$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21e27e6a-31da-41fe-92f4-ae61707162ed.roa File: 21e27e6a-31da-41fe-92f4-ae61707162ed.roa (raw, json) Hash identifier: L0mmKXXSypf9PbggLU0F89riOwK9h1wl+73g3Pwa5zI= Subject key identifier: E0:82:5B:A7:46:6C:98:FE:A7:68:75:ED:E4:90:13:3A:02:84:29:91 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4D74C6F2D9CCA6D0FC42FF320C512561DC683FBA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21e27e6a-31da-41fe-92f4-ae61707162ed.roa Signing time: Tue 12 Aug 2025 00:40:24 +0000 ROA not before: Tue 12 Aug 2025 00:40:24 +0000 ROA not after: Tue 16 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 68.215.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:74:c6:f2:d9:cc:a6:d0:fc:42:ff:32:0c:51:25:61:dc:68:3f:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 12 00:40:24 2025 GMT Not After : Sep 16 23:59:59 2025 GMT Subject: serialNumber=e572d9a0619e380e99f6f24acc14e27e30d79279a90a71a1fe584bdec6c84863, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:18:5e:d7:56:91:94:93:4c:fe:c8:aa:2c:95: 6d:06:c6:34:9a:f2:56:16:46:cd:26:70:1a:6e:76: 5e:b0:79:3f:7f:46:03:e2:92:e1:be:c7:99:0f:e7: fb:2e:19:8d:bd:bf:50:19:2c:1a:37:6a:e5:3f:ef: 3a:5f:2b:31:8a:c1:1c:06:fc:4c:ed:e5:23:4b:ea: 62:56:4b:a2:93:fd:14:ed:da:23:6f:7d:d0:f6:1e: 2d:6b:f0:bb:79:9d:7d:a5:5b:2e:f8:b0:6c:f4:10: 5c:e9:d9:88:c3:43:55:15:27:41:31:ec:c1:56:25: 4d:d5:c4:96:be:80:f0:6d:5d:b9:e0:fb:08:02:92: c4:45:21:25:79:72:32:48:a3:17:0a:2e:d2:42:f3: d1:f2:fd:cf:47:aa:2f:7f:77:2b:a0:b2:74:6b:1a: 98:a7:71:20:1a:26:28:2f:c1:a5:aa:20:c5:bd:4c: ea:63:60:d4:c4:2d:1e:4c:87:63:2e:2f:04:68:70: 91:72:35:c0:db:9e:3b:a7:1a:90:ef:b5:b8:b0:53: 68:9e:c4:c1:fb:01:be:9d:00:12:80:a7:53:8b:25: dd:5f:8d:3d:f5:57:75:f3:7e:fa:f7:40:a7:1f:cf: 37:b6:87:e5:e2:c6:7f:d7:e0:6c:16:d4:e2:4f:55: 83:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:82:5B:A7:46:6C:98:FE:A7:68:75:ED:E4:90:13:3A:02:84:29:91 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21e27e6a-31da-41fe-92f4-ae61707162ed.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 68.215.0.0/16 Signature Algorithm: sha256WithRSAEncryption 75:45:f0:49:b5:27:8a:1e:14:0d:f1:f6:a2:64:9c:48:9a:26: e1:19:d3:0a:9f:3a:a1:1a:47:cd:72:7a:83:b3:e0:b5:42:55: 05:64:e4:6f:a3:4d:a1:24:c3:c8:93:38:71:19:49:97:33:6b: 77:ae:90:88:43:33:9c:d6:ef:e2:a3:31:59:8d:62:51:b3:ca: 7d:3b:7d:51:6e:39:6c:6d:89:3f:d9:8d:3c:9b:f1:ca:73:4d: ef:42:7a:6a:c3:ac:05:eb:43:a9:0d:65:0d:77:22:89:7b:5c: 07:96:19:5e:28:97:e4:f5:ce:04:84:54:e3:44:0f:88:80:8a: 3c:83:74:9b:d0:73:13:02:25:aa:82:5a:a5:e2:66:70:17:d5: e7:01:52:5e:b2:15:a8:99:40:9e:e3:76:61:3d:39:bf:8c:8f: 71:a7:49:3a:16:14:c9:b0:ab:cd:2d:00:20:4c:59:70:8e:aa: 2f:d3:c2:7b:ee:d9:d9:bc:74:83:22:e3:ff:e9:94:f5:28:c8: 6f:ba:a1:1d:fe:54:3f:66:4a:36:e3:2e:79:43:1e:b7:e5:d4: c3:e9:a3:fb:17:e9:9a:8c:73:40:9b:33:32:89:f5:d0:40:bd: 4e:57:b5:7d:cf:db:23:9f:5f:4a:f0:03:a4:20:b3:14:c8:2a: e0:3c:7c:ae -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUTXTG8tnMptD8Qv8yDFElYdxoP7owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEyMDA0MDI0WhcNMjUwOTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNTcyZDlhMDYxOWUzODBlOTlmNmYyNGFjYzE0ZTI3ZTMw ZDc5Mjc5YTkwYTcxYTFmZTU4NGJkZWM2Yzg0ODYzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDSGF7XVpGUk0z+yKoslW0GxjSa8lYWRs0mcBpudl6weT9/ RgPikuG+x5kP5/suGY29v1AZLBo3auU/7zpfKzGKwRwG/Ezt5SNL6mJWS6KT/RTt 2iNvfdD2Hi1r8Lt5nX2lWy74sGz0EFzp2YjDQ1UVJ0Ex7MFWJU3VxJa+gPBtXbng +wgCksRFISV5cjJIoxcKLtJC89Hy/c9Hqi9/dyugsnRrGpincSAaJigvwaWqIMW9 TOpjYNTELR5Mh2MuLwRocJFyNcDbnjunGpDvtbiwU2iexMH7Ab6dABKAp1OLJd1f jT31V3Xzfvr3QKcfzze2h+Xixn/X4GwW1OJPVYNhAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU4IJbp0ZsmP6naHXt5JATOgKEKZEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIxZTI3ZTZhLTMxZGEtNDFmZS05MmY0LWFlNjE3MDcxNjJlZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBE1zANBgkqhkiG9w0BAQsFAAOCAQEAdUXwSbUnih4UDfH2omScSJom4RnT Cp86oRpHzXJ6g7PgtUJVBWTkb6NNoSTDyJM4cRlJlzNrd66QiEMznNbv4qMxWY1i UbPKfTt9UW45bG2JP9mNPJvxynNN70J6asOsBetDqQ1lDXciiXtcB5YZXiiX5PXO BIRU40QPiICKPIN0m9BzEwIlqoJapeJmcBfV5wFSXrIVqJlAnuN2YT05v4yPcadJ OhYUybCrzS0AIExZcI6qL9PCe+7Z2bx0gyLj/+mU9SjIb7qhHf5UP2ZKNuMueUMe t+XUw+mj+xfpmoxzQJszMon10EC9Tle1fc/bI59fSvADpCCzFMgq4Dx8rg== -----END CERTIFICATE-----Generated at Sat Aug 23 06:49:24 2025 by rpki-client