$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e261c24b-13a0-4019-b3b3-0562e86aea2f.roa File: e261c24b-13a0-4019-b3b3-0562e86aea2f.roa (raw, json) Hash identifier: TjynXHb8JedVl0asogTEE17jnfs2JbTKQI8vIs+ot3U= Subject key identifier: 8E:AE:2B:16:1C:42:44:6B:5B:CD:CE:F7:A2:E0:5C:2D:37:CA:EA:B5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 11EE76AFA2A630D1C1C1180DCE39690E27974193 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e261c24b-13a0-4019-b3b3-0562e86aea2f.roa Signing time: Tue 02 Sep 2025 00:21:46 +0000 ROA not before: Tue 02 Sep 2025 00:21:46 +0000 ROA not after: Tue 07 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 68.223.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Sep 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:ee:76:af:a2:a6:30:d1:c1:c1:18:0d:ce:39:69:0e:27:97:41:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 2 00:21:46 2025 GMT Not After : Oct 7 23:59:59 2025 GMT Subject: serialNumber=8f0bb7ee7f68c267e7a41032d3ad3528275132974e1e02cae63409cc2a016ddc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:af:f2:46:22:5c:f6:21:06:8a:7c:9b:66:ee: 49:58:2c:02:6f:b7:85:58:22:78:4b:6f:8c:cd:28: 6d:4a:f4:59:3a:c5:2f:d8:98:e6:f0:80:5d:fc:6d: 64:89:f9:58:bd:95:94:e3:26:39:5a:a7:42:cc:40: 6f:e0:aa:61:e1:05:18:48:42:1e:f0:7f:3e:6d:5e: ed:49:54:4d:de:d3:c0:0e:66:fb:d1:5b:0f:84:27: e8:03:1e:f7:4c:63:42:83:56:ee:9a:4c:01:55:a5: 8e:81:8e:45:67:a1:ec:a5:30:99:8e:f8:90:95:fc: 75:d9:cb:ab:5f:c9:22:60:4a:1a:29:31:9b:0a:4f: 24:6c:f1:2f:96:c4:03:15:7a:6e:d3:87:6d:63:35: 49:a7:fc:eb:7f:1c:15:63:44:6b:0b:37:ac:3b:62: 20:b7:af:c9:6f:e6:da:56:bf:d7:b8:19:d1:1c:24: 5f:cf:a9:a7:b9:bf:aa:dc:06:75:7a:00:89:bc:ab: ac:e1:c0:32:01:39:55:ef:71:c5:fe:9f:85:21:79: b0:60:ad:79:70:62:35:e7:9e:92:32:87:1a:93:eb: b3:27:a4:fb:54:05:52:2c:03:e0:a7:72:43:06:70: b3:30:d5:bc:27:45:60:00:a2:5b:10:ab:dc:4c:4b: 4d:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:AE:2B:16:1C:42:44:6B:5B:CD:CE:F7:A2:E0:5C:2D:37:CA:EA:B5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e261c24b-13a0-4019-b3b3-0562e86aea2f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 68.223.0.0/16 Signature Algorithm: sha256WithRSAEncryption 87:5e:e4:3c:d0:cd:f4:67:5c:9b:57:eb:b6:00:0b:26:8f:4b: a1:57:69:89:3c:ef:50:b7:9c:59:20:ca:e4:6e:1e:16:53:15: a1:40:d7:cd:00:5a:b9:df:a3:fc:dd:73:6d:70:67:b4:5b:1c: 0a:b7:bb:88:d3:19:42:af:7d:3e:bf:d6:26:ff:0e:76:a3:46: 5f:d0:14:51:02:f8:f0:85:bd:75:78:2e:6d:4b:1f:1e:6d:bb: 80:df:8a:69:77:b6:c7:a5:6a:d5:51:ac:12:80:cd:39:17:c5: 30:7b:50:fb:98:94:15:51:31:1b:82:fe:e0:1b:95:cd:92:3b: c5:7a:4d:51:94:9f:8b:1a:ce:5b:da:42:78:9c:67:34:e5:50: 3a:93:71:7a:06:50:11:8c:c5:61:06:db:03:84:8b:9f:6b:83: fa:f0:c5:b5:f3:08:d6:4d:99:11:67:5d:54:ad:c7:41:48:3f: ce:fd:06:e7:38:97:3d:b8:eb:f2:83:cf:f5:0e:52:a2:67:2e: fe:0f:df:84:73:ca:57:ac:d1:43:b9:d4:3f:b2:2d:4d:fe:4e: 19:09:07:44:2f:22:c5:a0:1e:ae:5b:56:e4:6a:7b:96:26:7d: 89:1f:81:c9:86:fe:a5:6b:6d:f0:33:b5:0e:b1:9a:3e:91:d8: e7:0c:b5:41 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUEe52r6KmMNHBwRgNzjlpDieXQZMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTAyMDAyMTQ2WhcNMjUxMDA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZjBiYjdlZTdmNjhjMjY3ZTdhNDEwMzJkM2FkMzUyODI3 NTEzMjk3NGUxZTAyY2FlNjM0MDljYzJhMDE2ZGRjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/r/JGIlz2IQaKfJtm7klYLAJvt4VYInhLb4zNKG1K9Fk6 xS/YmObwgF38bWSJ+Vi9lZTjJjlap0LMQG/gqmHhBRhIQh7wfz5tXu1JVE3e08AO ZvvRWw+EJ+gDHvdMY0KDVu6aTAFVpY6BjkVnoeylMJmO+JCV/HXZy6tfySJgShop MZsKTyRs8S+WxAMVem7Th21jNUmn/Ot/HBVjRGsLN6w7YiC3r8lv5tpWv9e4GdEc JF/Pqae5v6rcBnV6AIm8q6zhwDIBOVXvccX+n4UhebBgrXlwYjXnnpIyhxqT67Mn pPtUBVIsA+CnckMGcLMw1bwnRWAAolsQq9xMS00rAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUjq4rFhxCRGtbzc73ouBcLTfK6rUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2UyNjFjMjRiLTEzYTAtNDAxOS1iM2IzLTA1NjJlODZhZWEyZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBE3zANBgkqhkiG9w0BAQsFAAOCAQEAh17kPNDN9Gdcm1frtgALJo9LoVdp iTzvULecWSDK5G4eFlMVoUDXzQBaud+j/N1zbXBntFscCre7iNMZQq99Pr/WJv8O dqNGX9AUUQL48IW9dXgubUsfHm27gN+KaXe2x6Vq1VGsEoDNORfFMHtQ+5iUFVEx G4L+4BuVzZI7xXpNUZSfixrOW9pCeJxnNOVQOpNxegZQEYzFYQbbA4SLn2uD+vDF tfMI1k2ZEWddVK3HQUg/zv0G5ziXPbjr8oPP9Q5Somcu/g/fhHPKV6zRQ7nUP7It Tf5OGQkHRC8ixaAerltW5Gp7liZ9iR+ByYb+pWtt8DO1DrGaPpHY5wy1QQ== -----END CERTIFICATE-----Generated at Sat Sep 6 16:54:34 2025 by rpki-client