4fba-a734-2cef153c43cb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 206.133.0.0/16 Signature Algorithm: sha256WithRSAEncryption 54:37:90:86:1b:51:b7:44:42:12:ce:a6:3e:aa:5d:ee:4d:44: c5:49:dd:63:86:63:bd:cf:06:de:40:f1:ee:c8:9b:f8:6a:90: 25:8e:19:9b:fe:07:86:18:95:87:00:74:ef:e3:1c:19:63:dc: 7d:65:4c:7d:dc:91:a1:be:1a:da:a0:eb:68:10:07:67:fd:fa: 85:02:65:cb:14:fb:bf:3b:f2:15:32:da:1a:4f:8d:3f:13:3b: d8:03:61:0b:2e:fa:ba:35:35:24:48:c0:42:fb:df:1c:69:c5: 9a:a5:9c:ee:6d:6f:8f:3c:80:a6:85:1f:7a:71:b4:97:d8:4e: c3:c3:c0:b3:4a:f1:bf:f5:f3:f5:85:9d:2d:4d:49:1b:a0:cb: 65:dc:e6:02:e0:76:5f:bc:87:e3:29:5e:90:9e:5d:f1:43:a4: 48:21:c5:a5:ae:bc:37:53:44:c5:f2:44:4f:48:ac:e8:a2:d4: fa:c2:51:ca:b0:62:5f:16:6e:59:84:8d:f8:53:5d:54:4d:1f: 7c:61:00:d9:44:12:88:3e:c3:5f:d6:f1:4a:4f:af:a7:ed:77: 4a:59:5f:0e:c2:b0:c8:7d:07:47:49:f6:9c:89:8a:61:32:ee: 4a:e6:76:15:d8:39:d9:a2:eb:47:76:c9:91:7c:18:5e:50:1d: df:06:84:b7 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUNcG51zSmt08+lazIv7udSw2OQY0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA2MDAwMTQ0WhcNMjUxMDExMjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZjQ0Mjg5Y2Y5MDc1MjQ3OGUxOTFkZjY5M2JiOGNjZWFh M2FjYzhlYTMyNjUwYjZlOGY4ZmI2YzM0ZGI4YTBjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCj2IPphcl0HRJqLgNLzpQFXOTudWrGdRYmO3S8CGgDYbTS KYu7VcJzjBcwAnraxyUcapfNnPiCb0rHSp6G95JraQNrXWWIO9FD0GnyTprNbcce a04bJuw6E2dgXP0tLeMBsqCGqIj1Bxk48C5FxnMVGgz2lYpFQcGf9pYsBEaYyUu7 pBOBPWeAQZuhhM3C67lXBaLywGUdzvEJMx+ewi9avVNwfgWjP7VEbU2slT+Gylrv smcdUlZwqPmdnxc41QvKiu9mKC0VL1sD3ADAHXdOLRhwbP3l2nA+zWvRhsPh5nOA iCKL2ntUPiKKs1yJK2zPGUfmjzFkpaPQdmnhMyHRAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUsNyBwrBX1xmk30Ucs/e2KL4ajX8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M1M2EwNTc2LTFlMDgtNGZiYS1hNzM0LTJjZWYxNTNjNDNjYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwDOhTANBgkqhkiG9w0BAQsFAAOCAQEAVDeQhhtRt0RCEs6mPqpd7k1ExUnd Y4Zjvc8G3kDx7sib+GqQJY4Zm/4HhhiVhwB07+McGWPcfWVMfdyRob4a2qDraBAH Z/36hQJlyxT7vzvyFTLaGk+NPxM72ANhCy76ujU1JEjAQvvfHGnFmqWc7m1vjzyA poUfenG0l9hOw8PAs0rxv/Xz9YWdLU1JG6DLZdzmAuB2X7yH4ylekJ5d8UOkSCHF pa68N1NExfJET0is6KLU+sJRyrBiXxZuWYSN+FNdVE0ffGEA2UQSiD7DX9bxSk+v p+13SllfDsKwyH0HR0n2nImKYTLuSuZ2Fdg52aLrR3bJkXwYXlAd3waEtw== -----END CERTIFICATE-----Generated at Sat Sep 6 14:05:54 2025 by rpki-client