$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ec2a25c7-03d3-41ca-9778-621ae3af6930.roa File: ec2a25c7-03d3-41ca-9778-621ae3af6930.roa (raw, json) Hash identifier: fMIkOt99euDpn93X/n80JMVX7t2B4C7dhFJB07iqhng= Subject key identifier: D7:82:62:EE:1C:B5:1A:58:43:D7:4C:DF:9D:A4:D4:58:11:0D:09:B0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 56551AFD493DC31C7B7AE65CA546728482BD9206 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ec2a25c7-03d3-41ca-9778-621ae3af6930.roa Signing time: Fri 05 Sep 2025 00:21:05 +0000 ROA not before: Fri 05 Sep 2025 00:21:05 +0000 ROA not after: Fri 10 Oct 2025 23:59:59 +0000 asID: 6167 IP address blocks: 162.208.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 19 Sep 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:55:1a:fd:49:3d:c3:1c:7b:7a:e6:5c:a5:46:72:84:82:bd:92:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 5 00:21:05 2025 GMT Not After : Oct 10 23:59:59 2025 GMT Subject: serialNumber=93ad3d113db0fd1df94341ff9ca964bffce1f8eb42b567c74a34698916cd24cc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:35:ea:30:77:36:fe:a5:cb:29:e4:55:4f:d2: 18:91:9d:63:b7:6f:5b:0e:d8:74:48:7a:2b:cf:43: 53:19:78:a7:f4:4e:49:d7:3f:97:a3:5f:4c:f1:a8: 24:6b:45:92:94:23:68:9f:1c:d5:f2:cc:93:e5:50: 86:2d:f5:5f:77:80:10:a8:ed:0b:8f:f3:a3:9e:0e: 4c:4e:fc:da:4f:ca:94:3f:c6:52:a9:1f:40:66:d7: ba:d6:c8:ef:00:e3:67:e1:bd:29:89:91:25:fa:ad: 80:5a:2d:92:60:36:5a:d6:a0:66:a6:dc:25:3d:a6: 5c:aa:f7:10:69:09:3f:e3:17:00:2b:1b:42:6b:eb: 97:f2:3a:59:1f:de:84:3a:a6:09:46:dd:26:26:35: f6:2d:80:9b:92:c4:f8:65:1f:8e:0d:0c:c8:0d:bd: c2:bc:5d:c9:8a:79:47:a0:98:15:3b:07:2e:d7:70: c9:5b:09:48:9a:97:43:db:6d:81:45:ed:a0:ff:ff: 1f:3d:10:95:07:8b:eb:a6:2b:c3:4c:8e:af:37:13: 4e:43:a4:64:7a:63:31:aa:45:49:9e:b6:43:23:26: e9:17:d8:3e:08:99:52:60:f6:29:6a:34:07:23:8d: 34:c6:8c:b6:a4:36:d3:5b:86:30:da:ef:56:22:3d: 64:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:82:62:EE:1C:B5:1A:58:43:D7:4C:DF:9D:A4:D4:58:11:0D:09:B0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ec2a25c7-03d3-41ca-9778-621ae3af6930.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 162.208.123.0/24 Signature Algorithm: sha256WithRSAEncryption 16:c0:36:ca:11:e5:85:f8:12:ba:4e:e0:b6:23:70:2d:a1:03: b3:1a:b3:ac:76:c9:86:03:23:08:65:4f:e1:ea:00:c6:9d:7e: 73:c5:20:d0:2d:57:1c:17:0c:f7:fb:e6:da:28:02:7b:eb:fd: b9:d0:99:18:6d:ab:59:f3:52:fb:6a:7f:98:1c:6e:ed:46:a7: b1:cc:0d:65:66:f6:c8:d7:65:9a:a1:a1:91:69:89:94:b5:80: c4:ce:60:44:94:98:61:d6:c3:d0:7b:34:a3:57:1c:ea:97:61: a2:07:28:68:a9:1c:b7:de:86:41:5e:f3:25:ff:f0:e5:1e:06: 1c:48:e3:2c:f2:16:78:80:8f:7f:2f:d3:c5:1a:f9:d9:bf:59: 8f:73:87:19:c2:cb:08:65:ac:b7:b8:bd:31:e0:28:00:37:ca: 92:8a:72:df:d1:11:f1:e4:ab:4e:be:35:94:3d:37:c9:5f:ac: 2b:17:ef:36:58:e5:9c:22:ab:46:ba:bd:aa:68:d4:8e:15:c8: 27:28:d3:84:95:fe:b1:58:bc:8b:c9:6e:a4:89:92:10:bf:99: 7b:b9:68:9d:a5:82:49:8b:1a:7c:3f:7a:00:50:87:bc:1b:71: 30:a7:8a:02:f4:87:94:5a:53:f4:ac:b3:50:1c:59:4e:d0:20: 01:80:cc:24 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVlUa/Uk9wxx7euZcpUZyhIK9kgYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA1MDAyMTA1WhcNMjUxMDEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5M2FkM2QxMTNkYjBmZDFkZjk0MzQxZmY5Y2E5NjRiZmZj ZTFmOGViNDJiNTY3Yzc0YTM0Njk4OTE2Y2QyNGNjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCcNeowdzb+pcsp5FVP0hiRnWO3b1sO2HRIeivPQ1MZeKf0 TknXP5ejX0zxqCRrRZKUI2ifHNXyzJPlUIYt9V93gBCo7QuP86OeDkxO/NpPypQ/ xlKpH0Bm17rWyO8A42fhvSmJkSX6rYBaLZJgNlrWoGam3CU9plyq9xBpCT/jFwAr G0Jr65fyOlkf3oQ6pglG3SYmNfYtgJuSxPhlH44NDMgNvcK8XcmKeUegmBU7By7X cMlbCUial0PbbYFF7aD//x89EJUHi+umK8NMjq83E05DpGR6YzGqRUmetkMjJukX 2D4ImVJg9ilqNAcjjTTGjLakNtNbhjDa71YiPWQRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU14Ji7hy1GlhD10zfnaTUWBENCbAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VjMmEyNWM3LTAzZDMtNDFjYS05Nzc4LTYyMWFlM2FmNjkzMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACi0HswDQYJKoZIhvcNAQELBQADggEBABbANsoR5YX4ErpO4LYjcC2hA7Ma s6x2yYYDIwhlT+HqAMadfnPFINAtVxwXDPf75tooAnvr/bnQmRhtq1nzUvtqf5gc bu1Gp7HMDWVm9sjXZZqhoZFpiZS1gMTOYESUmGHWw9B7NKNXHOqXYaIHKGipHLfe hkFe8yX/8OUeBhxI4yzyFniAj38v08Ua+dm/WY9zhxnCywhlrLe4vTHgKAA3ypKK ct/REfHkq06+NZQ9N8lfrCsX7zZY5Zwiq0a6vapo1I4VyCco04SV/rFYvIvJbqSJ khC/mXu5aJ2lgkmLGnw/egBQh7wbcTCnigL0h5RaU/Sss1AcWU7QIAGAzCQ= -----END CERTIFICATE-----Generated at Wed Sep 17 17:57:07 2025 by rpki-client