$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/24fc63bc-3295-48be-b7b8-25e6b313cd42.roa File: 24fc63bc-3295-48be-b7b8-25e6b313cd42.roa (raw, json) Hash identifier: CDuTr27pu4CNeb+HIIDD0JYTIcnBT5AfSz0mD4iHuDU= Subject key identifier: 4E:20:1A:F2:0D:A5:3C:42:E3:F6:D5:01:7A:AB:A4:DE:76:98:5E:6B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4085B26DFC657C5C91EC9772D3400D5C6E1668DC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/24fc63bc-3295-48be-b7b8-25e6b313cd42.roa Signing time: Mon 18 Aug 2025 15:50:24 +0000 ROA not before: Mon 18 Aug 2025 15:50:24 +0000 ROA not after: Mon 22 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.227.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:85:b2:6d:fc:65:7c:5c:91:ec:97:72:d3:40:0d:5c:6e:16:68:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 18 15:50:24 2025 GMT Not After : Sep 22 23:59:59 2025 GMT Subject: serialNumber=460e5031a0ebd6dcfb71c0d53719a1ae391e78e8b93d8b557e0361e310b42706, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:85:1b:47:53:60:3d:02:a0:bd:2e:02:1b:e2: 04:dc:03:f9:f6:08:a8:f0:41:6d:49:3c:75:e5:d3: a9:55:07:a6:83:2a:04:6c:ea:d7:fe:72:40:a3:43: 31:c7:bd:57:38:0f:9f:b3:9f:49:7f:23:74:06:0c: b3:99:cc:fa:b0:2e:a7:52:2a:07:1a:c7:f3:de:9f: ae:4b:3a:c8:27:d7:55:8a:0f:81:bb:1c:92:37:6d: 92:07:a6:19:0d:8b:b8:bc:55:9a:69:cc:ef:df:00: f8:13:19:c9:c7:fd:dd:1f:e1:29:78:50:63:26:c3: b3:74:44:c6:31:47:c4:40:34:2e:26:63:56:52:62: 51:cd:c1:7f:a8:27:86:52:fd:78:83:8d:9a:53:9b: 46:83:1e:83:e9:55:f3:a6:4a:59:e5:09:2f:41:b7: 7c:22:8b:72:f5:fe:0a:e2:2a:56:98:24:18:61:de: ac:cf:4e:fc:8e:89:eb:13:e4:ca:82:b8:ac:87:c2: 29:a0:83:b2:c0:4b:86:1a:ca:84:cf:1a:bc:8f:5f: 30:37:5c:a2:63:ef:27:1f:d4:fe:ac:0e:d2:4f:95: d5:99:26:da:53:80:45:c3:1b:ff:ee:e3:b2:d0:d9: 77:ed:a6:fb:e7:aa:13:08:02:9d:ae:f2:bf:83:39: 97:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:20:1A:F2:0D:A5:3C:42:E3:F6:D5:01:7A:AB:A4:DE:76:98:5E:6B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/24fc63bc-3295-48be-b7b8-25e6b313cd42.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.227.0.0/16 Signature Algorithm: sha256WithRSAEncryption b9:9a:f7:fb:c1:a5:a4:18:cd:c0:b4:ed:af:b9:92:58:a4:63: ac:78:96:50:40:ce:98:f0:c9:f5:30:d2:8d:5d:c2:74:e7:bb: 90:aa:26:eb:6e:e3:ed:88:0e:f9:39:e6:cc:70:57:87:a7:1b: 7a:d4:f4:48:cc:aa:99:fd:d2:30:20:e5:bd:25:22:33:3f:62: 9d:ac:b1:f5:81:25:f2:2c:0d:d0:30:15:ed:e0:f1:37:d3:98: 7d:13:23:6d:1c:67:e6:8d:8b:7b:15:fb:73:47:f7:2f:6d:d1: 2f:19:7b:75:f9:e0:b7:eb:d7:7c:68:2f:cf:ed:e0:ee:b8:b7: 4b:b3:2e:2a:a2:4e:40:80:3e:8a:c2:62:33:50:86:41:2b:6c: a6:38:5a:db:ac:83:ec:03:37:7d:b7:e7:77:8d:70:22:c4:6d: 1d:2d:06:f2:15:55:8d:2a:62:2e:2f:06:42:f6:37:09:4d:df: 9b:6e:68:78:5b:02:ce:21:3f:5d:7d:5b:ee:8e:31:6a:30:c0: 44:30:1c:12:dd:59:4f:cb:a1:91:e1:2c:fa:c4:81:5b:bc:0a: c8:61:b4:9b:53:8c:15:6e:fb:01:39:8b:e9:53:e4:f4:30:2a: ba:94:2b:81:05:7a:26:cc:93:47:18:0f:37:86:47:68:5c:f5: 4a:49:e1:61 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUQIWybfxlfFyR7Jdy00ANXG4WaNwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE4MTU1MDI0WhcNMjUwOTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A0NjBlNTAzMWEwZWJkNmRjZmI3MWMwZDUzNzE5YTFhZTM5 MWU3OGU4YjkzZDhiNTU3ZTAzNjFlMzEwYjQyNzA2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCXhRtHU2A9AqC9LgIb4gTcA/n2CKjwQW1JPHXl06lVB6aD KgRs6tf+ckCjQzHHvVc4D5+zn0l/I3QGDLOZzPqwLqdSKgcax/Pen65LOsgn11WK D4G7HJI3bZIHphkNi7i8VZppzO/fAPgTGcnH/d0f4Sl4UGMmw7N0RMYxR8RANC4m Y1ZSYlHNwX+oJ4ZS/XiDjZpTm0aDHoPpVfOmSlnlCS9Bt3wii3L1/griKlaYJBhh 3qzPTvyOiesT5MqCuKyHwimgg7LAS4YayoTPGryPXzA3XKJj7ycf1P6sDtJPldWZ JtpTgEXDG//u47LQ2XftpvvnqhMIAp2u8r+DOZeVAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUTiAa8g2lPELj9tUBequk3naYXmswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI0ZmM2M2JjLTMyOTUtNDhiZS1iN2I4LTI1ZTZiMzEzY2Q0Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA44zANBgkqhkiG9w0BAQsFAAOCAQEAuZr3+8GlpBjNwLTtr7mSWKRjrHiW UEDOmPDJ9TDSjV3CdOe7kKom627j7YgO+TnmzHBXh6cbetT0SMyqmf3SMCDlvSUi Mz9inayx9YEl8iwN0DAV7eDxN9OYfRMjbRxn5o2LexX7c0f3L23RLxl7dfngt+vX fGgvz+3g7ri3S7MuKqJOQIA+isJiM1CGQStspjha26yD7AM3fbfnd41wIsRtHS0G 8hVVjSpiLi8GQvY3CU3fm25oeFsCziE/XX1b7o4xajDARDAcEt1ZT8uhkeEs+sSB W7wKyGG0m1OMFW77ATmL6VPk9DAqupQrgQV6JsyTRxgPN4ZHaFz1SknhYQ== -----END CERTIFICATE-----Generated at Sat Aug 23 06:55:07 2025 by rpki-client