$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c5989b5a-6ca7-4f3b-94d1-8295ab72632c.roa File: c5989b5a-6ca7-4f3b-94d1-8295ab72632c.roa (raw, json) Hash identifier: /JjrKz+5kS11wT33Msta3MdPPWZ3O/gijjSJS2XqVQE= Subject key identifier: 5C:5E:0F:49:A2:5F:21:50:AA:8D:97:E2:BD:17:53:9C:E3:90:99:BD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 28C19A78FC12376E6A4A505CD7552B8F8D52479F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c5989b5a-6ca7-4f3b-94d1-8295ab72632c.roa Signing time: Sat 06 Sep 2025 00:01:33 +0000 ROA not before: Sat 06 Sep 2025 00:01:33 +0000 ROA not after: Sat 11 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 162.213.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:c1:9a:78:fc:12:37:6e:6a:4a:50:5c:d7:55:2b:8f:8d:52:47:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 6 00:01:33 2025 GMT Not After : Oct 11 23:59:59 2025 GMT Subject: serialNumber=6db49f2296914f5a4bdfa1f5e885a798e8a2cc208164af13b49a528927dfbbb9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:7a:8e:c8:86:50:a7:48:48:ea:69:25:11:7d: 68:39:db:11:98:cf:2b:79:c4:29:5b:a2:43:33:3d: 24:0f:ef:f2:ff:13:5f:fb:6b:7f:cf:30:a9:9f:34: 7b:7e:55:a2:8e:59:14:c9:b8:de:f4:7c:8c:06:a1: bb:6d:90:6e:95:77:a1:1a:f6:18:f1:6a:29:51:e6: 0e:c7:1e:67:15:24:63:a2:7f:1e:f3:fb:e2:80:50: 46:f0:38:55:c5:aa:13:da:9e:17:dc:71:83:09:71: fa:f0:80:ac:cb:f2:ab:a0:79:f5:7b:74:60:98:f9: c3:9b:26:32:8b:e0:ab:72:91:62:aa:54:fc:c8:0b: bf:70:fe:45:ec:56:62:42:b4:ad:25:e2:75:e7:c4: 7f:96:01:0f:1e:e4:fb:49:ef:8d:0b:cd:c8:17:12: 64:f2:5c:f2:53:2a:6e:3e:4d:17:f3:80:2a:3d:1d: d0:0e:26:8e:1e:51:d5:e4:38:1a:36:e7:54:35:94: 3e:c0:c2:be:f7:ff:33:81:44:08:9c:49:24:c0:67: e8:9d:7f:d9:a8:6b:c2:23:02:89:56:ba:93:10:d4: e2:01:d4:df:19:e0:7c:d9:11:8e:35:55:6d:6e:bf: a7:69:6a:de:15:f0:84:a9:0e:7b:76:df:f0:c6:38: 04:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:5E:0F:49:A2:5F:21:50:AA:8D:97:E2:BD:17:53:9C:E3:90:99:BD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c5989b5a-6ca7-4f3b-94d1-8295ab72632c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 162.213.233.0/24 Signature Algorithm: sha256WithRSAEncryption 01:9d:d5:21:33:92:8f:fa:89:66:5e:9e:61:c3:3d:04:a9:91: 26:7a:82:03:a4:56:cb:9f:a8:3e:c7:f0:8b:5e:fa:79:67:fb: db:39:96:b8:e8:87:3e:17:52:b8:d6:05:7d:47:ae:e7:f3:af: e9:c8:c1:bf:7e:0d:ef:52:69:b5:1d:f6:3f:61:12:a5:cd:28: 4f:99:5d:fe:f5:0c:cf:2b:a6:3d:9d:76:59:39:c1:39:a6:39: 62:64:ba:7b:02:3c:46:42:44:13:66:0f:50:04:49:c4:b6:40: 38:43:24:b3:a9:19:0f:63:f5:56:e7:f2:3b:c0:f6:17:8a:23: f7:41:e8:6e:6c:e4:dd:76:11:e8:b9:cf:55:4e:75:c7:26:45: a9:d7:69:44:20:bc:f9:d0:ce:ee:81:d6:94:9e:dc:81:6d:d8: ca:8a:7a:71:6d:55:51:1f:df:ec:52:10:de:84:54:42:cb:0d: 2f:68:5b:cb:d9:aa:5c:cc:e8:c2:9a:6c:26:4a:2e:00:40:e9: 83:e9:71:c5:87:c9:70:77:85:46:a5:99:35:5e:0c:a5:32:d8: 79:d4:67:83:16:af:62:42:7f:40:1a:0c:f3:7e:bb:f6:b4:56: ad:4c:4c:20:52:10:8e:7e:1d:41:71:3a:e9:ee:f8:fe:18:65: fc:c0:74:4a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKMGaePwSN25qSlBc11Urj41SR58wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA2MDAwMTMzWhcNMjUxMDExMjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZGI0OWYyMjk2OTE0ZjVhNGJkZmExZjVlODg1YTc5OGU4 YTJjYzIwODE2NGFmMTNiNDlhNTI4OTI3ZGZiYmI5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCQeo7IhlCnSEjqaSURfWg52xGYzyt5xClbokMzPSQP7/L/ E1/7a3/PMKmfNHt+VaKOWRTJuN70fIwGobttkG6Vd6Ea9hjxailR5g7HHmcVJGOi fx7z++KAUEbwOFXFqhPanhfccYMJcfrwgKzL8qugefV7dGCY+cObJjKL4KtykWKq VPzIC79w/kXsVmJCtK0l4nXnxH+WAQ8e5PtJ740LzcgXEmTyXPJTKm4+TRfzgCo9 HdAOJo4eUdXkOBo251Q1lD7Awr73/zOBRAicSSTAZ+idf9moa8IjAolWupMQ1OIB 1N8Z4HzZEY41VW1uv6dpat4V8ISpDnt23/DGOASrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUXF4PSaJfIVCqjZfivRdTnOOQmb0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M1OTg5YjVhLTZjYTctNGYzYi05NGQxLTgyOTVhYjcyNjMyYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACi1ekwDQYJKoZIhvcNAQELBQADggEBAAGd1SEzko/6iWZenmHDPQSpkSZ6 ggOkVsufqD7H8Ite+nln+9s5lrjohz4XUrjWBX1Hrufzr+nIwb9+De9SabUd9j9h EqXNKE+ZXf71DM8rpj2ddlk5wTmmOWJkunsCPEZCRBNmD1AEScS2QDhDJLOpGQ9j 9Vbn8jvA9heKI/dB6G5s5N12Eei5z1VOdccmRanXaUQgvPnQzu6B1pSe3IFt2MqK enFtVVEf3+xSEN6EVELLDS9oW8vZqlzM6MKabCZKLgBA6YPpccWHyXB3hUalmTVe DKUy2HnUZ4MWr2JCf0AaDPN+u/a0Vq1MTCBSEI5+HUFxOunu+P4YZfzAdEo= -----END CERTIFICATE-----Generated at Sat Sep 6 14:06:00 2025 by rpki-client