$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d2526c3a-77ad-4669-af27-f2171d468d2d.roa File: d2526c3a-77ad-4669-af27-f2171d468d2d.roa (raw, json) Hash identifier: M0XAU/KteojcL6rfDKEQwJqRY945wXQKxHmnPP/A5M8= Subject key identifier: 79:8D:B9:75:B1:50:E6:52:5C:6B:FB:0F:83:3B:49:1E:75:F9:BF:7F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 32E87794F871EE8F921477ACD51833CF030A48F5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d2526c3a-77ad-4669-af27-f2171d468d2d.roa Signing time: Tue 02 Sep 2025 00:21:40 +0000 ROA not before: Tue 02 Sep 2025 00:21:40 +0000 ROA not after: Tue 07 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 63.246.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:e8:77:94:f8:71:ee:8f:92:14:77:ac:d5:18:33:cf:03:0a:48:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 2 00:21:40 2025 GMT Not After : Oct 7 23:59:59 2025 GMT Subject: serialNumber=b3f07591c47d60486241c426e089abf09f173240f3d19288a2056d8ca87a263b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:62:6d:37:76:9a:a3:89:fc:00:4a:22:46:f8: 85:2f:15:53:e1:02:5e:30:93:6b:ba:9a:3c:86:f9: 44:b9:cf:1e:86:2f:cd:8f:76:a1:70:7e:0d:96:38: 07:d7:5d:c2:8a:d4:6e:81:ca:c4:55:d4:31:dc:9a: fd:ac:c9:d8:a1:99:64:e9:97:00:6b:22:3d:05:5c: 51:c3:83:4b:4b:a3:da:7f:05:7e:f4:0d:32:96:21: d1:2c:58:ad:02:08:35:33:a3:9f:0e:3b:50:ff:78: 00:f2:09:c4:d7:89:9d:4b:98:04:a0:f6:c2:f8:22: 95:51:fc:cb:0c:ec:63:98:3b:76:a3:c7:b3:4d:d0: 51:50:cc:21:a9:df:30:be:73:04:0d:1c:0d:f4:49: 31:41:43:f6:dd:c2:a3:51:4e:6b:bc:c6:63:ce:c8: cc:3c:76:9d:cd:f4:ac:82:80:1b:4b:2c:75:ed:a1: 5c:0d:87:a5:a6:cb:4c:16:bc:35:4d:58:41:4e:26: f2:61:60:34:40:da:89:7f:d3:05:9e:cc:7c:20:a4: da:a8:0e:3a:70:62:f0:57:68:6e:9d:28:b4:2d:6c: 27:26:aa:4a:db:ef:70:08:f6:44:f4:d3:17:86:29: 6a:6f:fb:97:ae:6f:c9:23:86:cd:c6:15:87:24:d7: 76:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:8D:B9:75:B1:50:E6:52:5C:6B:FB:0F:83:3B:49:1E:75:F9:BF:7F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d2526c3a-77ad-4669-af27-f2171d468d2d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 63.246.116.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:21:09:cf:fb:ed:7a:13:f7:ae:ca:73:d7:81:7c:af:ed:fe: 2d:95:ef:8e:18:b1:47:19:f3:9e:3a:b7:f4:b3:c9:d6:4e:5d: 99:c6:67:f3:46:ff:da:bd:fb:63:c4:97:1d:37:e8:92:65:18: 76:4b:0c:00:31:a7:d8:e5:99:8a:2d:d1:a4:55:0e:4d:95:83: 89:9f:e3:b5:9b:95:6c:ed:6b:79:9d:54:5f:99:64:04:b3:b5: 20:6e:9d:51:36:94:26:2c:b6:cb:42:b2:a0:2b:d6:a7:4a:f8: 6f:34:12:5a:45:e9:0f:aa:fc:15:23:a8:70:ac:a2:bd:0f:85: 53:b3:3f:66:a0:11:f1:eb:c2:2c:fb:81:cb:a9:81:7a:b1:7f: 62:0a:78:fe:b2:88:02:09:23:83:0e:bd:07:69:60:54:08:b1: ff:96:26:24:15:ed:ef:26:bd:bf:b1:5a:f4:c0:70:34:a3:91: 08:e0:08:5a:11:3b:ce:04:7d:89:4b:03:7e:91:33:3e:ef:77: 4b:69:39:29:08:f2:0d:c3:5d:be:b8:8b:68:4c:60:9f:23:74: 62:07:e1:5c:ed:10:d7:21:0e:bc:c8:fb:85:83:2b:d1:cd:03: 49:4c:37:77:77:90:2c:82:0e:a4:f1:fc:ba:32:0e:43:cd:44: 38:14:01:bf -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMuh3lPhx7o+SFHes1RgzzwMKSPUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTAyMDAyMTQwWhcNMjUxMDA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiM2YwNzU5MWM0N2Q2MDQ4NjI0MWM0MjZlMDg5YWJmMDlm MTczMjQwZjNkMTkyODhhMjA1NmQ4Y2E4N2EyNjNiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+Ym03dpqjifwASiJG+IUvFVPhAl4wk2u6mjyG+US5zx6G L82PdqFwfg2WOAfXXcKK1G6BysRV1DHcmv2sydihmWTplwBrIj0FXFHDg0tLo9p/ BX70DTKWIdEsWK0CCDUzo58OO1D/eADyCcTXiZ1LmASg9sL4IpVR/MsM7GOYO3aj x7NN0FFQzCGp3zC+cwQNHA30STFBQ/bdwqNRTmu8xmPOyMw8dp3N9KyCgBtLLHXt oVwNh6Wmy0wWvDVNWEFOJvJhYDRA2ol/0wWezHwgpNqoDjpwYvBXaG6dKLQtbCcm qkrb73AI9kT00xeGKWpv+5eub8kjhs3GFYck13YZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUeY25dbFQ5lJca/sPgztJHnX5v38wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QyNTI2YzNhLTc3YWQtNDY2OS1hZjI3LWYyMTcxZDQ2OGQyZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA/9nQwDQYJKoZIhvcNAQELBQADggEBAC4hCc/77XoT967Kc9eBfK/t/i2V 744YsUcZ8546t/SzydZOXZnGZ/NG/9q9+2PElx036JJlGHZLDAAxp9jlmYot0aRV Dk2Vg4mf47WblWzta3mdVF+ZZASztSBunVE2lCYststCsqAr1qdK+G80ElpF6Q+q /BUjqHCsor0PhVOzP2agEfHrwiz7gcupgXqxf2IKeP6yiAIJI4MOvQdpYFQIsf+W JiQV7e8mvb+xWvTAcDSjkQjgCFoRO84EfYlLA36RMz7vd0tpOSkI8g3DXb64i2hM YJ8jdGIH4VztENchDrzI+4WDK9HNA0lMN3d3kCyCDqTx/LoyDkPNRDgUAb8= -----END CERTIFICATE-----Generated at Sat Sep 6 14:14:02 2025 by rpki-client