$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/311720c1-10e8-4fac-9201-310eb27fafbd.roa File: 311720c1-10e8-4fac-9201-310eb27fafbd.roa (raw, json) Hash identifier: jJEnUHLdXuRf3S8MoZkk5cPkOXlZ7nF4tbsjJl/Ogpo= Subject key identifier: 9E:BD:41:A4:1D:3C:F6:9C:CB:DB:38:73:6F:4F:9C:DA:F2:08:BC:B7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 36E59FC8D780698F244597758D61A6AD36CB75CC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/311720c1-10e8-4fac-9201-310eb27fafbd.roa Signing time: Sat 16 Aug 2025 00:30:22 +0000 ROA not before: Sat 16 Aug 2025 00:30:22 +0000 ROA not after: Sat 20 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 44.216.192.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:e5:9f:c8:d7:80:69:8f:24:45:97:75:8d:61:a6:ad:36:cb:75:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 16 00:30:22 2025 GMT Not After : Sep 20 23:59:59 2025 GMT Subject: serialNumber=a3d53685aca448adc0bcee170610e0e310f92601d2997c21ccc897e822805d7b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:32:65:d5:89:ba:79:78:bb:cd:f4:ad:87:27: a7:7c:65:1d:a6:1c:fa:c2:fe:45:ac:10:85:3e:58: 07:b0:ec:86:74:c5:46:7a:f3:2f:5b:ff:3b:4a:df: 45:eb:27:89:22:64:87:fd:fc:77:b9:41:6c:e4:93: a6:49:99:46:58:02:56:9b:b8:f6:88:19:ec:78:1e: 22:9c:da:cc:4e:e9:2b:ba:07:de:7a:35:be:78:3b: 45:fc:38:01:4e:a1:d6:15:e7:d7:68:65:6c:ca:af: 2d:6c:88:81:4e:56:7e:2b:08:7e:69:61:99:4c:ca: e2:7a:ad:6f:7d:5c:2a:7a:16:14:d7:9f:03:f9:22: c2:4d:41:f8:7e:f2:70:f7:2e:d7:b5:ef:13:7e:64: 96:b9:32:fa:64:ed:b1:7a:d7:6a:05:68:a4:3d:ce: fc:36:72:4b:5e:7f:f6:3d:49:3f:e7:2b:d1:b7:e5: 75:53:be:5f:4c:3a:ec:d5:a0:6a:6d:f4:4b:33:18: 6f:78:a8:a2:be:26:ed:60:2e:3f:cc:aa:1e:4c:4d: f1:9c:1e:8e:40:5b:47:46:a5:3c:02:06:80:a2:03: b7:28:ec:ee:b1:8c:b3:34:b5:f5:7e:75:2c:d8:4c: 36:37:3b:65:2a:b3:5c:67:ab:45:72:bb:95:64:36: 07:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:BD:41:A4:1D:3C:F6:9C:CB:DB:38:73:6F:4F:9C:DA:F2:08:BC:B7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/311720c1-10e8-4fac-9201-310eb27fafbd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 44.216.192.0/22 Signature Algorithm: sha256WithRSAEncryption 56:c6:8a:ef:60:88:e8:db:50:a6:96:e8:2f:ac:51:8a:44:c7: f8:7a:7f:22:2a:ea:20:85:6b:c8:fd:33:02:77:a8:6f:0d:a7: 7d:0e:ca:de:95:61:59:25:a0:7b:04:67:d3:72:7a:72:af:62: d4:6a:f4:dc:3b:c7:a6:bd:7b:10:d3:24:f2:78:0c:ea:27:b5: b7:0e:29:38:82:b9:5e:e0:9f:38:5b:ba:ef:4b:cb:e7:e3:4b: db:ab:54:0f:2d:8d:c8:cc:83:09:95:09:15:4c:bd:0a:0a:73: 0c:a4:b1:b4:1f:f4:bf:99:fd:87:1f:6f:53:df:b2:a5:46:97: 61:65:e0:7b:9e:1e:66:63:1d:ee:32:16:ad:75:66:a8:41:fb: 71:5e:f1:23:4e:72:97:e8:f8:e8:43:a2:ff:1a:2a:cb:f5:c5: f6:38:f8:34:d9:d7:ae:7e:3c:dd:e6:7e:e3:cf:f9:05:07:d0: 48:fd:b2:dd:62:af:40:45:8d:65:8d:3d:5f:f6:76:4c:81:cb: a7:79:cd:17:f6:19:e5:ee:52:63:f0:88:2c:26:ce:68:1e:c1: 96:b8:ec:7d:52:3d:d8:43:a0:ed:d0:ee:9c:96:0c:b7:35:dd: 09:ee:6a:47:06:58:eb:43:59:ee:31:04:e7:ea:5f:63:9a:d0: f5:96:29:8f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNuWfyNeAaY8kRZd1jWGmrTbLdcwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE2MDAzMDIyWhcNMjUwOTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhM2Q1MzY4NWFjYTQ0OGFkYzBiY2VlMTcwNjEwZTBlMzEw ZjkyNjAxZDI5OTdjMjFjY2M4OTdlODIyODA1ZDdiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCaMmXVibp5eLvN9K2HJ6d8ZR2mHPrC/kWsEIU+WAew7IZ0 xUZ68y9b/ztK30XrJ4kiZIf9/He5QWzkk6ZJmUZYAlabuPaIGex4HiKc2sxO6Su6 B956Nb54O0X8OAFOodYV59doZWzKry1siIFOVn4rCH5pYZlMyuJ6rW99XCp6FhTX nwP5IsJNQfh+8nD3Lte17xN+ZJa5Mvpk7bF612oFaKQ9zvw2cktef/Y9ST/nK9G3 5XVTvl9MOuzVoGpt9EszGG94qKK+Ju1gLj/Mqh5MTfGcHo5AW0dGpTwCBoCiA7co 7O6xjLM0tfV+dSzYTDY3O2Uqs1xnq0Vyu5VkNgd7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUnr1BpB089pzL2zhzb0+c2vIIvLcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzMxMTcyMGMxLTEwZTgtNGZhYy05MjAxLTMxMGViMjdmYWZiZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIs2MAwDQYJKoZIhvcNAQELBQADggEBAFbGiu9giOjbUKaW6C+sUYpEx/h6 fyIq6iCFa8j9MwJ3qG8Np30Oyt6VYVkloHsEZ9NyenKvYtRq9Nw7x6a9exDTJPJ4 DOontbcOKTiCuV7gnzhbuu9Ly+fjS9urVA8tjcjMgwmVCRVMvQoKcwyksbQf9L+Z /Ycfb1PfsqVGl2Fl4HueHmZjHe4yFq11ZqhB+3Fe8SNOcpfo+OhDov8aKsv1xfY4 +DTZ165+PN3mfuPP+QUH0Ej9st1ir0BFjWWNPV/2dkyBy6d5zRf2GeXuUmPwiCwm zmgewZa47H1SPdhDoO3Q7pyWDLc13QnuakcGWOtDWe4xBOfqX2Oa0PWWKY8= -----END CERTIFICATE-----Generated at Sat Aug 23 08:31:06 2025 by rpki-client