$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2edf8204-bf2c-49e4-b210-cc2b92b584ed.roa File: 2edf8204-bf2c-49e4-b210-cc2b92b584ed.roa (raw, json) Hash identifier: TPQaNW1W91HOU1/TR1eDjKTWuFEcC9RKzfrFpZZyW/o= Subject key identifier: 97:23:84:F6:FA:98:B6:0D:BF:6C:BA:48:A5:82:FC:65:CD:F5:CF:1F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7119000AFEB41909D20FBA55C9AAACDE495A09B9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2edf8204-bf2c-49e4-b210-cc2b92b584ed.roa Signing time: Fri 22 Aug 2025 00:30:37 +0000 ROA not before: Fri 22 Aug 2025 00:30:37 +0000 ROA not after: Fri 26 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 207.21.240.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:19:00:0a:fe:b4:19:09:d2:0f:ba:55:c9:aa:ac:de:49:5a:09:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 22 00:30:37 2025 GMT Not After : Sep 26 23:59:59 2025 GMT Subject: serialNumber=38a08c93b0f8dda3f14ca0d7fc5ad3516b285800022578d8a00e4b48ab936f04, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:06:0e:fe:02:7f:e0:6f:94:fb:06:83:c5:9e: 8b:ac:7f:84:db:cf:8a:27:7f:e2:91:06:f9:e1:6a: 39:1a:94:e3:b1:61:02:2c:f5:71:15:b9:2c:30:6c: c6:81:75:6d:e2:7d:0b:34:ff:0c:b8:e3:fa:c5:56: 81:bb:db:29:81:d3:99:dd:ab:6d:65:63:ec:7b:d7: 53:46:d5:4c:c3:79:21:e6:3a:fa:d7:a9:b6:cd:c7: 52:dc:2a:bf:71:2a:ef:69:5d:8c:52:b6:f5:93:10: 7e:3d:a0:fc:a3:de:70:1d:c0:61:3c:b1:7b:8c:54: 13:86:5e:69:c4:44:88:51:76:67:b8:77:0c:4c:4f: ba:dc:71:13:92:ad:e1:cd:9f:fb:82:37:9b:73:66: 3b:73:4a:fa:c6:cb:d7:4c:3b:48:54:38:3c:ca:5c: e6:db:f9:f0:ce:59:2f:0a:f5:20:db:46:24:98:d0: 35:98:99:78:b8:a8:88:0a:09:5f:c1:0c:36:6a:cb: 45:4b:5d:1d:30:59:da:c3:48:33:f4:28:ed:e3:4c: 8d:bd:03:b9:2f:51:24:1e:f8:34:7c:a6:85:93:14: 4b:e9:16:91:96:ab:50:89:30:35:b4:a2:ff:68:4a: 16:c4:48:a7:8b:c5:0f:5d:1e:ad:11:04:ee:a6:d0: cc:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:23:84:F6:FA:98:B6:0D:BF:6C:BA:48:A5:82:FC:65:CD:F5:CF:1F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2edf8204-bf2c-49e4-b210-cc2b92b584ed.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 207.21.240.0/22 Signature Algorithm: sha256WithRSAEncryption cd:c1:56:5c:9d:2a:ab:26:2d:52:91:07:28:09:0d:16:e5:ca: a8:99:9b:da:ba:e9:b0:2c:b6:31:70:15:25:fd:50:13:45:c0: b3:82:f0:de:dc:66:59:ae:0c:3c:62:94:6e:5c:36:62:66:71: cc:58:c5:13:0d:fc:c3:bd:ed:09:ac:b9:47:0b:00:9f:b7:f0: 9a:04:e4:9a:95:40:ae:0e:95:41:fa:5d:74:01:62:69:28:46: 0f:69:49:26:48:05:95:6b:09:9a:62:69:b0:75:31:e1:a7:0f: 6f:bc:8e:24:ba:c6:5b:bf:58:60:27:ce:1a:71:f0:89:00:01: cd:6a:d1:41:d0:62:d1:7e:13:55:a9:a7:c1:b4:34:f5:28:ce: e2:be:97:be:35:3e:85:f7:ed:6a:75:f1:fe:3e:b1:b4:09:fe: d8:48:93:95:0e:c4:c1:41:83:53:84:19:27:53:e6:62:e7:5e: e0:c3:2c:c3:b1:03:01:a4:1b:28:c0:56:da:16:68:08:db:ba: 5d:8c:47:13:7a:3e:1f:d8:9d:59:85:17:6c:6d:2b:7f:4e:f1: 32:97:3c:a5:0b:2d:38:93:28:c9:b0:4d:dc:05:6b:f4:73:f3: 58:5a:7e:90:fc:37:1a:d9:ea:4d:16:31:14:01:4e:c6:49:9a: d5:14:04:c2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcRkACv60GQnSD7pVyaqs3klaCbkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODIyMDAzMDM3WhcNMjUwOTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AzOGEwOGM5M2IwZjhkZGEzZjE0Y2EwZDdmYzVhZDM1MTZi Mjg1ODAwMDIyNTc4ZDhhMDBlNGI0OGFiOTM2ZjA0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5Bg7+An/gb5T7BoPFnousf4Tbz4onf+KRBvnhajkalOOx YQIs9XEVuSwwbMaBdW3ifQs0/wy44/rFVoG72ymB05ndq21lY+x711NG1UzDeSHm OvrXqbbNx1LcKr9xKu9pXYxStvWTEH49oPyj3nAdwGE8sXuMVBOGXmnERIhRdme4 dwxMT7rccROSreHNn/uCN5tzZjtzSvrGy9dMO0hUODzKXObb+fDOWS8K9SDbRiSY 0DWYmXi4qIgKCV/BDDZqy0VLXR0wWdrDSDP0KO3jTI29A7kvUSQe+DR8poWTFEvp FpGWq1CJMDW0ov9oShbESKeLxQ9dHq0RBO6m0MytAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUlyOE9vqYtg2/bLpIpYL8Zc31zx8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJlZGY4MjA0LWJmMmMtNDllNC1iMjEwLWNjMmI5MmI1ODRlZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALPFfAwDQYJKoZIhvcNAQELBQADggEBAM3BVlydKqsmLVKRBygJDRblyqiZ m9q66bAstjFwFSX9UBNFwLOC8N7cZlmuDDxilG5cNmJmccxYxRMN/MO97QmsuUcL AJ+38JoE5JqVQK4OlUH6XXQBYmkoRg9pSSZIBZVrCZpiabB1MeGnD2+8jiS6xlu/ WGAnzhpx8IkAAc1q0UHQYtF+E1Wpp8G0NPUozuK+l741PoX37Wp18f4+sbQJ/thI k5UOxMFBg1OEGSdT5mLnXuDDLMOxAwGkGyjAVtoWaAjbul2MRxN6Ph/YnVmFF2xt K39O8TKXPKULLTiTKMmwTdwFa/Rz81hafpD8NxrZ6k0WMRQBTsZJmtUUBMI= -----END CERTIFICATE-----Generated at Sat Aug 23 10:20:23 2025 by rpki-client