$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2d5489ec-d0c6-48d6-b722-33c5cbd24da1.roa File: 2d5489ec-d0c6-48d6-b722-33c5cbd24da1.roa (raw, json) Hash identifier: 26Y7JwCLjc6TlTtvQyBMO4CdfW80KnO4LvrFzqrD1+c= Subject key identifier: D2:EF:E1:0E:DD:32:CD:D5:2F:FA:30:9F:A6:B7:2E:23:27:D4:BB:63 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6B70AE27FF54932781528028572131FDB3919124 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2d5489ec-d0c6-48d6-b722-33c5cbd24da1.roa Signing time: Sat 16 Aug 2025 00:31:35 +0000 ROA not before: Sat 16 Aug 2025 00:31:35 +0000 ROA not after: Sat 20 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 44.192.0.0/11 maxlen: 11 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:70:ae:27:ff:54:93:27:81:52:80:28:57:21:31:fd:b3:91:91:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 16 00:31:35 2025 GMT Not After : Sep 20 23:59:59 2025 GMT Subject: serialNumber=c62e563ed6e882ed4eb94c8ef402f76db69f60c1bd657245c2143a3d045270f7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:77:be:05:54:2c:1d:fa:39:29:3f:7b:cc:e2: e3:bd:88:ac:e4:34:b8:30:19:db:46:85:c9:55:92: 02:6b:66:fc:6a:2e:09:06:a9:36:0e:06:b8:97:ed: aa:7b:33:7f:e6:5e:ef:c9:ea:d8:5d:a5:7b:76:37: e3:52:b7:33:da:5e:2b:48:16:6f:26:9d:ba:9c:c6: ef:cb:7c:ec:79:ea:db:83:89:03:44:53:02:62:bf: e0:e8:a9:6f:8b:a3:6d:ee:bb:80:a2:26:86:df:96: 19:7f:53:7f:b7:68:b1:41:4a:af:a7:7d:88:ef:0c: e3:9a:84:d1:dd:99:67:51:fa:be:94:84:d1:4b:70: 8d:c2:5a:61:e9:27:08:a9:97:dc:26:dd:e4:82:4f: c0:0b:0c:fd:bd:c1:f8:2c:dd:54:af:83:78:5b:72: 0b:5a:a7:29:25:cb:e9:aa:60:80:9b:ab:d8:2d:bc: 05:22:43:b7:6d:a7:03:92:d0:70:bb:06:2b:f6:80: b2:da:2f:50:a5:f3:b6:81:29:5f:ce:79:e4:fe:89: 29:31:e6:a6:4c:3b:7f:e9:80:2c:37:41:3c:b9:7c: ef:8f:c1:3a:31:3f:fa:8b:c7:cc:19:f8:a8:a1:b5: 9b:57:74:50:ed:56:18:0c:e8:7e:ed:07:1a:37:86: ce:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:EF:E1:0E:DD:32:CD:D5:2F:FA:30:9F:A6:B7:2E:23:27:D4:BB:63 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2d5489ec-d0c6-48d6-b722-33c5cbd24da1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 44.192.0.0/11 Signature Algorithm: sha256WithRSAEncryption 34:10:d9:b6:6f:03:b5:db:5f:1b:b5:b8:88:24:ff:f4:60:cb: 3f:eb:66:4f:ee:31:31:a2:0e:fc:2c:6b:99:7f:c9:72:1c:7b: 12:94:a6:75:56:be:cb:3e:67:f5:32:18:ed:ae:64:3c:18:8e: fb:af:68:8d:25:7c:36:6f:3c:cc:e0:83:2d:f3:51:8d:57:e6: 9e:cc:1e:1b:2e:da:97:e0:fc:e4:c1:1f:1c:1b:31:e3:1d:7d: 39:e0:c8:ce:39:4f:d5:71:c9:81:bb:56:a3:28:29:21:a8:94: bd:27:e4:45:75:d4:b4:df:c8:6a:c4:b3:37:1d:9d:b9:31:27: 41:91:4b:b9:b5:30:53:a7:a4:05:eb:a7:5e:63:66:50:30:08: 6e:89:50:be:96:08:7a:4f:3d:ca:9e:59:5c:37:c8:8c:f0:78: e0:dc:1c:9a:a1:99:e9:3e:45:3e:0e:68:41:c8:c3:fc:0c:14: f2:11:86:24:4f:a1:a1:34:27:1f:66:55:84:dd:8c:7c:ea:a2: e6:bf:08:a2:50:5e:ee:5d:1d:7c:b7:ed:d6:66:a3:d7:40:16: 25:26:fc:25:ad:e2:e6:0b:30:d6:67:48:00:9c:43:db:25:19: 2e:3b:2f:8d:cc:54:99:5d:4d:35:8f:92:69:97:33:4a:62:a0: 2f:96:5a:ef -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUa3CuJ/9UkyeBUoAoVyEx/bORkSQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE2MDAzMTM1WhcNMjUwOTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BjNjJlNTYzZWQ2ZTg4MmVkNGViOTRjOGVmNDAyZjc2ZGI2 OWY2MGMxYmQ2NTcyNDVjMjE0M2EzZDA0NTI3MGY3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCud74FVCwd+jkpP3vM4uO9iKzkNLgwGdtGhclVkgJrZvxq LgkGqTYOBriX7ap7M3/mXu/J6thdpXt2N+NStzPaXitIFm8mnbqcxu/LfOx56tuD iQNEUwJiv+DoqW+Lo23uu4CiJobflhl/U3+3aLFBSq+nfYjvDOOahNHdmWdR+r6U hNFLcI3CWmHpJwipl9wm3eSCT8ALDP29wfgs3VSvg3hbcgtapykly+mqYICbq9gt vAUiQ7dtpwOS0HC7Biv2gLLaL1Cl87aBKV/OeeT+iSkx5qZMO3/pgCw3QTy5fO+P wToxP/qLx8wZ+KihtZtXdFDtVhgM6H7tBxo3hs7NAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU0u/hDt0yzdUv+jCfprcuIyfUu2MwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJkNTQ4OWVjLWQwYzYtNDhkNi1iNzIyLTMzYzVjYmQyNGRhMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwUswDANBgkqhkiG9w0BAQsFAAOCAQEANBDZtm8DtdtfG7W4iCT/9GDLP+tm T+4xMaIO/CxrmX/Jchx7EpSmdVa+yz5n9TIY7a5kPBiO+69ojSV8Nm88zOCDLfNR jVfmnsweGy7al+D85MEfHBsx4x19OeDIzjlP1XHJgbtWoygpIaiUvSfkRXXUtN/I asSzNx2duTEnQZFLubUwU6ekBeunXmNmUDAIbolQvpYIek89yp5ZXDfIjPB44Nwc mqGZ6T5FPg5oQcjD/AwU8hGGJE+hoTQnH2ZVhN2MfOqi5r8IolBe7l0dfLft1maj 10AWJSb8Ja3i5gsw1mdIAJxD2yUZLjsvjcxUmV1NNY+SaZczSmKgL5Za7w== -----END CERTIFICATE-----Generated at Sat Aug 23 06:50:48 2025 by rpki-client