$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f27b8e34-cd21-4d24-8eaa-49a01e2fa77c.roa File: f27b8e34-cd21-4d24-8eaa-49a01e2fa77c.roa (raw, json) Hash identifier: 9SewnARK9Q5Yyt3icZ5T+U5R0DmrUrQSv6xLcCAoMZQ= Subject key identifier: C7:4E:28:7E:20:03:0E:B0:E2:D0:CD:3B:97:6D:9C:F1:22:DA:95:EA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 73571565F421236A9EDE224F2A21FCA021F837D2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f27b8e34-cd21-4d24-8eaa-49a01e2fa77c.roa Signing time: Tue 12 Aug 2025 00:42:17 +0000 ROA not before: Tue 12 Aug 2025 00:42:17 +0000 ROA not after: Tue 16 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 64.252.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:57:15:65:f4:21:23:6a:9e:de:22:4f:2a:21:fc:a0:21:f8:37:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 12 00:42:17 2025 GMT Not After : Sep 16 23:59:59 2025 GMT Subject: serialNumber=57205b922b573925194e242b02334e7b9099e19fee5dc89bd711325e85b3d665, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:a0:a9:94:1a:a2:ce:fc:03:68:2f:42:b4:3b: bf:09:dd:f7:40:da:52:b5:3c:5c:48:dd:5e:14:e0: ff:14:d7:cd:db:f9:5e:7e:36:81:c9:59:32:5f:eb: 08:10:e2:83:01:2d:a9:90:94:25:6d:cb:7c:ba:0d: 51:82:d1:ee:48:51:dd:7c:49:89:14:b9:d7:57:d9: 17:ae:ae:64:f7:00:5c:7c:ed:2d:ad:0a:75:ae:ec: ee:a5:2c:ed:aa:21:b0:64:57:89:9c:12:71:4d:3c: 8c:48:f2:d6:02:a2:00:56:ff:8d:a8:fb:30:4e:6b: 83:9c:13:4e:df:3c:68:f8:02:32:50:2a:bc:8d:de: 2c:f8:5f:92:b0:4a:85:94:50:72:25:fa:80:68:cd: 34:84:d0:5e:8f:c2:d1:24:aa:58:25:ab:1f:4d:14: a8:3c:47:40:39:7e:4e:6c:40:79:ff:48:f2:34:fb: eb:ef:a3:db:c2:92:fd:d1:20:9e:b9:4e:e8:60:b0: 52:79:df:54:4c:3a:c9:08:9f:15:ed:ac:14:41:74: e4:f0:24:4a:40:a2:70:67:b6:c1:cb:d9:64:12:0a: ef:23:c4:5b:cc:b4:f1:f4:8d:d2:95:a3:1f:33:cf: 49:0d:07:ef:d1:3c:d7:bb:2e:f6:14:2b:c1:e6:ea: 50:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:4E:28:7E:20:03:0E:B0:E2:D0:CD:3B:97:6D:9C:F1:22:DA:95:EA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f27b8e34-cd21-4d24-8eaa-49a01e2fa77c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.114.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:b5:f6:0a:46:47:d5:73:ce:36:97:47:f5:f9:8a:48:45:11: 62:df:25:f4:01:d4:39:86:8b:6d:92:5c:5e:5d:49:8f:14:ef: 24:cc:aa:91:ca:e6:a2:55:2e:17:f5:17:12:89:c8:bc:2d:c2: 11:24:10:01:3c:22:90:eb:9c:f1:1f:13:d1:aa:70:f5:9a:08: 05:13:66:22:ac:bd:93:c9:85:82:f6:6b:26:be:08:db:95:99: 23:26:3e:3d:2e:f2:30:8d:4c:72:37:2a:1b:b2:07:00:cf:e9: 16:5c:02:d7:83:2f:38:e8:3b:3c:e4:49:47:52:9f:5e:1e:62: d0:e1:50:ce:cf:98:30:8d:6e:c2:bb:5b:83:71:56:b7:44:b2: 3b:ab:b0:8e:fd:b0:06:27:e8:5c:97:25:67:3f:a8:d7:d5:6a: d2:1d:4b:53:63:b0:e6:2a:c2:73:d4:0c:27:c7:80:37:da:a5: d7:9e:d9:21:8d:e7:71:a6:b0:55:37:ba:6c:7d:70:a3:fb:00: a2:fb:52:8a:df:60:66:c9:ad:81:27:43:e5:49:6c:8b:20:b8: ef:e4:c3:52:d4:42:ad:3c:b7:e0:aa:37:8a:0c:59:d4:3a:51: af:0e:a5:ef:4c:9f:cb:e6:d8:1d:d8:f1:81:33:a2:94:18:28: dc:76:a6:97 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUc1cVZfQhI2qe3iJPKiH8oCH4N9IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEyMDA0MjE3WhcNMjUwOTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NzIwNWI5MjJiNTczOTI1MTk0ZTI0MmIwMjMzNGU3Yjkw OTllMTlmZWU1ZGM4OWJkNzExMzI1ZTg1YjNkNjY1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDOoKmUGqLO/ANoL0K0O78J3fdA2lK1PFxI3V4U4P8U183b +V5+NoHJWTJf6wgQ4oMBLamQlCVty3y6DVGC0e5IUd18SYkUuddX2ReurmT3AFx8 7S2tCnWu7O6lLO2qIbBkV4mcEnFNPIxI8tYCogBW/42o+zBOa4OcE07fPGj4AjJQ KryN3iz4X5KwSoWUUHIl+oBozTSE0F6PwtEkqlglqx9NFKg8R0A5fk5sQHn/SPI0 ++vvo9vCkv3RIJ65TuhgsFJ531RMOskInxXtrBRBdOTwJEpAonBntsHL2WQSCu8j xFvMtPH0jdKVox8zz0kNB+/RPNe7LvYUK8Hm6lDnAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUx04ofiADDrDi0M07l22c8SLaleowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YyN2I4ZTM0LWNkMjEtNGQyNC04ZWFhLTQ5YTAxZTJmYTc3Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA/HIwDQYJKoZIhvcNAQELBQADggEBAHy19gpGR9VzzjaXR/X5ikhFEWLf JfQB1DmGi22SXF5dSY8U7yTMqpHK5qJVLhf1FxKJyLwtwhEkEAE8IpDrnPEfE9Gq cPWaCAUTZiKsvZPJhYL2aya+CNuVmSMmPj0u8jCNTHI3KhuyBwDP6RZcAteDLzjo OzzkSUdSn14eYtDhUM7PmDCNbsK7W4NxVrdEsjursI79sAYn6FyXJWc/qNfVatId S1NjsOYqwnPUDCfHgDfapdee2SGN53GmsFU3umx9cKP7AKL7UorfYGbJrYEnQ+VJ bIsguO/kw1LUQq08t+CqN4oMWdQ6Ua8Ope9Mn8vm2B3Y8YEzopQYKNx2ppc= -----END CERTIFICATE-----Generated at Wed Aug 20 10:50:06 2025 by rpki-client