$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2535cc4c-9ce6-4b14-afe6-357ae8cab4c5.roa File: 2535cc4c-9ce6-4b14-afe6-357ae8cab4c5.roa (raw, json) Hash identifier: QQK4PAnn/QXb5/Gt/l2H/9ZbtiAwI1TkLxwTg/NWh8A= Subject key identifier: 69:2F:7A:64:B3:88:9C:B1:25:6C:47:F9:D8:86:22:FC:A9:47:0D:E5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6C910CF0B9CB8FB82422C506C1F1DCD5814B3596 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2535cc4c-9ce6-4b14-afe6-357ae8cab4c5.roa Signing time: Fri 08 Aug 2025 00:10:17 +0000 ROA not before: Fri 08 Aug 2025 00:10:17 +0000 ROA not after: Fri 12 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.24.240.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:91:0c:f0:b9:cb:8f:b8:24:22:c5:06:c1:f1:dc:d5:81:4b:35:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 8 00:10:17 2025 GMT Not After : Sep 12 23:59:59 2025 GMT Subject: serialNumber=626cb386d3b4c11570414ab9e03ef1fa576cc35cfa836e3d867e07ce98c5461e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:4a:ca:56:1c:b9:13:bb:74:d5:fc:bf:8c:83: c7:75:68:1f:4f:26:f7:2d:ca:cd:80:d2:49:7d:82: 27:0d:f9:e7:71:29:79:13:e2:c5:45:f1:67:fa:2b: 39:98:bc:5a:ed:8f:13:7c:fc:b8:03:19:d4:ff:69: 2b:df:5b:b3:29:f7:86:2c:b1:92:52:a4:aa:13:53: 95:c4:9e:18:51:fd:75:0a:69:9b:85:29:2c:90:5c: 57:40:2d:ae:e5:b1:65:44:f2:9f:8a:cc:67:46:e4: 3d:fb:8d:dd:b1:07:b5:bf:31:32:04:7a:b2:75:d2: f6:a1:3d:55:62:8c:3d:b1:62:a6:54:2e:b6:36:da: 8e:20:9b:7d:78:b8:99:07:6e:4c:c6:e0:83:1b:86: 8e:6f:68:66:03:14:e3:34:0a:7d:25:8f:35:fa:a5: 62:19:d0:a6:86:0f:57:25:90:b7:90:c1:20:5e:07: 54:20:bb:59:29:0f:68:c5:a8:9f:8a:45:f0:c5:94: d5:34:b5:09:d6:e3:81:5d:4c:53:35:fc:0c:25:19: 2a:ec:13:1f:22:55:34:b2:3e:c9:6c:a8:6a:24:96: dd:47:48:68:40:14:5e:ab:4f:9f:b1:e7:aa:6c:5a: e6:9a:5f:e2:12:90:c3:2b:6a:27:de:4d:d4:72:52: 31:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:2F:7A:64:B3:88:9C:B1:25:6C:47:F9:D8:86:22:FC:A9:47:0D:E5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2535cc4c-9ce6-4b14-afe6-357ae8cab4c5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.24.240.0/20 Signature Algorithm: sha256WithRSAEncryption 86:24:ac:57:68:d6:d9:12:e7:c1:6f:15:09:06:56:bb:71:cd: c3:90:51:f3:51:e3:e1:98:dd:8c:e8:f2:ad:f7:7e:a6:34:8a: b4:d9:9d:d8:68:85:04:fd:76:b4:ee:97:90:54:94:d7:57:aa: d3:d2:8a:46:86:e6:1a:20:67:a1:33:2e:de:3e:33:fa:d2:5a: 9c:cd:5e:4d:35:37:8b:69:4b:0c:49:d0:aa:b7:fe:c0:41:f4: 37:36:b9:8b:f9:50:c6:17:d2:b8:73:a2:c6:f6:0f:4a:c4:37: 7b:78:d5:27:8a:a1:a8:01:05:49:a5:c4:a6:fb:11:a2:f7:18: c2:ab:62:be:85:20:6f:1b:e3:c3:94:c2:e5:46:49:cb:f0:2a: 03:76:de:c6:78:77:fb:cf:46:b9:b4:d3:cd:e9:03:e1:e3:58: 5d:b5:19:a1:e3:0e:e7:e5:63:4c:c4:3c:73:e9:26:8f:23:9e: bf:eb:dd:58:92:d9:96:10:ee:db:e2:30:7f:b1:53:c2:94:5f: d0:ab:b5:87:99:2f:93:ad:34:b1:82:7d:0d:7e:13:ed:f7:07: da:b4:7f:1e:30:13:35:8a:48:9c:0a:2c:3f:45:87:fc:e8:47: 26:f8:85:ba:ec:2e:90:c7:af:2e:dd:7e:a5:51:b8:a7:49:46: e2:6f:d1:60 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbJEM8LnLj7gkIsUGwfHc1YFLNZYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA4MDAxMDE3WhcNMjUwOTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A2MjZjYjM4NmQzYjRjMTE1NzA0MTRhYjllMDNlZjFmYTU3 NmNjMzVjZmE4MzZlM2Q4NjdlMDdjZTk4YzU0NjFlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpSspWHLkTu3TV/L+Mg8d1aB9PJvctys2A0kl9gicN+edx KXkT4sVF8Wf6KzmYvFrtjxN8/LgDGdT/aSvfW7Mp94YssZJSpKoTU5XEnhhR/XUK aZuFKSyQXFdALa7lsWVE8p+KzGdG5D37jd2xB7W/MTIEerJ10vahPVVijD2xYqZU LrY22o4gm314uJkHbkzG4IMbho5vaGYDFOM0Cn0ljzX6pWIZ0KaGD1clkLeQwSBe B1Qgu1kpD2jFqJ+KRfDFlNU0tQnW44FdTFM1/AwlGSrsEx8iVTSyPslsqGoklt1H SGhAFF6rT5+x56psWuaaX+ISkMMraifeTdRyUjGbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUaS96ZLOInLElbEf52IYi/KlHDeUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI1MzVjYzRjLTljZTYtNGIxNC1hZmU2LTM1N2FlOGNhYjRjNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATYGPAwDQYJKoZIhvcNAQELBQADggEBAIYkrFdo1tkS58FvFQkGVrtxzcOQ UfNR4+GY3Yzo8q33fqY0irTZndhohQT9drTul5BUlNdXqtPSikaG5hogZ6EzLt4+ M/rSWpzNXk01N4tpSwxJ0Kq3/sBB9Dc2uYv5UMYX0rhzosb2D0rEN3t41SeKoagB BUmlxKb7EaL3GMKrYr6FIG8b48OUwuVGScvwKgN23sZ4d/vPRrm0083pA+HjWF21 GaHjDuflY0zEPHPpJo8jnr/r3ViS2ZYQ7tviMH+xU8KUX9CrtYeZL5OtNLGCfQ1+ E+33B9q0fx4wEzWKSJwKLD9Fh/zoRyb4hbrsLpDHry7dfqVRuKdJRuJv0WA= -----END CERTIFICATE-----Generated at Sat Aug 23 06:52:40 2025 by rpki-client